ContraCase is designed for organisations that handle statutory casework, sensitive requests, and regulated information processes.
Our approach is simple: keep organisations in control of their data, use existing Microsoft 365 environments wherever possible, and provide a clear operational layer for managing FOI, EIR, SAR, complaints, data breaches, and related casework.
How ContraCase approaches security, access control, and auditability.
How ContraCase works with your existing Microsoft 365 environment.
How personal data is handled, roles, and responsibilities.
Support pack for completing a Data Protection Impact Assessment.
Third-party services used by ContraCase.
How ContraCase handles security incidents and data breaches.
How data retention and deletion is managed.
How support access is controlled and audited.
Accessibility statement and WCAG 2.2 AA commitment.
Documentation to support procurement and assurance review.
ContraCase is intended to support, not replace, each customer's own statutory, legal, data protection, records management, and information governance responsibilities. Customers remain responsible for ensuring that their use of ContraCase is configured and operated in line with their legal obligations, internal policies, and applicable regulatory requirements.