Right, let's get those medical assessments enabled for your organisation. Nothing to it, really.
- First up, head to Company Settings.
- Then, hit the Medical tab.
- You'll see a button: Enable medical assessments. Give that a click.
- Now, pick your tier – A, B, or C.
- Heads up — if you've gone for Tier B or C, you'll need to tick those two acknowledgement boxes. This confirms you've got your DPIA (Data Protection Impact Assessment) sorted and an Appropriate Policy Document in place. The system's smart; it'll timestamp both confirmations for you.
- Next, set your cadence (that's how often assessments happen – 365 days is the default) and your post-leaver retention period (default 6 years). Keep an eye on those numbers.
- Hit Save, and you're good to go.
Quick reminder: Tiers B and C won't activate without those two acknowledgements. It's a non-negotiable.
Good news: The system automatically tags you as the Medical Reviewer the first time you enable this. So, you can jump straight into reviewing submissions. If someone else needs to handle this, you can easily transfer that responsibility over in Users.
See? Compliance around medical assessments is a breeze when DDIR handles the heavy lifting.