Recordsure Docs - Document Analytics and Artificial Intelligence

Recordsure Docs is a state-of-the art document analytics solution which enables the ingest, indexing and analysis of large text-based data sets, utilising Artificial Intelligence and Natural Language Processing (NLP), allowing records to be rapidly reviewed for remediation, compliance or customer/business insight purposes.


  • OCR to digitise all document types
  • Advanced document search
  • Ability to bookmark significant portions of documents for review
  • Ability to filter by configurable list of document attributes
  • Active learning of user actions for review automation
  • Automated AI case creation for review
  • View all documents through one portal
  • Digital filing cabinet


  • Improved compliance, for example risk assessment questioning
  • Increase efficiency by processing thousands of documents at once
  • Quickly search all documentation for key words and phrases
  • Only display relevant sections of documents
  • Reduce Document ID and keying errors
  • Unlock insights from data trapped in document repositories
  • Drive cost savings and support strategic decision making


£5000 per licence per month

Service documents

G-Cloud 11



Jonathan Drechsler


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints No
System requirements None

User support

User support
Email or online ticketing support Email or online ticketing
Support response times For questions, 3 working days though SLA covering response times is subject to contract.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.1 AA or EN 301 549
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels We provide a technical account manager. Generally, we provide 2nd & 3rd level support but can provide 1st level support at extra cost. Costs defined in contract.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Onsite training and documentation is provided to buyers.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Recordsure would extract the data and supply to buyer in whatever format is requested.
End-of-contract process Depends on contractual terms but normally contract ends with data extraction then secure deletion from Recordsure's servers.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices No
Service interface No
Customisation available Yes
Description of customisation The Recordsure AI system can be trained and customised in conversation with the buyer. An example of a possible customisation is automatic identification of document subject,


Independence of resources Each individual buyer will be set up in their own environment so will not be affected by other users' demand.


Service usage metrics Yes
Metrics types Some service metrics are provided through MI reports. Other metrics may be provided on request from the buyer.


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach ‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Documents uploaded by the buyer can be exported in their original format. Recordsure can export all other data on request from the buyer.
Data export formats
  • CSV
  • Other
Other data export formats
  • PDF
  • JSON
Data import formats
  • CSV
  • Other
Other data import formats PDF

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability 99% availability for viewing of stored files. SLAs exist to cover availability and refund to buyer subject to contract.
Approach to resilience Available on request. All software and infrastructure uses an N+1 availability model and all hardware is high availability.
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Username or password
  • Other
Other user authentication Initial authentication is via secure authentication link sent via email to user.
Access restrictions in management interfaces and support channels These are detailed in our ISO/27001 policies.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 BSI
ISO/IEC 27001 accreditation date 04/05/2018
What the ISO/IEC 27001 doesn’t cover The whole of Recordsure is covered.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Fully ISO/27001 certified security policies and processes in place.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach These are detailed in our ISO/27001 policies.
Vulnerability management type Supplier-defined controls
Vulnerability management approach These are detailed in our ISO/27001 policies.
Protective monitoring type Supplier-defined controls
Protective monitoring approach These are detailed in our ISO/27001 policies.
Incident management type Supplier-defined controls
Incident management approach These are detailed in our ISO/27001 policies.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £5000 per licence per month
Discount for educational organisations No
Free trial available No

Service documents

pdf document: Pricing document pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑