Navigating NHS Procurement Frameworks: A Guide for Digital Health Innovators

Navigating NHS procurement can be complex for digital health innovators preparing to enter the market. With multiple frameworks, evolving standards, and detailed assurance processes, it’s not always clear where your product fits — or how NHS organisations buy solutions like yours.
At 6B, we help digital suppliers and partners understand the frameworks that underpin NHS procurement and ensure their products meet the technical, commercial, and regulatory standards to succeed.
Procurement frameworks give NHS organisations a compliant, pre-approved route to buy technology that meets standards for quality, safety, and value. For suppliers, they are an essential gateway to working with the NHS.

NHS Procurement Frameworks and How to Join Them

Below is an overview of the main frameworks used across the NHS — who uses them, why they matter, and how suppliers can apply or prepare for future rounds.

NHS London Procurement Partnership (LPP)

• Frameworks: Clinical Digital Health Solutions (CDHS) and Digital Technical Clinical Support (DTCS)
• Who it’s for: NHS Trusts, ICBs, and other public sector bodies — primarily in London but open nationally.
• Managed by: Guy’s and St Thomas’ NHS Foundation Trust on behalf of the NHS London Procurement Partnership.

LPP frameworks allow NHS organisations to buy approved digital solutions that meet high standards around clinical safety, data security, and interoperability. Suppliers already on CDHS and DTCS were selected through national competitions — the most recent awards were made in 2024–25.

Current status: At present, these frameworks are closed to new suppliers, but new iterations are expected in future.

How to prepare:

• Register on the NHS Health Family e-procurement portal (Atamis): https://health-family.force.com/s/Welcome.
• Keep certifications such as Cyber Essentials, ISO 27001, and DCB0129/30 clinical safety up to date.
• Monitor Find a Tender and LPP updates for news on future rounds.

When open, applications are submitted via the portal and include detailed questionnaires on compliance, capability, and service scope.

G-Cloud (Crown Commercial Service)

• Who it’s for: NHS and wider public sector organisations purchasing cloud-based software and services.
• Managed by: Crown Commercial Service (CCS).

G-Cloud provides a transparent, repeatable way for buyers to procure SaaS, PaaS, and IaaS products. NHS teams use it for everything from hosting and analytics platforms to patient-facing applications.

Current status: The next version, G-Cloud 15, is expected to launch in late 2025.

How to apply:

1. Register on the Digital Marketplace: https://applytosupply.digitalmarketplace.service.gov.uk.
2. Complete the online service description, pricing, and terms templates.
3. Maintain Cyber Essentials (Plus) and ISO 27001.

Applications are usually open for four to six weeks. Preparation is key — most submissions are rejected for missing documentation or incorrect formatting rather than quality.

Health Systems Support Framework (HSSF)

• Who it’s for: Previously used by NHS England and Integrated Care Systems.
• Status: Closed to new suppliers.

This framework supported large-scale transformation and population health projects but is no longer active. NHS England has confirmed that no new supplier entries or call-offs will be made.

Suppliers should focus instead on LPP, NHS SBS, and CCS frameworks, which now cover much of the same scope.

NHS Shared Business Services (NHS SBS)

• Who it’s for: NHS Trusts, ICBs, and local authorities across England.
• Managed by: NHS Shared Business Services (a DHSC joint venture).

NHS SBS operates a wide range of frameworks covering digital, IT, and consultancy services — including Digital Workplace Solutions, Cloud Solutions, and Consultancy and Advisory Services.

These frameworks open every few years and provide compliant, pre-approved routes for NHS organisations to procure technology and expertise efficiently.

How to apply:

• Register on the NHS SBS Customer Framework Agreement Portal (CFAP): https://one.sbs.nhs.uk.
• Maintain core standards such as Cyber Essentials, ISO 27001, ISO 9001, and DSPT compliance.
• Watch for new tenders announced on Find a Tender and SBS channels.

Suppliers registered on CFAP receive alerts when new frameworks open, allowing time to prepare submissions.

Dynamic Purchasing Systems (DPS)

• Who it’s for: NHS bodies looking for more flexible procurement options.
• Managed by: Various public sector bodies, including NHS Supply Chain, CCS, and LPP.

DPS arrangements are “always open” — suppliers can join at any point during the lifetime of the agreement. They’re often used for emerging technology categories or specialist products.

Examples: NHS Supply Chain’s Innovation DPS for medical and digital health products, and CCS’s Cyber Security Services DPS.

How to apply:

• Identify the relevant DPS (e.g. NHS Supply Chain, CCS).
• Register on the relevant e-tendering platform (Jaggaer or CCS Supplier Registration Service).
• Submit your details and evidence of compliance (Cyber Essentials, ISO standards, DSPT).

Because there’s no fixed window, DPSs are particularly useful for new or SME suppliers looking to access the NHS market.

Crown Commercial Service (CCS) Frameworks: Digital Outcomes & Specialists (DOS) and Technology Services 3 (TS3)

Digital Outcomes & Specialists (DOS)

• Who it’s for: Public sector buyers seeking delivery teams and digital specialists.
• Managed by: Crown Commercial Service (CCS) and Government Digital Service (GDS).

DOS allows public sector organisations to source delivery partners for digital projects. The current version, DOS 6, runs until March 2026 and is closed to new suppliers.

How to prepare for DOS 7:

• Register on the Digital Marketplace for notifications.
• Develop case studies showing agile delivery, user research, and accessibility compliance.
• Maintain Cyber Essentials Plus and ISO 27001.

Technology Services 3 (TS3)

• Who it’s for: Large-scale IT and support contracts across the NHS and wider public sector.
• Managed by: Crown Commercial Service.

TS3 provides access to strategic and operational IT suppliers. It was launched in 2021 and is closed to new entrants until its replacement, Technology Services 4 (TS4), is launched (expected 2026).

How to prepare:

• Monitor the CCS Upcoming Agreements page for TS4 announcements.
• Register on the Public Procurement Gateway and CCS eSourcing portal.
• Maintain ISO 27001, ISO 9001, and ISO 14001 certification.

Key Takeaways for Suppliers

• Register early on relevant portals: Atamis (Health Family), Digital Marketplace, CFAP, and CCS eSourcing.
• Maintain compliance: Cyber Essentials Plus, ISO 27001, DSPT, and DCB0129/30 (if developing clinical software).
• Stay informed: Monitor Find a Tender, CCS, and NHS SBS bulletins for framework refreshes.
• Engage early: Attend supplier days and webinars to understand buyer priorities.

Being ready when a framework opens — with certifications, documentation, and evidence in place — can make the difference between a missed opportunity and successful NHS adoption.

At 6B, we work with digital health innovators to make sure they’re prepared technically and commercially for NHS procurement. From integration planning to compliance support, our goal is to help partners build products that are not only innovative but ready for real-world NHS deployment.