BOXXE LIMITED

boxxe VMware SASE

Secure Access Service Edge (SASE) provides Cloud Web Security (CWS)
functionality to protect users while accessing Web-based services and
applications. Access to CWS is achieved via SD-WAN and Secure Access (VPN) to provide a consistent secure Internet experience determined by user location and device posture.

Features

• SSL Inspection
• Cloud Access Security Broker
• Data Loss Prevention
• Content filtering and inspection
• Resilient access
• Cloud hosted security
• Remote access with Virtual Private Network
• User or Group access and security policies
• Traffic and Threat Analysis
• VMware SD-WAN integration

Benefits

• Protected user experience for web based access
• Monitoring of Internet use and access by user
• Integrated security posture for remote access and SD-WAN
• Work anywhere secure Internet and on-premises access
• Distributed global presence through VMware SASE POPs
• Centralised configuration management
• Integrated into VMware Workspace One UEM for device control

£0 to £0 a unit a month

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@boxxe.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

114714105707163

Contact

Gemma Franklin
07704551950
tenders@boxxe.com

Service scope

• Service constraints: VMware SASE documentation provides clear guidance regarding the; implementation best practises needed for the service. Use of VMware Cloud Web Security (CWS) requires the installation of a Trusted Root Certificate to allow inspection of encrypted traffic. Secure Access (SA) uses the VMware Workspace One Tunnel client for access to allocated Points of Presence (POP). Policy for the tunnel client is configured in VMware Workspace One and then deployed at the time of device onboarding.
• System requirements:
  • Software license agreement per user
  • Compliant user device or SD-WAN edge connection
  • Integration into the customers' Identity Provider
  • Deployment of a Tunnel Client for Secure Access
  • Installation of VMware CWS SSL certificate

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: VMware offers online trouble ticketing through the Customer Connect portal provided at the VMware website. A response timeline is defined based on the tickets assigned severity level, and the level of; support plan purchased: Production: Sev1 (<30 mins 24x7), Sev2 (<4 hours 12x5), Sev3 (<8 hours 12x5), Sev4(<24 hours 12x5) Premier: Sev1 (<30 mins 24x7), Sev2 (<2 hours 24x7), Sev3 (<4 hours 12x5), Sev4(<12 hours 12x5) Carrier Grade: Sev1 (<15 mins 24x7), Sev2 (<1 hours 24x7), Sev3 (<4 hours 10x5), Sev4(<8 hours 10x5) SASE Production Support:; https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/vmware-saasproduction-support-and-subscription-datasheet.pdf SASE Premier Support:; https://sase.vmware.com/content/dam/digitalmarketing/vmware-sase/pdfs/sdwan-797-vmwaresdwan-support-compare-ds-1119.pdf SASE Carrier-Grade Support:; https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/services/support/vmwaresase-carrier-grade-support.pdf
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: VMware SASE offers Production, Premier and Partner Support. Production Support for Cloud Hosted; products is listed here:; https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/vmware-saasproduction-support-and-subscription-datasheet.pdf. Premier information is available here:; https://sase.vmware.com/support . Hours of operation are 24x7x365 with an unlimited number of support requests and remote support assistance. VMware partners are able to offer support using the; Telco & MSP Support level:; https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/services/support/vmwaresase-carrier-grade-support.pdf Costs available in the pricing document. Technical Account Managers are part of the VMware service offering, but are funded by the customer unless otherwise agreed.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: VMware Professional Services can rapidly deploy solutions according to; the business and technical requirements. This is focused on architecture,; topology, and functional testing. Knowledge transfer sessions are; completed to ensure that our customers are fully versed in the operational infrastructure. VMware also partners with organisations that can provide training, deployment, management, and customer-specific documentation for SASE implementations. VMware have user documentation that covers the SASE solution available at: https://docs.vmware.com/en/VMwareSASE/index.html
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: VMware enables periodic extraction of key configuration and statistics; information for offline storage through REST API. The metadata available; in Orchestrator is from flows that traversed from a LAN interface to a WAN interface. This data includes information on the host originating the flow such as source IP address, source MAC, address, and source FQDN. If the users have authenticated using WPA Enterprise, the username will also be associated with the flow and collected in the VCO.
• End-of-contract process: The VMware SD-WAN Orchestrator (VCO) collects metadata from the; flows that traversed from a LAN interface to a WAN interface. This data; includes information on the host originating the flow, such as source IP; address, source MAC address, and source FQDN. If users have; authenticated using WPA Enterprise, the username will also be associated with the flow and collected in the VCO. After account termination, the accounts will be suspended; however, all data will remain in the account for up to 1 year after termination. Upon explicit request, the data can be deleted from the VCO at an earlier date. There are no additional costs involved for VMware to store the data.

Using the service

• Web browser interface: Yes
• Using the web interface: Users manage device onboarding through VMware Workspace One UEM. Workspace One controls the compliancy of devices so they align with company standards. It also applies software, certificates and policy as required. Workspace One policy is used for the configuration of Workspace One Tunnel software, a VPN client used to access VMware SASE Secure Access. VMware SDWAN Orchestrator is coupled with Workspace One to populate SASE POPs with; Secure Access configuration. Secure Access configuration is mapped to specific users or groups. VMware SD-WAN Orchestrator is also used to create, manage, and deploy Cloud Web Security configuration. Internet web-based user traffic is; mapped to the VMware SASE POPs via Secure Access, or SD-WAN edge policy, so that Internet based access can be securely controlled. Administrators can use features such as Cloud Access Security Brokers, SSL Inspection, URL filtering, and Content filtering and Inspection to manage and protect user access.
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: N/A
• Web interface accessibility testing: VMware has 146 products with ongoing efforts to increase accessibility. VMware has a team of accessibility subject matter experts embedded in the product teams. Over half of our accessibility team has a disability, including five screen reader users and one magnification/keyboard user, and including individuals with; cognitive disabilities. VMware also does testing annually with users outside of VMware that have disabilities through the VMware Design Studio program.
• API: Yes
• What users can and can't do using the API: VMware Workspace One UEM and SD-WAN Orchestrator can be managed via a Northbound RESTful API via HTTP/TLS1.2. Core functionality is replicated in the APIs to allow workflows and custom applications to interface with both; orchestration platforms.
• API automation tools:
  • Ansible
  • Other
• Other API automation tools:
  • Postman
  • CURL
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
  • MacOS
• Using the command line interface: VMware SD-WAN (part of SASE) provides a secure method to support CLI access to Edges using key pairs generated per user and sends a logged-in user into an Edge CLI shell that only exposes SD-WAN troubleshooting commands and meets CSO requirements. CLI is available for low-level debugging. VMware recommends utilizing SD-WAN Orchestrator or API for provisioning, configuration, and ongoing management and troubleshooting of SD-WAN Edges.

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: VMware operations team monitor the load and take proactive; management for SASE POP locations. VMware SASE gateways; are mapped to customer tenants from pools of resources; allocated to the Orchestrator. VMware SASE POP automation; can add extra resources when thresholds are reached, before; operational impact is identifed. Container based delivery is used; to seamlessly add capacity.
• Usage notifications: No

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • HTTP request and response status
  • Memory
  • Network
  • Other
• Other metrics:
  • Threat Analysis
  • Traffic Analysis
  • CASB Analysis
  • Web Logs
  • Events
  • WAN link utilisation
  • Loss, latency, and jitter measurements on WAN links
• Reporting types:
  • API access
  • Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: Yes
• Data sanitisation type:
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • VMware SD-WAN Orchestrator database
  • Orchestrator DR as a hot-standby with live feed from primary
  • Extract key configuration and statistics information via API
  • Workspace ONE UEM database
• Backup controls: Backups of the VMware SD-WAN Orchestrator are handled by the VMware operations teams. Workspace ONE backs up device configurations and resource entitlements provisioned through the solution but does not back up end-user data stored on the device or within apps.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Supplier controls the whole backup schedule
• Backup recovery: Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: VMware will use commercially reasonable efforts to ensure that the services are available during a given month equal to the “Availability Commitment” specified as follows: VMware SD-WAN:; 99.99%. VMware Secure Access: 99.90%. VMware Cloud Web Security: 99.99%. Availability in a given billing month is calculated according to the following formula: “Availability” = ([total minutes; in a billing month – total minutes Unavailable] / total minutes in a billing month) x 100 Details regarding the Service Level Agreement can be found here: https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/downloads/eula/vmwarensx-sd-wan-by-velocloud-service-level-agreement.pdf
• Approach to resilience: VMware SASE provides resilience through a global network of SASE POP locations. Each SASE POP provides Cloud Web Security and Secure Access functionality. Any user onboarded into Secure Access will be mapped to a number of SASE POP locations, typically five, with the user accessing the POP with the lowest latency. If a POP is experiencing difficulty, or connectivity is not possible, alternative POPs will be used.
• Outage reporting: VMware reports outages of all cloud-hosted services on a public dashboard: https://status.vmwareservices.io/history

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google apps)
  • Username or password
• Access restrictions in management interfaces and support channels: The VMware SD-WAN Orchestrator is designed for multi-tenant environments.; There are three organisational tiers providing distinct roles for access and; visibility for the operator, multiple agents/managed services or channel; partners, and multiple end enterprise customer tenants. VMware Workspace ONE uses built-in and custom roles to define the device groups that IT administrators can access and manage. These roles restrict the depth of device management information and features available to each console user. Authentication integrates with enterprise directory services or uses basic authentication, SAML, etc. The solution records all console activity and provides detailed logs of user access and events.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • SD-WAN part of SASE - ISO27001
  • SD-WAN part of SASE - ISO27017
  • SD-WAN part of SASE - ISO27018
  • SD-WAN part of SASE - PCI-DSS
  • SD-WAN part of SASE - SSAE16 / SOC2
  • SD-WAN part of SASE - CSA STAR

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: VMware assessments focus on meeting the needs of a broad; range of users that need detailed information and assurance; about the controls at VMware relevant to the security and; availability of the systems that VMware uses to process and; store users’ data. They include: · Secure operations and; processes · Oversight of the organization · Vendor; management programs · Internal corporate governance and; risk management processes · Regulatory oversight
• Information security policies and processes: VMware SASE has a security team that oversees security; features during SDLC and manages ongoing security for our; product and service offering. VMware is in the process of; obtaining a SOC2, Type I report for SASE. The SOC2 report is; an attestation of the design and operating effectiveness of; controls relevant to security and availability at VMware; provided by a qualified, independent, external auditor.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: VMware Configuration Management policy is based on industry best; practices. Revisions and exceptions are processed through a documented; procedure to help ensure the confidentiality, integrity, and availability of; our hosted offering. - maintains cryptographic keys for required; cryptography in the SaaS environment based on standards, procedures,; and secure methods. Change Management is staged on the Orchestrator; by creating a copy of the profile undergoing the change. The updated; profile is attached to individual Edges to test and roll back as needed. All; changes are logged in the Orchestrator event log, indicating who/when; enacted the change.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: VMware analyzes identified vulnerability for applicability, adjusting the; vulnerability score on mitigating factors determining the final criticality; score. The network layer, application, and internal OS layer vulnerability; scans are performed. This includes third-party vulnerability scanning and; penetration tests. Vulnerability scans are reviewed annually. After; analyzing the severity and impact, VMware patches all network, utility, and security equipment. VMware has subscriptions to vendor security and bugtracking notification services. Critical patches are installed timely. Noncritical patches are applied within reasonable timeframes. Patch; testing/rollback procedures are completed with minimal impact. Thirdparty auditors perform reviews against industry standards, including ISO 27001.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Security scans against the infrastructure components are completed; regularly. If a security breach is detected, affected POPs will first be; detached from the management core to isolate the exposure. Local; bastion hosts will be spun up to provide out-of-band access to the; resources. Once the compromised instance or instances are identified,; these will be terminated and rebuilt to restore functionality or service. If a; material breach is observed impacted customers will be notified within five days or in the timeframe as required by local law or other applicable; regulations (such as GDPR).
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: VMware has pre-defined processes for common events. VMware users who; become aware of a security vulnerability in VMware products contact; VMware with details of the vulnerability. VMware has established an email; address used for reporting a vulnerability security@vmware.com. Incident; reports are provided via email and release notes

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: No

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: VMware SD-WAN typically utilizes AWS datacenters and information about AWS & Sustainability can be found here: https://aws.amazon.com/about-aws/sustainability/ . VMware SASE components typically utilise Equinix data centres and infomation about their energy efficiencies can be found here: https://www.equinix.co.uk/datacenters/design/green-datacenters#:~:text=At%20Equinix%2C%20our%20purpose%20is,energy%20for%20our%20global%20platform; and here: https://www.equinix.co.uk/about/sustainability

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  boxxe is committed to supporting environmental protection and improvement and to delivering and influencing environmentally conscious solutions to address the critical issue of climate change, focusing on achieving net zero greenhouse gas emissions and influencing all stakeholders towards environmental protection and improvement. ; Our latest Carbon Reduction Plan, available on our website confirms we are carbon neutral across all sources of emissions through investing in the Carbon Exchange-Traded Commodity. We aim to reach Net Zero by 2050 at the latest through emissions reduction initiatives e.g. renewable electricity procurement and supplier engagement.; Environmental protection is embedded in everything boxxe does and offers and we are proud to have been named as a finalist in the Best Value Chain Initiative category at the CRN Sustainability in Tech Awards 2024. ; We maintain an accredited ISO 14001 Environmental Management System covering the entire scope of our business, and our goal is to be recognized as the UK’s most sustainable IT reseller and service provider.; boxxe is committed to adopting, promoting, and implementing the principles of a Circular Economy and have developed a Circular Management Plan which articulates our strategy for waste minimisation and the enhancement of material reuse and recycling in our operations and the products we supply. This underscores our dedication to environmental stewardship, resource efficiency, and sustainable growth, driven by innovative and accountable resource and waste management practices.; We ensure that our supply chain is aware of and understand our environmental policies and we work with them to manage and continuously improve their environmental performance. We prioritise the purchase of recycled, recyclable, or re-furbished products and materials where these alternatives are available, economical, and suitable.; We conform to WEEE regulations and seek to sustainably reduce, reuse, and recycle, to ensure we and our customers minimise the impact of IT waste on the environment.

  Covid-19 recovery

  The COVID-19 pandemic fundamentally changed boxxe’s ways of working, leading us to implement a fully remote workforce to maintain customer service and operational functionality during the crisis. This transition enabled us to develop and implement a "Work from Anywhere in the UK" policy. By allowing our employees to work from any location, we have broadened our recruitment reach, enabling us to attract the best talent regardless of their geographic location. This approach has reduced barriers to inclusion, enhanced employee retention, and supported a healthier work-life balance. Additionally, remote recruitment strategies have allowed us to target candidates from areas particularly impacted by Covid-19, thereby positively contributing to their local economic recovery.; Recognising the significant skills shortages highlighted by the pandemic within the IT industry, we have taken proactive steps to retain and enhance our workforce's capabilities. We encourage continuous training and development in our employees' respective fields of expertise. Experienced staff and external specialists provide mentoring, offering a hands-on learning experience that ensures the effective application of newly acquired skills. Moreover, we are committed to inspiring the next generation by inviting local youth to experience the day-to-day life of our tech teams and organising regular hackathons and think tanks for soon-to-be graduates, providing them with career guidance.; Building on our pandemic experiences, we have developed a robust business continuity plan, ensuring that we are well-prepared to maintain uninterrupted service in the event of a similar crisis. It is worth noting that during the height of COVID-19, our strategies allowed us to maintain seamless business operations, underscoring our resilience and adaptability in challenging times. This foundation not only prepares us for future challenges but also reinforces our commitment to innovation and excellence in a post-pandemic world.

  Tackling economic inequality

  boxxe is committed to addressing disparities in employment, skills, and pay within our workforce and across our supply chain. Our ‘Work from Anywhere in the UK’ policy allows us to recruit the best talent regardless of their geographic location, removing barriers to inclusion, improving retention, and promoting a healthier work-life balance. By enabling staff to work remotely, we foster collaboration and create more equitable opportunities for all potential and current boxxe employees.; To address the skills shortages in tech industry, we invest in our staff’s continuous in-work skills development, facilitating career progression and helping retain talent. All staff have access to on-demand learning opportunities, available irrespective of role or seniority. We provide funding for a variety of training programs: specialist vendor/industry accreditations and professional qualifications. Experienced staff provide mentoring, ensuring that newly acquired skills are applied effectively.; We are dedicated to maintaining a robust and diverse supply chain by actively supporting SMEs, startups, and specialist suppliers. We invite these partners to collaborate with us, providing them with a route to market and guidance on best practices in industry and environmental, social, and governance (ESG) standards. Moreover, we have created the boxxe Community, where every employee can contribute 11½ days each year to support community and social value activities. We prioritise a local-first approach to giving, ensuring that support reaches grassroots charities and local causes where it is needed most. This includes our involvement in the 'Graduation to Employment' programme where experienced personnel volunteer to provide career coaching to university graduates.; Through the boxxe Academy, we offer apprenticeships and seasonal internships to encourage the next generation into IT. We welcome interns and apprentices to our customer service, HR, service delivery, and service delivery teams, providing them with all-round experience to kick-start a career in tech.

  Equal opportunity

  Equal opportunities, and our dedication to DEI are rooted in our mission to Making Tech Human.; boxxe is committed to a workforce that reflects diverse populations with the skills to drive a compassionate and inclusive culture and a genuine sense of belonging. We embed inclusivity, celebrate uniqueness, and foster collaboration to eradicate inequalities in employment, skills, and pay in our workforce and our supply chain.; Recruitment is focused on inclusivity and fairness, encouraging diversity in ethnicity, gender, sexuality, and socio-economic backgrounds by anonymising our candidates, concentrating on the alignment of their skills and experience, reducing conscious or unconscious bias. Our Competency Framework gives employees clear guidance on progression and developing the necessary competencies for higher level roles, integrating both technical and behavioural aspects in a Skills Matrix, and mapping out potential career paths. We offer online training and invest in our staff’s professional qualifications. Our annual pay review maintains market-aligned salaries, and we are a certified Real Living Wage employer. We offer enhanced, inclusive family policies including maternity, parental, and fertility-treatment paid leave. ; We hold Flexa accreditation and operate a ‘Work from Anywhere in the UK’ policy which enhances accessibility for candidates facing barriers to inclusion, bolsters retention and facilitates a healthier work-life balance. We are a Level 1 Disability Confident Committed employer, aiming to achieve Level 2 by 2025. We actively address underrepresentation, particularly women in tech, and racial inequality as a founding member of Technology, Community for Racial Equality. We are proud of our advancement of female leadership, recognised at the CRN Women & Diversity in Channel Awards 2023. Our involvement with the Stonewall Diversity Champions reflects our dedication to LGBTQ+ allyship. ; As a silver accredited Armed Forces Covenant member, we work to help create employment opportunities for ex-service personnel and support staff who are military reservists.

  Wellbeing

  boxxe’s Wellbeing Strategy, built on direct feedback from our employees, reflects our dedication to prioritising our workforce’s mental, physical, social, and financial wellbeing. This holistic approach recognises the importance of a comprehensive support system for overall health, satisfaction, and effectiveness of the workforce. We adhere to the Mental Health at Work Commitment and incorporate elements from the Thriving at Work guidance, despite being an organisation of less than 500 employees. This includes tailored mental health support, financial advice and low interest support loans, an EPA, occupational health support, and counselling services provided in-house by Mental Health First Aiders.; We champion a healthy workplace environment through the Mindful Business Charter, which emphasises removing unnecessary stress and promoting mental wellbeing with strategies including smart meetings, respecting rest periods, and mindful delegation. This charter serves as a guideline for all employees on small, practical changes to safeguard personal and colleague health.; To encourage open discussions about health, we foster a supportive culture where physical and mental health issues can be openly discussed, creating a safe space for employees to express concerns. We encourage our staff to participate in the boxxe Community programme, which has been shown to positively impact physical and mental wellbeing.; Our proactive engagement with the workforce includes regular wellbeing surveys, specialised training for managing stress at work, and comprehensive health benefits that cover physical and mental resources. We promote active lifestyles through incentivised physical activities, and we maintain health and safety standards in line with our ISO 45001 accreditation. We ensure wellbeing extends to our supply chain through our Supplier Code of Conduct, emphasising the importance of ethical standards and worker health and wellbeing, demonstrating our dedication to fostering a culture of health and wellbeing across all facets of our operations.

Pricing

• Price: £0 to £0 a unit a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: A Proof of Concept (PoC) trials are possible with VMware SASE, but; require approval and signed agreements in advance. PoCs are time; bound by agreement and require the completion of a mutally agreed; test plan.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@boxxe.com. Tell them what format you need. It will help if you say what assistive technology you use.