CACI InSite Everywhere - Acorn and Paycheck [SW3]

InSite Everywhere is a Geographic Information System (GIS) – a secure cloud application that provides access to the following licensed datasets; Acorn, Household Acorn, Wellbeing Acorn, Paycheck & Paycheck Disposable Income. Augmented with this data, users can code and profile data to understand about customers, residents or the wider community.


  • Acorn, Wellbeing Acorn, Paycheck Family Income available at postcode level
  • Household Acorn available at household level
  • Access via InSite Everywhere or secure data transfer portal
  • Acorn portal provides resources to understand each segment in detail
  • Knowledge Sheets and Profiler tool
  • Household Acorn includes links to NLPG URPNs and UDPRNs
  • Unique health and wellbeing segmentation
  • Dedicated Account Manager
  • Training support and consultancy included
  • Access to helpdesk and expert technical support


  • Increased understanding of evolving communities to inform decision-making
  • Consistent view of demographic, lifestyle and behavioural characteristics of residents
  • Local intelligence to better understand the needs of the community
  • Prioritise resources and delivery of services to achieve efficiency savings
  • An understanding of the health and wellbeing of residents
  • Ability to assess the wider determinants of health
  • Detailed understanding of digital connectivity and online/offline behaviours
  • Support effective engagement that reflects channel, contact and marketing preferences
  • Understanding of gross household, disposable, equivalised and lifestage incomes
  • Publicly publishing and sharing permissions included


£5,000 to £75,000 a user a year

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

5 0 9 0 1 8 6 6 4 0 8 0 4 2 6


CACI UK Ltd CACI Digital Marketplace Sales Team
Telephone: 0207 602 6000

Service scope

Software add-on or extension
Cloud deployment model
Private cloud
Service constraints
System requirements
Appropriate browser enabled device and connection to the internet.

User support

Email or online ticketing support
Email or online ticketing
Support response times
CACI responds to questions on average within one hour, or less, from receipt during office hours. Resolution, if not achieved immediately when responding, is typically within 24-48 hours depending on the complexity of the enquiry. Enquiries logged outside of office hours will be quickly addressed on the next working day.
User can manage status and priority of support tickets
Phone support
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Onsite support
Yes, at extra cost
Support levels
CACI provides comprehensive support as standard for all InSite Everywhere customers. For the duration of the license term CACI provides 0.5 days training or consultancy per annum.

Initially, from contract start, support is provided in the form of training to users to ensure they can effectively use InSite Everywhere and the associated datasets. Depending on the number and location of users that require training this can be held at CACI’s Head Office, in London, or onsite. Sessions are designed to be interactive and are conducted by one of CACI’s experienced consultants. Subsequent training or consultancy sessions throughout the licence term will review how the users are utilising InSite Everywhere to maximise the value delivered.

InSite Everywhere customers will have access to a single point of contact for all enquiries. A dedicated account manager will field all general or technical enquiries, and depending on the nature of the enquiry, will either resolve directly, pass to the helpdesk or escalate to CACI’s InSite Everywhere technical team of experts. Customers can make contact via telephone or email.
Support available to third parties

Onboarding and offboarding

Getting started
To ensure users maximise the value of InSite Everywhere and the associated datasets, CACI includes training and consultancy as standard. Depending on the number and location of users that require training this can be held at CACI’s Head Office, in London, or onsite.

To embed the required knowledge for users to effectively use InSite Everywhere and the associated datasets training sessions are designed to be interactive and are conducted by one of CACI’s experienced consultants, with in-depth knowledge of the solution. Training will last for approximately 3.5 hours / 0.5 days. User Guides will be supplied, and can either be provided before or after the training.

Follow-on support and consultancy (0.5 days per annum) is available for the life of the licence term, and can be used to review how the users are utilising InSite Everywhere or to train new users.
Service documentation
Documentation formats
  • PDF
  • Other
Other documentation formats
  • Microsoft Word
  • Microsoft Excel
  • Microsoft Powerpoint
End-of-contract data extraction
At the end of the contract InSite Everywhere will automatically switch off. Users are contractually required to remove and delete all data with the exception of aggregated data that may have been included as part of published reports and / or maps in line with CACI's publishing and sharing terms and conditions.

CACI will issue a Termination Letter at the end of the licence term for the customer to sign and return formally terminating the agreement and confirming compliance with the contract terms and conditions.
End-of-contract process
Should a customer choose not to renew their license, it is a requirement for the customer to serve notice (in writing or via email) 30 days before the end of the agreement. As the end of the agreement approaches CACI will issue a termination letter for the customer to sign and return formalising the end of the agreement.

The customer will be required to delete / destroy all deliverables of InSite at the end of the last day of the agreement. The customers instance of InSite will then be switched of and all user account data will be deleted.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Firefox
  • Chrome
Application to install
Designed for use on mobile devices
Differences between the mobile and desktop service
None - InSite Everywhere allows users to access the tool wherever they are. InSite Everywhere has been optimised to provide a seamless experience across desktop, laptop and tablet devices.
Service interface
Description of service interface
InSite Everywhere is designed to work on an internet browser with and without a touch interface. All operations are either typed into input boxes or selections made through clickable menu items.
Accessibility standards
Accessibility testing
Internal testing has been carried out during the development of InSite to optimise access and usability for customers, i.e. colour schemes, fonts and page layouts. InSite is fully compatible with the accessibility features of the leading web browsers; Internet Explorer, Firefox and Chrome. CACI has experience of tailoring visual displays for users with visual impairment, and discuss specific requirements on a customer-by-customer basis.
Customisation available
Description of customisation
Users can customise InSite Everywhere by adding additional datasets such as:

- CACI's consumer segmentations - Acorn and Household Acorn
- CACI's health and wellbeing segmentation - Wellbeing Acorn
- CACI's gross household income - Paycheck Family of products.

Users can customise their service for an additional fee via a contract amendment. Upon receipt of the signed contract amendment CACI will update the service for users to access. Please allow up to five working days for the service to be updated with the contracted customisations. Customers cannot customise their service themselves.


Independence of resources
CACI operates internal processes to ensure resources are matched to meet demand.


Service usage metrics
Metrics types
Successful/failed logons
Session duration
Password resets
Password changes
Reports Generated
Reporting types
Reports on request


Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2012
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Supplier-defined controls
Penetration testing frequency
At least once a year
Penetration testing approach
Protecting data at rest
Physical access control, complying with CSA CCM v3.0
Data sanitisation process
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
InSite Everywhere allows users to define at a granular level the data they wish to export. Data can extracted in either .xls or .csv formats.
Data export formats
  • CSV
  • Other
Other data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
InSite availability for the last 12 months has been over 99.9%. Where customers require a Service Level Agreement (SLA) and respective Key Performance Indicators (KPIs), these are discussed and agreed at contract signature to align service availability and performance to the customers needs.

Anticipated downtime for upgrades is agreed in advance with customers to avoid any impact during busy periods. This proactive approach enables communications to be sent to the user base prior to the release of upgrades or patches.
Approach to resilience
All CACI systems are installed on highly available hardware in CACI owned UK data centres, backed up nightly on offsite encrypted media, patched regularly, while being protected by high-end firewall systems, intrusion detection and antivirus systems. Complete network penetration tests are performed annually by independent third parties.
Outage reporting
In the unlikely event of service outage an email alert would be sent to the user(s).

Identity and authentication

User authentication needed
User authentication
  • Username or password
  • Other
Other user authentication
InSite Everywhere uses Spring Security framework and Microsoft Active Directory to authenticate users.
Access restrictions in management interfaces and support channels
CACI operates a layered, segregated and separated environment with role based multi-factor authentication.
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Dedicated link (for example VPN)
  • Username or password
  • Other
Description of management access authentication
Two factor authentication with dedicated management accounts with extended complex password requirements. All employees BPSS vetted with SC clearance required for PSN environments.

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Who accredited the ISO/IEC 27001
ISO/IEC 27001 accreditation date
What the ISO/IEC 27001 doesn’t cover
Not applicable
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance standards
  • ISO/IEC 27001
  • Other
Other security governance standards
Cyber Essentials Plus
ISO 9001
ISO 20001
ISO 14001
Information security policies and processes
CACI have a comprehensive Security Policy based on the ISO 27001. The policy is owned by CACI's Executive Management Team which is an executive level body, and which assumes ultimate responsibility. The ISO standard covers:

- Organisation and Management
- Information Security
- Asset Classification
- Physical and Environmental Security
- Communications and Operations Management
- System Access
- Systems Development and Maintenance
- Compliance
- Personnel and Provisioning
- Business Continuity Management
- Third Party Management.

CACI management supports security through leadership statements, actions and endorsement of the security policy and implementing, improving the controls specified in the policy. The policy is available to all CACI employees and contractors on the intranet. Changes to the policy are announced on the company's intranet and followed up with training and awareness programmes.

New starters are required to undertake computer-based information security and data protection training, and this is repeated on at least an annual basis. Compliance to policy is overseen by internal audit.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
All change management is covered by CACI's ISO 27001 ISMS. We have a continuous development programme across all CACI products and services including InSite Everywhere and the associated datasets. This is managed through Agile Project Management processes, any changes and enhancements are implemented as they are reviewed and approved by our software developers and product owners.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
As part of CACI's ISO 27001 ISMS vulnerability testing is conducted by an independent CHECK and CREST certified third party every 12 months. CACI's ISMS patch management process deploys updates on a monthly basis, however more frequently where applicable.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
As part of CACI's 27001 ISMS intrusion prevention and detection services are deployed to provide real time identification of compromise. Response SLAs are an integral part of our ISMS policies and processes.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
All Security Incidents are recorded and documented in-line with our security incident policy and response procedure, for each incident a root cause analysis is conducted and a preventative action will be implemented to prevent or reduce the probability of the incident reoccurring in the future. A Security Incident Support call is raised to the Projects & Security team within the Technology Department. The support call requires analysis, corrective action and preventative action to be recorded.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks


£5,000 to £75,000 a user a year
Discount for educational organisations
Free trial available
Description of free trial
InSite Everywhere and the associated CACI datasets can be tested free subject to an Evaluation Agreement for up to 10 days. This arrangement allows internal evaluation, however does not permit it to be used for commercial day to day activities.
Link to free trial
A link to free trial can be made available once a signed Evaluation Agreement has been received.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.