Communication Exploitation Data Tool (CEDT)

Description

The Authority requires a national software capability service tool which: 1. Processes, cleanse, and analyses, large amounts of communications data in varying formats for investigation purposes. 2. Enables intelligence analysts to analysis, generate timelines, reports, i2 charts, and rich maps to visualise key insights and patterns from the communications data. 3. Operates as a connected solution, accessible via force computers and integrate with existing secure data transfer processes, while ensuring compliance with the Authority's security protocols and data handling legislation Some key critical compliance requirements are set out in the Additional Information section below. Lot 1: Must requirements: The solution must cleanse raw communications data, including radio frequency data, and transform it into standardised, usable format suitable for intelligence analysis. The solution must support importing and process data from multiple file formats, including but not limited to; CSV, ANPR data, Drone Data, Zipcar records, Uber Ride Data, Uber Eats delivery Data. The supplier's solution should be zero deployment and accessible via a browser to be suitable. The solution shall be accessible via a standard internet browser - i.e. Microsoft Edge and Google Chrome. The supplier's solution must ensure that all data is: Encryption in-transit, using secure protocols (e.g., Transport Layer Security (TLS) TLS1.2, higher, comparable). Encrypted at rest, utilising industry-standard encryption algorithms (e.g., AES-256). The supplier's solution must implement robust access control mechanisms, including Role-Based Access Control (RBAC) to restrict access based on user roles and responsibilities. Supplier shall provide training and training material to the Authority for the tool. Supplier shall be fully responsible for the support and maintenance of their servers. Additional information: Servers must be UK based. Supplier's staff who interact with the Authority and/or have access to the Authority's data, must have SC + NPPV3 vetting. Audits are non-negotiable and must be integrated into one of the Authority's audit systems to ensure full compliance with government and oversight requirements Commercial Off-The-Shelf (COTS) products offered must include a full API to enable seamless integration with existing systems and support custom development needs.