Built to CJIS Policy 5.9 Standards

CJIS-compliant
from the ground up.

Sensitive justice system data requires infrastructure meeting the most stringent federal security standards — across every participant, every toolkit, and every device. Built on AWS GovCloud. Compliance designed in, not bolted on.

FBI CJIS 5.9
Designed for full compliance
AWS GovCloud
FedRAMP-authorized hosting
Zero-Trust
Network architecture
Full Audit Trail
Every action logged
Compliance Foundations

Built on standards that matter.

Every surface of Sherlock — from the Yard to Field Mobile — is governed by the same security framework.

FBI CJIS Policy 5.9

Designed to meet FBI Criminal Justice Information Services security standards across all platform surfaces.

AWS GovCloud

Hosted on FedRAMP-authorized AWS GovCloud infrastructure, purpose-built for government and law enforcement data.

Role-Based Access

Every participant sees only what their role authorizes — officer, judge, prosecutor, or defense.

Complete Audit Trail

Every action across every participant and toolkit — the complete chain of accountability.

Security Architecture

Designed where failure isn't a breach — it's a case dismissal.

The architecture is layered so that compromising one surface doesn't expose another. Every layer is independently auditable.

01
Application LayerRole-gated UI
02
API GatewayAuth + rate limiting
03
Service MeshmTLS between services
04
Data LayerEncrypted at rest
05
InfrastructureGovCloud isolated
06
Audit & MonitoringAll layers, real-time
End-to-end encryption in transit and at rest
Multi-factor authentication for all participants
Isolated agency and court data environments
Zero-trust network architecture
Automatic session timeout with re-authentication
Evidence capture encrypted at point of collection
CJIS Security Addendum compliant
Data Residency
US Only
All data stored within US borders on AWS GovCloud regions.
Uptime SLA
Targeting 99.95%
Enterprise-grade availability with automatic failover — pre-deployment target.
Recovery
< 4hr
Recovery time objective with continuous backup.