VE3 GLOBAL LTD

Azure Information Protection

At VE3, data is classified and labeled upon creation to ensure protection measures such as encryption, authentication, and usage rights can be applied to sensitive data.

Features

• Directory objects - 500,000 object limit

Benefits

• Unified authentication for cloud and on-premises web applications

£175 to £850 a unit

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at prime@ve3.global. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

162561740922908

Contact

Nikhil Alex
02045520840
prime@ve3.global

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Office 365 Enterprise E3 Suite
• Cloud deployment model: Public cloud
• Service constraints: See https://support.office.com/en-gb/article/Office-365-system-requirements-08def54e-1435-4fad-bc03-974014caf91e
• System requirements: Please contact

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Critical: Always accessible, with a 1-hour response time. High: Round-the-clock availability, with next-day response for Enterprise. See also https://products.office.com/en-us/business/office-365-for-business-support-options
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Premier Support is offered at an additional expense. Visit https://www.microsoft.com/en-us/microsoftservices/support.aspx for details.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: The VE3 FastTrack service offers scenarios aimed at assisting users in adopting new, more efficient work methods. Visit http://fasttrack.microsoft.com/ for details.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: For information on data portability, please refer to https://products.office.com/en-us/business/office-365-online-data-portability.
• End-of-contract process: In the event of expiration or termination of your VE3 subscription or contract, you will receive default limited access for 90 days to export your data. As outlined in our Online Service Terms, you retain ownership of your data, with VE3 acting as the Data Processor. For further details, see http://www.microsoftvolumelicensing.com/Downloader.aspx?DocumentId=13655 and http://trustoffice365.com/.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
  • Windows Phone
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The service is optimized for mobile, desktop, and tablet use with variations. Core functionality is consistent across all platforms. Visit https://support.office.com/en-us/article/Office-Online-browser-support-AD1303E0-A318-47AA-B409-D3A5EB44E452 for more information.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Explore https://products.office.com/en-gb/business/office-365-administration for further details.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: For users requiring assistance due to disabilities, we offer the Accessibility Answer Desk (AAD). Additionally, enterprise customers seeking accessibility-related support or compliance guidance can reach out to the Enterprise Accessibility Answer Desk (eAAD). Refer to https://www.microsoft.com/en-us/accessibility/ for details.
• API: Yes
• What users can and can't do using the API: The full API details are available online at dev.office.com
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Please see https://technet.microsoft.com/en-us/office/dn788774.aspx

Scaling

• Independence of resources: Please see https://www.microsoft.com/en-us/microsoft-365/blog/2013/08/08/cloud-services-you-can-trust-office-365-availability/

Analytics

• Service usage metrics: Yes
• Metrics types: https://support.office.com/en-us/article/Activity-Reports-in-the-Office-365-admin-center-0d6dfb17-8582-4172-a9a9-aed798150263?ui=en-US&rs=en-US&ad=US
• Reporting types:
  • API access
  • Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: For data at rest, VE3 employs BitLocker with AES 256-bit encryption on servers housing all messaging data, such as email and IM conversations, as well as content stored in SharePoint Online and OneDrive for Business. BitLocker volume encryption mitigates the risks of data theft or exposure stemming from lost, stolen, or improperly decommissioned computers and disks.; ; In certain scenarios, file-level encryption is utilized. For instance, files and presentations uploaded by meeting participants are encrypted using AES encryption. VE3's OneDrive for Business and SharePoint Online also employ file-level encryption to secure data at rest.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Please see https://products.office.com/en-us/business/office-365-online-data-portability
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats: See https://products.office.com/en-us/business/office-365-online-data-portability
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats: Please see http://fasttrack.microsoft.com/office/onboard/50

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
  • Other
• Other protection between networks: https://docs.microsoft.com/en-us/azure/security/azure-network-security
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: http://aka.ms/Office365TI and http://aka.ms/Office365CE

Availability and resilience

• Guaranteed availability: https://www.microsoft.com/en-us/microsoft-365/blog/2013/08/08/cloud-services-you-can-trust-office-365-availability/
• Approach to resilience: https://docs.microsoft.com/en-us/office365/Enterprise/office-365-data-resiliency-overview
• Outage reporting: Via the service status portal

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: "With the exception of internet sites for anonymous access created with SharePoint Online, users must undergo authentication when accessing VE3 services.; Modern authentication introduces Active Directory Authentication Library (ADAL)-based sign-in to VE3 client apps across platforms. This facilitates sign-in functionalities such as Multi-Factor Authentication (MFA), integration with SAML-based third-party identity providers for VE3 client applications, and authentication via smart card and certificate. Additionally, it eliminates the necessity for Microsoft Outlook to utilize the basic authentication protocol.
• Access restrictions in management interfaces and support channels: VE3 comes with a range of administrator roles that you can designate to users within your organization. Each admin role corresponds to common business functions and grants those individuals permissions to perform specific tasks within the VE3 admin center.; ; https://support.office.com/en-gb/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d?ui=en-US&rs=en-GB&ad=GB; ; https://support.office.com/en-gb/article/Assign-admin-roles-in-Office-365-eac4d046-1afd-4f1a-85fc-8219c79e1504?ui=en-US&rs=en-GB&ad=GB
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 6 months and 12 months
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: EGAC
• ISO/IEC 27001 accreditation date: 06/01/2024
• What the ISO/IEC 27001 doesn’t cover: NA
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • ISO 22301
  • ISO 20000-1
  • ISO 14000-1
  • ISO 9000-1

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: FISMA/FedRamp, EU Model Clauses, HIPAA/HITECH, ISB 1596, ISO 27018, SASE16 SOC1 & SOC 2
• Information security policies and processes: The Microsoft Cloud Security Policy is available via the Service Trust Platform aka.ms/stp

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Management Approach: VE3 has established formal standard operating procedures (SOPs) governing the change management process. These SOPs encompass software development and hardware change and release management, aligning with recognized regulatory standards like ISO 27001, SOC 1/SOC 2, NIST 800-53, among others. VE3 also employs Operational Security Assurance (OSA), leveraging insights from running numerous servers in datacenters worldwide.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Information Security Measures: In alignment with the Information Security Policy, VE3 utilizes multiple layers of antivirus software to safeguard against common malicious software. Servers in the VE3 environment run antivirus software that scans files for viruses or malware upon upload and download. Moreover, incoming emails undergo scanning by the Exchange Online Protection engine, equipped with multiple antivirus and antispam engines to counter known and emerging threats.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Proactive Monitoring: VE3 implements sophisticated software-defined service instrumentation and monitoring across various levels, including component or server level, datacenter edge, network backbone, Internet exchange sites, and user level. This comprehensive monitoring framework detects service disruptions in real-time, pinpointing their origins. Proactive monitoring continuously assesses the performance of key subsystems against predefined thresholds, generating alerts for timely intervention by operations staff.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Please see http://aka.ms/Office365SIM

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Our G-Cloud service provision is deeply committed to fighting climate change, recognizing the urgent need for collective action to address environmental challenges. Here's how our services deliver against this social value theme: ; ; Environmental Sustainability in Operations: ; ; We prioritize running efficient operations to reduce emissions and minimize environmental impacts. This includes implementing energy-efficient practices, optimizing resource usage, and adopting renewable energy sources wherever possible within our data centers and infrastructure. ; ; Promoting Sustainable Practices: ; ; VE3 actively engages with our suppliers and clients to promote sustainable business practices. Through our services, we advocate for the adoption of environmentally friendly technologies, responsible sourcing, and waste reduction strategies, thereby reducing carbon footprints across the supply chain. ; ; Responsible by Design Framework: ; ; Our G-Cloud services adhere to a 'Responsible by Design' framework, ensuring that environmental considerations are integrated into the development and deployment of digital solutions. By prioritizing environmental protection and minimizing negative impacts, we strive to deliver sustainable outcomes for our clients. ; ; Training and Education: ; ; VE3 invests in training and education programs focused on environmental sustainability. Through initiatives like the Sustainability Quotient (SQ) training, we equip our teams with the knowledge and skills to adopt climate-smart behaviors and implement environmentally conscious practices in their work. ; ; Community Engagement: ; ; We actively engage with communities to support environmental objectives and promote climate action. By partnering with local organizations and stakeholders, we contribute to initiatives aimed at addressing climate change, such as tree planting programs, clean energy projects, and environmental education campaigns.

  Covid-19 recovery

  Our G-Cloud service provision plays a crucial role in supporting the COVID-19 recovery effort by facilitating resilience, adaptation, and innovation in the face of unprecedented challenges. Here's how our services contribute to the recovery process: ; ; Remote Work Enablement: ; ; VE3's digital solutions empower organizations to transition to remote work seamlessly. By providing secure and reliable cloud-based infrastructure, collaboration tools, and remote access solutions, we enable businesses to maintain productivity while ensuring the safety and well-being of their employees. ; ; Business Continuity Planning: ; ; We assist organizations in developing and implementing robust business continuity plans to mitigate disruptions caused by the pandemic. Our services include data backup and recovery solutions, disaster recovery planning, and resilience testing to ensure operational continuity in the face of unforeseen events. ; ; Digital Transformation Acceleration: ; ; VE3 accelerates digital transformation initiatives to help organizations adapt to the new normal. By modernizing legacy systems, implementing cloud-based technologies, and digitizing processes, we enable businesses to optimize efficiency, improve agility, and remain competitive in a rapidly evolving landscape. ; ; Healthcare Support Solutions: ; ; We provide specialized healthcare support solutions to assist frontline workers and healthcare organizations in responding to the COVID-19 crisis. This includes telemedicine platforms, patient management systems, and data analytics tools to enhance patient care, streamline operations, and support decision-making processes. ; ; Economic Stimulus through Innovation: ; ; VE3 fosters innovation and entrepreneurship to stimulate economic recovery in the aftermath of the pandemic. Through our G-Cloud services, we support startups, small businesses, and enterprises in developing and deploying innovative solutions that address emerging challenges, create new opportunities, and drive economic growth.

  Tackling economic inequality

  We recognize the importance of tackling economic inequality and are committed to leveraging our G-Cloud service provision to address this pressing social issue. Here's how our services contribute to tackling economic inequality: ; ; Access to Affordable Technology: ; ; We strive to make cutting-edge technology accessible and affordable to all, regardless of economic status. By offering scalable and cost-effective cloud-based solutions, we enable organizations, including small and medium-sized enterprises (SMEs) and underserved communities, to access the tools and resources they need to compete in the digital economy. ; ; Skills Development and Training: ; ; VE3 invests in skills development and training programs to empower individuals with the knowledge and expertise needed to thrive in the digital age. Through initiatives like online courses, certifications, and workshops, we equip people from diverse backgrounds with the skills required for high-demand roles in technology and innovation, thereby enhancing their employability and economic prospects. ; ; Support for Minority-Owned Businesses: ; ; We actively support minority-owned businesses and entrepreneurs by providing access to mentorship, networking opportunities, and resources to help them grow and succeed. Through initiatives like supplier diversity programs and partnerships with minority business organizations, we promote inclusion and diversity in the technology sector and contribute to creating more equitable economic opportunities. ; ; Digital Inclusion Initiatives: ; ; VE3 is committed to promoting digital inclusion and bridging the digital divide by ensuring that everyone has access to essential digital services and technologies. We collaborate with governments, nonprofits, and community organizations to implement initiatives such as digital literacy programs, affordable internet access schemes, and community technology centers, thereby empowering underserved populations and promoting economic equity. ; ; Fair and Transparent Procurement Practices: ; ; We adhere to fair and transparent procurement practices to create opportunities for businesses of all sizes and backgrounds to participate in government contracts and procurement processes.

  Equal opportunity

  We recognize the importance of tackling economic inequality and are committed to leveraging our G-Cloud service provision to address this pressing social issue. Here's how our services contribute to tackling economic inequality: ; ; Access to Affordable Technology: ; ; We strive to make cutting-edge technology accessible and affordable to all, regardless of economic status. By offering scalable and cost-effective cloud-based solutions, we enable organizations, including small and medium-sized enterprises (SMEs) and underserved communities, to access the tools and resources they need to compete in the digital economy. ; ; Skills Development and Training: ; ; VE3 invests in skills development and training programs to empower individuals with the knowledge and expertise needed to thrive in the digital age. Through initiatives like online courses, certifications, and workshops, we equip people from diverse backgrounds with the skills required for high-demand roles in technology and innovation, thereby enhancing their employability and economic prospects. ; ; Support for Minority-Owned Businesses: ; ; We actively support minority-owned businesses and entrepreneurs by providing access to mentorship, networking opportunities, and resources to help them grow and succeed. Through initiatives like supplier diversity programs and partnerships with minority business organizations, we promote inclusion and diversity in the technology sector and contribute to creating more equitable economic opportunities. ; ; Digital Inclusion Initiatives: ; ; VE3 is committed to promoting digital inclusion and bridging the digital divide by ensuring that everyone has access to essential digital services and technologies. We collaborate with governments, nonprofits, and community organizations to implement initiatives such as digital literacy programs, affordable internet access schemes, and community technology centers, thereby empowering underserved populations and promoting economic equity. ; ; Fair and Transparent Procurement Practices: ; ; We adhere to fair and transparent procurement practices to create opportunities for businesses of all sizes and backgrounds to participate in government contracts and procurement processes.

  Wellbeing

  Environmental Sustainability: ; ; We are committed to environmental sustainability as a core component of wellbeing. By prioritizing eco-friendly practices, resource conservation, and carbon reduction efforts in our operations and services, we contribute to creating a healthier and more sustainable environment. We prioritize the wellbeing of individuals and communities in all aspects of our G-Cloud service provision. Here's how our services contribute to enhancing wellbeing: ; ; User-Centric Design: ; ; VE3 designs our G-Cloud services with a user-centric approach, prioritizing usability, accessibility, and intuitive design. By focusing on the needs and preferences of users, we create digital experiences that enhance overall wellbeing by reducing frustration, stress, and cognitive load. ; ; Health and Safety Protocols: ; ; We implement robust health and safety protocols to protect the wellbeing of employees, clients, and partners. This includes adherence to strict security standards, data privacy regulations, and compliance with industry best practices to ensure the safety and integrity of our digital infrastructure and services. ; ; Promotion of Work-Life Balance: ; ; VE3 recognizes the importance of work-life balance in maintaining overall wellbeing. Through our G-Cloud services, we enable remote work, flexible scheduling, and collaboration tools that empower individuals to achieve a healthy balance between their professional and personal lives, leading to greater job satisfaction and wellbeing. ; ; Mental Health Support: ; ; We prioritize mental health support for our employees and clients by offering resources, programs, and initiatives aimed at promoting mental wellbeing. This includes access to counseling services, mindfulness training, stress management workshops, and employee assistance programs designed to support individuals in times of need. ; ; Community Engagement and Social Impact: ; ; VE3 actively engages with communities to address social determinants of health and promote holistic wellbeing. Through partnerships, philanthropic initiatives, and volunteer efforts, we support local organizations and projects focused on improving access to healthcare, education, housing, and other essential services that contribute to overall community wellbeing.

Pricing

• Price: £175 to £850 a unit
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at prime@ve3.global. Tell them what format you need. It will help if you say what assistive technology you use.