Medialogix Ltd

Flex Companion (Mobile app for Policing)

Allows police officers to securely upload images, videos and audio recordings from their iOS and Android devices into the FotoWare Digital Evidence Management System (DEMS). Integrates with Niche RMS, NICE Investigate, NEC Socrates and many other systems. Suitable for police and law enforcement agencies within the UK and Ireland.

Features

• SSO with SAML2, OneLogin Active Directory, Azure AD etc.
• Faceted Taxonomies - Multiple Department Templates
• Supports Multiple upload jobs
• Android and iOS compatible
• APIs for seamless integration with Niche, Socrates and other systems
• Integrates with FotoWare
• Automatically deletes files from device after successful upload
• Full audit trail and reporting
• Central Admin/Management Console

Benefits

• Increase efficiency and reduce risk by properly managing your assets
• Audit Trail and Evidential Master - full chain of custody
• Flexible Security and Role-based Access - integrated with AD
• No need for officers to email files
• Manage image, video and audio files from mobile device
• Quick and Easy Uploading - connect to 3rd party systems
• Simple process for recovering files captured on mobile devices
• Sharing and Collaboration - share files internally and externally.
• Flexible Retention Policies - MoPI compliant.

£7,597.67 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@medialogix.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

333281528467618

Contact

Faisal Mahmood
01216630309
sales@medialogix.co.uk

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: FotoWare; + other Digital Asset Management and DEMS solutions
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: No
• System requirements:
  • Windows Server 2016 or higher - 64 bit versions
  • Internet Information Services 7.5 or 8.0
  • Microsoft .NET Framework 4.8 minimum

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our normal SLA response times from us when a call is raised are: ; ; Software inoperable fault – Initial response time -4 hours – fix time 4 hours ; Serious degradation fault – Initial response time – 4 hours – fix time 4 hours ; Minor degradation fault - Initial response time – 4 hours – fix time 16 hours ; Cosmetic issue fault - Initial response time – 4 hours – fix time 32 hours ; ; Site visit day response time – 3 working days ; ; Bespoke SLAs and informal arrangements are available subject to negotiation.; ; Standard Support UK business hours/days. 24/7 support options available.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Our normal SLA response times from us when a call is raised are: ; ; Software inoperable fault – Initial response time -2 hours – fix time 4 hours ; Serious degradation fault – Initial response time – 2 hours – fix time 4 hours ; Minor degradation fault - Initial response time – 2 hours – fix time 16 hours ; Cosmetic issue fault - Initial response time – 2 hours – fix time 32 hours ; ; Site visit day response time – 3 working days ; ; Bespoke SLAs and informal arrangements are available subject to negotiation.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide onsite training and user documentation. Training can be generic product training or specific training relevant to the system deployed.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Data is always available in the standard file system which can be extracted at anytime by anyone with minimal IT knowledge. Extracting data from SQL Server and MongoDB would be done by the end-user's Database Administration (DBA)
• End-of-contract process: Subscription licence software will be disabled at the end of the contract. You will have the opportunity to download all the data prior to end of the contract.

Using the service

• Web browser interface: No
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Simpler interfaces for mobile devices and functions implemented differently if using mobile devices or tablets. ; Mobile apps for Android and iOS devices which are simple, robust and configurable. These apps are used to capture and upload files and developed with law enforcement and healthcare organisations in mind.
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: Metadata templates for each department can be customised using the central management web interface. Templates can be assigned to groups of users and customise the types of files which can be uploaded.

Scaling

• Independence of resources: Each client instance is independent and assigned dedicated resources

Analytics

• Service usage metrics: Yes
• Metrics types: The number of active users, the amount of files in the database, number of files in processing queues, the filename of the currently processed file at all viewable in real time. ; ; Microsoft Azure cloud also has it's own metrics so you can monitor what effect our service has on your infrastructure.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: FotoWare and Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: There are a number of options. The first one is the simplest as the FotoWare DAM uses industry standard Adobe XMP metadata format which is readily readable by any XMP compatible DAM software. Alternatively, you can export metadata in SQL format or CSV if your new DAM solution is database driven.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Original media files (doc, ppt, jpg etc)
  • Adobe XMP
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: This depends on what Microsoft Azure cloud service you will be running your FotoWare software on. As a general rule for a single instance of virtual machine you can expect 95% availability minimum. ; More information can be found at https://azure.microsoft.com/en-gb/support/legal/sla/
• Approach to resilience: Local and Geo redundancy options are available from Microsoft on the Azure Cloud service
• Outage reporting: This is provided by Microsoft Azure Cloud services and is accessed from the portal dashboard and email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: This is done using access control features for groups and individuals.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • CSA CCM version 3.0
  • ISO/IEC 27001
• Information security policies and processes: This is determined by FotoWare and Microsoft

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Determined by end user or client.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: This is performed by FotoWare and Microsoft and as a reseller we not involved in the vulnerability management process.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: This is managed by FotoWare and Microsoft.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: This is managed by FotoWare and Microsoft.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: Yes
• Connected networks:
  • Public Services Network (PSN)
  • Police National Network (PNN)

Social Value

• Social Value:

  Social Value

  Covid-19 recovery

  Covid-19 recovery

  Our service was used during Covid lockdowns to minimise patient contacts in NHS hospitals. You can read more about it here: ; https://uktechnews.co.uk/2020/10/22/medialogix-helps-royal-preston-hospital-to-fight-covid-19-restrictions-with-digital-asset-management-software/; ; We helped many other organisations without waiting for purchase orders and lengthy procurement processes and will do that in future too if necessary to help organisations during similar scenarios.

Pricing

• Price: £7,597.67 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: We offer a 14 day trial free of charge. For a full 2 month proof of concept we will charge 2 days of engineer time but no charge for licence costs.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@medialogix.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.