Built for NZ general practice

HISF compliance, without the spreadsheet chaos

Pono gives your practice a single place to manage cybersecurity compliance: the HISF audit, your risk register, vendor reviews, incidents and reports. Know exactly where you stand, and what to do next.

HISF alignedPrivacy Act 2020Hosted in AustralasiaDelivered with GenPro
pono.cysura.co.nz/dashboard

Dashboard

Tui Street Medical Centre

HISF
74%Ready

+12% since last quarter

Readiness by domain

Access Control
85%
Data Handling
78%
Incident Response
64%
Supplier Security
71%
Staff Awareness
58%
Physical Security
90%

Priority actions

Review flagged sub-processor: SmartBill
Ransomware risk review due this week
3 staff awareness controls not started

The Health Information Security Framework applies to every general practice in New Zealand. Most practices are managing it with a folder of Word documents and a spreadsheet nobody trusts. Pono replaces all of that.

What is inside

Everything your practice needs to stay compliant

HISF Audit Kit

Every HISF control laid out in plain language, grouped by domain. Tick them off, attach evidence and watch your readiness score climb.

Risk Register

A ready-made risk register built for general practice. Score likelihood and impact, assign owners and get reminded when reviews fall due.

Sub-processor Register

Track every vendor that touches patient data, from your PMS to the lab portal. Annual reviews are scheduled and flagged for you.

Incident Log

Log security incidents in minutes with a guided workflow, including the Privacy Act 2020 notifiable breach assessment.

Document Library

Policies, procedures and templates in one place, version controlled and ready to show an auditor or your PHO.

One-click Reports

Export a compliance summary as a PDF whenever your PHO, Health NZ or an insurer asks where things stand.

How it works

From zero to audit-ready in three steps

01

Enrol your practice

We set up your practice and your login. There is nothing to install and no IT project to run.

02

Work through the audit

The audit kit walks you through each HISF control step by step. Most practices see their readiness score within the first session.

03

Stay audit-ready

Pono keeps score, chases reviews and surfaces what needs attention next, so compliance stops being a yearly scramble.

Get more info

See Pono in action

Leave your details and we will get in touch to walk you through Pono and answer your questions. No pressure, no lock-in.

No spam, no obligation. We will only use these details to get in touch about Pono.