Covert Protection Detail: Operational Service Playbook

Deliverable EP-014. Structure per cc02-standards/SERVICE-STANDARD.md. Every watch item binds a tripwire, a cadence, and an escalation route, or it is removed.

Document Control

FieldValue
Service Reference[REF-YYYY-###]
Classificationinternal
Version0.1.0
Prepared By[Operations Manager]
Effective Date[YYYY-MM-DD]
Term[12 Months]

Scope, Authorities & Limitations

This is a monitoring/operational service, not an investigation, a guarantee of detection, or legal advice. Collection is limited to lawful, authorized sources within the agreed scope; no unlawful access, intrusion, pretexting, or surveillance of non-consenting third parties is performed. Alerting is best-effort within the stated SLA and does not warrant prevention of any event.

Service Definition and Scope Boundaries

  • Inclusions: Low-profile mobile protection, surveillance detection (SD), discrete principal shadowing, and covert route coordination.
  • Exclusions: Overt armed escorts, marked vehicles, high-profile motorcade formations, and physical crowd barriers.

Disclosure Policy

  • Authorized Knowledge List: Access to the detail’s operational parameters is restricted to the client’s CEO and Director of Security.
  • Written Consent: Complete signed disclosure consent [CONSENT FORM REF] is mandatory prior to launch.
  • Legal Sign-Off Gate: Retainer activation requires sign-off from Client Legal Counsel and the firm’s Compliance Officer.

Operator Selection Criteria

  • Fieldcraft Qualifications: Completion of specialized low-profile close protection and surveillance detection training.
  • Environmental Demographics: Operators selected must fit the local demographic environment (non-discriminatory operational cover criteria based on dress, language, and cultural profile).
  • Training Floor: Minimum [N] hours of annual covert movement and surveillance detection drills.

Posture and Cover Doctrine

  • Cover Doctrine: The team operates under discrete cover profiles, matching the principal’s lifestyle or business context. Cross-reference: [EP-007] Protective Surveillance Plan, Section 4 (Cover for Status and Action).

Compromise and Liability

  • Compromise Rule: If an operator’s cover is compromised, the Detail Leader shall notify the client’s Director of Security within [N] minutes.
  • Insurance Policy: Must maintain covert operations liability coverage up to [N] dollars.
  • Licensing Constraints: All operators must comply with local covert/plainclothes carriage and security licensing regulations.

1. Scope & Watch Criteria / Tripwires

Watch ItemIndicatorTripwire ThresholdSeverity (L×I)Escalation Route
Counter-SurveillanceApparent active surveillance on principalMore than [N] detection events in [N] hoursHigh (16-20)Evacuation to safe location; notify DL
Communication FailureLoss of covert radio netInterruption exceeds [N] minutesElevated (11-15)Switch to secondary secure GSM; notify CP
Cover CompromiseDirect query of operator identityThird party confronts operatorHigh (16-20)Operator extraction; shift cover profile

2. Collection Cadence & Sources

Source/LaneCollection MethodCadenceSource GradeOwner
Surveillance DetectionPhysical lookoutsContinuousB2SD Operator
Alert StreamART-threat-alert-streamReal-time pushB1Detail Intelligence Officer
Regional NewsMedia scanEvery [N] hoursC3Detail Intelligence Officer

3. Reporting Cadence & Product Format

ProductTrigger/CadenceFormatRecipientChannel
SD Log DigestEnd of shiftShift Log TableOperations ManagerSecure Portal
Compromise AlertImmediate upon triggerSecure Voice callDirector of SecuritySignal Call
Monthly Performance ReviewMonthlyPDF Executive SummaryClientSecure Email

4. Escalation & Notification Triggers

Severity TierTrigger ConditionNotifyMethodAcknowledgement Target
LowRoutine shift reportsOperations ManagerShift log update24 Hours
ElevatedComms failure or minor SD detectionDetail LeaderSecure Chat1 Hour
High / CriticalHostile surveillance or cover compromiseDL, Director of SecuritySecure Call & Signal5 Minutes

5. Service Levels (SLA)

Activation SLA

  • Deployment Time: From receipt of ART-engagement-order, boots-on-ground within [N] hours.
  • Mobilization Checklist: Verify covert licensing registry, insurance limits, local permits, and region packages per BIZ-003-mobilization-package before dispatch.

Key Performance Indicators (KPIs)

MetricTargetMeasurementReportingRemedy/Credit
Compromise-Free Rate100% (no cover compromise)Operational audit logsMonthlyPost-operation review
Detection Events Escalation100% within SLASD log comparisonMonthlyRetraining of SD team
Response-Time Adherence100% SLA complianceDispatch logs vs boots-on-groundMonthlyStaff review

Surge Model

  • Surge staffing requests draw from the BIZ-006-pre-vetted-vendor-roster.
  • Vetting floor: Surge personnel must hold active certifications and background clearances.
  • Ratio cap: Surge staff shall not exceed [N]% of the total detail size.

6. Review & Renewal

  • Service Review: Monthly operational review between client representative and Operations Manager.
  • Change-Control: Any scope modifications require written addendums to ART-engagement-order.
  • Termination: Retainer termination requires [N] days written notice. Stand-down fees are billed at [N]% of the standard rate.

7. Quality Assurance (QA) Gates

  • Cover Integrity Review: Conducted by DL every [N] days.
  • Supervisor Inspection: Operations Manager conducts unannounced field inspections every [N] days.
  • AAR Compliance: Every detail deployment triggers a mandatory After-Action Report within 24 hours of demobilization.

8. Service Risk Register

  • Risk 1: Cover compromise by local law enforcement. Likelihood (2) × Impact (4) = 8 (Moderate). Mitigation: Ensure all licenses and CCW credentials are pre-verified.
  • Risk 2: Hostile surveillance intercept. Likelihood (3) × Impact (3) = 9 (Moderate). Mitigation: Enforce end-to-end encryption on all mobile communications.

Annex A: Source & Watch-List Register (graded)

  • Graded sources used for service delivery:
    • Local police advisory desk. Grade: A1.
    • Consular database. Grade: A2.

Annex B: Onboarding / Offboarding & Data-Handling Checklist

  • Onboarding Checklist:
    • Verify contract signature.
    • Issue ART-engagement-order.
    • Verify [CONSENT FORM REF] and Legal sign-off.
    • Check operator licensing.
  • Offboarding Checklist:
    • De-provision security credentials.
    • Archive operational shift logs.
    • Conduct client exit debrief.
  • Data-Handling: Store principal travel data on encrypted drives; destroy logs after [N] days.

END OF SERVICE PLAYBOOK

Model wiring

Generated from cell frontmatter at publish time.