
Procurement teams ask for ISO 27001, the NHS asks for DSPT v8, DTAC V2 and DCB0129, EU customers ask for GDPR evidence and Article 27 cover.
Every one of these moments puts revenue on hold until you can show proof.
Naq gets you to the proof faster, then keeps it current so the next deal moves quicker than the last.
Naq covers the framework set those buyers require from a single dashboard, with controls mapped across standards so evidence captured once satisfies several at the same time.
.gif)
Multi-framework GRC
Run every standard from one workspace. Shared controls map across frameworks, so the evidence you gather for ISO 27001 quietly powers DSPT, DTAC and Cyber Essentials in the background.
Risk, safety and CAPA
Log risks and clinical hazards in a unified register with 5×5 scoring, then let CAPA workflows carry each one from root cause to corrective action without anything slipping through the cracks.


.gif)
Document lifecycle
Move policies from draft to approved in a controlled workflow with semantic versioning and enforced reviews. Edit an existing PDF in place, so you never lose the audit trail to a desktop folder.
Compliance training
Assign structured courses and assessments per employee, with automatic renewals and reminders. Every completion ties back to a control as evidence of competence, ready when the auditor asks.


.gif)
Asset registry
Keep people, devices and vendors in one place with per-user MFA and access tracking. Naq flags missing vendor DPAs proactively, so gaps surface before a buyer or auditor finds them.
AI assistant
Get on-demand summaries and evidence checks across your whole programme. Read-only by design, so it accelerates your team without ever quietly editing the formal record.



Naq's in-house experts sit alongside the platform for the decisions and conversations software cannot run on its own. Clinical Safety Officers, virtual DPOs and certified consultants are available for evidence interpretation and framework-specific narratives that need a named human.



.png)
NHS England introduced an updated Digital Technology Assessment Criteria form on 24 February 2026. Manufacturers and NHS organisations must transition to DTAC version 2 before 6 April 2026, when the previous version will no longer be accepted.