Policy in Practice

Low Income Family Tracker (LIFT) Dashboard

The policy dashboard is an online interactive tool that combines our analytics engine with local authority data to drive strategic and operational decisions in the provision of a range of services, starting with welfare and housing, but capable of working with additional data sets.


  • Snapshot of residents situation
  • Analysis of households most impacted by welfare reform
  • Live chat support
  • Bring your data to life with interactive maps
  • Track the impact of interventions on households
  • Model the impact of future policies to intervene early


  • Quickly access information on which households need support
  • Evidence of where support is needed from third party expert
  • Spot trends in your data-sets
  • Download the underlying data-sets for further analysis
  • Make data-driven decisions
  • Identify households that are in poverty
  • Understand the cumulative impact of welfare reform


£5000 to £30000 per unit per quarter

Service documents


G-Cloud 11

Service ID

7 7 5 1 0 6 3 8 3 2 5 1 5 6 8


Policy in Practice

Deven Ghelani



Service scope

Software add-on or extension
Cloud deployment model
Private cloud
Service constraints
Tested on IE8 and above.
System requirements
  • Browser
  • Internet access

User support

Email or online ticketing support
Email or online ticketing
Support response times
Response times are typically within the hour
User can manage status and priority of support tickets
Phone support
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Web chat is a typed portal. Any requests on improved accessibility can be discussed with the company
Web chat accessibility testing
Testing has been done by the web chat software provider. Any further conversations on accessibility would be welcomed by Policy in Practice
Onsite support
Yes, at extra cost
Support levels
Service includes a half day of on-site training.
Additional time can be purchased.
Support available to third parties

Onboarding and offboarding

Getting started
Onsite training, online training, or user documentation
Service documentation
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction
Users are sent their data as part of the service. Their data is deleted when the contract ends as described in the data sharing agreement.
End-of-contract process
The service is delivered and there are no additional costs.

The buyer need only provide 45 days written notice if provided as an ongoing service.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
Designed for use on mobile devices
Differences between the mobile and desktop service
None other than dynamic layouts.
Service interface
What users can and can't do using the API
Connect the service to their CRM or other service.
API documentation
API documentation formats
API sandbox or test environment
Customisation available
Description of customisation
The logo, colours, labels and ordering of questions on the form.


Independence of resources
Cloud based service automatically scaled up, guaranteed uptime and delivery timescales provided at the outset.


Service usage metrics
Metrics types
Comprehensive MI including overall usage, number of users accessed, services accessed (among others).
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least every 6 months
Penetration testing approach
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
In-house destruction process

Data importing and exporting

Data export approach
Sent securely via file sharing site as an excel file.
Data export formats
  • CSV
  • Other
Other data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
Specified in Clause 8 of our terms and conditions:
Approach to resilience
Available on request.
Outage reporting
Email alerts.

Identity and authentication

User authentication needed
User authentication
Username or password
Access restrictions in management interfaces and support channels
Full multi-layer control over who can access what by the client.
Access restriction testing frequency
At least every 6 months
Management access authentication
Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
You control when users can access audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance approach
We follow best practice procedures, these are regularly updated by our CTO and head of operations for what is a constantly evolving service.
Information security policies and processes
Document and available upon request as PDF / word document.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Processes are regularly updated by our CTO and head of operations, with external support / input on a regular basis.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Processes are regularly updated by our CTO and head of operations, with external support / input on a regular basis.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Processes are updated by our CTO and Head of operations with external input on a regular (at least annual) basis.
Incident management type
Supplier-defined controls
Incident management approach
Processes are updated by our CTO and Head of operations with external input on a regular (at least annual) basis.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks


£5000 to £30000 per unit per quarter
Discount for educational organisations
Free trial available

Service documents

Return to top ↑