NHS login user journeys

All of the NHS login user journeys start with the NHS login button on your website or app. These journeys cannot be changed or customised.

Low level verification (P0)

Only the user’s email address and phone number are required to register for a service. Users can log in with an email address and password, with or without the need for an OTP (one time password).

Open the P0 user journey in a new window
Diagram showing the P0 user journey
  • User verified email & phone number
Claims are not automatically provided to the partner service. Some claims will need to be requested and then approved by NHS login. View scopes and claims for more information.
  • User identity not verified
  • No NHS number
  • No checks with their NHS Personal Demographics Service (PDS) record, (held on Spine)
  • No GP surgery code (ODS code)
  • No GP surgery online registration information (linkage key) - which allows access to medical records

What users can do at P0

  • Record non-medical data outside the patient record, e.g. book appointments (not able to view or manage appointments – which may give out information).
  • Be registered in an online setting, where treatment does not require high level identity assurance or access to / adding to existing medical record.
  • Enquire about non-medical data outside the patient record and access non-tailored online NHS services and content.
  • Add / Enquire about medical data which is to be held in a separate patient record, e.g. recording and enquiry of STI / sexual health information, treatment and prescribing outside the main NHS patient record.
  • Add / Enquire about non-prescription medication to be held in a separate patient record, e.g. recording of non-prescription drugs or advice / guidance.

Medium level verification (P5)

To gain a medium level verification, the user must first complete a low level verification (P0) journey.

Users can’t access medical records or personal information, nor should the user transfer sensitive or personal information. The Partner Service can’t disclose sensitive information or medical record data.

This level of verification is just a claimed identity. If a Partner Service wishes to use and rely on the user’s NHS number they need to request a high-level verification (P9).

Open the P5 user journey in a new window
Diagram showing the P5 user journey
  • User verified email and phone number
  • User verified date of birth, NHS number, first name and last name – this information has been checked with their NHS Personal Demographics Service (PDS) record (held on Spine)
  • GP surgery code (ODS code)
Claims are not automatically provided to the partner service. Some claims will need to be requested and then approved by NHS login. View scopes and claims for more information.
  • User identity based only on claimed credentials
  • No GP surgery online registration information (linkage key) – which allows access to medical records

What users can do at P5

In addition to what users can do with low level verification (P0), users can also:

  • Record (no read capability) non-medical data into record, e.g. record data-sharing opt-out preference or record preferred pharmacy (further controls will be needed around collection of controlled medications)
  • Submit an online consultation to their GP
  • Record medical data to submit to their GP or consultant - such as blood pressure readings
  • Contact their GP or receive notifications via email or SMS

High level verification (P9)

To gain a high level verification, the user must first complete a low and medium level verification (P0 & P5) journey.

There are three ways in which a user can acquire high level verification (P9). The use cases and what the Partner Service gets are the same but the user journey is different.

High level verification (P9) is needed when personal, confidential or sensitive information is being communicated either to or from the user. It is also required when the user can access their medical records e.g. GP record via a 3rd party – such as Co-op Health app, NHS App or TPP Airmid.

Identity verification via mobile (IDVM) is only available to medium level verified (P5) users who are registered for Patient Online (POL) at their GP and their phone number matches the one against their GP record.

Open the P9 IDVM journey in a new window
Diagram showing the P9 IDVM user journey Open the P9 PYI journey in a new window
Diagram showing the P9 PYI user journey
Open the P9 POL journey in a new window
Diagram showing the P9 POL user journey
  • User ID fully authenticated
  • User verified email and phone number
  • User verified date of birth, NHS number, first name and last name – this information has been checked with their NHS Personal Demographics Service (PDS) record (held on Spine)
  • GP surgery code (ODS code)
  • GP surgery online information (linkage key) – which allows access to medical records (IM1 PFS API connected services only)
Claims are not automatically provided to the partner service. Some claims will need to be requested and then approved by NHS login. View scopes and claims for more information.

What users can do at P9

In addition to what users can do with medium level verification (P5), users can also:

  • Enquire against official record, e.g. read medical record, view NHS number, order repeat prescriptions, view SCR or detailed record, manage / view appointments, view tailored online NHS services and online content
  • Record medical data into healthcare consultation record (can include GP record or an NHS commissioned service healthcare record)
  • Enable delegated access for another validated individual
  • Register for online account where treatment requires high level identity assurance or access to / adding to existing medical record
  • Record new phone number or new email address online
  • Submit a request to register at a new GP surgery

Download the NHS login User Journey Visuals presentation.

Edit this page on GitHub