The Compliance Genie
The Compliance Genie is an award-winning all-in-one Health & Safety App for businesses in any industry that works on Google and Apple devices and Lap Tops and Desk Tops too. It is a full feature service that digitises any company's H & S processes.
Features
- Time and Attendance
- Risk Assessment (inc. POW)
- Incident Management
- Induction Delivery
- Safety Audits
- Managing Equipment
- Doc Management and Distribution
- Time and GPS Stamping
- On the Go
- Customisable dashboards
Benefits
- Sign IN and OUT and with QR codes too
- Carry out detailed risk assessments in the workplace
- Keep track of all incidents and prevent accidents
- Induction check lists and incident and emergency procedures
- Streamline your audits and inspections using mobile technology for completion
- Full management of all equipment including vehicle checks
- Distribute documents in real-time and sign off with any device
- Totally cloud-based and works on all devices
- Everything is time, date and GPS stamped
- Build your own downloadable dashboards to show all stats
Pricing
£5 to £50 a licence
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
2 4 7 1 7 3 1 9 8 3 7 1 7 6 4
Contact
BE-SAFE TECHNOLOGIES LTD
Ross Sampson
Telephone: 0114 360 9883
Email: ross@be-safetech.com
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
- The Contractor Genie
- Cloud deployment model
- Public cloud
- Service constraints
- None
- System requirements
- Internet connection
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- Every question receives and instant response and during work days follow up is within an hour. We also have enhanced service contracts that offer weekend and 24/7 cover
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Web chat
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Web Chat is offered via Live Chat during work hours
- Web chat accessibility testing
- N/A
- Onsite support
- Yes, at extra cost
- Support levels
-
Basic Cover – Access to Be-Safe self-help and user FAQ portal – access to ticketing platform
Cover 1 - Charged at 5% of annual service cost, payable in advance
Monday to Friday 09.00 – 18.00, excluding UK public holidays to include help desk telephone support providing user assistance and fault reporting, and resolution within SLA.
Cover 2 – Charged at 8% of annual service cost, payable in advance
Monday to Saturday 09.00 – 18.00 excluding UK public holidays to include help desk telephone support providing user assistance and fault reporting and resolution within SLA.
Cover 3 – Charged at 10% of annual service cost, payable in advance
Monday to Saturday 24 hour a day (24/7) to include help desk telephone support providing user assistance and fault reporting and resolution within SLA.
Cover 4 – Charged at 15% of annual service cost, payable in advance
Seven days a week 24 hours a day (24/7/365) to include help desk telephone support providing user assistance and fault reporting and resolution within SLA.
Other maintenance schedules can be agreed at customer’s request.
Be-Safe will provide Cover 1 support FOC for the first year - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- Onsite training, remote training, train the trainer, customer videos, Scribe, Customer Portal, user documentation
- Service documentation
- Yes
- Documentation formats
-
- Other
- Other documentation formats
-
- Word
- Powerpoint
- End-of-contract data extraction
- By download. We can help with it too.
- End-of-contract process
-
The monthly fee is an all in price that includes access to and use of all aspects of the service and 100GB of storage for the life of the contract.
Customers can cancel at the end of their contract.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Opera
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- MacOS
- Windows
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- There is no difference
- Service interface
- Yes
- User support accessibility
- None or don’t know
- Description of service interface
- Its our app or web interface on mobile devices and/or desktops
- Accessibility standards
- None or don’t know
- Description of accessibility
- The service can be accessed through mobile devices - phones and tablets - and desktops and laptops and on Macs and computers.
- Accessibility testing
- None
- API
- Yes
- What users can and can't do using the API
-
Users can export custom/accident report forms data, get notification details, userslist, entities details and so on you can find everything on this link : https://api.be-safetech.com/api/5rkdefew7mmpyeqq/index.html
API data can be accessed through api keys available through platform configuration. For specific data, clients can request that an api be made to achieve their needs. - API documentation
- Yes
- API documentation formats
- Open API (also known as Swagger)
- API sandbox or test environment
- Yes
- Customisation available
- Yes
- Description of customisation
- Form builder allows full customisation of risk assessments for example or incident reports and there are dashboards that can be set up exactly as the customer requires.
Scaling
- Independence of resources
- We are using Azure app services for deploying our service which has 99.95% availability with autoscale enabled to accommodate for higher service demand as well as using a high performance servers to start with - security certificates - ISO 27001 and 9001
Analytics
- Service usage metrics
- Yes
- Metrics types
- There are a huge range of metrics available in the system and the customer can choose which they use.
- Reporting types
-
- API access
- Real-time dashboards
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- No
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Physical access control, complying with SSAE-16 / ISAE 3402
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- A third-party destruction service
Data importing and exporting
- Data export approach
- Via Api calls or CSV export
- Data export formats
-
- CSV
- Other
- Other data export formats
- Json
- Data import formats
-
- CSV
- Other
- Other data import formats
-
- Excel
- Word
- Powerpoint
- Text
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- 99.95% provide by us via Microsoft Azure
- Approach to resilience
-
https://learn.microsoft.com/en-us/dotnet/architecture/cloud-native/infrastructure-resiliency-azure
Handled by Microsoft - Outage reporting
- Email alerts
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Username or password
- Access restrictions in management interfaces and support channels
- Username and password
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Username or password
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- Less than 1 month
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- Less than 1 month
- How long system logs are stored for
- Less than 1 month
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- British Assessment Bureau
- ISO/IEC 27001 accreditation date
- 06/04/2024
- What the ISO/IEC 27001 doesn’t cover
- Nothing
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- We have a full series of Information Security Policies as accessed by ISO 27001 available on request.
Operational security
- Configuration and change management standard
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Configuration and change management approach
- We have a full change management process that is assessed as part of our ISO - process available on request.
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
-
Our cloud env is managed by Microsoft via Azure who is responsible for deploying patches and security updates. We are ISO 27001 compliant we do regular updates for any potential security issues periodically (each 3 to 6 months)
We deploy fixes the moment they are found and fixed depending on the complexity of the issue - Protective monitoring type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Protective monitoring approach
-
Email alerts from the Azure Portal
within 15 minutes - Incident management type
- Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
- Incident management approach
- We have a full ISO accredited process for incident management. Users report incidents via our Help Desk. We produce incident reports as part of ISO and inform customers if necessary by email.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
Equal opportunityEqual opportunity
We have a full Equal Opportunity policy as part of our ISO assessment which is available on request.
Pricing
- Price
- £5 to £50 a licence
- Discount for educational organisations
- No
- Free trial available
- No