Add anyone in your business to HandsHQ so they can create and collaborate on projects. Access controls allow you to decide who can do what.

A RAMS consists of a risk assessment, method statement and COSHH assessments. It includes as many trades and activities as you require.

The HandsHQ content library is regularly updated and contains over 40 categories organised by trade. This includes risk assessments, a sequence of operations and a general document structure which can be made site-specific.

Leverage the power of HandsHQ to create your documents, using your own risk assessment and method statement content.

HandsHQ's COSHH library contains over 15,000 substances with more added every day.

Add your own images and PDFs to your RAMS. Upload them from your computer or directly from your phone or tablet’s camera.

With all your projects in one place, you can find any RAMS in seconds with our lightning fast search.

Completed RAMS are downloaded or emailed PDFs. Professional-looking, with consistent formatting, and an easy-to-read layout.

Add your logo, website address and contact details, which appear on the final RAMS.

Working on a project just like one you've done before? Duplicate and save yourself even more time.

If you find yourself always uploading the same PDFs to your RAMS, you can add them by default instead.

Set each task's risk and residual risk value using the built-in 5x5 risk matrix. Risk ratings are shown in the end document for clarity and easy understanding of the different risks.

Add anyone in your business to HandsHQ so they can create and collaborate on projects. Access controls allow you to decide who can do what.

Separate your account by region, subsidiary or any other way you want divisions.

Capture signatures from everyone on your project digitally. Personnel can sign on their own device and version control ensures everyone has the latest version.

Approve RAMS internally before they are sent to your client.

HandsHQ's API allows you to connect with your favourite software, either directly, or through Zapier or Microsoft Power Automate.

Once your HandsHQ account is linked to Procore’s system, approved RAMS documents will be auto-uploaded into your Procore project for the whole team to access.

Whenever a project is edited, the user can write a reason for editing. If you want to ensure a reason for editing is always captured, you can enforce it.

Email your RAMS directly to your team or client within HandsHQ. Check the delivery status to ensure they received it, and even see if they've opened the email.

Save profiles for your workforce, along with their roles and contact details. Easily add them to projects to email RAMS and request digital signatures.

Risk Register allows you to manage your risk assessments, assign them and set review dates. When a risk assessment is updated, immediately see the impact that has on live projects and update them to the latest content.

Every change to a project is tracked and timestamped so you know who has done what to every RAMS.

Automated version controls tracks your document changes.

Schedule regular reviews and get notified when it’s time to review your RAMS.

When you've got old projects you don't want to delete, but still want to keep, you can simply archive them.

HandsHQ creates a PDF of every version of every project. Download a previous version to see what the content was at a certain point in time.

Not all businesses want their team to easily duplicate RAMS. If that's the case with you, you can easily prevent it, to ensure a completely new RAMS is created every time.

Allow users to access HandsHQ securely with existing SSO credentials. HandsHQ supports Single Sign-On via Okta and Azure Active Directory.

Ensure all users are authenticated only through the selected identity provider (Azure Active Directory or Okta) for extra security.

Two-factor authentication provides an additional layer of security, requiring both a password and a second verification method.

All browser connections and communication are encrypted and transmitted over TLS (formerly known as SSL). Our servers only support 128- or 256-bit cipher suites over TLS 1.1 or higher, protecting against unauthorised disclosure, modification, and replay attacks.

Our policy is to only select cloud partners that encrypt all physical media on which customer data resides, including database and backups. In the unlikely event of a physical breach of underlying infrastructure (i.e., if someone broke into the data centre and removed the disk drives), your data would be protected.

Our production environment undergoes penetration testing bi-annually, using industry standard tools to replicate hacking attacks.

We use a number of tools to proactively identify known security vulnerabilities. Our policy is to resolve critical vulnerabilities within 72 hours.

HandsHQ products are designed with security that aims to meet OWASP standards for web applications. At least annually, engineers participate in web application security training covering OWASP Top 10 Application Security Risks.