Atlas Cloud Ltd

Microsoft 365 Copilot

Generative AI has come to the Microsoft 365 suite. Enable Copilot to unlock powerful and intelligent shortcuts for employees, based on organisational data.

Features

• Adoption of any Microsoft 365 application
• AI-driven Copilot to boost employee producitivity
• Optional backups available

Benefits

• Employee productivity
• Security risk minimisation
• Continuity

£296.40 to £296.40 a user a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@atlascloud.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

116013510903855

Contact

Ben Tomlinson – Marketing Manager
0191 283 0191
gcloud@atlascloud.co.uk

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Microsoft 365 (formally Office 365) or Exchange Online
• Cloud deployment model: Public cloud
• Service constraints: N/a
• System requirements: N/a

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response and resolution times are based on the priority of the incident / service request. ; Critical Response 30 working minutes Resolution 4 working hours; High Response 30 working minutes Resolution 24 working hours; Medium Response 60 working minutes Resolution 48 working hours; Service Request Response 120 working minutes Resolution 120 working hours
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Monday - Friday 07:00-18:00 as standard, extended support hours are possible at an additional cost depending on how much you extend the hours by. We do provide account management and have support engineers.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Once an order is agreed and accepted, Atlas Cloud’s implementation team will begin the on-boarding process.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: If the client wishes to change to a different IT provider, the first step is for the client to file a request to leave. Next, an End of Contract date is agreed. Atlas Cloud would stop the backup on the agreed termination date, all data would be deleted and a final invoice would be sent.
• End-of-contract process: Licences expire and employee access to Microsoft 365 apps stop, unless switched to another provider.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: N/A

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be restored, data would not be exported.
• Data export formats: Other
• Other data export formats: Data would be restored to mailboxes, not exported
• Data import formats: Other
• Other data import formats: Data would be backed up from email

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: N/a
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: 99.9% uptime guaranteed. Service credits can be available on request.
• Approach to resilience: Available on request.
• Outage reporting: Email or text alerting.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: N/A backup only service
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: ISOQAAR
• ISO/IEC 27001 accreditation date: 12/08/2016
• What the ISO/IEC 27001 doesn’t cover: Nothing is excluded
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ISO 27001

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We have an change management process that has a multi level approval process and a dedicated changed manager. Components of the service are monitored and maintained with any risks to service noted on a risk register.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We have mechanisms for threats to be flagged by our monitoring system and the engineers that work on the systems. We can deploy emergency patches in line with our change management process. We have three standard change windows per week.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We use various software to monitoring our systems, the software auto creates an incident into our incident management system when a threshold is breached. The incident is then categorised and prioritised and the appropriate SLA assigned. Dependant on the priority the incident is responded to within 30-120 minutes.
• Incident management type: Supplier-defined controls
• Incident management approach: We have standard operating procedures for common events that are documented. Users can report incidents via phone, email or we have a client portal that clients can log and update incidents via. We email incidents reports at the end of every month.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  UK National Living Wage accredited employer, committed to paying a fair wage.

Pricing

• Price: £296.40 to £296.40 a user a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@atlascloud.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.