Products
Seven products. One platform.
Each product stands alone. They share data, design, and a single sign-in — so your IT, estates, governance, safeguarding, and finance teams stop emailing spreadsheets at each other.
Helpdesk + ITSM
Tickets, SLAs, KB, automation, change, problem, project, major-incident war-room, service catalogue. Replaces FreshService.
See what ships →
Estates compliance
Sites, statutory PPM, contractor portal, visitor kiosk, lone-working, room bookings, lettings, energy.
See what ships →
IT asset management
Device register, software licences, lifecycle tracking, stocktakes, on-prem network discovery.
See what ships →
Governance & risk
Risk register, policies, KCSIE/CE/ISO controls + evidence, scheme of delegation, committees, trustee portal.
See what ships →
Single Central Record
KCSIE-mandated checks per staff member with matrix view + auto-flagging on expiry; inspector-ready exports.
See what ships →
Health & Safety
Incidents + RIDDOR, accident book, risk assessments, COSHH, DSE, fire drills, first-aider cover, trips, recurring checklists.
See what ships →
People register
Staff records, JML workflow, leave self-service, appraisals, CPD log, org chart, payroll export. The source the SCR and H&S check against.
See what ships →
The platform underneath
Every module inherits the same audit fabric, identity, search and data ownership. That's the breadth story.
These aren't bolt-ons — they're shared by every product on your licence. Switch on Helpdesk and you get the same audit log, inspector mode and API as Estates or the SCR. No second-class modules.
A single audit fabric
- Tamper-signed audit on every change — who, when, what, before & after — retained 7 years
- Inspector / auditor mode — read-only timed account, access-logged, built into every module at no extra charge
- Append-only audit log, partitioned by month, per-row signed; queryable from standard Postgres
- Signed inspection bundle — one-click PDF across SCR, estates, governance, H&S with cryptographic hash
Identity, mobile and search
- SSO via Entra ID / Google / SAML / OIDC / LDAP; SCIM v2 provisioning; WebAuthn passkeys
- School-level RBAC — restrict role access to specific academies within the trust
- Cmd-K global search across every module — tickets, assets, people, policies, sites — one keystroke
- Mobile PWA with offline support — requester portal works on a phone, queues changes when offline
Data, integrations and AI
- REST API v1 — full CRUD on every entity, OpenAPI 3.1 spec
- Webhooks — signed outbound event firehose for every state change
- Wonde MIS sync — staff, schools and rooms; one-way, scheduled, retry-logged
- AI built-in, off by default — ticket triage, reply copilot, anomaly insights, weekly headteacher briefing; PII-redacted, BYO key, cost-capped per workspace
Privacy & data ownership
- GDPR module — DSAR intake, DPO inbox, cross-module subject bundle, cross-module right-to-be-forgotten
- ROPA generator (Article 30) and breach register on the 72-hour clock
- External-source sweep across Microsoft 365 and Google Workspace
- Sensitive PII encrypted at rest — NI numbers, DBS refs, credentials
- Source code included for licensed trusts; full data export + schema on demand, no exit fee
See it all on the full features page, or click around the live demo at portal.alresfordmat.uk — every line above is in the product today.