UK Defence · Government · CNI

One Seal. One Person. Complete Assurance.

SignetAssure is the single source of truth for vetting records, physical access, site passes, emergency comms and supplier control in cleared environments — and the bridge between you and every trusted partner that runs it too. The system manages the data and enforces the rules behind every UK clearance level; decisions remain with your approved vetting authority.

Request a demo See the platform →

Vetting: All UK clearance levels
Access: CredoID native · API-led ACS
Sharing: Cross-org API · Federated
Deploy: UK cloud · On-prem

Personnel · 1 of 312 Cleared

J. Davies

Engineering · Site B · Contractor

Clearance Cleared · valid to 2027-09
Site pass Disable in 6 days · inactivity
CredoID sync 2 min ago · 12 levels
Cross-org shares 2 in last 30 days

Audit · view full history

The problem

Spreadsheets and disconnected systems don’t survive a DSO audit.

In cleared environments, vetting, passes, access and supplier oversight are usually four different systems — held together by an Excel sheet, an inbox and someone’s diary. Renewals slip. Badges outlive clearances. SALs go missing. PDF clearance confirmations get re-keyed between primes and tier-1s. Auditors find gaps that shouldn’t exist.

Clearance gaps go unnoticed

Expiries land in inboxes. People with lapsed clearances keep walking through doors that should have closed.

Evidence is scattered

Vetting case notes, NSV submissions, external clearances, supplier SALs and right-to-work sit across tools. Pulling an audit pack takes a week.

Cross-org sharing is manual

Clearance status moves between organisations as emailed PDFs and re-keyed records. No standard. No audit trail. No revocation path.

The platform

One record. From applicant to access — and across the supply chain.

SignetAssure unifies personnel vetting records, physical access, site passes, travel, parking, emergency comms, supplier control and classified asset accountability — and provides the federated API so trusted partner organisations can verify clearance state without anyone exporting a PDF. The system manages the data and enforces the rules; actual vetting decisions remain with your approved vetting authority.

Personnel registry

One profile per person. Employees and contractors. Multi-employment, M365/LDAP-linked, change-controlled at the field level.

Vetting case management

Full lifecycle data management across all UK clearance levels. Parent/child renewals, NSV submission tracking, external clearances and a vetting officer workflow — supporting the process, not replacing the authority.

CredoID-native access

Bi-directional sync with CredoID. Access profiles, per-person grants with date windows, and automatic removal of unapproved levels.

Site pass management

Vetting-led expiry, contractor 12-month rolling rules, inactivity disable/removal logic and amber/red banners before things expire.

Travel authorisation

Foreign travel requests with country risk classification, approval workflow and per-person history.

Emergency comms

Group-based SMS broadcast with auto-membership, two-way keyword response, delivery receipts and cost tracking. WhatsApp-ready.

Parking management

Zone capacity, advance booking with configurable windows, VIP overrides and violation tracking with appeals.

Security appraisals (SAF)

Schedule, run and track Security Appraisal Forms with a stage-based workflow and an upcoming/overdue dashboard.

MyInfo self-service

Individuals see their own clearances, pass status, vehicles, mobile, parking and travel — and nothing they don’t need to.

Incident management

Log, investigate and close security incidents and violations with subject linkage, stage-based workflow and DSO-reportable outputs.

Training & briefings

Track security briefing completion across the estate. Clearance-level requirements, certificate upload and automated expiry reminders.

Classified assets

Document and physical object registers with classification levels, custodian assignment, chain of custody and destruction records.

Supplier control

Vendor oversight end-to-end. SAL issuance with auto-supersession, visit scheduling, risk register, Cyber Essentials & CE+ expiry tracking and a hardened document store.

Cross-organisation vetting sharing

Trusted partner organisations look up clearance status through a scoped, rate-limited API. Every share recorded as a disclosure on both sides. No PDFs. No re-keying.

How it works

Four layers, one signed spine.

Manage personnel

One record per person — employees and contractors — with identity, employment, nationality and photo, all change-controlled.

Track clearances

Run the full vetting lifecycle across all UK clearance levels. Renewals, parent/child links, NSV submissions and externally held clearances — all tracked.

Sync access

Clearance state drives physical access. Every access level carries an enforced start and end date — CredoID activates and expires levels automatically, and anything unapproved is detected and removed.

Share across the supply chain

Trusted partner organisations look up clearance status by name and date of birth through a scoped, rate-limited API. Every share recorded as a disclosure on both sides — no PDFs, no email chains.

See it in motion

Two minutes. The whole platform.

A short, narrated walk-through of personnel, vetting, CredoID access and cross-organisation sharing — for the security officer who doesn’t have an afternoon free.

Two minutes · No login required

Integration spotlight

CredoID, in real time.

SignetAssure was built around a CredoID-native integration. Push, sync, monitor and clean — without leaving the platform.

Bi-directional sync

Create, update, disable and remove personnel in CredoID on a configurable schedule. Companies and locations mapped both ways.

Unapproved access auto-removed

Any CredoID access level not sanctioned in SignetAssure is detected, removed and logged. No drift, no orphan permissions.

Inactivity enforcement

Disable and removal dates calculated from last pass use, capped at clearance expiry. Surfaced to security and to the individual.

Access levels with enforced start & end times

Every access level grant carries a specific start date and end date — and the system enforces them automatically. Levels go live on time and expire on time, with no manual intervention and no forgotten overrides. This is not a common feature. Use it.

Live event log

Per-person CredoID access history streamed into the platform. Every door, every badge, every change.

Open beyond CredoID

If your access control system has an API, SignetAssure can drive it. CredoID is the deepest integration; the pattern is repeatable.

Explore integrations

Cross-organisation sharing

Vetting that travels with the person.

When the primes and the tier-1s in your supply chain all run SignetAssure, clearance state flows end to end. No more PDF clearance confirmations by email. No more re-keying the same person into the next organisation’s system. One scoped API call returns the minimum sufficient data — and audits both sides.

Peer deployments

Register every trusted partner instance. Outbound credentials encrypted at rest; inbound keys scoped, rate-limited and IP allow-listed.

Lookup, not transfer

Name and date of birth in; clearance level, status, validity window and issuing authority out. Address, NI number, line manager — never shared.

Vetting return path

Partners running a vetting check on your behalf post the outcome straight back into the case. On a cleared result the state mirrors onto the person automatically.

Disclosure trail per person

Every cross-organisation share appears on the individual’s record alongside manual disclosures. One paper trail, two sides of the conversation.

Bi-directional signed audit

Every call signed and recorded on both endpoints. Soft-revoke a partner site and every key — inbound and outbound — deactivates in one step.

Scoped capability

Separate vetting:read and vetting:return scopes. Partners get only what they need, for only as long as they need it.

See the API contract Module detail →

Differentiators

What makes SignetAssure different.

UK classified

UK vetting framework native

All UK clearance levels are first-class — not generic case types renamed.

CredoID-native

Doors that listen to clearance

Real-time sync, with unapproved access detection and inactivity enforcement built in.

Federated

Clearance flows across orgs

Trusted partner organisations verify clearance state through one scoped, rate-limited API. Audited on both sides.

One source of truth

Personnel to perimeter

Personnel, vetting, access, travel, parking, supplier control and emergency comms — one platform, one audit trail.

Hardened

Encrypted, scoped, allow-listed

Outbound credentials encrypted at rest. Inbound keys IP-restricted, rate-limited and scoped. Signed audit on every external call.

Configurable

Tuned without code

Renewal windows, inactivity thresholds, role mappings, access profiles, supplier categories — all in admin, not in deployments.

Roles

Built for the team that runs the perimeter.

Six roles out of the box, each with the data and screens they need — and none they don’t.

Role

System Administrator

Full system access. Configures roles, system variables, access profiles, locations and reference data.

Role

Personnel Vetting Officer

Owns the vetting lifecycle. Creates and progresses cases, approves renewals, handles travel.

Role

Security Supervisor

Owns physical access. Manages CredoID sync, access levels and pass status.

Role

Emergency Comms Manager

Runs broadcast SMS and emergency groups. Tracks delivery and inbound responses.

Role

Area Owner

Approves or rejects access requests for the areas they own. Sees only what their role requires.

Role

Individual

Self-service portal: own clearances, vehicles, mobile, parking, travel and pass status.

See it in motion

We’re at The Security Event, NEC.

Find us on the Alton Valley stand for a live walk-through, or use the form and we’ll bring the demo to your boardroom.

Request a demo Tour the platform →