eviFile
eviFile enables you to capture digital field data that you can trust. Our focus is on Infrastructure projects that deliver possessions, blockade management and real time reporting. Tracking completions, actual work and progressively assuring quality. eviFile delivers real time reports in Power BI including commissioning and digital process management.
Features
- Real time data from your devices into instant PowerBI reports
- Geo-Tag your Tasks/jobs and provide GPS location information
- Digital photographic evidence across all of your jobs and reports
- Highly secure cloud storage to protect all your Project data
- evitrack - real time location tracking of your field operatives
- Advanced custom workflow component to digitise any project or task
- Fully customisable tool through eviFile's web based control panel
- Interactive reports and dashboard in Power BI customised to you
- Exportable PDF reports to provide the Golden Thread your project
- Manage and control your project workflows for maximum reuse
Benefits
- Your eviFiles are proof for suppliers and court
- Location information for avoidance of doubt
- View your tasks and projects providing localised context
- Reduced IT costs through a cloud based managed service
- Accurate location based data for tracking and evidence
- Business process alignment. Digitise your tasks for real time reporting
- Control over how work is distributed, streamline, reduce costs
- Single source of truth all from an integrated reporting solution
- One location to see how your projects are performing, live
- Total control to manage all data through the control panel
Pricing
£10 to £100 a licence a month
- Education pricing available
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
2 3 8 8 2 2 8 0 4 0 9 4 3 4 5
Contact
EVIFILE LIMITED
LUKE ALLEN
Telephone: 07792423969
Email: luke.allen@evifile.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Hybrid cloud
- Service constraints
- N/a
- System requirements
-
- Concurrent licenses
- Mobile App (android)
- Web app via a browser
User support
- Email or online ticketing support
- Yes, at extra cost
- Support response times
- Monday to Friday 9.00am- 5.30pm within 4 hours
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), 7 days a week
- Web chat support
- Yes, at an extra cost
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- N/a
- Web chat accessibility testing
- N/a
- Onsite support
- Yes, at extra cost
- Support levels
-
EviFile will provide assistance during the implementation of eviFile. Support services include:
Configuration
End-User Training
Support User training
User documentation - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
-
Evifile will provide assistance during the implementation of eviFile. Support services include:
Configuration
End user training
support user training
User Documentation - Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
- Users have the ability to to export their data into PDF and CSV formats
- End-of-contract process
-
EviFile offer an off-boarding service. The data in the eviFile environment belongs to the customer. Customers' data is extracted from the eviFile Data warehouse and is securely available for the customer. This removes the layers of encryption and renders the data no longer court-admissible.
An alternative to off-boarding, at the end of a project, is Archiving.
eviFile offer an archiving solution for clients who may need reporting access to their data for a period of time after a project has finished. The data is migrated from the production environment into a lower maintenance environment in the same data centre, where a limited number of named users have reporting access via a browser based application to the data. Due to varying requirements and legal constraints the length of time that data needs to be held for varies. Typically, this is 7-11 years. eviFile will liaise with the client company to ascertain the length of time that reporting access to archive data will be needed. The costs for archiving can be provided if required.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Opera
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Mobile app is used to create, locate and update an eviFile. Web app is used by managers to review, share, allocate and approve a job/task. The web version also holds the Control Panel where each project, form and task can be setup and managed, for us on the mobile platform.
- Service interface
- Yes
- User support accessibility
- None or don’t know
- Description of service interface
- Accessibility testing
- Accessibility standards
- None or don’t know
- Description of accessibility
- Manual testing against: https:/www.w3.org/TR/WCAG20/requirements
- Accessibility testing
- N/a
- API
- No
- Customisation available
- Yes
- Description of customisation
- Because eviFile has been built using the latest scaleable technology we have the flexibility to customise the application and business process to accommodate exact needs, within the capability of the product and the future plans detailed in the road map.
Scaling
- Independence of resources
-
Evifile is SaaS platform that provides ability to create a dedicated system for each client (own Independence website, separate data storage). For special requests, the client system can be moved on separated protected servers.
The Client System supports vertical as well as horizontal scaling (adding hardware resources in response of high workload).
Analytics
- Service usage metrics
- Yes
- Metrics types
- The system provides reports blocks that provides usage metrics for final users
- Reporting types
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
- Protecting data at rest
- Physical access control, complying with SSAE-16 / ISAE 3402
- Data sanitisation process
- Yes
- Data sanitisation type
- Explicit overwriting of storage before reallocation
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- Administrators can export data
- Data export formats
- CSV
- Data import formats
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- The System works in High-availability mode, SLA 99%, all refunds are specified in contracts
- Approach to resilience
- Hosting provider of eviFile provides >99.5% of SLA on their resources. eviFile works in High Availability mode and provides 99% for software availability.
- Outage reporting
- Email and sms alerts
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Username or password
- Access restrictions in management interfaces and support channels
- On firewall level for particular IP addresses. Strict lock out account mechanisms to prevent any brute forces
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
- Username or password
Audit information for users
- Access to user activity audit information
- Users receive audit information on a regular basis
- How long user audit data is stored for
- At least 12 months
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- No
- Security governance approach
- EviFile's SDLC defines security governance on all stages of development and maintenance including regular web security analysis on the platform and regular infrastructure security review.
- Information security policies and processes
-
NIST Publication. Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths
NIST Digital Signature Standard (DSS)
UK Government electronic signatures guide
Own evFile SDLC for development
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- Supplier-defined controls
- Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
Defined by internal policies that include regular vulnerabilities and patch scans, antivirus support, risk management
Risk for all potential threats are estimated according to OWASP Risk Rating Methodology https://www.owasp.org/index.php/OWASP_Risk_Rating_Methodology
Development of critical patches is based on estimated risks and can be started on the same day as found vulnerability
Own eviFile SDLC process defines collecting potential threats and define their mitigations on all stages of development (Define, Design, Develop, Test, Deploy, Maintain). - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
Regular web security analysis based on OWASP Testing methodology and infrastructure security reviews allows to support security on high level
Dhound.io product (intrusion detection system) allows receiving quickly alerts about suspicious activities on servers - Incident management type
- Undisclosed
- Incident management approach
- Developed response plan defines response time on user concerns, assessing issues, responsible people. eviFile provides email and phone support for final users. Work with incidents is private between eviFile and users.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Fighting climate change
-
Fighting climate change
eviFile are focussed on reducing emissions with their staff and to utilise power efficient cloud servers - Covid-19 recovery
-
Covid-19 recovery
Remote working/Hybrid working policy - Tackling economic inequality
-
Tackling economic inequality
eviFile take economic equality seriously and have policies in place to manage this effectively - Equal opportunity
-
Equal opportunity
eviFile is an equal opportunity employer - Wellbeing
-
Wellbeing
operate an approved cycle to work scheme
Pricing
- Price
- £10 to £100 a licence a month
- Discount for educational organisations
- Yes
- Free trial available
- Yes
- Description of free trial
- Details on request - we will take a project scope and offer a free pilot where applicable