Skip to main content
Check a technology
Talk to us

Digital Health Assessment Framework
Resource Centre

A single foundation for trust in digital health

Most digital health apps are not regulated or properly evaluated

Recent research, supported by ORCHA, found that 72% of countries have no organisation responsible for the safety or quality oversight of mobile health apps, and that even where regulation exists it covers only products formally classed as medical devices. 

This Resource Centre explains how emerging assurance frameworks are addressing that gap, and how the ORCHA Global Baseline Review (OBR) and OBR+ have become the co-ordinating foundation for a consistent, evidence-based approach to digital-health quality and trust. 

Health Care outline - PINK_healthcare, cross, medical, first aid, emergency

337,000+

digital health apps globally

Global Business Outline - pink_global,pie chart,network,report,connection,statistics,marketing

72%

of countries have no organisation responsible for the safety or quality oversight of mobile health apps

Website 540x405 (19)

Why Assessment Frameworks matter

Across 94 identified assessment frameworks, only 8 had undergone validity testing, and almost 40 % of all criteria relied on subjective assessor judgement. 

Earlier reviews in NPJ Digital Medicine  (2021) and BMJ Health & Care Informatics  (2022) reported the same problem - frameworks often lack inter-rater reliability and use high-level questions that invite interpretation [6][7]. 

Regulatory systems built for medical devices still struggle to keep pace with adaptive, software-based products [2 8]. 

assessment criteria

Where standards become actionable

These findings highlight the need for active, evidence-based frameworks that sit alongside regulation: transparent, repeatable, and proportionate to digital risk. 

The OBR provides exactly that: a granular, criterion-level framework derived from global standards (GDPR, DCB0129, ISO 82304-2, NICE ESF) and continuously tested across tens of thousands of app reviews. 

Frameworks built on the OBR use a micro-criteria structure - hundreds of precisely defined checks - ensuring that assessments are objective, repeatable, and defensible rather than reliant on interpretation. 

A coordinated foundation: OBR and OBR+

ORCHA Global Baseline Review (OBR)

Domains covered:
Data & Privacy
Professional Assurance
Usability & Accessibility 

Establishes minimum safe, usable, and lawful standards. 

Learn more

OBR+

All OBR domains plus:
Clinical Safety
Security
Technical Stability 

Provides advanced assurance; forms the basis of ORCHA Assured Silver and many partner schemes. 

Learn more

Learn more about ORCHA's assessment frameworks

Every other framework listed - from DTAC (UK) to DHAF (US) - aligns to the same domains within the OBR, ensuring consistency across regions and reducing duplication for suppliers. 
OBR

ORCHA Global Baseline Review

Region: Global
Focus: Digital health

Learn more
150x100 Assessment Frameworks NHS DTAC

Digital Technology Assessment Criteria (DTAC)

Region: UK
Focus: Digital health

Learn more
DHAF

U.S. Digital Health Assessment Framework (DHAF)

Region: US
Focus: Digital health

Learn more
NordDEC

NordDEC – Nordic Digital Health Evaluation Criteria

Region: Nordics
Focus: Digital health

Learn more
ISO

CEN–ISO / ISO 82304-2

Region: Global
Focus: Software quality

Learn more
MHCC

MHCC Assessed

Region: Canada
Focus: Mental health

Mind

Mind Assured

Region: UK
Focus: Mental health

APA

APA Approved

Coming soon

Quality Control Outline - navy_shield, quality, security, assurance, protection, trust, compliance, standard

Interested in building your own framework?

From ORCHA Assured to international certification, our assessment frameworks turn compliance into credibility.

Talk to us

Global assessments

There are multiple digital health assessment frameworks globally... 
gr-map-new-1

Suppliers: Get certified through an ORCHA assessment framework

1

Start with OBR (Bronze)

Establish your baseline compliance.
2

Advance to OBR+ (Silver)

Add clinical safety and technical assurance.
3

Gain recognition under partner schemes

DTAC, NordDEC, DHAF, Mind, MHCC and more.

Why choose an ORCHA framework

Security NAVY_world, protection, security, earth, shield

Proven globally

From the NHS in the UK to the Nordic Council of Ministers, the Mental Health Commission of Canada, and the American College of Physicians, organisations rely on ORCHA’s evidence-based approach to ensure the products they commission or recommend are safe and compliant.

Suppliers get faster market access and health systems have confidence in consistency

Compliance and Regulation outline - navy_compliance,checklist,paper,document,list,archive,criteria

Built for digital health

Traditional medical device or ISO frameworks weren’t designed for digital health products. ORCHA frameworks are. They combine the rigour of established clinical, privacy, and regulatory standards with the agility to reflect app-based, web-based, and AI-driven tools.

Dynamic, evidence-based assurance model that's relevant to the realities of software-as-a-service

Innovation outline - navy_Rocket, space, exploration, progress, startup

Flexible and scalable

Each ORCHA framework can be adapted to national priorities or sector-specific needs, from mental health and wellbeing to population health or social care. Build upon the ORCHA Global Baseline Review to create local frameworks.

A single, standardised foundation that scales globally but customises locally

Website - CTA Image (800 x 597 px) (1)

Build trust in digital health technology

Talk to us about building your own assessment or explore how ORCHA’s frameworks can support your assurance goals.

Talk to us