This guide provides organisations with information on the DCB1596 secure email specification, electronic and digital signatures.

Guidance for organisations seeking to federate with NHSmail Calendar

Organisations that are only using NHSmail as their email solution are not required to submit spam/ phishing evidence for the Data Security and Protection Toolkit (DSPT). Further information provided.

As a part of the Azure B2B Guest Access service, controls have been put in place to mitigate the risks associated with sharing data with external organisations. One of these controls is an external organisation domain allow-listing.

Editing details of an External Organisation

Devices enrolled in the NHSmail central tenant via Intune must be enrolled on a per-organisation basis (using ODS codes). This ensures they are correctly assigned to the appropriate organisation groups and the correct configuration policies are applied.