CACI InSite Everywhere - Acorn and Paycheck

InSite Everywhere is a Geographic Information System (GIS) – a secure cloud application that provides access to the following licensed datasets; Acorn, Household Acorn, Wellbeing Acorn, Paycheck & Paycheck Disposable Income. Augmented with this data, users can code and profile data to understand about customers, residents or the wider community.


  • Acorn, Wellbeing Acorn, Paycheck Family Income available at postcode level
  • Household Acorn available at household level
  • Access via InSite Everywhere or secure data transfer portal
  • Acorn portal provides resources to understand each segment in detail
  • Knowledge Sheets and Profiler tool
  • Household Acorn includes links to NLPG URPNs and UDPRNs
  • Unique health and wellbeing segmentation
  • Dedicated Account Manager
  • Training support and consultancy included
  • Access to helpdesk and expert technical support


  • Increased understanding of evolving communities to inform decision-making
  • Consistent view of demographic, lifestyle and behavioural characteristics of residents
  • Local intelligence to better understand the needs of the community
  • Prioritise resources and delivery of services to achieve efficiency savings
  • An understanding of the health and wellbeing of residents
  • Ability to assess the wider determinants of health
  • Detailed understanding of digital connectivity and online/offline behaviours
  • Support effective engagement that reflects channel, contact and marketing preferences
  • Understanding of gross household, disposable, equivalised and lifestage incomes
  • Publicly publishing and sharing permissions included


£5000 to £75000 per user per year

Service documents

G-Cloud 11



CACI Digital Marketplace Sales Team

0207 602 6000

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints No
System requirements Appropriate browser enabled device and connection to the internet.

User support

User support
Email or online ticketing support Email or online ticketing
Support response times CACI responds to questions on average within one hour, or less, from receipt during office hours. Resolution, if not achieved immediately when responding, is typically within 24-48 hours depending on the complexity of the enquiry. Enquiries logged outside of office hours will be quickly addressed on the next working day.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels CACI provides comprehensive support as standard for all InSite Everywhere customers. For the duration of the license term CACI provides 0.5 days training or consultancy per annum.

Initially, from contract start, support is provided in the form of training to users to ensure they can effectively use InSite Everywhere and the associated datasets. Depending on the number and location of users that require training this can be held at CACI’s Head Office, in London, or onsite. Sessions are designed to be interactive and are conducted by one of CACI’s experienced consultants. Subsequent training or consultancy sessions throughout the licence term will review how the users are utilising InSite Everywhere to maximise the value delivered.

InSite Everywhere customers will have access to a single point of contact for all enquiries. A dedicated account manager will field all general or technical enquiries, and depending on the nature of the enquiry, will either resolve directly, pass to the helpdesk or escalate to CACI’s InSite Everywhere technical team of experts. Customers can make contact via telephone or email.
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started To ensure users maximise the value of InSite Everywhere and the associated datasets, CACI includes training and consultancy as standard. Depending on the number and location of users that require training this can be held at CACI’s Head Office, in London, or onsite.

To embed the required knowledge for users to effectively use InSite Everywhere and the associated datasets training sessions are designed to be interactive and are conducted by one of CACI’s experienced consultants, with in-depth knowledge of the solution. Training will last for approximately 3.5 hours / 0.5 days. User Guides will be supplied, and can either be provided before or after the training.

Follow-on support and consultancy (0.5 days per annum) is available for the life of the licence term, and can be used to review how the users are utilising InSite Everywhere or to train new users.
Service documentation Yes
Documentation formats
  • PDF
  • Other
Other documentation formats
  • Microsoft Word
  • Microsoft Excel
  • Microsoft Powerpoint
End-of-contract data extraction At the end of the contract InSite Everywhere will automatically switch off. Users are contractually required to remove and delete all data with the exception of aggregated data that may have been included as part of published reports and / or maps in line with CACI's publishing and sharing terms and conditions.

CACI will issue a Termination Letter at the end of the licence term for the customer to sign and return formally terminating the agreement and confirming compliance with the contract terms and conditions.
End-of-contract process Should a customer choose not to renew their license, it is a requirement for the customer to serve notice (in writing or via email) 30 days before the end of the agreement. As the end of the agreement approaches CACI will issue a termination letter for the customer to sign and return formalising the end of the agreement.

The customer will be required to delete / destroy all deliverables of InSite at the end of the last day of the agreement. The customers instance of InSite will then be switched of and all user account data will be deleted.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Firefox
  • Chrome
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service None - InSite Everywhere allows users to access the tool wherever they are. InSite Everywhere has been optimised to provide a seamless experience across desktop, laptop and tablet devices.
Service interface Yes
Description of service interface InSite Everywhere is designed to work on an internet browser with and without a touch interface. All operations are either typed into input boxes or selections made through clickable menu items.
Accessibility standards WCAG 2.1 AAA
Accessibility testing Internal testing has been carried out during the development of InSite to optimise access and usability for customers, i.e. colour schemes, fonts and page layouts. InSite is fully compatible with the accessibility features of the leading web browsers; Internet Explorer, Firefox and Chrome. CACI has experience of tailoring visual displays for users with visual impairment, and discuss specific requirements on a customer-by-customer basis.
Customisation available Yes
Description of customisation Users can customise InSite Everywhere by adding additional datasets such as:

- CACI's consumer segmentations - Acorn and Household Acorn
- CACI's health and wellbeing segmentation - Wellbeing Acorn
- CACI's gross household income - Paycheck Family of products.

Users can customise their service for an additional fee via a contract amendment. Upon receipt of the signed contract amendment CACI will update the service for users to access. Please allow up to five working days for the service to be updated with the contracted customisations. Customers cannot customise their service themselves.


Independence of resources CACI operates internal processes to ensure resources are matched to meet demand.


Service usage metrics Yes
Metrics types Successful/failed logons
Session duration
Password resets
Password changes
Reports Generated
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Physical access control, complying with CSA CCM v3.0
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach InSite Everywhere allows users to define at a granular level the data they wish to export. Data can extracted in either .xls or .csv formats.
Data export formats
  • CSV
  • Other
Other data export formats XLS
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability InSite availability for the last 12 months has been over 99.9%. Where customers require a Service Level Agreement (SLA) and respective Key Performance Indicators (KPIs), these are discussed and agreed at contract signature to align service availability and performance to the customers needs.

Anticipated downtime for upgrades is agreed in advance with customers to avoid any impact during busy periods. This proactive approach enables communications to be sent to the user base prior to the release of upgrades or patches.
Approach to resilience All CACI systems are installed on highly available hardware in CACI owned UK data centres, backed up nightly on offsite encrypted media, patched regularly, while being protected by high-end firewall systems, intrusion detection and antivirus systems. Complete network penetration tests are performed annually by independent third parties.
Outage reporting In the unlikely event of service outage an email alert would be sent to the user(s).

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Username or password
  • Other
Other user authentication InSite Everywhere uses Spring Security framework and Microsoft Active Directory to authenticate users.
Access restrictions in management interfaces and support channels CACI operates a layered, segregated and separated environment with role based multi-factor authentication.
Access restriction testing frequency At least once a year
Management access authentication
  • 2-factor authentication
  • Dedicated link (for example VPN)
  • Username or password
  • Other
Description of management access authentication Two factor authentication with dedicated management accounts with extended complex password requirements. All employees BPSS vetted with SC clearance required for PSN environments.

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 BSI
ISO/IEC 27001 accreditation date 18-04-2018
What the ISO/IEC 27001 doesn’t cover Not applicable
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards
  • ISO/IEC 27001
  • Other
Other security governance standards Cyber Essentials Plus
ISO 9001
ISO 20001
ISO 14001
Information security policies and processes CACI have a comprehensive Security Policy based on the ISO 27001. The policy is owned by CACI's Executive Management Team which is an executive level body, and which assumes ultimate responsibility. The ISO standard covers:

- Organisation and Management
- Information Security
- Asset Classification
- Physical and Environmental Security
- Communications and Operations Management
- System Access
- Systems Development and Maintenance
- Compliance
- Personnel and Provisioning
- Business Continuity Management
- Third Party Management.

CACI management supports security through leadership statements, actions and endorsement of the security policy and implementing, improving the controls specified in the policy. The policy is available to all CACI employees and contractors on the intranet. Changes to the policy are announced on the company's intranet and followed up with training and awareness programmes.

New starters are required to undertake computer-based information security and data protection training, and this is repeated on at least an annual basis. Compliance to policy is overseen by internal audit.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All change management is covered by CACI's ISO 27001 ISMS. We have a continuous development programme across all CACI products and services including InSite Everywhere and the associated datasets. This is managed through Agile Project Management processes, any changes and enhancements are implemented as they are reviewed and approved by our software developers and product owners.
Vulnerability management type Supplier-defined controls
Vulnerability management approach As part of CACI's ISO 27001 ISMS vulnerability testing is conducted by an independent CHECK and CREST certified third party every 12 months. CACI's ISMS patch management process deploys updates on a monthly basis, however more frequently where applicable.
Protective monitoring type Supplier-defined controls
Protective monitoring approach As part of CACI's 27001 ISMS intrusion prevention and detection services are deployed to provide real time identification of compromise. Response SLAs are an integral part of our ISMS policies and processes.
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach All Security Incidents are recorded and documented in-line with our security incident policy and response procedure, for each incident a root cause analysis is conducted and a preventative action will be implemented to prevent or reduce the probability of the incident reoccurring in the future. A Security Incident Support call is raised to the Projects & Security team within the Technology Department. The support call requires analysis, corrective action and preventative action to be recorded.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £5000 to £75000 per user per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial InSite Everywhere and the associated CACI datasets can be tested free subject to an Evaluation Agreement for up to 10 days. This arrangement allows internal evaluation, however does not permit it to be used for commercial day to day activities.
Link to free trial A link to free trial can be made available once a signed Evaluation Agreement has been received.

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions pdf document: Modern Slavery statement
Service documents
Return to top ↑