Democracy Counts Limited

Evalu8 Valuation Software

eValu8 provides support for the valuation, notification and billing of non-domestic subject and Council tax management

Features

• Property and Street Management with CAG integration
• Valuation of subjects
• Management of Surveys
• Management of Proposals and Appeals
• Production of finance information and extracts
• Support for subject information collection online
• Integrated communications
• Civil penalties and collections
• Billing

Benefits

• SaaS so no support needed from internal ICT
• Modern web based platform with high accessibilty
• Fast performance
• Flexible workflows

£125,000 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@democracycounts.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

460074010869578

Contact

Sales Team
01925 320888
sales@democracycounts.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: It can link to the Electoral Management System for the purposes of data matching and to the CAG for purposes of Address and Property Management and to the citizen app for the purposes of making the solution a self service platform.
• Cloud deployment model:
  • Private cloud
  • Hybrid cloud
• Service constraints: We plan maintenance between 23:00 - 04:00 periodically. Notice will be given to clients and their operations matters will taken into account.
• System requirements:
  • Modern web browser based sytem
  • Azure AD integration if required

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We aim to respond to all tickets within 1 hour
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We make best endeavours to answer and close all calls at the initial point of contact. We provide the same level of service to all customers with all calls routed through our product support specialists with technical support queries transferred to our dedicated technical team. We do provide direct access to support technicians who are trained in the business processes used by our clients as we as the cloud technologies. We hold client services reviews to ensure an Account Plan exists and is documented.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: This application expects to start with an existing dataset that is normally held in an existing legacy system. We provide an interface and consultancy to support the user in the transfer of their information. Once transferred we support the user with a UAT phase which would include training for the UAT team. A minimum of 160 hours UAT should be expected. ; ; Training, webinars and full documentation is provided to support the user on their journey.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: We can provide 2 options. A full supply of a sanitised data schema in SQL with all the data held or 2 a range of flat files. Full documentation is provided.
• End-of-contract process: Provision of the data held and documentation is provided . Provision of a off boarding plan and attendance by one of our consultants is also included.; ; Migration and translation of data to any other formats or systems would be an additional cost.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The software has been written with a responsive design framework to operate on a mobile device.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The main experience is carried out via a web interface. The target audience is Local Governance users or collections users. The interface has a range of themes and features to support clarity and accessibility for visual and audible impaired users.
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: We work to a principle of accessibility by design. As such we have tested the application using desktop screen readers and magnifiers, talkback readers and screen layouts and contrast tools
• API: Yes
• What users can and can't do using the API: Users can use the API in order to make a range of services available to their website. Predominantly this is to consume data for the purposes of data matching or expose data to other services or IT platforms. For example the elector entity could be made available to a council citizen website in order to be a contributor or alternatively, our technology can be the launch platform and it can make the API calls or consume the data from other service. Any changes to the API will need to take place through us but this has a test solution and is fully documented with a Swagger interface.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The user is able tailor the business processes they follow and can design add/edit/delete the business logic (with suitable permissions) in order to deliver service in a way that is acceptable to the client. The client can customise reporting, branding, channels and timings within the application.

Scaling

• Independence of resources: The application is hosted on load balanced infrastructure that has active resource monitoring. The database has a connection to hyperscalling azure infrastructure, so can rapidly add resources to meet additional demand or clients.

Analytics

• Service usage metrics: Yes
• Metrics types: We provide a range of dashboards to allow the user to understand their usage and progress. We also user Azure application insights to measure activity of the site and resources.
• Reporting types:
  • API access
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can export data and reports from the interface in csv, xlxs and pdf. All data grids are exportable. Reports and extracts are also exportable.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Xlxs
  • Pdf
• Data import formats:
  • CSV
  • Other
• Other data import formats: Xlxs

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We provide a 99.9% uptime guarantee of the service during the supported service hours. Upgrades and patching is done in the window 23:00 - 04:00 and is scheduled in advance and by agreement.
• Approach to resilience: The service runs on multiple nodes that are load balanced. The service is protected from attacks in a number of ways which includes whitelisting of the IP addresses and MFA to prevent visibility and access. Active threat detection monitors the service and alerts are triggered to service management colleagues and the ISMS Manager. Regular internal and external scans check for known vulnerabilities
• Outage reporting: We provide a publish dashboard, email alerts and a helpdesk service.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Access is restricted to systems using lowest permissions' principle which then allows permission depending on job role and designation. Records are kept of permissions allowed and are regularly audited. ; ; All systems have an audit of the changes made and certain system e.g Firewalls would require dual authorisation before a change could be allowed. ; ; All system have 2FA system access.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: QMS
• ISO/IEC 27001 accreditation date: 19/11/2010
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO 27017

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We have a range of policies that exist as part of our ISO 27001, and ISO27018 accreditations which are supported by relevant process and procedure. We have a named board member as our ISMS and another as our DPO. Board reporting and board meetings have standing agenda items to consider actions arising. ; Our board meet daily for a "stand-up" and we have recorded and free flowing information.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: We have a change control system where change requests are recorded and then a change board that consider and approve or reject changes. For changes to be approved, the risk has to have been considered and a mitigation, rollback and communication plan considered. High level risks and contingency is also considered as part of our IS022301 acreditation.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: We record vulnerability management as part of our change control process, as this means that items have to be considered by our change board. This ensures documentation, rollback, risk and communication plan have been considered appropriately. Once the impact has been assessed, it is desirable where possible to test the potential change and impact via a dry run.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: We have active real time threat monitors in our infrastructure and daily and weekly internal and external scans. ; ; Threats are recorded in a monitoring system that alerts and escalates matters if unresolved. ; ; We have a priority scales that determines our response and action from 0.5 hours to "as agreed" depending on the nature and severity of the matter
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: We use a helpdesk facility to record our incidents that can be accessed by staff with suitable permissions. This system records, tracks and escalates issues based upon their nature. ; ; We have a reporting facility that is provided to clients monthly as a matter of course, and more regularly as defined by the nature and severity of the incident. Internally, operational teams deal with incidents with active involvements and direction from designated Board members depending on severity. Contingency is descripted in our IS022301

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  At Democracy Counts we are accredited and manage all waste in accordance with ISO 14001. The waste carrier is arranged as part of our office lease. We put general waste in a BIFFA managed bin on site and they manage removal. We shred any documents with sensitive data and are working towards a paperless office environment.; ; Our Cloud hosting SaaS solution is now carbon neutral. We have achieved PAS 2060 accreditation, making it the first carbon neutral hosting company in the UK. All our hosting solutions are powered by hydro-electricity, a green power source that will prevent the emissions from happening in the first place. Our data centre is also 100% carbon neutral, playing our part in minimizing environmental impact and in working towards the objective of achieving net-zero by 2035.; ; We pledge to explore innovative solutions that reduce our carbon footprint and promote energy efficiency, contributing to a cleaner and greener environment for all residents as part of our contract with clients. We are dedicated to implementing strategies and initiatives aimed at reducing air pollution. This includes supporting the adoption of cleaner transportation options, promoting green technologies, and advocating for policies that improve air quality. This will create 50% reduction in car miles on projects. We have staff members based near our clients who can use the public transport for any projects or contract deliveries with clients.

  Covid-19 recovery

  Democracy Counts has been steadfast in its commitment to enhancing workplace conditions, especially in response to the challenges posed by the COVID-19 pandemic. From the onset of the pandemic, we swiftly transitioned to remote working, thereby promoting social distancing and ensuring the safety of our staff. ; ; Throughout this period of remote working, Democracy Counts has prioritized the well-being of its employees by offering free access to mental health services for those affected by the pandemic. We recognize the importance of supporting the physical and mental health of our team members during these challenging times.; ; Furthermore, we have extended our support to our clients in managing and recovering from the impacts of COVID-19. For instance, during the initial set of elections amid the pandemic, we provided comprehensive COVID-19 risk assessments and risk management plans to all our clients. Additionally, recognizing the need for innovative solutions, we introduced scanning bureau facilities to facilitate remote operations when organisations were unable to be physically present at the office due to COVID-19 restrictions.; ; By embracing remote working practices, prioritizing employee well-being, and providing valuable support to our clients, Democracy Counts has effectively contributed to the COVID-19 recovery efforts. We remain committed to promoting workplace conditions that support the ongoing recovery from the pandemic and to adapting to new ways of working that prioritize safety, efficiency, and resilience.

  Tackling economic inequality

  We are committed to enhancing the skills and capabilities of local residents from our client contracts through targeted and locally apprenticeship opportunities. Our goal is to empower individuals with the skills needed to access meaningful employment and contribute to the community's growth. Through funded courses, we have election and canvass courses on Educ8 and can train local residents to the level required for them to be capable of applying for our client’s election and canvasser duties.

  Equal opportunity

  As an employer, we actively promote equality, strive to reduce social inequality, and ensure that all individuals are provided with equal opportunities for advancement, free from discrimination or bias based on factors such as race, gender, gender identity, disability, sexual orientation, religion or belief, or age. Our employment practices adhere to the highest standards as outlined in our documented Quality Management System, subject to regular audits and scrutiny as part of our annual ISO 9001 certification process.; ; We are proud to affirm that all our employees are compensated above the national living wage, and none are engaged under zero-hour contracts. Our workforce is valued, motivated, and diverse, with access to comprehensive opportunities for training and skills development, contributing to the delivery of exceptional service quality.; ; Moreover, we offer a range of benefits to our staff, including:; ; Graduated holiday entitlement that increases with length of service.; Enrollment in our pension scheme after three months, with contributions from both the company and the employee.; Statutory Sick Pay (SSP) in accordance with Department of Work & Pensions guidelines.; Maternity and Paternity Leave.; Provision for Death in Service.; Private Healthcare.; Perkbox incentives and discounts.; Parental Leave.; ; To ensure continuous growth and development, our employees undergo regular six-month development reviews conducted by senior management. These reviews provide an opportunity for constructive feedback, recognition of exceptional performance, and identification of areas for further development. ; ; We are proud to have achieved Investors In People certification since 2020, reflecting our commitment to fostering a supportive and inclusive workplace environment. Through our management development programme, we actively encourage staff from diverse backgrounds, including minority groups, to aspire to managerial roles, enabling career progression and advancement within our organization.

  Wellbeing

  Our commitment to improving health and wellbeing within our contract workforce is paramount. To ensure the holistic wellness of our staff, we have implemented a comprehensive private medical healthcare package that encompasses various facets of physical and mental health support.; ; Firstly, all our employees have access to a robust private medical healthcare package, which includes 24/7 access to GP services. This ensures that our staff can receive timely medical attention and consultations, promoting preventive care and addressing health concerns promptly.; ; In addition to physical health support, we prioritize mental health services for our staff. Recognizing the importance of mental wellbeing, we have implemented initiatives to support our employees' mental health needs. This includes access to counseling services, mental health resources, and support networks.; ; In addition to our comprehensive private medical healthcare package, we prioritize the overall wellbeing of our staff by fostering a healthy balance between work and social life. Recognizing the importance of flexibility in accommodating various personal and professional commitments, we are committed to incorporating flexible work schedules for our employees.; ; We understand that maintaining a healthy work-life balance is essential for overall wellbeing, productivity, and job satisfaction. Therefore, we encourage our staff to work collaboratively with their managers to establish flexible work arrangements that suit their individual needs and preferences. ; ; By providing both physical and mental health support through our private medical healthcare package, we aim to create a supportive and inclusive work environment where our staff can thrive both professionally and personally. Our commitment to improving health and wellbeing extends beyond the workplace, demonstrating our dedication to the overall wellness of our workforce.

Pricing

• Price: £125,000 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: A trial of the system functions with anonymised data for a time limited period that is agreed with the prospective organization
• Link to free trial: https://rc.votingdevelopment.co.uk/Evalu8.RC/Login?ReturnUrl=%2FEvalu8.RC%2F

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@democracycounts.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.