Engeneum Limited

Engeneum Online Identity Document Validation Solution - ConnectID

One of the Engeneum On-line Solutions for Digital Asset Management. Connect ID takes a scanned image of a Passport, Identity Card, Biometric Residency Permit, Driving Licence and checks content and template for accuracy and fraudulent alterations.
Connects to Engeneum RedStore and GreenStore
Full traceability, audit trail, UK private cloud hosting


  • Manual (Point &Click) and automatic loading of files
  • Checks Identity document content and layouts
  • E-mail notification on completion of checking
  • Securely login to check and view
  • View documents via web browsers on any device
  • Highly secure in ISO 270001 Data centre
  • Supports over 4000 ICAO 9303 and non-ICAO 9303 ID documents
  • Checks MRZ character count and checksum algorithm
  • Checks Geometry, Date Validity, and Template pattern matching
  • Easy to Use


  • Valuable where no ID document scanners available
  • API for connection to other business solutions
  • Connect easily to existing Document Scanner solutions if available
  • Supports Right to Work processes (RtW)
  • Supports Anti Money Laundering (AML)
  • Supports Know your Customer (KYC)
  • Supports Right to Study (RtS)
  • Customisable Workflows available (additional charges)
  • Traceability with full audit trail
  • Supports Right to Rent Processes (RtR)


£300 to £10000 per instance per month

  • Education pricing available
  • Free trial available

Service documents


G-Cloud 11

Service ID

2 8 8 7 0 3 9 1 4 9 8 7 4 2 8


Engeneum Limited

Chris Haden



Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to Engeneum Employee Portal
ABBYY Flexicapture
ABBYY Flexicapture for Invoices
ABBYY Flexicapture for Mailrooms
ABBYY Recognition Server
Acuant Sentinel
Acuant Connect
Trust ID
Microsoft Dynamics 365
Civica W2
Cloud deployment model
  • Public cloud
  • Private cloud
  • Hybrid cloud
Service constraints Customers are notified if planned maintenance is required 3 weeks in advance
System requirements Phone, Laptop, Tablet or PC with Browser and Internet access

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Support between 09:00-17:30 Monday to Friday.
Responses based on severity / priority as defined.
Example definitions are as follows:
Priority 1 Complete loss of the service for one or more
users of the service. No work around - 1/2 hour 1/2 hourly
Priority 2 Partial loss of the service for one or more users of
the service. Temporary workaround available- 4 hours 4 hourly
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels In hours and Out of hours support options.
Out of hours charges dependant on Service Level Agreement
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Self sign up options and bulk user creation available
On-Line training provided for Intuitive User Interface, customised training materials provided at additional cost.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction End of contract data extraction is project based dependant on specific customer requirements.
Optional retention of original source data can be provided back to the user at end of contract
End-of-contract process Additional charges apply for:
Project Management
Data export and conversion
Data Purge

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices No
Service interface No
What users can and can't do using the API APUI users can:
Manage User profiles and groups
Upload data
Update Metadata
API documentation Yes
API documentation formats PDF
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Users can:
Change branding and colour scheme
Create and manage their own client instances
Create and Manage - Folders, asset types, indexes, users, groups, permission scheme, business processes, notification settings, and self sign up
Create and manage data and meta-data uploads


Independence of resources Capacity planning provided through flexible infrastructure where resources can be brought on-line within 2 hours


Service usage metrics Yes
Metrics types Fixed format reports covering:
User activity
Document Usage/Life-cycle
Capacity (upload volumes)
Usage of functions (number of searches, modifications etc)
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency Less than once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest Physical access control, complying with another standard
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Ad-hoc low volume data export provided through the browser. Large volume data export provided on a project basis.
Data export formats
  • CSV
  • Other
Other data export formats
  • PDF
  • Image - TIFF, JPEG, GIF, BMP etc
  • XML
Data import formats
  • CSV
  • Other
Other data import formats
  • PDF
  • Image - TIFF, JPEG, GIF, BMP etc
  • XML
  • Print Streams - AFP, PCL etc

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability SLA's are agreed dependant on project requirements. A typical SLA would be 99% availability for website access 24x7x365.
Approach to resilience Available on request, subject to a Non-Disclosure Agreement
Outage reporting E-mail alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Super Administration can manage client instance access. Client Administration can manage Users and Groups
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information You control when users can access audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information You control when users can access audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Lloyds Register Quality Assurance Limited
ISO/IEC 27001 accreditation date 23/02/2017
What the ISO/IEC 27001 doesn’t cover N/A
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Our processes are aligned with ISO 9001 principles
Information security policies and processes Our processes are aligned with ISO 9001 principles

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Configuration and change management of the infrastructure is provided by our Cloud Hosting partner.
Vulnerability management type Supplier-defined controls
Vulnerability management approach This is managed by our Cloud Hosting Partner and included:
Threat Detection
Next generation Firewall
Endpoint Management
Protective monitoring type Supplier-defined controls
Protective monitoring approach This is managed by our Cloud Hosting Partner
Incident management type Supplier-defined controls
Incident management approach This is managed by our Cloud Hosting Partner

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £300 to £10000 per instance per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial 3 users, limited to 1000 transactions, and 1 month

Service documents

Return to top ↑