PricewaterhouseCoopers (LLP) PwC

PwC Contract Discovery and Analytics Platform Services

These services can; (a) support e-discovery, civil, criminal, regulatory and investigation matters; and (b) help understand contract contents, for legal, compliance and procurement analysis. The software utilises AI techniques to automatically extract keywords and values from contracts. These capabilities drive cost efficiencies to the contract review and analysis process.

Features

• Secure access to repositories of documents and contracts
• Scalable solution allowing flexible growth or reduction of usage
• Custom configuration for review workflows and data point extraction
• Support of keyword searching, conceptual searching and document analytics
• Machine learning to categorise and segmentation document and contracts
• Identification of sensitive or personal data for GDPR compliance
• Fully audited system allowing identification of user activity
• Production features that meet local and global legal standards
• Configurable access controls based on role and user
• Real time reporting tracking document and contract review progress

Benefits

• Secure management and segregation of document repositories
• Data recovery and support through cloud redundancy management
• Reduced infrastructure costs
• Improved case management and collaboration through standardised workflows
• Fully administered service providing controlled deployment of projects / workspaces
• Greater management of costs through transparent pay-as-you-store license model
• On call service support
• Access a leading document management, repository, data extraction solution
• Filter and cull data to identify relevant documents quickly
• Artificial Intelligence (AI) techniques automate the keyword extraction process.

£400 to £2,400 a licence a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at uk_tender_tracker@pwc.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

702274866368601

Contact

Catherine Hurl
028 9041 5797
uk_tender_tracker@pwc.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: None known
• System requirements:
  • Internet Explorer 10+
  • Internet Explorer 11
  • Firefox
  • Chrome
  • Safari

User support

• Email or online ticketing support: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Support required in relation to the availability of the service is included as part of the hosting platform cost. Support iin relation to the use of the system is provided on a time and material basis.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: User training can be provided onsite or online depending on requirements
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Information can be provided in a number of formats depending on their requirements. These are typically PDF documents and extracted data points in xls, csv, json or xml format
• End-of-contract process: At the end of the engagement it is usual practice is to archive the data from the system which is then retained for a period of time. Alternatively, if required, we can export the data from the system and provid it to the client.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile device access may limit the types of files that can be opended and view compared to the desktop site.
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: Our infrastructure and platform are constantly monitored by a dedicated team who ensure the approporate resources are available for the demand being placed on the system

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Small volumes of data can be exported by the end user but if volumes are high. This is typically performed by us to a specification determined by the client.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • XLS
  • XML
• Data import formats: Other
• Other data import formats:
  • PDF
  • DOC
  • JPEG
  • BMP

Data-in-transit protection

• Data protection between buyer and supplier networks: Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Not applicable
• Approach to resilience: Available on request
• Outage reporting: Email alert to users of service outages

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Role based security within the application
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI Assurance UK Limited
• ISO/IEC 27001 accreditation date: 2016
• What the ISO/IEC 27001 doesn’t cover: Not applicable
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Worldpay from FIS
• PCI DSS accreditation date: 0402/2022
• What the PCI DSS doesn’t cover: "It covers the use of all credit card facilities that PwC uses. These are the online terminal used by Collections to take card payments by clients, and handheld terminals used by the business for charity collections, and by the pharmacy for their payments.; "
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: BS ISO 22301:2012, Business continuity management systems requirements

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: See separate document - Externally Facing Information Security Policy (EFISP) 2017

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All patches to the platform are implemented in a staging environment and tested prior to application to the live environment
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Threat intel is provided by our Cyber Threat and Intelligence department.; Patches are applied monthly unless a critical patch is required which will be applied as soon as possible and in agreement with current users to agree downtime if required.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Regular Qualys scans are performed against the software and SCOM is used to monitor performance and uptime.; Incidents are responded to according to the severity of the action taken
• Incident management type: Supplier-defined controls
• Incident management approach: Incidents can be raised using dedicated support email address or by phone; Incident reports are available upon request

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We work with our suppliers throughout the supply chain and operations to reduce emissions. We are on target for net zero by 2030. In 2023, we were again ‘platinum rated’ for sustainability from EcoVadis, - top 1% with our environmental performance deemed ‘outstanding’. We’re a carbon management leader for our ‘strong greenhouse gases management system and decarbonisation commitments, actions and reporting capabilities’.; ; The specifics varies per engagement, but our G-Cloud service provision will tackle climate change by one or more of the following:; a. Using climate friendly (low processing) algorithms.; b. Articulating climate impact on the hosting platform.; c. Including climate impact in options analysis to minimise climate impact whilst meeting contract objectives.; d. Investing in green tech, considering impact of manufacture, usage and at end of life.; e. Engaging with VCSEs to recondition technology.; f. Having 100% green energy on all our premises.; g. Sending zero waste to energy.; ; During engagement delivery, we implement Thoughtful Travel as our greatest climate impact is business travel. Specifically we: ; a. Collaborate online where appropriate, to avoid unnecessary travel.; b. Work in our network of BREEAM rated offices accessible by public transport (typically generating lower emissions compared to remote working); c. Enforce use of our travel booking app which prevents the least environmentally friendly modes of travel and has emissions information for different transport options. ; d. Agree travel in advance ; e. Use our climate forecaster and reporting tool to model our transport decisions and provide clear reporting of our emissions (which are our Buyers’ scope 3 emissions); ; We also induce and support our people to lower their own climate impact, facilitating circular economy principles e.g. recycling personal technology and clothing, sharing relevant practices.

  Covid-19 recovery

  Our G-Cloud services have been critical to Covid-19 recovery as follows:; a. Harnessing the power of cloud scalability and flexibility to our clients, enabling them to adjust their IT infrastructure ‘on demand’. This is important for Covid-19 recovery as Buyers still need to support remote working and online operations.; b. Reimagining how we deliver work - our cloud computing capabilities enable remote work by providing secure access to business applications and data from anywhere. This supports Covid-19 recovery in Buyers’ contracts by maintaining productivity, collaboration and service delivery.; c. Implementing robust security measures for our clients to meet increased cybersecurity risks - thus safeguarding their cloud infrastructure and data, a key issue for many government Buyers.; d. Providing robust and resilient cloud infrastructure to our clients, thus helping Buyers maintain business continuity throughout the pandemic.; e. Supporting our Buyers’ need for digital transformation, which has been accelerated by the pandemic. For example, we help organisations leverage cloud technologies to modernise their IT infrastructure, adopt agile development practices and drive innovation.; f. Providing digital skills training for people over 50, who became unemployed during Covid-19, to enable them to reskill and become economically active again.; g. Scaling up our office presence and delivering engagements in UK cold spots which include Bradford and Belfast, to support economic recovery and growth.; h. Significantly expanding our presence in areas such as Manchester and Cardiff which were also severely impacted by Covid-19.; ; We continue to innovate in emerging cloud technology to help Buyers tackle Covid-19 challenges and support a green transition, by enabling remote working, ensuring security and compliance, supporting scalability, driving digital transformation, and increasing business resilience.

  Tackling economic inequality

  Our G-Cloud 14 service provision will help tackle economic inequality as follows:; ; Increase supply chain resilience, capacity, and diversity by:; a. Teaming with diverse businesses in contract delivery e.g Auticon, a VCSE specialising in IT consultancy, staffed by people with autistic spectrum disorders. We also team with micro and small firms depending on the engagement scope and location.; b. We procure from social enterprises for ancillary products and services - e.g. catering and stationery. We are a founding member of the Buy Social Corporate Challenge and spend about £5m p/a with social enterprises. Therefore, indirect spend will help to tackle economic inequality.; c. Structuring our procurement to be accessible by social enterprises and apprentices in their provision of services to us and having transparent, fair, and clear procurement plans.; d. Running skills development seminars to help social enterprises become contract ready in conjunction with the School for Social Entrepreneurs.; e. Offering an equitable share of profit and risk within the contract and paying promptly. Since 2018, we have reported in line with Government’s Reporting on Payment Practices and Performance regulations.; ; Tackling Human Rights & Modern Slavery:; a. We have been rated ‘outstanding’ for Human Rights by EcoVadis. We focus on Modern Slavery “hotspots” in our supply chain and have detailed our policies, governance, risk management approach and related reporting in our Human Rights & Modern Slavery Statement.; ; Modernising delivery: ; a. We team with leading technology suppliers and innovate modern ways to deliver work and horizon scan for new opportunities to drive better outcomes or more efficient delivery. ; b. Recently awarded by Google for our innovative Generative AI solution - mindful of potential concerns posed by AI.; ; Developing skills:; a. We deploy apprentices from our technology degree apprentice scheme in appropriate roles - this will form part of their portfolio submission.

  Equal opportunity

  We are a level 2 disability confident employer and our platinum EcoVadis rating includes “Outstanding” for Labour and Human Rights performance as a result of our programmes to continuously manage the human rights risk associated with our operations and supply chain, and promote diversity, equity and inclusion.; ; Our G-Cloud 14 service provision will help with equal opportunity as follows:; ; a. Providing opportunities for people from underrepresented groups, so they can gain the experience they require to progress through our business. ; b. Specifically for disabled people, we team with VCSEs e.g. Auticon to provide work opportunities. For our own people and third parties we provide assistive technology and accommodations to enable people to manage long-term conditions.; c. We collaborate with under-represented groups so that our services are accessible and culturally inclusive.; d. Within our contract delivery we measure representation at all levels and gain feedback on quality of experience as retention and development requires people to have a sense of belonging and opportunities to develop.; e. We have a technology apprenticeship programme and our service provision gives opportunities (with oversight) to our apprentices, to help develop digital skills e.g. cloud and a portfolio for qualifications.; f. We conduct outreach to attract people to attend relevant training to work on call off contracts and monitor the diversity of our security cleared talent pool so we can mobilise diverse talent at pace.; g. We offer coaching to client personnel, nominated by the Buyer, to help them with their workforce equality strategy.; h. We offer community outreach including technical and relevant core skills, and raising confidence and ambitions to help people from underrepresented groups become economically active.

  Wellbeing

  Our G-Cloud service provision will help with wellbeing by our culture of support embedded within our ways of working:; a. developing an initial action plan to address typical health and wellbeing risks associated with cloud service provision. This includes checking work allocation in advance (alongside holiday and professional development), reviewing workload weekly and monitoring timesheets; providing suitable ergonomic equipment, creating a supportive environment, empowering and supporting our people to deliver their work and recognising their impact.; b. Empowering people to self-care e.g. attending routine medical appointments or attending to personal matters using everyday flexibility for work life balance.; - Collaborating with each team on wellbeing initiatives to suit their needs e.g. walking meetings, “dress for your day”, office fruit bowls, team-led yoga.; c. Sharing ideas for outside working hours e.g. using our corporate licence for the Headspace app or painting.; - Signposting corporate sources of support e.g.helplines and medical support - for PwC, Buyer and third party people, including help for issues like bereavement and firmwide resources e.g. support during world conflicts or the financial crisis. ; d. Accommodating access requirements and management of health conditions (as a Disability Level 2 Confident employer and signatory to Working With Cancer pledge).; e. We collaborate with financial organisations such as Aviva to host webinars for our people to make more informed decisions regarding their pension and as well as regular mortgage workshops.; f. Support different cultures e.g. opportunity to participate in the Ramadan challenge to promote insight and understanding during this period. ; ; We also share ideas with the wider community via LinkedIn Live for example on “digital detoxing” and promoting a culture of self-care.

Pricing

• Price: £400 to £2,400 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at uk_tender_tracker@pwc.com. Tell them what format you need. It will help if you say what assistive technology you use.