Zambia Postal Services Corporation. TERMS OF REFERENCE FOR THE CONSULTANCY TO DESIGN AND DEVELOP AN e-wallet SYSTEM

Transcription

1 Zambia Postal Services Corporation TERMS OF REFERENCE FOR THE CONSULTANCY TO DESIGN AND DEVELOP AN e-wallet SYSTEM 1

2 Table of Contents 1. BACKGROUND OVERVIEW OBJECTIVES SCOPE OF WORK SYSTEM SPECIFICATIONS DELIVERABLES COMPENTENCE EXPECTED IMPLEMENTATION TIME EVALUATION CRITERIA CONTACT ADDRESS

3 1. BACKGROUND 1.1. Introduction The Zambia Postal Services Corporation (ZamPost) is a Quasi-Government institution providing vital domestic as well as international postal and allied services to its clients through a network of post offices in every district in Zambia. Using its nation-wide infrastructure, ZamPost is providing financial services including savings accounts, Loans, pension payments, bills collection and money transfers in collaboration with various partners. With the ever changing business needs and technological demands ZamPost intends to introduce an e-wallet solution for its customers to provide better financial and banking services. 2. OVERVIEW The ZamPost e-wallet Solution will have to provide an easy and affordable way to access money, transfer or make payments by its clients across Zambia. This solution will be expected to be supported by every ordinary mobile phone and smartphone. 3. OBJECTIVES The main objective of this solution is to provide an easy and affordable way to access money, transfer or make payments and financial inclusion of the majority under banked. 4. SCOPE OF WORK Providing end-to-end solution for e-wallet software and maintenance for the software provided including end to end services related to interfacing with other systems. 5. SYSTEM SPECIFICATIONS The proposed e-wallet solution should have capability of performing the following functions: 5.1. e-wallet application platform a. Android b. Windows c. iphone/ios d. JAVA (J2ME) e. USSD through all the service Mobile Network Providers networks f. WAP g. Low end handsets h. Tablet i. Any other platform to be specified 5.2. Mode of communication j. GSM k. SMS 5.3. Integration with existing ZamPost systems ZamPost will require the e-wallet to interface with its existing systems for any payments. Type of interface and details of APIs will be provided to the successful bidder 3

4 5.4. Integration with third party service providers/software/middleware. Bidder should be able to interface with a bill aggregator available for the purpose of interfacing with already signed up third party service providers for Utility bill payment/m-commerce/value added services E-Wallet Application Functionality A customer should be able to perform the following functions on the e-wallet application a. Account information such as; i. Account Balance Enquiry ii. Statement of Account b. Transaction iii. Fund transfer within the ZamPost e-wallet network iv. Fund transfer to a non e-wallet account holder v. Fund transfer for M-Commerce (Bill payment) to signed up merchants c. Password Re-generation d. Remote account opening process through mobile number 5.6. Cash withdrawal through a partner Bank s ATM, OTP/PIN based authentication, allowing non ZamPost e-wallet customers to withdraw cash from any partner Bank s ATM using mobile authentication/authorization 5.7. Registration and Download activity of e-wallet application 5.8. Registration method a. Post Office Branch b. SMS request for registration through an SMS gateway and for security purposes, the registration mechanism will be 1 user only per 1 device Downloading mobile commerce a. Apple Store b. Google Play Store c. Windows App store d. Link on ZamPost s website Security The security features of the proposed e-wallet application should include but not limited to the following; a. Multi-factor authentication (OTP / CAPTCHA / Security Question, etc.) b. Data transmission with end to end encryption (Standard encryption algorithms like 3DES, AES, RSA, PKI scheme, with minimum encryption strength of 256 bit). c. Platform to solely communicate via SSL and the predefined pages of the web portal should handle web application security threats like cross-site scripting, SQL injection flaws, malicious file execution, information leakage, improper error handling, broken authentication and session management. 4

5 d. Support to store data in the platform database in encrypted format - Ideally all data should be stored in encrypted format, but MPIN is mandatory. e. Terminate e-wallet session and automatic log off application after lapse of defined period of inactivity. f. Audit trails and logging features available in Application server, Web server and Database Scalability and Availability a. The number of concurrent users the platform can support and handle requests in a second should be adequate to support the ZamPost customer base. The bidder should indicate the support available for load balancing. b. In an event where a transaction could not complete and no proper message is displayed to the customer, then on restoration application should display the status of the transaction. c. Control features within the application to ensure integrity of data such as input and update, maintained totals, audit trails, error reports, etc Reports / MIS, Reconciliation and Monitoring The system should enable the following for monitoring purposes; d. Administrator Web portal for reports/mis, monitoring and reconciliation reports. e. Provision to assign specific rights / privileges to platform administrators for secure and restricted access. f. Provision to create different user groups with different sets of rights and permission. g. Administrator Web portal capability for: - i. Search customer record ii. Approving user creation iii. Register and De-register users for e-wallet application iv. Terminate the users. v. Maintenance of activation requests vi. Change of Handset / Mobile number of users. vii. All administrator activities logged to indicate the creation, modification and deletion of data. viii. The web portal support to work on maker and checker concept for any addition, deletion, modification request made by the authorized users. ix. Support bulk upload for creation of users 5

6 5.13. Transaction log reports Session log reports One user can have only one active session, if user is logged then system should not allow to login and display appropriate message User activity based report Access for ad hoc report generation An audit trail of all the registrations done with details of the mode of request, activation type, date, time, etc. stored in the database Provision to download reports in standard formats namely txt, xls, csv, xml, pdf, etc Web portal support for various types of alerts in SMS The Web portal should include an alert and monitoring system to report the system down alert. The number of hours the system remained down with time period during the day/week/month/year Web portal support to generate daily settlement reports for third party transactions such as bill payment 6. DELIVERABLES The successful bidder is expected to produce; 6.1. A working e-wallet solution with all the stated functions 6.2. Training and capacity building plan 7. COMPENTENCE The bidders should indicate their experience in projects of a similar nature with proven documentation. 6

7 8. EXPECTED IMPLEMENTATION TIME Item Description Implementation Software requirement specification (SRS) including interfaces finalization Initial Customization Deployment of customized solution, testing, UAT including testing on various mobile OS platforms. Post Implementation Support Any support customer call resolution Software/System Call Resolution Bug Fixing New Customization Reports Turn Around Time after lodging a complaint Time Period 1 week 3 weeks 2 weeks 1 Hour 4 Hours 24 Hours 2 days 2 Hours 9. EVALUATION CRITERIA Proposals that meet the mandatory requirements will be evaluated with the following criteria; a. Suitability of the Proposal the proposed solution meets the needs and criteria set forth in the requirements specifications. b. Value/Pricing Structure and price levels The price is commensurate with the value. The contract price must be clearly stated in the proposal. c. Candidate Experience the successful bidder should show successfully completed similar projects and has the qualifications and skills necessary to undertake this project. d. Live Demonstration of a working e-wallet solution. e. Demonstrated commitment to a high service level agreements (SLA). 10. CONTACT ADDRESS Interested firms should their proposals to procurement@zampost.com.zm addressed to: The Procurement Manager Zambia Postal Services Corporation HQ Plot No. 5150/5151 Industrial Area Zambia Road P.O. Box Ndola 7