eviFile enables you to capture digital field data that you can trust. Our focus is on Infrastructure projects that deliver possessions, blockade management and real time reporting. Tracking completions, actual work and progressively assuring quality. eviFile delivers real time reports in Power BI including commissioning and digital process management.


  • Real time data from your devices into instant PowerBI reports
  • Geo-Tag your Tasks/jobs and provide GPS location information
  • Digital photographic evidence across all of your jobs and reports
  • Highly secure cloud storage to protect all your Project data
  • evitrack - real time location tracking of your field operatives
  • Advanced custom workflow component to digitise any project or task
  • Fully customisable tool through eviFile's web based control panel
  • Interactive reports and dashboard in Power BI customised to you
  • Exportable PDF reports to provide the Golden Thread your project
  • Manage and control your project workflows for maximum reuse


  • Your eviFiles are proof for suppliers and court
  • Location information for avoidance of doubt
  • View your tasks and projects providing localised context
  • Reduced IT costs through a cloud based managed service
  • Accurate location based data for tracking and evidence
  • Business process alignment. Digitise your tasks for real time reporting
  • Control over how work is distributed, streamline, reduce costs
  • Single source of truth all from an integrated reporting solution
  • One location to see how your projects are performing, live
  • Total control to manage all data through the control panel


£10 to £100 a licence a month

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at luke.allen@evifile.com. Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 13

Service ID

2 3 8 8 2 2 8 0 4 0 9 4 3 4 5


Telephone: 07792423969
Email: luke.allen@evifile.com

Service scope

Software add-on or extension
Cloud deployment model
Hybrid cloud
Service constraints
System requirements
  • Concurrent licenses
  • Mobile App (android)
  • Web app via a browser

User support

Email or online ticketing support
Yes, at extra cost
Support response times
Monday to Friday 9.00am- 5.30pm within 4 hours
User can manage status and priority of support tickets
Online ticketing support accessibility
None or don’t know
Phone support
Phone support availability
9 to 5 (UK time), 7 days a week
Web chat support
Yes, at an extra cost
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Web chat accessibility testing
Onsite support
Yes, at extra cost
Support levels
EviFile will provide assistance during the implementation of eviFile. Support services include:
End-User Training
Support User training
User documentation
Support available to third parties

Onboarding and offboarding

Getting started
Evifile will provide assistance during the implementation of eviFile. Support services include:
End user training
support user training
User Documentation
Service documentation
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Users have the ability to to export their data into PDF and CSV formats
End-of-contract process
EviFile offer an off-boarding service. The data in the eviFile environment belongs to the customer. Customers' data is extracted from the eviFile Data warehouse and is securely available for the customer. This removes the layers of encryption and renders the data no longer court-admissible.

An alternative to off-boarding, at the end of a project, is Archiving.

eviFile offer an archiving solution for clients who may need reporting access to their data for a period of time after a project has finished. The data is migrated from the production environment into a lower maintenance environment in the same data centre, where a limited number of named users have reporting access via a browser based application to the data. Due to varying requirements and legal constraints the length of time that data needs to be held for varies. Typically, this is 7-11 years. eviFile will liaise with the client company to ascertain the length of time that reporting access to archive data will be needed. The costs for archiving can be provided if required.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Application to install
Compatible operating systems
  • Android
  • IOS
Designed for use on mobile devices
Differences between the mobile and desktop service
Mobile app is used to create, locate and update an eviFile. Web app is used by managers to review, share, allocate and approve a job/task. The web version also holds the Control Panel where each project, form and task can be setup and managed, for us on the mobile platform.
Service interface
User support accessibility
None or don’t know
Description of service interface
Accessibility testing
Accessibility standards
None or don’t know
Description of accessibility
Manual testing against: https:/www.w3.org/TR/WCAG20/requirements
Accessibility testing
Customisation available
Description of customisation
Because eviFile has been built using the latest scaleable technology we have the flexibility to customise the application and business process to accommodate exact needs, within the capability of the product and the future plans detailed in the road map.


Independence of resources
Evifile is SaaS platform that provides ability to create a dedicated system for each client (own Independence website, separate data storage). For special requests, the client system can be moved on separated protected servers.

The Client System supports vertical as well as horizontal scaling (adding hardware resources in response of high workload).


Service usage metrics
Metrics types
The system provides reports blocks that provides usage metrics for final users
Reporting types
Reports on request


Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
Physical access control, complying with SSAE-16 / ISAE 3402
Data sanitisation process
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
Administrators can export data
Data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
The System works in High-availability mode, SLA 99%, all refunds are specified in contracts
Approach to resilience
Hosting provider of eviFile provides >99.5% of SLA on their resources. eviFile works in High Availability mode and provides 99% for software availability.
Outage reporting
Email and sms alerts

Identity and authentication

User authentication needed
User authentication
Username or password
Access restrictions in management interfaces and support channels
On firewall level for particular IP addresses. Strict lock out account mechanisms to prevent any brute forces
Access restriction testing frequency
At least every 6 months
Management access authentication
Username or password

Audit information for users

Access to user activity audit information
Users receive audit information on a regular basis
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Cyber essentials
Cyber essentials plus
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance approach
EviFile's SDLC defines security governance on all stages of development and maintenance including regular web security analysis on the platform and regular infrastructure security review.
Information security policies and processes
NIST Publication. Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths
NIST Digital Signature Standard (DSS)
UK Government electronic signatures guide
Own evFile SDLC for development

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Supplier-defined controls
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Defined by internal policies that include regular vulnerabilities and patch scans, antivirus support, risk management
Risk for all potential threats are estimated according to OWASP Risk Rating Methodology https://www.owasp.org/index.php/OWASP_Risk_Rating_Methodology
Development of critical patches is based on estimated risks and can be started on the same day as found vulnerability
Own eviFile SDLC process defines collecting potential threats and define their mitigations on all stages of development (Define, Design, Develop, Test, Deploy, Maintain).
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Regular web security analysis based on OWASP Testing methodology and infrastructure security reviews allows to support security on high level
Dhound.io product (intrusion detection system) allows receiving quickly alerts about suspicious activities on servers
Incident management type
Incident management approach
Developed response plan defines response time on user concerns, assessing issues, responsible people. eviFile provides email and phone support for final users. Work with incidents is private between eviFile and users.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks

Social Value

Fighting climate change

Fighting climate change

eviFile are focussed on reducing emissions with their staff and to utilise power efficient cloud servers
Covid-19 recovery

Covid-19 recovery

Remote working/Hybrid working policy
Tackling economic inequality

Tackling economic inequality

eviFile take economic equality seriously and have policies in place to manage this effectively
Equal opportunity

Equal opportunity

eviFile is an equal opportunity employer


operate an approved cycle to work scheme


£10 to £100 a licence a month
Discount for educational organisations
Free trial available
Description of free trial
Details on request - we will take a project scope and offer a free pilot where applicable

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at luke.allen@evifile.com. Tell them what format you need. It will help if you say what assistive technology you use.