Unscheduled care providers can access this API in SMSP mode, which means:
reduced security requirements (for example, NHS smartcards are not required)
a simpler onboarding process
For more details, see the relevant sections below.
Using SCRa as an interim measure
We prefer unscheduled care providers to integrate their applications directly with CP-IS using this API. However, as an interim measure, you can use our Summary Care Record application (SCRa) to access CP-IS information.
Who can use this API
This API can only be used where there is a legal basis to do so. Make sure you have a valid use case before you go too far with your development.
You must do this before you can go live (see ‘Onboarding’ below).
To use this API, the end user must be authorised to perform that activity.
The API itself does not perform any authorisation checks. Rather, the calling system is expected to perform them. The authorisation rules are specified in our national Role Based Access Control (RBAC) database.