Sentinel Partners Limited

Data Integration Platform / Master Data Management Platform

We are a data and AI company which specialises in supporting public sector organisations to get insights and impact from data quickly. Our Platform delivers an integrated, cleansed data set on which artificial intelligence (AI) can be applied to support early intervention, prevention and future modelling scenarios.

Features

• Corporate data platform services, enterprise data platform services
• Corporate Data Standards, Linked Data, MDM, Single View of Data
• Data Matching, Data profiling, Data Analytics, business insights, BI
• Data Sharing, role based access control, data audit, data consultancy
• Data migration, Data Transformation, Data Analysis, Data Reconciliation, Data quality
• Data masking, Data obfuscation
• Single View of Person, Single View of Family, holistic view
• Data Governance, Information Governance, IG, Corporate Data Standards, Data Sharing
• Foundation for AI, Data Modelling, Predictive Data Models, PowerBI
• Data warehouse, Data Lakehouse, Microsoft Fabric, Microsoft Azure services

Benefits

• Supporting Families Phase 3, Family Early Help, front door
• Population health management, multi-agency case collaboration, prevention
• Vulnerable citizens, fraud prevention, homelessness support
• Preventing unpaid carer breakdown, hospital discharge management, IOT Data Integration
• Integrated Care Boards, ICB, Integrated Care Systems, ICS
• MAST, Safeguarding, MASH, MET and Gangs Portal
• Data Audit, Data Strategy, Azure Migration, Cloud Migration
• ND, Neurodiversity Profiling, Community Care Coordination
• Family Hub, Pathfinder
• SAFE Taskforce, Vulnerable Pupil Tracker

£3,000 to £12,000 an instance a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at graham.mccusker@sentinelpartners.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

295068434874027

Contact

Graham McCusker
0800 612 2116
graham.mccusker@sentinelpartners.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Hybrid cloud
• Service constraints: None
• System requirements: If client hosted, security such as Microsoft Defender shouldbe enabled

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: During office hours (8:00-5:00 Monday to Friday), we will respond to support requests within the hour to confirm receipt and to provide answers where they are immediately known.; More complex answers, and support requests that need further information from the client, will require further responses before the call can be closed.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We have moved to a single level of support, in line with our SaaS model. ; ; This level of service is included in the SaaS monthly costs, so there are no further support costs incurred unless the client had additional support requirements in which case we would need to provide a quote once the requirements where confirmed.; ; Yes, we provide a technical account manager as well an overall client account manager.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: The onboarding process involves a short implementation project to configure the platform functionality to make the best use of client data. ; As part of these short projects, we work with client teams to train them and skill them up on how to use the Sentinel Data Platform. As part of this we also provide on-the-job experience of how to manage and maintain the Platform after it goes live.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Our clients have full access to their data at all times.; At the end of contract, the client can either make local copies of the data tables, or Sentinel's consultants can do this for them.
• End-of-contract process: As part of the standard contract, Sentinel will provide direct copies of data tables from the Sentinel Data Platform for the client.; If the client wants the data tables to be reformatted and transformed to fit different data standards and models, then this work would be chargeable.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Our web services are provided via responsive HTML5 pages. they will render themselves according to the size of screen available. ; All functionality is available regardless of screen size.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Our data platform has an inbuilt portal layer, which provides access to the configuration (admin) screens for the platform and also provides the mechanism for our consultants to create the many various Portal Applications that our clients need. Our Portal layer is provided via HTML5 technology, allowing our consultants to provide tailored access and look-&-feel to meet our client requirements.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: Many clients have conducted WCAG audits of our Portal Solutions, especially when they are being used to provide public facing solutions. ; Sentinel have also conduced such audits for our standard pre-build applications such as MASH, Supporting Families, Early Years Funding and SAFE Taskforce portals. ; All such audits are measured against WCAG AA standards.
• API: Yes
• What users can and can't do using the API: We have a highly flexible approach to APIs.; Our data platform is entirely configurable (i.e. Rules Based) to meet the fixed API requirements of all the systems and data sources that it needs to connect with. ; All data processing rules, including both inbound and outbound data feeds, can be configured to handle any data type and format requirements. This means that we (and our clients) can configure data feeds to meet the needs of rigid APIs from source or target systems to support data sharing with them.; For the common, national data feeds that many of our clients use (such as Addressbase), then we do provide a large number of pre-defined data feeds to meet these requirements. Even these standard rules can be locally configured to meet individual client needs.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: All functionality available as part of the Sentinel Data Platform is rules based and so it is configurable (customisable). This includes all aspects of data processing from the data feeds, the data pipeline and profiling. This also includes any Portal screens that are created for the client. ; ; The client has access to the same configuration screens as Sentinel consultants do. Sentinel will train client team members during the implementation project, so that they understand how their platform was setup and how to make changes to it.; ; There is a Platform Admin role that provides access to the configuration screens. The role can be assigned to which-ever users the client chooses. Therefore, the question about who can customise the Platform, is for the client to decide.

Scaling

• Independence of resources: Client environments and hosting resources are not shared. ; Each client platform is held on a cloud environment (tenant) that is specific and unique to them. This could be on the clients own environment, or one that Sentinel can provide and manage. Each environment is sized to meet the requirements and user volumes that the client has to avoid any performance or user experience issues.

Analytics

• Service usage metrics: Yes
• Metrics types: These can be configured and provided to clients if required.; There would be a one-off cost to configure the monitors and dashboards/reports as needed.
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The Sentinel Data Platform is designed to offer data integration and data sharing services. As part of data sharing functionality, it provides the ability to export data in many different ways as described below:; - Any number of outbound data feeds, configured to any specific format and content requirements; - User downloads via the Portal layer, in formats such as XLS, CSV and PDF; - Access via any third party reporting tools (such as Power BI) to create reports and dashboards that can be saved as local data; - Direct data access for copying or running scripts to extract content
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • JSON
  • XLS
  • XML, IDOCS and any other structured file formats
  • Any separated files such as Tab / Newline
  • Text
  • Web Services / APIs
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • XLS
  • JSON
  • XML, IDOCS and any other structured file formats
  • Parquet
  • AVRO
  • Any separated files such as Tab / Newline
  • Text
  • Web Services / APIs
  • Direct extract from any Database type
  • PDF, Images, unstructured data

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Our availability is only limited by the availability of the cloud environment it is hosted on.; Our Data Platform can be deployed on client environments such as a client's Azure or AWS cloud, or it can be provided as a pure SaaS service via a Sentinel managed dedicated Azure tenancy. ; If on Azure, the typical availability is 99.95% although this can be increased if the client requires High Availability Clusters. ; Other cloud provided offer differing availability SLAs based on different levels of service procured.
• Approach to resilience: We apply Azure recommendations and best practice principles when creating new resources to support client solutions to ensure resilience is designed in. We regularly review changes and new options to the Azure resources so that we can continue to take the best advantage of the resilience measures available.; We have a pre-defined Azure Build process and document, which we review and update annually (or more frequently if triggered by new Azure services). We apply automated creation and deployment processes where possible to ensure that all environments are setup in a consistent manner. All new Azure environments are subject to audit as part of the Sentinel implementation project.; Our key principles ensure that each component resource is subject to back-up and roll back options in all cases. ; Clients with specific requirements, such as high availability for real-time safeguarding solutions, can choose to have their solution mirrored across two different UK-based data centres to ensure availability.; Sentinel are ISO 22301 (Business Continuity) certified and have robust / tested disaster recovery processes in place.
• Outage reporting: We provide two types of service in this area as standard:; We use up-time website monitoring (via an external monitoring provider) to constantly monitor availability and performance (response times) of our clients applications. Any anomalies are identified immediately by our support team who will investigate and report directly back to the client.; We also use the Azure Monitor services as part of all our client deployments. This service monitors the availability and performance of each resource within the tenant. Again, any anomalies are reported to our support team who will investigate and report directly back to the client.

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Access is based on a least-privilege basis. Access is role-based and subject to detailed security access matrix. This is true for Sentinel and client end-user access. ; Access can be subject to duration (start-end date) restrictions if required.; Access is reviewed and managed via two different approaches.; Firstly for projects - access is agreed at the outset and built into the project plan. Project management will review weekly, and grant/revoke access based on project progress and activities.; Secondly, there is a monthly management review of access across all BAU client and internal systems to ensure least privilege access principles are upheld.
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: ISO QSL Limited
• ISO/IEC 27001 accreditation date: 16/04/2025
• What the ISO/IEC 27001 doesn’t cover: Our internally used systems such as Accounting and HR systems are not included in our certification, as these are procured on a SaaS basis and responsibility for certification of these systems rest with the providers.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: Cyber Essentials Plus
• Information security policies and processes: We are ISO 27001 and Cyber Essentials Plus certified.; As a part of these compliance levels, we have all required security policies and processes in place. We also have an IG handbook for all Sentinel staff which summarises all key points across the polices, and provides direct links to the full policy docs.; All policies and processes are reviewed annually as part of the required external audit of our compliance standards.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: We follow ITIL4 Change Enablement supported with the iTop tracking tool, to manage three different types of Change:; Standard: Pre-authorized, low-risk Changes, following a well-known procedure.; Emergency: Changes that must be implemented immediately (eg Incident resolution).; Normal: All other Changes.; ; Normal: are categorized as Major, Significant or Minor, depending on the level of risk involved. Major Changes require a full review by the Change Advisory Board; Significant Changes may be approved by Change Management.; Emergency: assessed and approved by ECAB (Emergency Change Advisory Board), a core group of CAB members that is available on short notice to respond to emergencies.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: We asses potential threats through the Azure Defender Tool. It provides discovery of vulnerabilities in real-time as well as prioritising security recommendations, blocking affected applications and provided remediation tracking. Defender also keeps a track of all published threats and is reviewed daily. ; We follow a practice of continuous improvement whereby we keep implementing improvements to any possible threats and mitigate potential risk as much as possible. ; We have a monthly security meeting to ensure all processes are followed and the systems are all secure as expected. Updates are installed at minimum once a week. Sometimes on the day of release.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: We use a combination of Azure Defender and Azure Monitor to meet our client and internal system monitoring requirements.; The services available across these utilities provide near real-time alerts to threats and potential compromises.; Our response to a compromise alert is to shut down access to the system, contact the client and conduct and immediate review. The outcome of the immediate review will drive the next steps to our response, which would vary from being a false alarm and re-open, through to a confirmed breach which triggers a system rebuild.; Our response to such alerts is immediately on receipt.
• Incident management type: Supplier-defined controls
• Incident management approach: Sentinel's incident management approach is included as part of our ISO9001 Quality Management framework. ; We have a pre-defined processes, along with pre-defined document templates for incident reporting, investigation and client output report.; Incidents should be flagged to the immediate line manager for initial review and then reported to either the Sentinel Support Team or Project Team (if relating to a project). ; The incident can initially be reported via phone, but must be followed-up via email.; Sentinel's investigation is carried out immediately with the support of a senior manager, who will own the client communications and eventual findings report.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We endeavour to run our business via innovative and carbon-neutral methods. We use cloud technology for both our client and in-house system requirements. Our staff work partly remotely to reduce the impact of commuting and we encourage the use of public transport and car pooling. ; ; We have produced our Carbon Reduction plan and are actively seeking to reach Net Zero long before the 2050 national requirements: ; ; https://www.sentinelpartners.co.uk/documents/normal/Carbon%20Reduction%20Plan.pdf.pdf

  Covid-19 recovery

  As a business, during COVID we actively recruited those who had lost employment or who had seen their own businesses affected by the impact of lockdown. We recruited a number of staff from other industries and trained them to work in our business, giving them new skills. Some of these staff remain with the business whilst others have moved on to other opportunities with enhanced skills which they learnt whilst with us. ; ; Our technology enabled our Local Authority clients to engage with local stakeholders to help support their communities and lead recovery initiatives and projects. For example, during the COVID-19 Pandemic in Liverpool, our Data Integration Platform helped to identify shielding individuals and directed targeted home support of these individuals across Local Authority, NHS and Community schemes. ; ; Also in Liverpool, our technology enabled the accurate targeting of mobile vaccination clinics (for COVID and flu), working with local community teams to reach the most vulnerable people.

  Tackling economic inequality

  Much of our work is focused on supporting public sector organisations and partners to deliver programmes which support a positive start for all children and young people, recognising that some children and families experience disadvantage from birth. We have partnerships with third sector organisations to deliver social impact projects (e.g. around literacy) at a local level. We provide internship opportunities to young people and to other marginalised groups.

  Equal opportunity

  Despite being in a traditionally male dominated industry, we have recruited more women to our workforce than men over the last 2 years. Several of our staff work on a part-time basis to support them with managing their caring responsibilities and voluntary work in the community. ; ; We provide ongoing training programmes for staff. Various training options are available to everyone according to their role and career aspirations. We provide a number of internal training programmes designed for product knowledge and programming skills such as SQL. We also offer a number of external training opportunities, examples include ongoing Microsoft Azure training (at Foundation and Associate levels), ISO and ITIL Training for those involved in Service Management. ; ; We run apprenticeship schemes with local colleges and universities as well as paid student placements. We are proud that a number of our apprentices have developed into full time permanent roles, contributing greatly to our success, after being involved through our apprenticeship or paid placement schemes. We provide internship opportunities for people interested in careers in technology.

  Wellbeing

  Our technology is helping Local Authority teams to work closely with the NHS to provide more preventative care and intervention. We are running pilot projects with several Local Authorities in the North West to develop predictive profiling scenarios (using Machine Learning algorithms) in an attempt to provide preventative social care intervention to avoid crisis points or critical health issues

Pricing

• Price: £3,000 to £12,000 an instance a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: We can provide a free Proof of Concept (PoC) for new client requirements, to trial the capabilities of our Data Platform and business accelerator portal applications.; A PoC would last between 2-4 weeks, and include free support of a Sentinel Consultant to configure and demonstrate the platform.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at graham.mccusker@sentinelpartners.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.