ALLIED UNIVERSAL ELECTRONIC MONITORING LIMITED

Electronic Offender Monitoring Solution

The AUEM (or Tagging) system covers all aspects of Offender Monitoring, including RF House Arrest, Home Detention, GPS Tracking, Domestic Violence, Victim Protection, Mobile Apps, Non-Fitted, & Alcohol, Drugs. System provides Police, Authorities and Government Agencies a cost effective and robust solution to reduce re-offending across all offender types.

Features

• Secure, intuitive, web based monitoring platform
• Passive, Active, Hybrid GPS, GNSS tracking & Wifi tracking
• Exclusion, Inclusion Geo-fencing
• Real-time offender location
• Adaptable online Reporting tool
• Expert witness support
• 24/7 Support
• Alcohol / Drug Monitoring (Transdermal / Breath)
• Non Fitted Device Monitoring (Smart Watch / Smart Phone App)
• Monitoring & Fitting services

Benefits

• Supports reduction in re-offending
• Improves Police/Authority efficiency in terms of Reports and Data Analysis
• Supports Criminal investigations
• Improves safety when used in Victim Monitoring
• Improves safety when used in Victim Monitoring
• Improves Rehabilitation, Re-integration into society and general offender welfare

£50.00 to £400.00 a unit a month

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt.prevett@em.aus.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

687062910664568

Contact

Matt Prevett
07808781945
matt.prevett@em.aus.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: Some planned maintenance for upgrades or patching but sufficient notice will always be given and this will be inline with agreed service levels and and SLA.
• System requirements: Modern Windows operating system

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 30 - 360 minutes, dependant upon nature of question. This is applicable for weekends as well.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Email and telephone support, with 24/7, on-call cover for critical issues.; Mon to Fri 08:00 to 17:30 for other issues.; Designated Account Manager will be provided.; Bespoke development can be provided at additional cost.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: AUEM will work closely with all system users to ensure they are fully trained on all system aspects. At the onset of the program, training will initially be provided on site at the customers location, and will be supported with comprehensive user documentation, and online guides. Periodic, refresher training will be provided by the AUEM contract manager throughout the lifetime of the contract.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: The user would request the data to be exported.AUEM would carry out this and provide the data to an agreed format.
• End-of-contract process: Price includes the following:-; Field Hardware (Tags, Monitoring units); Officer Tools (Fitting, Diagnostic & Removal eqt); Chronos Monitoring software, Hosting, Training, SIM cards (& associated costs), and consumables (straps); 24/7 On-call support.; ; Price does not include:-; Lost & damaged equipment; Changes/customization of the User Interface.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Same application but lower resolution on mobile device and desktop service
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: We provide a web application for the monitoring of offenders. This service provides access for handling alarms, offender records, device configs, and all reporting
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: AUEM complies with:- ; • World Wide Web Consortium (W3C) Web Accessibility Initiative (WAI) Web Content Accessibility Guidelines (WCAG) 2.1 Conformance Level AA, ; • the European standard for digital accessibility, EN 301549; and ; • ISO/IEC 13066-1: 2011 Information Technology – Interoperability with assistive technology (AT) – Part 1: Requirements and recommendations for interoperability. ; ; Google Lighthouse has been used to review every screen and every table within Chronos 3 and we have ensured a score of 100 on every one as an assessment of the WCAG level AA.
• API: Yes
• What users can and can't do using the API: The Management System exposes a number of features via a REST or SOAP interface, including the ability to create subjects, and manage schedules.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The service can be customised in a variety of ways, and by a number of routes. These include configuration files prepared prior to deployment, customisation applied by system administrators during normal operation, and customisation applied by a user that persists for the life of a user session

Scaling

• Independence of resources: Each system is private to each customer and scaled to the usage requirements of the delivered system.

Analytics

• Service usage metrics: Yes
• Metrics types: The Service provides a number of standard reports that provide information about the usage of the system. Further bespoke reports can be provided.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be viewed using a number of standard reports, which can be exported from the system in a wide variety of formats, such as Excel, CSV, PDF, etc. Further bespoke reports can be provided.
• Data export formats:
  • CSV
  • Other
• Other data export formats: Excel
• Data import formats:
  • CSV
  • Other
• Other data import formats: Excel

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: 99.99% as described by the up-time institute.
• Approach to resilience: Available on request
• Outage reporting: Email Alerts via proactive network operations centre.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
  • Other
• Other user authentication: AUEM/G4S can tailor user service authentication to individual customer requirements,
• Access restrictions in management interfaces and support channels: Remote administration and support is rare owing to air-gap hosting environments. When required secure support channels are arranged with the customer using industry standard secure practices and aligned with security procedures such as Information Classification, Password and Access Control policies.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
  • Other
• Description of management access authentication: AUEM/G4S can tailor user service authentication to individual customer requirements,

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Lloyds Register Quality Assurance Ltd
• ISO/IEC 27001 accreditation date: 19/12/2022
• What the ISO/IEC 27001 doesn’t cover: Nothing
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • Common Criteria Certification for Monitoring Equipment and their interfaces
  • ISO9001:2015

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: AUEM / G4S requires all business units to comply with a mandatory set of Information Security Controls based on ISO27001:2013. We comply with those. In addition, we operate an Information Security Management System (ISMS), certified to ISO27001:2013.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change requests for the hosted service are performed through a change management process (based on ITIL best practice) controlled through a collaborative change control board. Changes are raised and tracked through the AUEM/G4S Service desk, then developed, tested and rolled out in collaboration with the customer
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: AUEM/G4S adopts a proactive vulnerability monitoring and ongoing risk assessment. Patches are deployed in a timely manner as assessed on risk.; ; Potential threat sources include:; ncsc.gov.uk; ISC - SANS Institute (Internet Storm Centre); Microsoft; Cisco; Tenable.io
• Protective monitoring type: Undisclosed
• Protective monitoring approach: We actively monitor potential compromises. This is achieved through real-time monitoring controls.; Response to potential compromise follows the documented Security Incident Reporting procedure.; We are able to respond immediately, in a planned manner, to apply corrective action risk treatment.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Our incident management plan conforms to ISO/IEC 27035:2011

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Other
• Other public sector networks: Not dependant on any system, API integration possible to PSNs

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fighting climate change; ; Actions currently deployed or being considered by AUEM/G4S Monitoring Technologies in order to fight climate change:; ; 1 - Measure And Analyze Greenhouse Gas Emissions; 2 - Reducing Energy Consumption; 3 - Reduce Waste; 4 - Optimize Employees’ Transportation; 5 - Choose Sustainable Suppliers; 6 - Raise Awareness Among Employees, Clients And Other Stakeholders; 7 - Promote Environmentally Friendly Ways Of Working - Encourage use of video conferencing rather than face to face meetings; 8 - Recycling where possible

  Covid-19 recovery

  Covid-19 recovery; Actions currently deployed or being considered by AUEM/G4S Monitoring Technologies in order to facilitate Covid-19 recovery:; ; Re-thinking business resilience and DR procedures; Redefining how employees work, and ensuring best practices are implemented; Re-thinking supply chains, and logistic planning; Reassessing revenue and cash flow

  Tackling economic inequality

  Tackling economic inequality; ; Actions currently deployed or being considered by AUEM/G4S Monitoring Technologies in order to tackle economic inequality:; ; Ongoing Job Creation; Plan to improve wages and working environments; Building skills and progressions pathways for all employees

  Equal opportunity

  Equal opportunity; ; Actions currently deployed or being considered by AUEM/G4S Monitoring Technologies to ensure equal opportunities:; ; Ensure the right infrastructure is in place, with buy in from the leadership team; Enhanced transparency; Value all voices and comments across the business

  Wellbeing

  Wellbeing; ; Actions currently deployed or being considered by AUEM/G4S Monitoring Technologies in order to enhance wellbeing:; ; Help employees work towards long-term goals; Arrange regular get-togethers; Encourage real breaks; Create a comfortable work environment; Reward and recognise great work; Encourage staff to take responsibility for their own wellbeing; Create stronger employee-manager relationships; Tweak the working routine to work for our staff; Survey our teams to find out what’s working and continuous feedback

Pricing

• Price: £50.00 to £400.00 a unit a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: A trial option is provided. Limited to 5 monitored devices for a period of 2 weeks.; ; Including:-; Field Hardware (Tags, Monitoring units); Officer Tools (Fitting, Diagnostic & Removal eqt); EMSyS software, Hosting, Training, SIM's (+costs), and straps.; 24/7 On-call-support.; ; Not including:-; Lost & damaged equipment; Changes/customization of the User Interface

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at matt.prevett@em.aus.com. Tell them what format you need. It will help if you say what assistive technology you use.