BiP Solutions Ltd

Delta eSourcing & Supply Chain

Delta eSourcing is a web based eSourcing solution provided on a Software as a Service (Saas) basis. The Delta suite of technologies deliver a proven solution that supports effective and efficient tendering and contract/supplier management.

Delta eSourcing is fully compliant with PCR2015 and compliant with all aspects of PA23.

Features

• Publish direct to OJEU, CDP/FTS, Contracts Finder and buyer portal
• Online SQ (PQQ), RFI, RFP, RFT, Tender Box
• Auto-score online questionnaires for online evaluation, side by side evaluation
• Register contracts, set reminders, record performance and track change
• Fully branded Buyer Profile with contract noticeboard
• Custom portals with alerts, contracts and opportunities notice board
• Create project workspaces, assign internal/external roles and work collaboratively
• Buyer and supplier helpdesk service for all technical support
• Database of more than 200,000 registered suppliers
• ISO27001/Cyber Essentials Plus accredited hosting, disaster Recovery and Business Continuity

Benefits

• eSourcing and eTendering Compliant with UK legislation and EU regulations
• Extensive pool of potential suppliers registered with the portal
• eSource suppliers, create supplier lists and invite them to bid
• Plan and execute complex procurement projects, multi-Lots
• Save time by auto-scoring online questionnaires, streamlining the evaluation
• Online repository of contract and supplier performance information
• Secure auditable activity log for organization and users
• Work collaboratively with other departments and buying organisations
• Assured confidentiality, integrity and availability
• Helpdesk support for buyers and suppliers: email, telephone, live-chat

£9,975.00 a licence a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@bipsolutions.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

294876078297018

Contact

Anne McKinnon
0141 270 7397
tenders@bipsolutions.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: No all maintenance deployments are conducted out of service hours
• System requirements: Internet Browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 24hr SLA, Monday to Friday service Hrs 9am to 5pm
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 A
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 A
• Web chat accessibility testing: Our Live chat application is tested at source and meets the accessibility standards
• Onsite support: No
• Support levels: All Delta eSouricng & Supply Chain clients receive a three tier support, Tier 1 - UK Helpdesk customer service telephone line +44(0)800 923 9236, Live chat and email ticketing, Tier 2 - Client relationship Manager, direct line of communication for systems training and technical support and tier 3 - Account Manager, Account management meetings, commercial queries and escalations.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Data can be migrated to Delta with the assistance of BiP staff. Typically, data can be provided in Oracle database format, structured XML, Microsoft Excel (.XLS) or .CSV format.; ; At service adoption we schedule an onboarding call where we will discuss an implementation plan towards mobilization, the plan includes training that takes the form of a ‘train the trainer’ or ‘super user’ approach. By training super users on the system, the knowledge gained on the course can be cascaded to the wider procurement team.; BiP’s Trainer will:; • Demonstrate and walk through the frequently used functions and features of the tender; manager module; • Demonstrate and explain the supplier services and user journey; • Provide examples of how and when tools should be used; • Demonstrate and show how the CMS can be used to update the website content; Delegates will be able to:; • Explore the system’s functionality in an insulated training environment; • Carry out ‘hands-on’ guided tasks with help from the trainer; • Gain an understanding of the system in preparation for working with the live site. Delegates will be asked for feedback which will be used to improve future training courses.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: The buyer has the ability to export all information from Delta pre-expiry of the contract. Data Extraction is governed by Delta’s Data Exit Policy, which sets out a framework for the handling of Authority Data following the termination or expiry of an Agreement between an Authority and BiP Solutions for use of the Delta service. ; All actions, whether in relation to data storage, removal or provision, will be governed by the UK GDPR, our Information Security Management System and our Quality Management System protocols, which are certified to ISO 27001 and ISO 9001 respectively, and fully subject to our Business Continuity Plan, which is designed in accordance with BS 25999. ; Where the Authority has established an agreement for the retention of Authority Data, the Authority will be entitled to submit a Data Request for the return of Authority Data at any time. In such cases, the Authority Data will be provided within 30 working days of the Data Request. Any return of Authority Data will be subject to an impact assessment to determine the scale of effort required and may be subject to a fee £7,000+Vat.; ; Data will be returned to the Authority in the format of its choice.
• End-of-contract process: The Authority has the opportunity to advise there intention towards data retention or data extraction. Data retention offers read only access to the portal for audit purposes, this is on a license basis and £2,500+vat per annum, per user.; ; Off-boarding is carried out as a sub-project and a formal Impact Statement provided, should the buyer wish for a managed data extraction project £7,000+vat, we require 30 days notice pre-termination of the contract and a secure data exchange would be set up, Typically, data can be provided in Oracle database format, structured XML, Microsoft Excel (.XLS) or .CSV format, and any document types stored in the portal.; ; Data will be returned to the Authority in the format of its choice, including CD/DVD or electronic file transfer.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile-friendly website means that is designed to work the exact same way across devices. This means that nothing changes or is unusable on a computer or mobile device.
• Service interface: No
• User support accessibility: WCAG 2.1 A
• API: Yes
• What users can and can't do using the API: This will allow users to access their Delta data via one way API calls and integrate with third party applications. This API is not designed for integration with any one specific third party application.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: No

Scaling

• Independence of resources: Separate tenants and monitoring

Analytics

• Service usage metrics: Yes
• Metrics types: Access statistics, pages, audit activity logs, resource utilization
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Delta buyers can export their Delta data up to subscription expiry by CSV,Excel, PDF and XML formats. Message logs and document storage can also be exported. The buyer administrator has organizational level visibility and can see all activity across users and workspaces to complete this task, we recommend you plan an exist strategy towards offboarding days required to complete this task, alternately you can request support via you account manager on a resource project.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats: XML
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats: XML

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: The Delta service must have a service availability of 99% or greater during critical operating hours (8.30-5.30). The availability of the service is measured at the data centre, i.e. if the Internet or a user’s PC is down and the portal is still running then it is deemed available. Availability shall be measured as a percentage of the total time in a reporting period, in accordance with the following formula:; Service Availability % = (MP - SP) x100 / MP; Where:; MP = Total number of minutes, excluding planned maintenance, within the year; SD = Total number of minutes of service downtime, excluding planned maintenance, within the year.; Any down time arising from the below shall be excluded from the calculations; The client failing to operate the Service in accordance with the Contract.; Any period of planned maintenance previously notified to the client; ISP problems; The client requesting BiP Solutions to test the Service although no fault has been detected or reported; The services being or having been modified or altered in any way at the client’s request; Browser or DNS caching
• Approach to resilience: Our Policies on IT Security, Business continuity plan and Disaster recovery are available on request, we conform to the ISO27001 certification.; There are two aspects of environmental and physical security. The first relates to ensuring BiP’s activities are carried out in a safe working environment. This applies equally to staff, visitors and sub contractors.; Applying this to the information security management system specifically.; The second aspect relates to the physical and environmental containment and protection of information in BiP’s care. The environmental and physical security measures in place at BiP’s data centre.
• Outage reporting: In the event of any service maintenance or outage, we notify all buyers and suppliers by public dashboard broadcast front end website or application and also email alerts. In the event of out of service hours downtime this is normally notified 72-48 hrs in advance of the event but a minimum of 24hrs.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: MFA access can be managed by the buying orginisation, through Azure entra ID (active directory) by utilizing our single sign on service. The Delta esouricng and supply chain Help Desk are on hand for any standard technical support towards user management for both the buyers and suppliers
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA Certification Limited
• ISO/IEC 27001 accreditation date: 25/04/2008
• What the ISO/IEC 27001 doesn’t cover: N/a
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Information lies at the core of BiP Solutions’ business, whether it is wrapped as a product or service in its own right, or used as a foundation for driving the business activities or managing the relationships established with its multifarious customers. The security of the information and data that BiP holds is of critical importance and BiP is highly committed to protecting this information and the rights of the people and organisations to whom that information relates.; BiP Solutions is certified under ISO 27001. As such, the information security management system, as summarised in our policy document, has been defined in accordance with ISO 27001 and is subject to regular internal and external audits.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All components are tracked in inventory management and reviewed quarterly or sooner. Configuration is completed through a risk based approach and approval process logged in our CMDB. Changes are tracked in the same way, assessing for any security implications.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Threat intelligence and ongoing vulnerability scans inform us of issues that need remediating. Patches are installed within 24hours.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Internal network and threat monitoring. Host based monitoring and alerting. We respond to incidents within 10 minutes and review. If there is a potential compromise the service would be isolated and reviewed to understand the impact.
• Incident management type: Supplier-defined controls
• Incident management approach: Pre defined processes exist for most common and business critical incidents. Users can report incidents through the support team and reports will be provided post incident on request along with status updates during.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Bip Solutions has partnered with Ecology - https://ecologi.com/bipsolutions; ; Projects we support; Read about the reforestation, habitat restoration, carbon avoidance and removal projects we support - 1,080 trees and 6 projects funded.; https://ecologi.com/bipsolutions/badges

  Covid-19 recovery

  We recognise the importance of sustainability in today’s business landscape. We are committed to minimizing our environmental impact, promoting social responsibility, and contributing to the well-being of the local community in which we operate, as well as the wider society.; ; Our sustainability policy outlines our principles and actions towards supporting a more sustainable future.; ; Ethical Business Practices; We are committed to working with suppliers who share our commitment to sustainability.

  Tackling economic inequality

  We are a Living Wage Employer.; We are accredited to ISO 9001 and 27001 in respect of overall good corporate governance.

  Equal opportunity

  BiP Solutions are committed to fostering a workplace culture that promotes diversity, background, and experience drives innovation, enhances overall decision-making, and enriches our community.; ; Our company values of Passion, Integrity and Respect underpin this commitment; and this operates as part of our holistic and published Equal Opportunities policy.; ; We hold ourselves to the highest standards of professional conduct and behaviour. Our code of conduct is designed to ensure a respectful, inclusive, and safe workplace environment for all colleagues, regardless of their background or characteristics. By adhering to this code, we uphold our commitment to diversity, inclusivity, and mutual respect.; ; Our commitment is to: – Creating an inclusive environment where all colleagues feel respected, valued, and empowered to contribute their unique perspectives and talents.; Providing equal employment opportunities to all individuals without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability or age. Recruitment, hiring, promotion, and all other employment decisions are based solely on qualifications, merit, and business needs.; Maintaining a workplace free from discrimination and harassment.; Actively seek to recruit and retain a diverse workforce by implementing inclusive recruitment practices and fostering a culture where all employees feel welcome and supported.; Providing training and educational opportunities to raise awareness about unconscious bias, promote cultural competency, and enhance inclusive behaviours among our colleagues.; Providing intelligent reporting to track our progress towards diversity and inclusion goals and regularly report on outcomes to our stakeholders, holding ourselves accountable for continuous improvement.; Regularly reviewing and updating our diversity and inclusivity policy to reflect evolving best practices, and where appropriate, feedback from our colleagues.; Our Leadership team are collectively responsible for fostering our inclusive culture, promoting diversity within their teams, and leading by example in upholding our diversity and inclusivity policies.

  Wellbeing

  The health, safety and overall wellbeing of our people is one of our core objectives. We understand that the fast-paced world in which we live in, at times, can create challenging and sometimes, stressful situations.; Our approach to wellbeing is to effectively manage both informal situations that may arise as part of navigating through everyday life through to and including, more direct signs of mental health.; ; Mental health is just as important as physical health. As an employer, we are committed to treating mental illness seriously and supporting those employees who are facing mental health problems.; We aim to build a culture that promotes openness about mental health. Whilst we would encourage line managers to spot early signs and have open dialogue with their colleagues, there may not always be outward signs of poor mental health. ; ; Simply Health; As part of our commitment to support employees’ health and wellbeing, BiP operate under a corporate health plan that allows employees to claim money back on their treatment costs. All individuals enrolled in the scheme can also access lifestyle and gym membership discounts through the online portal.; EAP and Counselling; Employees are encouraged to make use of our Employee Assistance Programme (EAP) and the telephone counselling services which are provided through the Simplyhealth scheme. This ‘in the moment support’ will allow you to speak with a counsellor right away and depending on your concern, you may be offered structured therapy sessions to provide you with the support you need.; ; Cycle to Work Scheme - To promote an active lifestyle, BiP currently operate under a Cycle to Work Scheme

Pricing

• Price: £9,975.00 a licence a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: We offer a sandpit environment that is used for both demonstration and training, this environment mirrors the live functionally, post adoption clients have access to this for the duration of their contract. This also allows prospective buyers an opportunity to try the user interface and workflows pre-adoption.
• Link to free trial: https://demo.delta-esourcing.com/

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@bipsolutions.com. Tell them what format you need. It will help if you say what assistive technology you use.