LEXISNEXIS RISK SOLUTIONS UK LIMITED

LexisNexis® IDU

LexisNexis® IDU enables you to have increased confidence in verifying an individual’s identity whilst supporting a frictionless customer journey. Providing a multi-layered check and screening against a variety of datasets, IDU assists with verifying and authenticating identity documents, identifying risks, helping negate the risk of identity fraud.

Features

• Confidently verify an individual’s identity.
• Perform multi-bureau verification checks.
• Customisable scorecard configured to your organisational risk tolerance.
• Verify the bank account associated with the individual.
• Authenticate ID documentation worldwide e.g. passport.
• Validate email addresses for an individual or entity.
• Access on-line or integrate into your systems via API.
• Understand the risks an individual may pose.
• Gain a holistic consumer view.

Benefits

• Approve customers quickly speeding up your onboarding process.
• Reduce risk through comprehensive data coverage.
• Integrate with your existing platforms via API.
• Authenticate documents ensuring photograph matches the individual in real-time.
• Wider range of data coverage ensures high first time pass.
• Tailor your process to your risk appetite.
• Smooth customer journey.
• Improve customer experience and pass rates.

£4,000 a licence

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kirsten.tedder@lexisnexisrisk.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

122396075302286

Contact

UK Enquiries
02920678555
kirsten.tedder@lexisnexisrisk.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: None
• System requirements:
  • Compatible browser
  • Valid licensed credentials

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Monday - Friday 8.00 - 18.00 (excluding UK Bank Holidays)
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Customer Support is available by telephone or email during UK business hours 08:00 to 18:00 Monday to Friday (excluding bank holidays). On-line FAQs are available within the system.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Users are provided with documentation on how to Get Started. Training is available onsite or via webex.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Data is stored in line with Data Retention Policy and retained for legal, regulatory and audit purposes. Users have control over their own data.
• End-of-contract process: Data is retained in line with Data Retention Policy and access to the Service removed for users who no longer require to use the service.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Web based portal is available for users to enter data for searching and to upload data for batch processing.
• Accessibility standards: None or don’t know
• Description of accessibility: Users enter search criteria for verification and matching of individuals or businesses to ascertain whether the details held are correct. Users can review the results presented in order to make a decision.; ; Batch files can be uploaded with results returned to customer via an on-line portal.
• Accessibility testing: None
• API: Yes
• What users can and can't do using the API: The API enables the customer to submit data for searching and retrieval of results via web service to connect to existing or third party platforms.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: An administrative user can customise the work flow, data sets used and system configuration to suit their organisation's needs.

Scaling

• Independence of resources: The solution is provided as a shared service. We regularly review capacity and performance to ensure all customers receive the service they require.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be downloaded in CSV format or reports extracted in pdf format.
• Data export formats:
  • CSV
  • Other
• Other data export formats: PDF
• Data import formats:
  • CSV
  • Other
• Other data import formats: User-entry

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Our service has consistently achieved availability in excess of 99%.
• Approach to resilience: Critical LexisNexis products utilize a multiple Availability Zone (AZ) approach to ensure high availability.; Our data centres which host customer data operate in a hot-active setup, providing failover capability for resilience and service continuity.
• Outage reporting: Email alerts would report any outage that would materially affect services.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: A Least Privilege principle is in place and governs how an individual should only be granted access to those objects, resources, and data that are necessary for the user to do their job.
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: Initial Registration Date: 06/12/2010 Re-issue Date: 26/01/2024
• What the ISO/IEC 27001 doesn’t cover: As defined in our Statement of Applicability.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: An information security management system/framework has been built based on the requirements of ISO27001/2, as well as aligning with general best industry practice. A full suite of information security policies, processes, and procedures are in place covering all applicable areas of physical and logical security and are regularly reviewed internally and externally.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: LexisNexis maintains strict policies and procedures for change control and management of computer hardware and software. Prudent configuration management and change control processes must be followed for all software and systems development and maintenance activities performed on Company computer systems and networks. Proper configuration management and change control are essential to ensure that high levels of reliability, availability and serviceability are maintained within Company computer systems and networks and that security controls cannot be circumvented.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: To help mitigate the risk associated with vulnerabilities on external and internal computer systems, LexisNexis Information Security will perform a range of vulnerability assessment services. Vulnerability scans for networked systems occur frequently. Information Security will oversee the assessment and reporting process.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Security event log monitors alert our systems staff of suspicious events. Logs are directed to a Security information and Event manager (SIEM) and used for reporting, correlation, and analysis. Time is synchronized across computer and network systems so that events may be correlated. LexisNexis has a dedicated Security Operations Centre (SOC) who are available 24/7 to respond to real-time events and investigate or escalate as appropriate.
• Incident management type: Supplier-defined controls
• Incident management approach: There are documented corporate information security incident response procedures in place to guide response activities in the event of a security incident and breach response. Policies and procedures are in place to ensure timely and appropriate consumer and customer notifications.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  At LexisNexis Risk Solutions (LNRS), a wholly owned subsidiary of RELX Group plc, we're committed to reducing our environmental footprint and achieving carbon neutrality. RELX are a signatory to the Climate Pledge net zero commitment, rated as “A-“ in the CDP climate programme, named as a Climate Leader by the Financial Times, rated “AAA” in the MSCI ESG index and ranked first in our sector for ESG by Sustainalytics. LNRS is externally certified to the ISO14001 environmental management system standard. Additionally, RELX have set ambitious environmental goals, aiming to achieve 17 United Nations Sustainable Development Goals by 2030 and net zero emissions by 2040. ; In delivering our products and services, we recognise our environmental impact in areas such as carbon emissions, energy and water usage. To address these challenges, we’ve implemented strategies to consolidate our office spaces and promote sustainable travel. We've made significant strides in reducing emissions throughout our value chain which resulted in a 17% decrease in Scope 1 emissions in FY23. Within our organisation we are actively promoting educational initiatives around net zero carbon events and improve recycling of electronic goods. ; For more information, please see: ; https://www.relx.com/corporate-responsibility/being-a-responsible-business/environment; https://stories.relx.com/relx-environmental-challenge/index.html; https://www.relx.com/~/media/Files/R/RELX-Group/documents/reports/annual-reports/2023-ar-sections/relx-2023-corporate-responsibility.pdf

  Covid-19 recovery

  LexisNexis Risk Solutions (LNRS) business continuity programme includes plans to ensure readiness through disruptions including pandemics. During the Covid-19 pandemic 97% of LNRS staff worked remotely with no appreciable impact on the delivery of products and services. As a global organisation with different locations around the world, many of the employees in our workforce routinely work remotely either full-time or part-time. We ensure that our remote colleagues remain integrated and connected, avoiding silos in our communication and collaboration efforts.

  Tackling economic inequality

  At LexisNexis Risk Solutions, we recognise the importance of tackling economic inequality and our impact on the communities we serve. Our products and services align with SDG 16 (Peace, Justice and Strong Institutions) and SDG 10 (Reduced Inequalities), among others. Our solutions facilitate access to essential government benefits for citizens, combat fraud across various sectors and government levels, and aid law enforcement in ensuring community safety. ; ; We take pride in our people, and in cultivating an inclusive workplace with diversity that reflects our customers and communities. We are a UK living wage accredited employer, and we ensure all employees receive fair wages. We are committed to equal pay and have policies in place to pay employees fairly for the role they do, irrespective of their gender, race, or any other protected characteristic as governed by law. ; ; Our corporate social responsibility report highlights our commitment to implementing strategies and initiatives aimed at creating fair opportunities and promoting financial empowerment for all employees. We also recognise the importance of facilitating the growth of future talent and offer internships in partnership with Brunel University and a sales apprenticeship programme aimed at nurturing diverse talent from ethnically diverse and lower socioeconomic backgrounds. ; ; For more information, please see:; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/additional-resources/2023/2022-23-B4SI-assurance-statement.pdf; ; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/additional-resources/2023/2023-24-cr-objectives.pdf

  Equal opportunity

  At LexisNexis Risk Solutions (LNRS), we are passionate about making a positive impact on society and customers. We understand that people value a sense of real purpose at work: knowing that their actions are contributing toward something positive for themselves, their colleagues, their customers, the environment, and society. Our group strives to be a great place to work, where people feel valued and have equal access to opportunities and pay balance, regardless of gender or gender identity, national origin, race, ethnicity, religion, sexual orientation, age and/or disability status. We do not tolerate discrimination, prejudice or hate on any level, and consistently evaluate our processes and procedures to ensure that we perpetuate a mosaic culture. Inclusion and diversity are important to our future. We value diverse perspectives and recognise the importance of collaboration to achieve real innovation for our customers around the world, and to be more resilient, adaptable and successful. Inclusion and diversity are important to our future. As an equal opportunity employer, we are committed to freedom of association and treating all employees and applicants with respect and dignity.; Please see:; https://www.relx.com/corporate-responsibility/being-a-responsible-business/people; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/policies/relx-inclusion-diversity-2022.pdf

  Wellbeing

  At LexisNexis Risk Solutions, we prioritise wellbeing by taking a holistic approach to mental health and overall wellness. We provide various resources and tools to support our colleagues, including an employee assistance programme, mindfulness training and resources, and access to wellbeing toolkits and programmes. Our Thrive Wellbeing programme has been running since 2017 and supports employees in various aspects of their lives. Our programme encompasses topics associated with physical health, mental health, finances and community. We have expanded the scope of the programme and now address more sensitive subjects such as baby loss, suicide prevention, menopause awareness with the aim of reducing associated stigma.; Creating a culture that values mental health requires efforts at all levels of the organisation. We train our leaders to be aware of mental health issues so they can identify signs of poor mental health among their teams and have open conversations.; We believe that work-life balance is essential for overall wellbeing. Our goal is to create a meaningful workplace where individuals can pursue their career goals while maintaining harmony in their personal lives. Through purposeful conversations between leaders and employees about challenges both at work and in personal life (circumstances impacting work performance); we strive to strike this balance effectively. ; We have over 130 Employee Resource Groups (ERGs) which encourage colleagues to collaborate, advocate and engage communities, furthering wellbeing through building relationships and driving a sense of purpose. We also provide an opportunity for employees to take two days paid time-off per year for ERG-sponsored activities.

Pricing

• Price: £4,000 a licence
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: A free trial enables you to use a limited number of IDUnits (based on your predicted future volumes) or for 30 days whichever comes sooner.
• Link to free trial: N/A

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at kirsten.tedder@lexisnexisrisk.com. Tell them what format you need. It will help if you say what assistive technology you use.