Castlepoint is one solution for all your systems and our pricing is all in one too.

We license by network, so no matter how many users, systems or records you have, Castlepoint is a flat cost to own and run. The licence subscription includes:

• An enterprise licence to use the software on a single production network
• Monthly maintenance, system checks, patching, and upgrades as required
• User and administrator support as required.

Castlepoint is deployed and configured rapidly, and involves:

• Your IT team providing access to your data using simple, out of the box authentication patterns
• Our team coding and deploying your Records Authorities and other regulatory requirements
• Our team deploying your business classification ontologies and taxonomies
• Our team configuring the alerts you want to receive about events in your environment

Castlepoint is one solution for all your systems and our pricing is all in one too. When you implement Castlepoint the following capabilities are available to be configured for you:

• Records Management with automatic registration, classification, sentencing and disposition
• Security and Privacy Management by automatically identifying high-risk information and PII
• Audit and monitoring with events captured on all records, by all users, and across all systems
• Alerts and Reporting when high-risk or high-value content is created, modified or moved
• eDiscovery with powerful and defensible search, ontology, and relating records across systems

Once you have made a decision, Castlepoint can be installed on your network, or hosted by us, and be managing all your data in just a few hours.

You can contact us in the event of a breach, formal inquiry, or business continuity event and get help immediately. The system is easy and fast to set up, doesn’t need IT application changes, and won’t affect productivity or cause business disruption.

There is no impact on your data.

Other compliance systems require the source data itself to be moved, duplicated, or modified in order to apply the compliance rule. Moving information into compliance systems takes it out of its business context, reducing its usability. Duplicating information doubles the threat surface of PII and sensitive data, and halves the discoverability. Adding metadata labels or tags results in changes to original records, which can affect the integrity of both the record and its source system. Additionally, these labelling approaches do not address the full scope of compliance – the number of labels that can be applied is limited, meaning organisations have to choose whether to label based on retention rule, value marker or risk designation. This means that compliance is only ever addressed through a narrow lens.

Castlepoint addresses this challenge by never moving or copying information, or modifying it in any way – we register all the metadata about an item, including as many compliance attributes as required, in the Castlepoint information asset register, where it is centrally available for search, reporting and oversight.

There is no impact on governance teams.

As Artificial Intelligence and automation have become more common, many traditional compliance systems have modified their toolset to try to take advantages of the benefits of this new technology. But many of these automation approaches are ‘Mechanical Turks’ – they look like a robot, but there is a person inside. That person is often the records or compliance manager, who needs to write and manage hundreds or thousands of rules manually, so that the system can apply them ‘automatically’. Some Machine Learning approaches to compliance also use a highly supervised approach, requiring compliance teams to pull together thousands of curated examples of documents to match every single rule in order to ‘train’ those systems.

Castlepoint addresses this challenge by training the AI on the rules, not just on the data, taking the burden off administrators so that they can spend their time actioning the insights from Castlepoint, not just feeding the machine.

There is no negative impact on operations or systems.

Previous approaches to achieving information command and control across a network have relied on either customising systems, closely integrating them together, or adding point solutions in the form of agents and connectors. All of these approaches introduce technical risk. Customising, integrating and connecting systems in this way affects their supportability and upgrade path. The cost of deploying these approaches can be excessive, and the impact on the source system security, failover, and sustainment can be high.

Castlepoint addresses this challenge by avoiding any changes to source systems – it only needs read access to the system, like a user, to compliantly manage its data.

There is no impact on users.

Information governance has traditionally relied on user compliance. We ask users to save in certain locations, ‘make a record’ intermittently, apply metadata to individual items, use naming taxonomy conventions, and copy or move their content into records systems.

As well as creating an unwelcome burden on users, this results in low-quality compliance outcomes, as users are not experts in compliance and often do not apply the correct rules. The same goes for security – we rely on users to know what information should be classified (which is not always obvious) and to then label items correctly. This model has not been effective.

Castlepoint addresses this challenge by using AI to identify the applicable rules and classifications for information based on its content, and to apply them centrally.

‍