Skip to main content

Help us improve the Digital Marketplace - send your feedback

The Access Group

Access Legal Searches – Legal Bricks

A one stop solution to simplify the house buying or selling process, our aim is to ensure you have all the tools you need, when you need them.
Providing conveyancing quotes, property related documents and a range of personal documents such as AML ID checks and Biometric ID checks.

Features

  • Regulated Local Searches
  • Regulated Drainage & Water Searches
  • Environmental Searches
  • AML ID Checks
  • Biometric Face Scanning ID Checks
  • Access Connect
  • Conveyancing Searches, Indemnity Insurances, Risk products and more
  • Conveyancing quotation calculator
  • Solution can be fully branded as your law firm
  • Legal Client Portal

Benefits

  • We provide all products to support the client journey.
  • One solution to simplify the house buying or selling process
  • Quotation to completion our service has you covered
  • Full range of conveyancing products
  • Full range of AML solutions

Pricing

£90 an instance a month

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Natalie.GilesGrant@theaccessgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

7 4 3 6 8 6 5 8 4 6 3 6 4 2 8

Contact

The Access Group Natalie Giles-Grant
Telephone: 01206322575
Email: Natalie.GilesGrant@theaccessgroup.com

Service scope

Software add-on or extension
No
Cloud deployment model
Private cloud
Service constraints
We use all reasonable efforts to ensure that the SaaS Services are available for 99.70% of each calendar month. As a true SaaS solution customisation is not available although the product can be configured to meet all standard set up requirements.
System requirements
Internet Access

User support

Email or online ticketing support
Email or online ticketing
Support response times
This is dependent on Success Plan chosen initial response times are; P1 - up to 1 hr P2 - up to 2 hrs P3 - up to 4 hrs P4 - up to 1 Business Day
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
We provide 3 main support plans as detailed below. The Essential Plan The online service The Essential Plan is available to all Access customers as part of your license fee and provides you with easy-to-access online support for all your queries, facilitated via our Customer Success portal. The Standard Plan Get answers faster As a Standard Plan customer you benefit from faster response times and can access our support teams via telephone and live chat, as well as through our Customer Success portal. To help your team be more productive, you are provided with continued access to our e-learning content as well as a programme of Success webinars, designed to keep you up to date with new features and share best-practice advice and guidance. The Premier Plan Boost productivity with direct access to the experts and achieve a higher return on investment Our Premier Plan enables your team to achieve more and improve productivity through an ongoing relationship with your own designated Customer Success Manager. Your CSM will get to understand how you’re using the technology and will advise you on how to get more from it.
Support available to third parties
No

Onboarding and offboarding

Getting started
User guides will be provided along with remote or onsite training sessions.
Service documentation
Yes
Documentation formats
PDF
End-of-contract data extraction
Our exit process is; The Renewals team receive the notification and undertake discussions with the client, the account manager and any other stakeholders. Once termination is confirmed, the “termination data requirements document” is sent to the client and a record created on the Offboarding register in line with internal processes. The status is set to “waiting customer”. On receipt of the offboarding document, Access Offboarding Review team will review the response, respond to any queries, annotate the record to reflect the customer requirements, upload the document and set the record to “not started” The Service Delivery team will pick up the ticket, arrange the return of data, decommission the system then they or hosting delete the data (production and backup unless “beyond access”(in which case it will be overwritten). Closure of the ticket triggers a confirmation to the customer that their data is deleted.
End-of-contract process
Our exit process is; The Renewals team receive the notification and undertake discussions with the client, the account manager and any other stakeholders. Once termination is confirmed, the “termination data requirements document” is sent to the client and a record created on the Offboarding register in line with internal processes. The status is set to “waiting customer”. Note: In the event that a Customer does not return the document, they will be contacted again twice prior to termination and data will be deleted within 30 days from contract end as Access has no legal basis for processing from that point

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Firefox
  • Chrome
  • Safari
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
.
Service interface
No
User support accessibility
None or don’t know
API
Yes
What users can and can't do using the API
Order searches, AMLs, biometrics, produce conveyancing quotes
API documentation
Yes
API documentation formats
Other
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
Branding, document production

Scaling

Independence of resources
Access hosted servers are monitored ensuring that the service can expand sufficiently if required. In addition to this we use automated monitoring tools to alert us when demands on resource meet or exceed certain thresholds (CPU, RAM, I/O, disk usage etc). The infrastructure is sized to deliver comfortable capacity for even our peak service periods, day-today usage currently runs at 1/3 total capacity.

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
No
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
This is not possible at moment, this is provided in real term and provided to the user.
Data export formats
Other
Other data export formats
N/A
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
We provide an uptime guarantee of 99.7% per calendar month. This does not include scheduled maintenance windows.
Approach to resilience
This is available upon request
Outage reporting
Email alerts will be sent to customers

Identity and authentication

User authentication needed
Yes
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels
Username and password
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
No audit information available
Access to supplier activity audit information
No audit information available
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Alcumus ISOQAR
ISO/IEC 27001 accreditation date
01/09/2014
What the ISO/IEC 27001 doesn’t cover
Scope of Registration: The information security management system in relation to the organisations business, including: hosting, payroll services, financial & payment processing, screening, software development and delivery, client data and infrastructure in accordance with the statement of applicability V2.0
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
Access adhere to ISO27001 certification with a dedicated Information Security team working with the business to ensure we uphold our obligations, policies and procedures.

Operational security

Configuration and change management standard
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach
All change requests shall be logged on a standardised system in use by the team, such as JIRA (Development), FreshServe (CHS), Service Cloud – Customer Support platform. A documented audit trail, maintained at the business unit level, containing relevant information shall always be maintained. This should include change request documentation, authorisation and the outcome of the change. No individual should be able to effect changes to production information systems without following the change process from end to end full details can be requested via emails
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
Patched and audited by our patch management system. All non-critical OS patches are applied within one calendar month of release, first into pre-production and then into production, as part of the scheduled maintenance window. AV Updates - Signatures are updated hourly. / Rules are reviewed at minimum every 3 months. Logs are reviewed at minimum every 3 months. Access staff responsible for the maintenance of our hosting services subscribe to industry newsletters, belong to various security forums and we additionally receive notifications from our vendors.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
We have traffic monitoring and content based alerting on changes to the site and/or traffic flows implemented at infrastructure level. We keep daily historical reports from servers which provide the facility to identify when changes occurred. We proactively monitor third party suppliers vulnerability reporting and security fix availability. We patch any vulnerabilities found in a timescale appropriate for their level of severity. Our infrastructure response is within 1 hour in the SLA period 8am-6pm Monday – Friday.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
All incidents must be recorded on Access Group’s Incident Register (FreshService) in accordance with the Incident description as detailed in Definitions. An immediate assessment must be carried out, to determine whether the incident is a personal data breach and likely to result in a risk to the rights and freedoms of the data subjects affected by the personal data and an incident report must be started. No evidence can be removed or anything deleted until screenshots/snapshots/ file information is recorded as this may hinder an investigation. – see collection of evidence section.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
No

Social Value

Wellbeing

Wellbeing

Access places specific emphasis on the health and wellbeing of its staff and provides a “Well-being” hub in workspace that provides support for Mental Health, Finances, Social, Physical, Emotional and purpose. Assistance from Health Assured is available for all staff and there are training resources for “working in the new normal” and “Mental health and wellbeing” . Access also has “well-being” champions throughout the organisation. This is supported by monthly employee “check in” surveys and offers of flexible working for staff to meet caring commitments.

Pricing

Price
£90 an instance a month
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Natalie.GilesGrant@theaccessgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.