Globant

Genexus Enterprise AI - Connect your company with LLMs in a monitored and cost effective way

We are the platform that accelerates the development of private and future-proof AI solutions while connecting companies to all LLMs in a monitored and cost-effective way.
AI solutions built with GeneXus Enterprise AI are LLM-agnostic, guarantee the security and privacy of your data, and provide observability over costs and interactions.

Features

• Specialization of Modules: Enhances product quality through component responsibility separation.
• Modularity: Supports customization and separation of concerns.
• Interoperability: Allows flexibility with evolving Large Language Models (LLMs).
• Scalability: Incorporates scalable practices for growing demands.
• Usage Limits Management: Ensures projects stay within budget.
• Platform Management Extensibility: Manages settings for organizations, projects, and security.
• Cloud Infrastructure as Code: Enables infrastructure versioning, extensibility, and maintainability.
• Observability Principles: Utilizes OpenTelemetry for logs, metrics, and traces.
• Security: Robust IAM policies and encrypted data storage.
• Identity Provider Integration: Facilitates seamless authentication with external IDPs.

Benefits

• Specialization of Modules: Enhances product quality through focused expertise.
• Modularity: Facilitates customization and separation of concerns.
• Interoperability: Enables flexibility and evolution of the platform.
• Secured access to Generative Ai / LLMs like ChatGPT etc
• Fast deployment of products integrated with LLMs

£10,000 to £40,000 a unit

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tim.hurles@globant.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

314371895668797

Contact

Tim Hurles
07880332133
tim.hurles@globant.com

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Secured access to Generative Ai / LLMs like ChatGPT etc
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: The platform requires the usage of services provided by Generative AI Model Providers, such as the ones provided by OpenAI, Google or Meta (and others). The platform can be acquired as a subscription and installed as an Infrastructure as code solution in a private cloud such as AWS, Azure or GCP or it could be acquired as a SaaS solution.
• System requirements: Works with most clouds such as AWS, Azure or GCP.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 1 day to answer tickets.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: No
• Support levels: Incidents reported with Level 1/High: Support response within 24 hours indicating which technician actively took the ticket. This technician will work with the client to define actions leading to the identification of the stated problem and its resolution (actions will depend on the situation presented; more information might be required or, once the problem is identified, provide a fix, a procedure to be executed, or an alternative solution in the application).; Incidents reported with Level 2/Medium: Support response within 48 hours indicating which technician actively took the ticket. This technician will work with the client to define actions that lead to the identification of the stated problem and its resolution (actions will depend on the situation presented; more information might be required or, once the problem is identified, provide a fix, a procedure to be executed, or an alternative solution in the application).; Incidents reported with Level 3/Low: Support response within 72 hours.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Online training and User documentation.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: We dont store any user data.
• End-of-contract process: SaaS (Software as a Service):; End of Contract: at the end of the SaaS contract, the client may choose to renew the contract to continue using the services, including any updates and support provided. If not renewed, access to the software, hosted services, and data will be restricted. ; ; On Premise (on cloud):; End of Contract: For an On Premise solution, the software is deployed on the client’s own infrastructure, so the end of the contract affects the license to receive updates and technical support. The client can continue using the last installed version indefinitely, but without further updates or support unless the contract is renewed.; Continued Use and Maintenance: The client retains control over the infrastructure and installed software but would need to handle maintenance, security, and compliance on their own without the support from the provider once the contract ends.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Yes, it is a responsive web application.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Yes, the whole platform features are apified.
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Yes, the platform can be customized in terms of branding plus DB connectivity and/or authentication methods.

Scaling

• Independence of resources: Cloud Auto-Scalling + Load Balancing support.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: Never
• Protecting data at rest: Other
• Other data at rest protection approach: Yes, data is encrypted at rest using Cloud managed keys.
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Users do not export data
• Data export formats: CSV
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • XLS
  • PDF
  • DOC
  • TXT

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: GeneXus Enterprise AI is hosted on the customer's private cloud, utilizing a dedicated Virtual Private Cloud (VPC) to ensure secure isolation of resources. All services are deployed within a VPC. There are no resources deployed outside the customer cloud boundaries. ; ; Depending on customer requirements, APIs can be configured to allow access exclusively from the public internet or through a private link.; ; Public Apis are secured using TLS 1.2 or higher, ensuring that data in transit is encrypted and protected against interception.
• Data protection within supplier network: Other
• Other protection within supplier network: GeneXus Enterprise AI uses advanced security protocols to ensure the protection of data within its network. The system is deployed on a private Virtual Private Cloud (VPC), where all microservices communicate with the database over a secure TLS 1.2 channel. This setup guarantees that data in transit within the VPC is encrypted and protected from interception or unauthorized access. As all communication occurs internally and is not exposed outside the VPC, the deployment effectively isolates and secures data exchanges.

Availability and resilience

• Guaranteed availability: We can´t guarantee the level of availability as it highly depends on other existing services such as Cloud providers and Model Providers.
• Approach to resilience: We use AWS and have an extensive architecture and components diagram that can be shared if required to tackle this point.
• Outage reporting: We dont have any features for outage reporting. If required we can build on demand.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: It´s with user and password, and matches to the client SCM provider.
• Access restriction testing frequency: Never
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: Less than 1 month

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Bureau veritas certification holding sas — UK branch
• ISO/IEC 27001 accreditation date: 13/07/2021
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Globant has a detailed Information security policy, this can be provided upon request.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: - Each component change is tracked through their lifetime; - Changes are assessed for potential security impact
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Globant proactively manages system vulnerabilities, reducing the possibility of exploitation by an attacker and establishing deadlines for implementing security patches according to their severity. The detailed policy can be provided upon request.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: As part of our platform security management approach, a detailed process is followed to identify such threats and how we respond varies based on particular scenarios.
• Incident management type: Supplier-defined controls
• Incident management approach: Such processes are there and can be modified based on Client needs.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Net Zero and Carbon Neutrality: Aiming for net-zero emissions by 2050, transitioning to 100% renewable energy, and offsetting remaining emissions through regenerative projects.; Stakeholder Engagement: Engaging employees, suppliers, and clients to foster a culture of sustainability, promoting energy-efficient practices and sustainable commuting.; Environmental Management and Compliance: Implementing a management system to handle climate-related risks and comply with environmental regulations, while also promoting transparency in its operations.; Resource Management: Prioritizing the sustainable use of natural resources, focusing on water management and responsible waste handling, particularly e-waste.; Technology for Sustainability: Developing and deploying technologies that help reduce environmental impact both within Globant and among its clients.

  Tackling economic inequality

  Globant addresses economic inequality through targeted educational programs and partnerships. Initiatives such as Inspire and Code Your Future aim to provide technology-focused education and job placement opportunities. Inspire caters to youth under 18, introducing them to STEAM fields through interactive learning methods. Code Your Future extends opportunities to adults from underrepresented and vulnerable groups, offering courses, scholarships, and pathways to employment in tech industries. These programs help bridge the technology access gap, boosting future employment prospects and economic mobility.

  Equal opportunity

  Globant enhances equal opportunity through collaborations and internal initiatives focused on diversity and inclusivity. The partnership with Instituto da Oportunidade Social targets vocational training and employability enhancement for young people and those with disabilities. Additionally, the Women That Build program supports women and non-binary individuals throughout their tech careers, from education to professional development, with various training programs and initiatives. This includes celebrating achievements through the Women That Build Awards, fostering an environment of empowerment and change. Globant's Black in Tech initiative further promotes diversity, equity, and inclusion, aiming to create a more inclusive industry and address economic disparities effectively.

  Wellbeing

  Globant emphasizes the importance of both physical and mental health through its "Be Kind to Yourself" initiative, which integrates wellness into corporate responsibility. This includes enhancing work environments with biophilic designs and conducting comprehensive wellness programs that promote healthier lifestyles and safe workplaces. In response to the COVID-19 pandemic's impact on health perspectives, the initiative has become more crucial, highlighting the need for mental and physical interconnectedness.; ; For mental health specifically, Globant champions awareness and support, particularly on World Mental Health Day. The company provides webinars on managing change and resilience, reflecting its commitment to mental flexibility and well-being. Partnerships with mental health platforms like Insight Timer and the development of Quiet Rooms offer practical tools for employees to maintain mental health, reinforcing the idea that mental health care is a continuous priority, not limited to specific observances. These efforts underscore Globant’s commitment to fostering an inclusive and health-conscious corporate culture.

Pricing

• Price: £10,000 to £40,000 a unit
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tim.hurles@globant.com. Tell them what format you need. It will help if you say what assistive technology you use.