LexisNexis Risk Solutions

LexisNexis® RiskNarrative

RiskNarrative Platform provides the most sophisticated, configurable, and accessible financial crime lifecycle management solution on the market.
The platform facilitates multi-jurisdiction onboarding, financial crime detection and regulatory compliance for KYC and KYB processes with quick set up and zero coding required.

Features

• Single platform solution.
• Business risk insights.
• Risk rating & periodic screening.
• Document and biometric verification.
• AML screening.
• Fraud Consortium.
• Network Link Analysis.
• Transaction Monitoring.
• Onboarding - eIDV, KYC, Fraud Prevention, Business Verification.
• Integrated Vendor Marketplace.

Benefits

• Reduced costs and increased operational efficiencies.
• Streamlined customer experience.
• Lower cost of ownership.
• Single supplier and access point for 3rd party data services.
• Flexibility to change 3rd party data services.
• More effective delivery of robust AML and financial crime controls.
• Reduction in False Positives and manual human intervention.
• Increased process automation.
• One solution to replace many.

£4,870 a licence

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at uk-irl-enquiry@lexisnexis.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

229039507675577

Contact

UK Enquiries
02920678555
uk-irl-enquiry@lexisnexis.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: SLAs are subject to support package contracted.
• System requirements:
  • Compatible browser
  • Valid licensed credentials

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 24/7 support is provided.; Tickets are prioritised according to severity and impact to service. SLAs are subject to support package contracted.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: N/A
• Web chat accessibility testing: N/A
• Onsite support: Yes, at extra cost
• Support levels: 24/7 support is offered as standard.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Users are provided with documentation on how to Get Started. ; Training is available onsite or via MS Teams. Best practice configurations can be deployed during implementation to minimise initial administration and set up of the service. UAT support and go live support can also be provided as part of the professional services packages offered.; ; Access is made available to 'Knowledge Base' providing a library of use case videos for user operations and functions.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Data is stored in line with Data Retention Policy and retained for legal, regulatory and audit purposes. Users have control over their own data.; ; Contractual provisions can be made with respect to the data extraction and support processes that may be required.
• End-of-contract process: Data is retained in line with Data Retention Policy and access to the Service removed for users who no longer require to use the service.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Web Browser management portal: Provides full management of the service including; Strategy and policy management, case management, alerts queue management, Audit Trail, User and team management. In addition management information and ad hoc checks can be accessed and run from the browser interface.; ; In addition to the above a batch file interface via secure FTP is an option.
• Accessibility standards: None or don’t know
• Description of accessibility: Users can perform all functions in the web browser management portal.; The batch file interface simply receives files containing records to be checked automatically.
• Accessibility testing: Not applicable.
• API: Yes
• What users can and can't do using the API: The Restful API is used for making requests to check an applicant or account transaction. Risk Levels and rule outcomes are returned with a score. The API can also be used for retrieving previous results.; Users cannot use the API for the management functions available in the web browser management portal.; The API is backwards compatible. https://api.trunarrative.com/
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The orchestration configurability of the RiskNarrative platform promotes high levels of automation throughout the customer risk management lifecycle with the ability to seamlessly move from automatic to manual and back; to automatic again results in an environment where high levels of repeatable decisions can be made without subjective or incorrect human intervention.; RiskNarrative is one central solution with pre-built connections to 50+ 3rd party global data services, built on a user configurable platform. Giving the flexibility to consume a selection of global data products and services, and configure and amend their own strategies as the business scales. The following can be configured; Rules and Ruleset, data enrichment, Risk Levels, downstream actions, task lists, approval task, questionnaires, teams and membership, webhook endpoints, scorecards, decision processes, account strategies and decision policies, look and feel of web browser interface, email templates, roles and permissions. Configuration is available to permitted users in a natural language without the need for technical expertise.

Scaling

• Independence of resources: The solution is provided as a scalable shared service. The RiskNarrative system is designed to scale as required, using AWS scaling tools amongst other methods. Performance is continually monitored and additional resources are made available as required.

Analytics

• Service usage metrics: Yes
• Metrics types: Service KPIs can be provided on request.
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Individual Audit records can be downloaded via the browser interface. Bulk data export is subject to customer requirements and setup on a per customer basis and contract.
• Data export formats:
  • CSV
  • Other
• Other data export formats: PDF
• Data import formats:
  • CSV
  • Other
• Other data import formats: Restful API json

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Our service has availability service level of 99%.; ; LNRS will assign a severity classification in accordance with the severity levels to determine the level of priority of each Incident and associated maximum response time objective.
• Approach to resilience: Critical LexisNexis products utilize a multiple Availability Zone (AZ) approach to ensure high availability.
• Outage reporting: Email alerts would report any outage that would materially affect services.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: A Least Privilege principle is in place and governs how an individual should only be granted access to those objects, resources, and data that are necessary for the user to do their job.
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: Initial Registration Date: 08/04/2019 Re-issue Date: 30/01/2024
• What the ISO/IEC 27001 doesn’t cover: As defined in our Statement of applicability.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: An information security management system/framework has been built based on the requirements of ISO27001/2, as well as aligning with general best industry practice. A full suite of information security policies, processes, and procedures are in place covering all applicable areas of physical and logical security and are regularly reviewed internally and externally.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: LexisNexis maintains strict policies and procedures for change control and management of computer hardware and software. Prudent configuration management and change control processes must be followed for all software and systems development and maintenance activities performed on Company computer systems and networks. Proper configuration management and change control are essential to ensure that high levels of reliability, availability and serviceability are maintained within Company computer systems and networks and that security controls cannot be circumvented.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: To help mitigate the risk associated with vulnerabilities on external and internal computer systems, LexisNexis Information Security will perform a range of vulnerability assessment services. Vulnerability scans for networked systems occur frequently. Information Security will oversee the assessment and reporting process.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Security event log monitors alert our systems staff of suspicious events. Logs are directed to a Security information and Event manager (SIEM) and used for reporting, correlation, and analysis. Time is synchronized across computer and network systems so that events may be correlated. LexisNexis has a dedicated Security Operations Centre (SOC) who are available 24/7 to respond to real-time events and investigate or escalate as appropriate.
• Incident management type: Supplier-defined controls
• Incident management approach: There are documented corporate information security incident response procedures in place to guide response activities in the event of a security incident and breach response. Policies and procedures are in place to ensure timely and appropriate consumer and customer notifications.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  At LexisNexis Risk Solutions (LNRS), a wholly owned subsidiary of RELX Group plc, we're committed to reducing our environmental footprint and achieving carbon neutrality. RELX are a signatory to the Climate Pledge net zero commitment, rated as “A-“ in the CDP climate programme, named as a Climate Leader by the Financial Times, rated “AAA” in the MSCI ESG index and ranked first in our sector for ESG by Sustainalytics. LNRS is externally certified to the ISO14001 environmental management system standard. Additionally, RELX have set ambitious environmental goals, aiming to achieve 17 United Nations Sustainable Development Goals by 2030 and net zero emissions by 2040. ; In delivering our products and services, we recognise our environmental impact in areas such as carbon emissions, energy and water usage. To address these challenges, we’ve implemented strategies to consolidate our office spaces and promote sustainable travel. We've made significant strides in reducing emissions throughout our value chain which resulted in a 17% decrease in Scope 1 emissions in FY23. Within our organisation we are actively promoting educational initiatives around net zero carbon events and improve recycling of electronic goods. ; For more information, please see: ; https://www.relx.com/corporate-responsibility/being-a-responsible-business/environment; https://stories.relx.com/relx-environmental-challenge/index.html; https://www.relx.com/~/media/Files/R/RELX-Group/documents/reports/annual-reports/2023-ar-sections/relx-2023-corporate-responsibility.pdf

  Covid-19 recovery

  LexisNexis Risk Solutions (LNRS) business continuity programme includes plans to ensure readiness through disruptions including pandemics. During the Covid-19 pandemic 97% of LNRS staff worked remotely with no appreciable impact on the delivery of products and services. As a global organisation with different locations around the world, many of the employees in our workforce routinely work remotely either full-time or part-time. We ensure that our remote colleagues remain integrated and connected, avoiding silos in our communication and collaboration efforts.

  Tackling economic inequality

  At LexisNexis Risk Solutions, we recognise the importance of tackling economic inequality and our impact on the communities we serve. Our products and services align with SDG 16 (Peace, Justice and Strong Institutions) and SDG 10 (Reduced Inequalities), among others. Our solutions facilitate access to essential government benefits for citizens, combat fraud across various sectors and government levels, and aid law enforcement in ensuring community safety. ; ; We take pride in our people, and in cultivating an inclusive workplace with diversity that reflects our customers and communities. We are a UK living wage accredited employer, and we ensure all employees receive fair wages. We are committed to equal pay and have policies in place to pay employees fairly for the role they do, irrespective of their gender, race, or any other protected characteristic as governed by law. ; ; Our corporate social responsibility report highlights our commitment to implementing strategies and initiatives aimed at creating fair opportunities and promoting financial empowerment for all employees. We also recognise the importance of facilitating the growth of future talent and offer internships in partnership with Brunel University and a sales apprenticeship programme aimed at nurturing diverse talent from ethnically diverse and lower socioeconomic backgrounds. ; ; For more information, please see:; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/additional-resources/2023/2022-23-B4SI-assurance-statement.pdf; ; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/additional-resources/2023/2023-24-cr-objectives.pdf

  Equal opportunity

  At LexisNexis Risk Solutions (LNRS), we are passionate about making a positive impact on society and customers. We understand that people value a sense of real purpose at work: knowing that their actions are contributing toward something positive for themselves, their colleagues, their customers, the environment, and society. Our group strives to be a great place to work, where people feel valued and have equal access to opportunities and pay balance, regardless of gender or gender identity, national origin, race, ethnicity, religion, sexual orientation, age and/or disability status. We do not tolerate discrimination, prejudice or hate on any level, and consistently evaluate our processes and procedures to ensure that we perpetuate a mosaic culture. Inclusion and diversity are important to our future. We value diverse perspectives and recognise the importance of collaboration to achieve real innovation for our customers around the world, and to be more resilient, adaptable and successful. Inclusion and diversity are important to our future. As an equal opportunity employer, we are committed to freedom of association and treating all employees and applicants with respect and dignity.; Please see:; https://www.relx.com/corporate-responsibility/being-a-responsible-business/people; https://www.relx.com/~/media/Files/R/RELX-Group/documents/responsibility/policies/relx-inclusion-diversity-2022.pdf

  Wellbeing

  At LexisNexis Risk Solutions (LNRS), we prioritise wellbeing by taking a holistic approach to mental health and overall wellness. We provide various resources and tools to support our colleagues, including an employee assistance programme, mindfulness training and resources, and access to wellbeing toolkits and programmes. Our Thrive Wellbeing programme has been running since 2017 and supports employees in various aspects of their lives. Our programme encompasses topics associated with physical health, mental health, finances and community. We have expanded the scope of the programme and now address more sensitive subjects such as baby loss, suicide prevention, menopause awareness with the aim of reducing associated stigma.; Creating a culture that values mental health requires efforts at all levels of the organisation. We train our leaders to be aware of mental health issues so they can identify signs of poor mental health among their teams and have open conversations.; We believe that work-life balance is essential for overall wellbeing. Our goal is to create a meaningful workplace where individuals can pursue their career goals while maintaining harmony in their personal lives. Through purposeful conversations between leaders and employees about challenges both at work and in personal life (circumstances impacting work performance); we strive to strike this balance effectively. ; We have over 130 Employee Resource Groups (ERGs) which encourage colleagues to collaborate, advocate and engage communities, furthering wellbeing through building relationships and driving a sense of purpose. We also provide an opportunity for employees to take two days paid time-off per year for ERG-sponsored activities.

Pricing

• Price: £4,870 a licence
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at uk-irl-enquiry@lexisnexis.com. Tell them what format you need. It will help if you say what assistive technology you use.