Made Purple Ltd

Purple Scribe: Secure, High-Accuracy Transcription and Summarisation for Audio and Video files

Purple Scribe is an ISO27001 certified transcription and summarisation solution that processes any audio or video file—including interviews, meetings, and recordings—with over 98% accuracy. It separates speakers, highlights uncertainties, integrates with existing systems , and outputs onto custom templates, saving thousands of man-hours for police, local-authorities, prisons and healthcare organisations.

Features

• High-accuracy transcription (over 98%)
• Supports various audio/video formats (DIR, MP4, ABE)
• Speaker separation and identification
• Integrates with exisiting systems via API
• Outputs onto your own custom template / CRM.
• Human-in-the-loop editing capability.
• Easy to use offline / online audio capture application
• Scalable processing of multiple files.
• User-friendly web portal interface.
• ISO27001 certified data security.

Benefits

• Save time and resources significantly
• Transcribe at 2.7x real-time speed
• Automate transcription onto templates
• Receive reliable, trustworthy transcripts
• Easily review and correct uncertainties
• Understand dialogues with speaker IDs
• Seamless integration with existing systems
• Efficiently handle large workloads
• Ensure data protection compliance
• Simplify edits with transparent workflow

£0.06 to £0.14 a unit a minute

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at George@madepurple.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

486583493141253

Contact

George Kyriacou
01842558121
George@madepurple.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: The Purple Scribe dashboard will not support internet explorer browsers and Chrome or FireFox will need to be used.
• System requirements: None

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Normally within 1 hour of emails received between the hours of 8am and 8pm Telephone support available for P1 incidents 24 hours a day
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Standard support plans are email and telephone support during business hours only there are no guaranteed response times offered however we will do our best to support you as quickly as possible.; ; Additional levels of support can be made available on a priority level basis.; Bronze, 5% of monthly spend (or £250 minimum); P1: 3 business hours; P2: 6 business hours; P3: 9 business hours; ; Silver, 8% of monthly spend (or £1500 minimum); ; P1: 2 business hours; P2: 3 business hours; P3: 5 business hours; ; Gold, 10% of monthly spend or (£5000 minimum); P1: 1 business hour; P2: 2 business hours; P3: 3 business hours
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Our user documentation will enable your developers to connect via the Purple Scribe API within a matter of minutes to start programatically sending your audio files across to be scanned.; ; Online prompts assist you within the Purple Scribe dashboard to help you to apply keywords or phrases and help you to access the parts of your audio that are of interest.
• Service documentation: Yes
• Documentation formats: Other
• Other documentation formats:
  • API documentation
  • Online help snippets
• End-of-contract data extraction: Users who have the correct permissions can extract data from the management portal. The data files that are exported will be encrypted using PGP.
• End-of-contract process: Made Purple will destroy all information from the sites environment and it will be permanently removed. Users will have access to all data that they are the controllers of for 93 days beyond the contract end date. There are no end of contract or data extraction charges.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: You have access to a cloud-based interface to set up the system the way that works best for you.
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: Tests have been successfully carried out with ; ; NVDA 2016 screen reader Mozilla Firefox (latest versions); VoiceOver 7.0 screen reader Safari on iOS 10 and OS X
• API: Yes
• What users can and can't do using the API: Audio can be sent to the Purple Scribe system via an api for processing, Keywords or phrases must be pre loaded into the Purple Scribe dashboard. Summaries and additional information can be passed back through via the API or can be accessed via the Purple Scribe console.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: You can customise the keywords /phrases that the system searches for within the scan my audio dashboard.; ; You can also customise the number of files scanned capping it at a limit of files or minutes.; ; Customers can customise the summarisations to suit their specific session types

Scaling

• Independence of resources: Our services are designed to be highly available and will auto-scale based on demands and traffic patterns. The service has been thoroughly stress tested . All services are load balanced and have health checks for target groups. We utilise multiple data centres in the London Region to load traffic and to make sure there is no single point of failure in our system.

Analytics

• Service usage metrics: Yes
• Metrics types: Number of audio minutes processed; number of keywords / phrases identified; number of files processed; percentage of keywords flagged per file; keyword / phrase identified on an account bases (across all files)
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data can be exported directly from the web portal or via the API.
• Data export formats: Other
• Other data export formats:
  • .txt
  • PDF
• Data import formats: Other
• Other data import formats:
  • Pdf
  • Txt
  • Csv

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: System availability can be guaranteed provided a set criteria are met, Upon detection of a system outage, we immediately move to rectify the issue and aim to resolve it within 72 hours.
• Approach to resilience: Available on request
• Outage reporting: There are multiple ways you can receive alerts: ; ; 1. Email alerts ; 2. Slack or Teams integration ; 3. Using our API with webhooks

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Management interfaces are restricted either to Made Purple Ltd staff and approved sub-contractors or, if required for the function of the service, limited to authorised users of the service.
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Peers Quality Assurance (UKAS)
• ISO/IEC 27001 accreditation date: 14/07/2023
• What the ISO/IEC 27001 doesn’t cover: The full scope of this product is covered by the certification
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: Cyber Essentials Plus

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: The data we store in AWS databases (London only) and storage is encrypted at rest with TDE (transparent data encryption) and while in transit using TLS. Policies are enforced by restricting access to virtual machines, databases and any administrative portals. User accounts can be revoked once a person leaves or is no longer associated with the project. All databases are protected by firewall with IP whitelisting rules.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We use the Software Assurance Maturity Model (SAMM) to manage configuration and change within our services, utilising Infrastructure as code (IaC) so that configuration and change can be identified, controlled and automated. We use Rolling updates and A/B testing to ensure changes are fit for purpose. Automated tests are built into our CI/CD pipeline to test the functionality, security and resilience of our system which includes fuzz testing, vulnerability scans and static code analysis. We use a comprehensive SIEM solution which provides monitoring, detection, and alerting of security events, anomalies, infrastructure changes and incidents.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We use a comprehensive SIEM solution which provides monitoring, detection, and alerting of security events, anomalies, software vulnerabilities, file integrity monitoring as well as cloud configuration issues. All logs are fed in to our SIEM solution so we have real time tracking of security incidents. All machines contain an agent to track software versions which are checked against CVE's as published by NVD and other sources such as OS security feeds. Upon detection of a vulnerability, we immediately move to patch the issue and aim to resolve any vulnerability within 48 hours.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We use a comprehensive SIEM solution which provides monitoring, detection, and alerting of security events, anomalies, infrastructure changes and incidents. All logs are fed into this system. We also employ sophisticated industry standard software provided by AWS to monitor our systems for potential compromises, and proactively monitor logs relating to other services not covered by automated threat detection. Upon detection of a potential compromise, we immediately move to patch the or respond to the issue and aim to remove or patch any compromised system within 48 hours.
• Incident management type: Supplier-defined controls
• Incident management approach: We have pre-defined processes in place for common incidents such as compromised user accounts or the detection of suspicious activity. These processes are commensurate with the severity of the incident.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Our G-Cloud service is committed to fighting climate change by implementing energy-efficient technologies and sustainable practices across all operations. We utilise green data centres that reduce carbon footprints through renewable energy sources and advanced cooling technologies, minimising environmental impact. Our digital solutions are designed to optimise resource use, promoting energy savings and reducing waste for our clients. This approach not only supports the UK’s climate goals but also encourages the adoption of sustainable practices in the public sector.

  Covid-19 recovery

  To support the UK's recovery from Covid-19, we have introduced several policies that offer our team members flexible and favourable working arrangements. These policies allow employees to take necessary time off to care for loved ones who may be shielding. We encourage our team to utilise our in-house developed mindfulness applications to support their mental well-being. Additionally, we have implemented remote working policies to accommodate team members who are unable to return fully to the workplace. These measures ensure that our staff can maintain work-life balance while continuing to contribute effectively during these challenging times.

  Tackling economic inequality

  Made Purple is dedicated to tackling economic inequality through our strategic approach to digital solutions within the public sector. By providing accessible, scalable technologies, we empower economically disadvantaged areas, enhancing digital inclusivity and fostering equal opportunities for growth. Our initiatives focus on equipping these regions with the tools needed to thrive in a digital economy, thereby reducing disparities and promoting sustainable economic development. Through our framework offering, we are committed to creating a more equitable landscape where technology serves as a bridge, not a barrier, for communities across the UK.

  Equal opportunity

  As an equal opportunities employer Made Purple’s employment policy states: Your gender, your skin colour, your gods, your sexlife, or your best friend’s great-grandmother make absolutely no difference here. If you’re smart, have a positive attitude with a willingness to learn as well as a true desire to serve our system users to the very best of your ability every single day, well, come as you are.

  Wellbeing

  Made Purple is committed to enhancing wellbeing through our holistic approach to digital service provision. We prioritise the mental and physical health of both our clients and their service users by integrating wellbeing-focused features into our technology solutions. Our platforms are designed to be user-friendly and stress-reducing, featuring intuitive interfaces and support systems that support confidence and digital literacy. By facilitating smoother, more efficient workflows, we help reduce the everyday stress associated with technology use in secure environments. Our commitment extends beyond functionality, aiming to improve overall quality of life and foster a positive and productive atmosphere within public sector organisations.

Pricing

• Price: £0.06 to £0.14 a unit a minute
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: You can try the Purple Scribe system for free by uploading a maximum of 5 audio files within the free tier on the web portal. No API access will be granted to users on the free tier and all files must be no longer than 10 minutes.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at George@madepurple.com. Tell them what format you need. It will help if you say what assistive technology you use.