Coeus Software Ltd


Mozzo is a Field Force Automation platform for the Public Sector. Mobilise processes using a simple design tool, integrating back office systems using connectors. Work offline and online with smartphones, tablets or PCs running Android, iOS or Windows. Securely search or capture forms, tasks, tickets, statements, searches etc.


  • Easy to use mobile application that works online and offline
  • Business processes created using drag and drop design tool
  • Supports all operational processes and provides audit trail
  • Utilises inherent capabilities of device to integrate with business processes
  • Compliant with Digital Evidence gathering standards
  • Flexible architecture to integrate with new and legacy back-office systems
  • App available for Android, iOS and Windows smartphones and tablets
  • Easy user management using Active Directory (ADFS) integration
  • Compliant with open-standards API integration
  • Cloud First, Mobile First using Hybrid cloud service delivery


  • Efficiency Savings - reduce in-shift returning to office
  • Productivity Gains - data in back office systems within minutes
  • Open Standards Compliant - With the Business Process Design Tool
  • Integration - Grow your mobile capability with Connectors
  • Intuitive - Reduce training overhead
  • Lower cost of ownership - Compared with traditional ICT delivery


£4.50 to £5.75 per person per month

  • Free trial available

Service documents

G-Cloud 9


Coeus Software Ltd

Simon Hall

0800 849 8811

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Hybrid cloud
Service constraints Mozzo requires: Federated Authentication using Azure Active Directory (with ADFS or Azure AD Connect); Windows Server (Hybrid Server) for exporting of completed tasks within the Customer's IT environment. Windows desktop for the Business Process Design tool. Clients purchasing Mozzo will need to use the OnBoarding Cloud support service to get Hybrid components. Clients will also need to use the OffBoarding Cloud support service at subscription termination. Mozzo will make use of the Client's existing enterprise device (security & management) solution and mobile network infrastructure.
System requirements
  • Windows Server (Hybrid Server) 2012 R2 or later
  • Federated Authentication Azure AD using ADFS or Azure AD Connect
  • Windows 10 (UWP) Client Devices or
  • IOS 9 (or later) Client Devices or
  • Android 5.0 (Lollipop) Client Devices
  • Network Access to Azure UK data centres
  • Windows 7 or later for the Design Tool

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Coeus Standard Service Management Policy. Business Hours Mon-Fri 09.00 to 17.00 Except English Bank Holidays. Online ticketing service 24x7x365. Incidents acknowledged within 4hrs with problem assessment within 24hrs. Major Incidents action within 4hrs. Out of hours support (e.g. Weekends/Evenings/Bank Holidays) charged extra.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Business Hours Mon-Fri 09.00 to 17.00 Except English Bank Holidays. Online ticketing service 24x7x365. Incidents acknowledged within 4hrs with problem assessment within 24hrs. Major Incidents action within 4hrs.

Out of hours support (e.g. Weekends/Evenings/Bank Holidays) charged extra dependent upon tailoring for Customer requirement.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Coeus provide an OnBoarding service for Mozzo. The cost of this service includes delivery of software and licences for the Hybrid Server as well as online training (Mozzo client application familiarisation videos) and user documentation.
On Site training is charged separately based upon customer requirement.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Coeus provides an OffBoarding service. Each Tenant is provided with their own Database within the Mozzo service. This allows the database to be extracted as a backup file and presented to the Customer on the media that they will provide.
End-of-contract process The OffBoarding service provides the data extract service as an optional additional cost. Customers wishing to end their contract must request the data extract service within 14 working days of notice of cancellation.

Using the service

Using the service
Web browser interface No
Application to install Yes
Compatible operating systems
  • Android
  • IOS
  • Windows
  • Windows Phone
Designed for use on mobile devices Yes
Differences between the mobile and desktop service There are no differences between mobile and desktop. The desktop application uses the Windows 10 Universal Windows Platform (UWP).
Accessibility standards None or don’t know
Description of accessibility Client Application is NOT a webpage
Client Application is Native to device and can switch theme layout - e.g. High Contrast
Client Application responds to Voice to Text technologies
Accessibility testing Client Application is Native to device and can switch theme layout - e.g. High Contrast
Client Application responds to Voice to Text technologies
What users can and can't do using the API An API and SDK for Mozzo may be purchased
These tools enable the development of Mozzo connectors for:
1. Exporting output from completed tasks to back office systems
2. Enabling research via Client application from back office systems

Connectors are deployed to the relevant Export/Search Gateway service on the Hybrid server and are made available for use in the design tool. Connectors permit federated searching (where search results may be used to complete tasks) and federated distribution of output from completed tasks to back office systems.
API documentation Yes
API documentation formats PDF
API sandbox or test environment No
Customisation available Yes
Description of customisation Mozzo is a field force automation platform for public sector organisations. Customers can customise the entire platform to digitalise any business process. Connectors can be deployed to allow research from or export to any target back office system.
* Creating Business Processes is undertaken in the Design Tool and can be done by anyone with Mozzo training, governed by role based access.
* Creating connectors is a developer role and can be done by the Customer's nominated developer.


Independence of resources Coeus utilises the scaling capabilities of the Microsoft Azure platform. This scaling affords demand management during peak times, reducing at non-peak times to keep service running costs to a minimum.


Service usage metrics No


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency Less than once a year
Penetration testing approach ‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
  • Other
Other data at rest protection approach Mozzo is dependent upon the the continued compliance of the Microsoft Azure UK data centres.
SQL Azure transparent data encryption.
Blob storage transparent data encryption.
Task data is compressed and encrypted using AES256.
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach The Customer will expect to export their data routinely when completed tasks are processed by the Hybrid server. Exported data can be presented in Word/PDF format or issued to a back office system using a suitable connector.
At the end of the contract the Customer wishing to export all data will provide Coeus with media. Coeus will export the database as a backup.
Data export formats
  • CSV
  • Other
Other data export formats
  • JSON
  • PDF
  • Word
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • Other
Other protection within supplier network Application traffic is additionally secured using application level compression and encryption within the TLS tunnel. Data at rest is also compressed and encrypted. The approach uses AES256.

Availability and resilience

Availability and resilience
Guaranteed availability Service level will be the same as provided by Microsoft Azure. Any SLA refunds provided by Microsoft could be available to the customer.
Approach to resilience Coeus makes use of the Microsoft Azure platform due to its scaling and resilience capabilities. Within the Azure platform, Coeus employs geographic replication of databases and services to ensure that the Mozzo service is resilient. Web services are provided by at least two instances at each data centre.
Outage reporting The Coeus service desk will issue email alerts in the event that the Mozzo service suffers any outages.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels Role based access delivered through an administrative (html-based) interface.
Access restriction testing frequency Less than once a year
Management access authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation No
Security governance approach Coeus is working towards ISO27001 accreditation.
Information security policies and processes Coeus have an information security policy under which staff are contractually obliged to follow. Coeus's products are built to ensure that its staff do not have access to clients' protected information. Monitoring of systems including internet-based communications as well as centrally managed group policies ensure that staff operate within their role function and no-one person has overall access to everything. Research & Development is separated from Operations and Service Management. Reporting of incidents is via line manager up to CEO level where a formal report would be made to the client(s) affected, accordingly. A client report is made within 24 hours of the incident being detected.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Coeus records client configuration details, including knowledgebase materials in its Service Desk system. Change Management follows a documented process, contained within the Standard Service Management policy and includes a Change Board to cover standard and emergency changes. Coeus employs a process in the Operations Department where changes can be simulated in a representative customer configuration for factory test purposes, before a formal release cycle commences, in order to ensure that potential security impacts are picked up.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Coeus is a partner with Microsoft, part of the ISV partner programme. Coeus uses its links with partners and other sources (including Clients, Symantec, Blackberry, NCSC) to monitor emerging and discovered vulnerabilities. The Coeus agile development process ensures that the response to vulnerabilities can be graded and responses can be impact assessed. The change management process will ensure that software updates or knowledgebase articles (where workarounds are possible) are issued as quickly as possible, dependent upon priority and complexity of the resolution. The Coeus Operations department tracks and monitors the conclusion of any works to eradicate vulnerabilities.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Coeus uses proactive monitoring, using tools made available, within the Cloud environment. In addition, the system provides Logs and AuditLogs to assist with monitoring of system and user behaviour. Coeus also liaises with Suppliers and Clients in order to continue the company's continued working towards GPG13. Audit logs comprise HMAC checksums to assure validity at rest. The collection of information in the field is only permitted on devices that are time synchronised and are not rooted.
Incident management type Supplier-defined controls
Incident management approach Coeus standard service management policy sets out the process by which Incident and Problem management cycles are managed. The Coeus service desk operates 'business to business'. The responsibility with the Client to ensure that calls from the user community are correctly analysed to eliminate local issues. Service Tickets issued when calls are placed. Coeus grades calls by priority and where incidents are categorised as problems, the Change Management cycle may be invoked. Coeus will use workarounds wherever possible to maintain continued service until a release cycle provides a formal resolution. Service Desk is available via a web based interface.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £4.50 to £5.75 per person per month
Discount for educational organisations No
Free trial available Yes
Description of free trial A free trial is a time-bound non-operational instance of Mozzo. It can be used to allow Customers the chance to build a baseline set of processes, and test them, as part of an onboarding process, before going live with an operational instance.


Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑