EVOLVE 4 GROUP LIMITED

Evolve 4 Schools

Evolve 4 Schools provides an online solution for meal ordering and payments for the Primary sector.
Evolve 4 Schools provides full allergen control of meal choices, including capability of special menu assignment to individuals.
The system also includes income management reporting, meal & kitchen management for schools.

Features

• Parent & student meal booking online at home or classroom
• Pay as you go
• Real time comprehensive reporting
• Allergen & Dietary needs management delgated to parents
• Real-time transfer of information to kitchens & school offices
• Meal choice & service tracking for parents
• Students get their meal of choice no class rotations needed
• Theme days, special diets & packed lunch menus catered for
• Web browser access
• Permission based access

Benefits

• Reduces paperwork with an online system for all parties
• Promotes increased meal uptake which improves learning outcomes
• Provides accurate meal numbers
• Encourages child participation in meal selection
• Speeds up meal service
• Reduces waste
• Removes reliance on notes/photos for allergen control
• Allows the school to control debt levels
• Installment payments for high value trip items
• Multiple parent and pupil registration

£450 a licence a year

• Free trial available

Service documents

• Pricing document

  ODS

• Service definition document

  ODT

• Terms and conditions

  ODT

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lucy_taylor-hill@evolve4.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

144500914117856

Contact

Lucy Taylor-Hill
07841 017277
lucy_taylor-hill@evolve4.net

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: Any planned maintenance or updates are applied to the system out of hours.
• System requirements: Modern supported Web Browser.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our Standard response times are as follows:; P1 - Serious. Resolved within 8 working hours ; P2 - Non-Serious. Resolved within 16 working hours ( 2 days ). Office Hours Only.; Zendesk Tickets can be logged 24x7 via email or online web support form. The Help Desk is manned 08:30 to 17:00 Mon - Fri. All systems are monitored 24x7 by our own team of infrastructure engineers
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: On site training is available if required by our specialist training managers. Costs are available on request, and vary depending on the level of onsite support needed.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: When we start to work with a new Council, MAT or school we initially provide them with a 'New School Checklist', which allows them to see who is responsible for both initial set up of the service and the ongoing tasks. A Go Live date is then agreed between both parties. We offer both Web based training and onsite training. Training manuals are available to all users of the system, and user guides for parent access is provided. There is also a solubase available on the Zen desk support system for both parents and schools to access.
• Service documentation: Yes
• Documentation formats:
  • ODF
  • PDF
  • Other
• Other documentation formats: Word
• End-of-contract data extraction: At the end of the contract period Evolve will offer the option to renew for a further fixed term. If the service is to be terminated then the customer and Evolve 4 will agree on an exit plan which will include data extract arrangements.
• End-of-contract process: The annual licence fee is icluded in the price of the contract, there is no additional end of contract cost.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There are no differences in functionality. The mobile service is optimised for smaller devices and touchscreen input.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Evolve 4 Schools provides browser accessed services for both the school staff and parents. The staff module includes but is not limited to managing the day to day running of the meal service and parental access to the meal system. Oversee items available to purchase by the parents, such as trips, clubs, uniforms etc. Running reports on sales of meals and items offered by the school. Services are accessed through a standard browser interface.
• Accessibility standards: None or don’t know
• Description of accessibility: Evolve 4 is committed to ensuring digital accessibility for people with disabilities. We are striving to improve the user experience for everyone, and applying the relevant accessibility standards. All future interfaces are being designed with accessibility in mind, based on WCAG 2.1 AA.
• Accessibility testing: Evolve 4 assessed the accessibility of the site by self-evaluation by the lead developers; All future interfaces are being designed with accessibility in mind, based on WCAG 2.1 AA.
• API: No
• Customisation available: No

Scaling

• Independence of resources: Our customer data is logically separated through robust application logic which is regularly tested. Significant redundancy is built into the infrastructure and server capacity to ensure the service is always available. ; At peak times we are able to scale our service provision via Microsoft Azure, using horizontal scaling (scale out), and vertical scaling as demand grows.

Analytics

• Service usage metrics: Yes
• Metrics types: We can provide a number of services as required by our clients. Standard metrics are, support tickets, escalations, activation rates.
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data can be exported using Excel, or PDF
• Data export formats:
  • CSV
  • Other
• Other data export formats: Excel
• Data import formats:
  • CSV
  • Other
• Other data import formats: Excel

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Evolve 4's core hours are 8.30am- 5pm, Monday to Friday (excluding UK Bank Holidays). Our Standard response times are as follows: P1 - Serious. Resolved within 8 working hours P2 - Non-Serious. Resolved within 16 working hours ( 2 days ). Office Hours Only. Zendesk Tickets can be logged 24x7 via email or online web support form. The Help Desk is manned 08:30 to 17:00 Mon - Fri. All systems are monitored 24x7 by our own team of infrastructure engineers
• Approach to resilience: We utilise Azure Geo-Replication and load balancing facilities. Any more information is available on request
• Outage reporting: In the event of an unplanned outage emails are sent to nominated contacts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: We utilise Azure services that provide a fully managed service that is secure and seamless using RDP/SSH connectivity over TLS for management and support access. This is limited to named individuals approved via the technical director.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We utilise the services of a third party security organisation to maintain, monitor and enforce security controls of our online applications. ; We are currently working with the third party (UKAS accredited) to complete our ISO 27001, which we expect to complete by end of quarter three 2022.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Full change control process is applied to the product and hosting infrastructure. This applies to all assets. Changes require CAB review and approval.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Vulnerability management is actively maintained by our third party specialist security organisation, who monitor world wide cyber and intrusion threats. This includes real time vulnerability assessments and regular patching of services where necessary.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Protective monitoring is actively maintained by our third party specialist security organisation, who are actively monitoring our environments, and responding when threats or potential compromises are detected.; We utilise the security capabilities of Azure in real time, and apply the appropriate protection mechanisms as necessary.; We have real time notifications of potential compromises and these are acted on in real time.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Our third party specialist security organisation provide incident management, triaging all incidents and providing mitigation and notification. Analysis of all incidents is taken to identify possible causes, indirect association of other indicators and scale of potential breach.; All employees are required to report any confirmed or suspected security incidents to our security management team and security partner as soon as detected.; The security management team can be contacted by customers, or employees at any time.; Detailed incident reports are provided as necessary - including an executive summary, event timeline, investigative and containment steps, root cause analysis, remediation and lessons learned.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  Our policy is for all staff to embrace the use of electric vehicles, and we promote the reduction of plastics and packaging when purchasing from supplier and when delivering equipment to customers. ; Where possible all materials are recycled, including electronic devices.; We are using Azure Cloud technology which is up to 93% more energy efficient and up to 98% more carbon efficient than on premise solutions. Azure is committed to 100% renewable energy by 2025, water positive and zero waste by 2030, and net zero deforestation from new construction.; As a result we have moved all internal servers to the Azure environment.
• Covid-19 recovery:

  Covid-19 recovery

  We have continued to provide uninterrupted services throughout Covid-19. Covid-19 has not materially affected the business, due to the nature of the services that we provide to both public and private sector. During Covid-19 we have assisted companies to refocus their businesses on providing meals to shielded individuals.; During Covid-19 staff provided support to vaccination centres, and all employees were paid in full.
• Tackling economic inequality:

  Tackling economic inequality

  We are based in a low wage area of the UK and as such we focus on the employment of individuals where we are able to support up-skilling to improve employee prospects, whilst ensuring equality of pay between genders.; We support local businesses by outsourcing where practical, focusing on partnerships with smaller businesses. ; We are committed to employing personnel who have served their country in the military.
• Equal opportunity:

  Equal opportunity

  We are committed to equal opportunities for all staff and applicants. ; It is our policy that all employment decisions are based on merit and the legitimate business needs of the organisation. The Employer does not discriminate on the basis of race, colour or nationality, ethnic or national origins, sex, gender reassignment, sexual orientation, marital or civil partner status, pregnancy or maternity, disability, religion or belief, age or any other ground on which it is or becomes unlawful to discriminate. ; Our intention is to enable all our staff to work in an environment which allows them to fulfill their potential without fear of discrimination, harassment or victimisation. ; Our commitment extends to all aspects of the working relationship including: ; Recruitment and selection procedures; ; Terms of employment, including pay, conditions and benefits; ; Training, appraisals, career development and promotion; ; Work practices, conduct issues, allocation of tasks, discipline and grievances; ; Work-related social events; and ; Termination of employment and matters after termination, including references. ; We take all necessary steps to: ; Promote the objective of equal opportunities and the values set out in this policy; ; Ensure that individual behaviour complies in full with this policy; ; Ensure that any complaints of discrimination, victimisation or harassment are dealt with appropriately and are not suppressed or disregarded.
• Wellbeing:

  Wellbeing

  Mental health and Well-being:; ; The purpose of this policy is for Evolve 4 Solutions Ltd to establish, promote and maintain the mental health and well-being of all staff through workplace practices, and encourage staff to take responsibility for their own mental health and well-being.; We believe that the mental health and well-being of our staff is key to organisational success and sustainability.; Goals; • To build and maintain a workplace environment and culture that supports mental health and well-being and prevents discrimination (including bullying and harassment). ; • To increase employee knowledge and awareness of mental health and well-being issues and behaviours. ; • To reduce stigma around depression and anxiety in the workplace.; ; Scope; This policy applies to all employees, including contractors and casual staff.; ; Responsibility; All employees are encouraged to:; • Understand this policy and seek clarification from management where required; • Consider this policy while completing work-related duties and at any time while representing the company; • Support fellow workers in their awareness of this policy; ; All employees have a responsibility to:; • Take reasonable care of their own mental health and well-being, ; • Take reasonable care that their actions do not affect the health and safety of other people in the workplace.; ; Managers have a responsibility to:; • Ensure that all workers are made aware of this policy; • Actively support and contribute to the implementation of this policy, including its goals; Communication; We will ensure that:; • All employees receive a copy of this policy during induction ; • This policy is easily accessible by all members of the organisation; • Employees are empowered to actively contribute and provide feedback to this policy; • Employees are notified of all changes to this policy.; ; Monitoring and review; We will review this policy 12 months after implementation and annually thereafter.

Pricing

• Price: £450 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: A time limited and site limited options are available to UK councils.
• Link to free trial: N/a

Service documents

• Pricing document

  ODS

• Service definition document

  ODT

• Terms and conditions

  ODT

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at lucy_taylor-hill@evolve4.net. Tell them what format you need. It will help if you say what assistive technology you use.