DriverCare - DVLA Driving Licence & Vehicle Checking
Point Progress have been helping companies to transform tedious tasks (including driver safety and duty of care) for 20+ years. Our unique product selection can work together intelligently. Driver Care helps keep your employee drivers safe & legal with automated driver risk management, DVLA driving licence and vehicle checks.
Features
- Automatic DVLA Driving Licence Checks
- Automatic DVLA Vehicle, Tax and MOT Checks
- Automated regular rechecks at a frequency to suit you
- Driver risking, determining licence check frequency
- Vehicle insurance document management
- Customisable document requests, in line with company policy
- Online GDPR compliant driver consent
- Instant licence or vehicle check results
- Real time visibility of driver data
- Grey Fleet Management
Benefits
- Improve overall operational efficiency while saving time and money
- Meet Duty Of Care and Health & Safety obligations
- Instant Online Results
- Overall at a glance driver visibility
- Ability to link with mileage expense claims, safeguarding employees
- Driver e-consent valid for 3 years
- Access to our friendly and knowledgeable award winning support team
- User friendly for fast roll-out and adoption
Pricing
£4.00 a licence
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
3 6 0 4 9 5 3 5 4 8 6 9 4 5 1
Contact
Civica UK Limited
Louise Coope
Telephone: 01270611800
Email: louise.coope@civica.co.uk
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
-
MyExpenses - online staff expense management
MyTime - online staff time tracking - Cloud deployment model
- Private cloud
- Service constraints
- No
- System requirements
- Web browser
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
We respond within our SLA.
Our Helpdesk will repsond to queries via email or telephone within office hours of 9 am to 5.30 pm Monday to Friday.
Helpdesk tickets can be sent in at anytime. - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AAA
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
-
Finance and Administration support covering any questions relating to the system is included in the package.
End user support covering all aspects of the system is provided at an extra cost. - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
-
We provide a design record to list users and their vehicle registrations as well as requirements for driver risking.
We then load this information into DriverCare and send out e-consent emails to all users.
We find specific training is not required and do have a full wiki help site with screen shots and details of each area of the system.
Our Helpdesk team are also available to answer any questions. - Service documentation
- Yes
- Documentation formats
- HTML
- End-of-contract data extraction
- Reports will provide vehicle and Driver details.
- End-of-contract process
-
Once cancellation has been confirmed, our standard process is as follows:
At midnight, on the end of the notice period, the DriverCare site will be taken offline. Please note that after the cancellation, you will lose access to your DriverCare site, including any inclusive services and features.
14 days following the site being taken down, the site, all data contained in the DriverCate database will be deleted.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Opera
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Our browser site is mobile responsive, all features behave in the same way and the screen layout adjusts to fit the screen size.
- Service interface
- No
- User support accessibility
- WCAG 2.1 AA or EN 301 549
- API
- No
- Customisation available
- Yes
- Description of customisation
-
Labels on screen can be customised.
Numbers of checks carried out per day and who receives notifications can be customised.
Scaling
- Independence of resources
- We have additional disk space and memory available and are able to scale up either of these options within 1 working day if additional capacity is required. We also continually work to make sure our code is as efficient as it can be to streamline calls to the database.
Analytics
- Service usage metrics
- Yes
- Metrics types
- We provide details of the number of checks used per day, whether this is per vehicle or driver licence.
- Reporting types
-
- Real-time dashboards
- Regular reports
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- None
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
-
- United Kingdom
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Managed by a third party
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with SSAE-16 / ISAE 3402
- Encryption of all physical media
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- In-house destruction process
Data importing and exporting
- Data export approach
-
Using our reports and export to .csv or excel option.
Also using our DataXtract tool. - Data export formats
-
- CSV
- Other
- Other data export formats
-
- Excel
- Word
- Data import formats
-
- CSV
- Other
- Other data import formats
- .txt
Data-in-transit protection
- Data protection between buyer and supplier networks
-
- Private network or public sector network
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
-
Service Availability
Core hours are defined to mean 9.00am to 5.30pm.
The standard availability of MyExpenses is 24x7x365
Planned maintenance for upgrades or infrastructure changes are communicated in advance and are all performed outside of core hours.
Target - 99.6%
Achieved in past 12 months - 100% - Approach to resilience
- Resilience information available on request.
- Outage reporting
- https://status.pointprogress.com/ - public dashboard Text alerts to support staff Email alerts to administrators within each organisation
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Username or password
- Access restrictions in management interfaces and support channels
- Access levels assigned to user profiles, limiting which areas of the system users have access to. Our helpdesk system has a login screen, individuals can only view tickets relating to them.
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
-
- 2-factor authentication
- Dedicated link (for example VPN)
- Username or password
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- CQS (Certified Quality Systems) Limited
- ISO/IEC 27001 accreditation date
- 25/03/2020
- What the ISO/IEC 27001 doesn’t cover
- -
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
- Cyber Essentials
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
-
Our Managing Director is the lead on our data security and co ordinates requirements for all areas of the business. We follow the GDPR requirements and have policies in place for hardware and software security as well as considerations we need to make when starting new projects.
We use our i-Comply cloud system to track that all data processing requirements have been completed in line with our GDPR policy.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- Specification of new development and impact assessment on the whole system. Development meetings to review new releases during testing. Developer logging system for all aspects of the software, tickets and results stored for 7 years. In house software to test system vulnerabilities constantly.
- Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
- Annual penetration testing minimally consists of network-layer and application-layer penetration tests. Exploitable vulnerabilities noted during penetration testing are corrected and an adequate retest performed to demonstrate that identified exploit is addressed. Patches for vulnerabilities are deployed as soon as they have been developed and tested as small support releases so they do not wait on any other functionality.
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- Using log files and warnings from our anti virus software and firewall. Warnings are responded to as soon as they are flagged, the warning will be investigated and any updates will be implemented as soon as possible.
- Incident management type
- Supplier-defined controls
- Incident management approach
-
Call to helpdesk
Nature of change Ticket raised
Impact assessment Specification if required
Scheduling Development
Testing
Release with other items
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- Yes
- Connected networks
- NHS Network (N3)
Social Value
- Fighting climate change
-
Fighting climate change
We use our Carbon Reporting tool to make sure we are travelling in the most carbon economical way and are promoting an ethos of considering carbon output throughout our business. Details of our Carbon net zero promise can be provided on request. - Covid-19 recovery
-
Covid-19 recovery
We continued working throughout the pandemic and have made a full business recovery from Covid-19. - Tackling economic inequality
-
Tackling economic inequality
If requested we can provide details of our economic inequality policy. - Equal opportunity
-
Equal opportunity
Our Equal Opportunity policy can be provided if requested. - Wellbeing
-
Wellbeing
If requested we can provide details of the Employee wellbeing benefits we offer.
Pricing
- Price
- £4.00 a licence
- Discount for educational organisations
- Yes
- Free trial available
- No