4 Roads Ltd

AI (Artificial Intelligence)

Combining our expertise in current and experiential technologies, we have been building class-leading AI experiences underpinned by our open-source platform, SocialStack.
SocialStack provides all the benefits of the shelf products whilst offering the flexibility of a custom solution, allowing you to tailor a virtual event experience to your needs.

Features

• Live and On-demand stages
• Multiple Simultaneous sessions
• Web-based, mobile friendly design
• Integrated Video Chat (1-1 and group)
• Option to have public-facing profile pages for all attendee types
• Simple sign-on procedure including SSO
• Networking-centric approach and features
• Live chat, polls and Q&A integrated into live stages
• Forum and feedback areas
• Integration with analytics platform of choice

Benefits

• Custom built platform, with bespoke features for your needs
• Multi-use platform, build once for many events
• Post event on-demand, Content management
• Internal meetings for remote workers
• Custom design, build a virtual office space
• No licence fee
• Custom APIs to integrate existing systems
• Augmented Reality

£50,000 to £150,000 a unit

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at betty.elverson@4-roads.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

131577220796380

Contact

Betty Elverson
+44 7932609645
betty.elverson@4-roads.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: N/A
• System requirements: Internet Connection

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: SLAs are set per agreement.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: We use Microsoft Teams
• Onsite support: Yes, at extra cost
• Support levels: Custom support packages depending on the agreed SLA. We can provide a support desk service and service monitoring, application maintenance, patching, knowledge base and error/bug logging, SLA reporting. Pricing can be arranged based on support hours or a fixed support contract depending on the level of customisation and support required. Development is charged separately. An Account Manager is provided with all support levels.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We would run a discovery session to understand the scope of the project and introduce our team. ; This will be design and technical conversations
• Service documentation: No
• End-of-contract data extraction: Users can export their data as a ZIP file by requesting a download from their user settings page. This is generated immediately and is good for 4 days.
• End-of-contract process: A project closure checklist is carried out, agreed with the client in advance.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: As this is a custom site, mobile optimisation is part of the design phase. The end-user will have input into these designs to get the required outcome.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: API Library
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: None
• API: No
• Customisation available: Yes
• Description of customisation: The platform is fully customisable. We will run design/discovery sessions to allow the end-users to choose customisation to fit their needs.

Scaling

• Independence of resources: The solution is not provided using shared hosting or resources.

Analytics

• Service usage metrics: Yes
• Metrics types: Metrics are based on features. For example, if you enable video calling as part of the solution, we can measure, who attended, length of visit and interaction. ; Requirements are set as part of the project build.
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Users can export their data as a ZIP file by requesting a download from their user settings page. This is generated immediately and is good for 4 days.
• Data export formats:
  • CSV
  • ODF
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: SLAs are agreed on a per customer basis, including refund provisions where applicable. This depends on the exact type of configuration we are deploying.
• Approach to resilience: The solution can be hosted in a web farm to provide high resilience. More details available on request to suit client requirements.
• Outage reporting: We are able to provide clients with additional services for outage management as part of SLA and support agreements. Basic email alerts can be provided with additional options for dashboards and API integrations.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: The service can also provide public-facing anonymous access if required.
• Access restrictions in management interfaces and support channels: Any interfaces and channels outside of the solution can be secured per the client's requirements.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: A designated manager is responsible within the stakeholder mapping for each project. A RACI matrix is included within our stakeholder maps for both supplier and client. Policies include: System Security Architecture Communications Data Security Integrity Privacy and Confidentiality Access Control and Authentication Operating System and Platform Configuration Accountability and non-repudiation Legal and Regulatory Obligations Availability and Business Continuity Physical Security Fraud Detection / Prevention Security Policies, Procedures, and Regulations Contingency Planning Disaster Recovery.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change is managed by a Change Advisory Board which assess the impact of change on any project constraints. Service components are documented via High Level and Low Level Design documentation, a Knowledge base and Known Error log. These are updated with each Release deployed to ensure consistency with Release Notes.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: ITIL aligned vulnerability management is in place for monitoring of threats. Potential threats are obtained via proactive monitoring of Security Announcements for all software used. Patches are deployed in accordance with the risk profile.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Alerts and notifications are in place for all Security Announcements identifying potential compromises with all software used. Compromises are risk assessed and then implemented within the agreed release cycle for projects. Incidents are responded to within the agreed SLA.
• Incident management type: Undisclosed
• Incident management approach: Patching and application incidents follow an agreed pre defined process Users reports incident via multiple agreed routes (ticket, email to ticket, phone) with an agreed dataset Incident reports are provided monthly.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Covid-19 recovery

  Covid-19 recovery

  Rebuilding the economy by providing additional revenue streams for businesses

Pricing

• Price: £50,000 to £150,000 a unit
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at betty.elverson@4-roads.com. Tell them what format you need. It will help if you say what assistive technology you use.