Desk Top Publishing Micro Systems Limited

DTP Cloud powered by HPE GreenLake

DTP Cloud merges the power and user-friendliness of major public clouds with the security and cost savings of managed private clouds in a user-friendly, turnkey managed service solution for both SME and Enterprise clients. DTP Cloud is powered by HPE GreenLake, providing a best in class, consumption based cloud service.

Features

• High performance, cost-effective IaaS/PaaS delivered as a managed private cloud
• Versatile compute resources offering high performance Linux and Windows Instances
• Seamless self-service experience provided through a modern user interface
• Support for Cloud-native containerised compute using Kubernetes clusters
• Robust Block and Object storage with exceptional performance and scalability
• Enterprise-grade networking and security leveraging SDN and industry-leading security standards
• Data durability; multiple data copies ensuring resilience to hardware failures
• Infrastructure-as-Code; simplified/automated infrastructure management using Terraform and Ansible
• Cloud services hosted and data stored within the UK

Benefits

• Delivers up to 50% cost savings compared to major Hyperscalers
• Up to 3x faster performance; ideal choice for resource-intensive workloads
• High Availability; robust, reliable architecture ensuring critical applications remain accessible
• Advanced cyber threat protection; ideal for meeting stringent security requirements
• Scalable, on-demand IT infrastructure with a simple, predictable charging model
• Fully managed cloud solution; enabling focus on applications, not infrastructure
• Supports existing and next-generation applications and containers in one platform

£3.27 a virtual machine a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@dtpgroup.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

328155298260043

Contact

Howard Hall
0113 276 0210
tenders@dtpgroup.co.uk

Service scope

• Service constraints: The choice of hypervisor for hosting virtual machine workloads is limited to KVM and VMware ESXi.
• System requirements:
  • Option for OS/AV licences to be provided by buyer
  • MPLS communications capability for direct P2P interconnection if required

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: - Critical (Priority 1 incident) 30 minutes;; - High (Priority 2 incident) 4 hours;; - Normal (Priority 3 incident) 8 hours;; - Service Request (Priority 1 SR) 30 minutes:; - Service Request (Priority 2 SR) 4 hours:; - Service Request (Priority 3 SR) 8 hours
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: DTP Cloud provides 24/7 production level support as part of the service at no additional cost. ; DTP provides a named Technical Account Manager for customer service reviews and escalations.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: DTP provides a range of resources to help customers start using the DTP Cloud. These include comprehensive documentation (user guides / training materials, knowledge articles) and in-person onboarding support.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Migration of data to and from DTP Cloud is managed by the customer. Documentation exists along with additional tools and services to facilitate the migration of data, making it simple to download, clone, migrate, copy, port or transfer workloads between environments.
• End-of-contract process: Customers using DTP Cloud on an on-demand basis can cancel their services and/or account via the DTP Cloud Console. Customers will be charged for all usage up to the point of termination.

Using the service

• Web browser interface: Yes
• Using the web interface: The DTP Cloud Console enables customers to self-provision, configure and remove the virtual resources required to host and mange their VM and Containerised workloads. It also allows customers to monitor their ongoing resource consumption and charges, and to raise support tickets.
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: The web interface is accessible via standard internet browser and included accessibility controls.
• Web interface accessibility testing: N/A
• API: Yes
• What users can and can't do using the API: DTP Cloud offers an API to provide an Infrastructure as Code (IaC) capability, Supporting both Terraform and Ansible, this streamlines the cloud experience for customers by enabling faster service delivery, time and cost savings, and enhanced customisation. ; ; Terraform simplifies infrastructure management with automation, tracking, and collaboration for consistent infrastructure.; ; Ansible excels in configuration management and automation, supporting diverse platforms and offering role-based playbooks for efficient infrastructure management.
• API automation tools:
  • Ansible
  • Terraform
  • Other
• Other API automation tools: Apache Cloudstack
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
• Using the command line interface: Customers can access Virtual Machines and are able to make changes through a command prompt.

Scaling

• Scaling available: Yes
• Scaling type:
  • Automatic
  • Manual
• Independence of resources: Customer environments are logically and physically segregated to prevent users and customers from accessing resources not assigned to them. Each customer's workloads can run on dedicated hardware which eliminates the potential for other customers to affect their workloads. DTP continuously monitors service usage to project infrastructure demands and to proactively support capacity requirements.
• Usage notifications: Yes
• Usage reporting:
  • Email
  • Other
• Other usage reporting: Resource utilsation for provisioned services is visible to users via the DTP Cloud console.

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
• Reporting types:
  • API access
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: In line with industry norms, the DTP Cloud service employs a shared responsibility model for cloud security - DTP is responsible for the security of the cloud; customers are responsible for security in the cloud. ; DTP enables customers to control their content including how it is secured at rest, and how access to their DTP Cloud hosted resources will be managed within their own organisation.; ; Wherever appropriate, DTP offers customers options to add additional security layers to data at rest, via scalable and efficient encryption features.
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Virtual Machines
  • Databases
  • Files
• Backup controls: Customers retain control and ownership of their virtual machines and have the ability to use their own backup and recovery solution. Alternatively, Backup and recovery services (using Acronis) are also available as a service extension, and in this case is integrated and managed through the DTP Cloud Console.
• Datacentre setup: Single datacentre with multiple copies
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery: Users can recover backups themselves, for example through a web interface

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: DTP will use commercially reasonable endeavours to ensure that the availability of the Cloud Platform in a given calendar month equals the applicable availability commitment. To define availability, DTP monitors a number of service elements. If the availability of the Service is less than the associated availability commitment, the Customer may request service credits for the Service within 30 calendar days of receiving the availability report from DTP. ; ; KPI metric target for the Service is as follows: ; ; Service Level Cloud Platform Availability - Monthly 99.9%
• Approach to resilience: DTP has implemented backup and redundancy mechanisms to ensure compliance with regulatory, statutory and contractual obligations. DTP has a defined Information Security Policy that includes Business Continuity (BC) and Disaster Recovery (DR) strategies for data, hardware redundancy, network configuration redundancy and backups, and regular testing exercises. ; DTP Cloud employs a highly available platform architecture, and Tier-3 resilient data centre hosting facilities.
• Outage reporting: Service outages are reported to end users via both a public dashboard (user subscribed) and also email alerts.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: Management interfaces implement role-based access controls and require members to authenticate against the corporate identity provider. Access is managed through the management gateway which restricts access based on originating IP address and SSL usage. Additional security and authentication mechanisms including the use of time-based credentials are used to secure and monitor access.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 02/03/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Self-Certified (Level 4 Compliance)
• PCI DSS accreditation date: 12/02/2024
• What the PCI DSS doesn’t cover: DTP is PCI DSS Level 4 certified and as such we are not accredited for ‘Card Payments face to face’
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: Cyber Essentials
• Information security policies and processes: DTP implements an Information Security Management System (ISMS) comprising formal, documented policies and procedures that provide guidance for operations and information security within the organisation. Policies address purpose, scope, roles, responsibilities and management commitment and are maintained in a centralised and accessible location. All DTP staff undertake regular Information Security awareness training, and adherance to the ISMS is audited both internally and externally on a regular basis. ; ; DTP has an established Information Security functions that is aligned with our organisational structure, reporting lines, and responsibilities. Leadership involvement provides clear direction and visible support for security initiatives and ongoing compliance. ; ; Policies are approved by DTP leadership at least annually or following a significant change to DTP's business or operating environment.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: The DTP Cloud team has a comprehensive development lifecycle and change management system in place. Continuous reviews and testing occur on the software development pipelines for individual products and components. Additionally, we run performance tests, feature stress tests, security scans, vulnerability tests and System Tests at scale for every cycle.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: DTP receives defined security feeds from our Suppliers and Vendors and additonally we review the latest information from trusted sources such as ncsc.gov.uk. Vulnerability scans are run regularly across internal and external facing systems to check for vulnerabilities. Vulnerabilities are assessed, ranked and prioritised according to their risk. Remediation efforts and timelines are prioritised and applied using industry best practices, with severe vulnerabilities being addressed immediately,
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: DTP Cloud has intrusion detection/prevention mechanisms in place and the service continuously collects and monitors the environment logs which are correlated with both public and private threat feeds to spot suspicious and unusual activities. Realtime alerts are sent to defined staff members including senior management and are actioned depending on severity. The customer is responsible for the security of the environment over which they have administrative level control. ; DTP also operates proactive service monitoring and management tools to ensure the availability, performance and capacity of the platform in line with SLA obligations.
• Incident management type: Supplier-defined controls
• Incident management approach: DTP's incident management approach complies with industry best practice standards for data collection, management processes and controls. Response standards, procedures, and methods are implemented based on severity level. If DTP identifies an incidence of unauthorised access to/use/disclosure of customer content, DTP will use commercially reasonable efforts to notify customers, taking into account applicable law, regulations, governmental request. DTP will also notify customers of a suspected breach of the infrastructure if that breach occurred on a segment of the platform consumed by a customer, or in the event of DoS attacks. DTP does not monitor guest workloads for such breaches.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: KVM hypervisor
• How shared infrastructure is kept separate: KVM offers full virtualisation, with each guest VM being able to run a separate virtual instance of the operating system, ensuring complete independence between the guest VMs, and the host system. The KVM hypervisor controls the virtualised CPUs, memory, discs, and network interfaces that are exclusive to each VM. ; Because each VM runs separately and in isolation, there is no interference between the VMs, preventing any conflicts or unauthorised access between various. ; KVM also utilises advanced security features such as SELinux and other security extensions to protect virtual machines from lateral or external threats and unauthorized access.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: DTP is committed to running our business in the most environmentally friendly way possible. In addition to the environmental benefits inherently associated with running applications in the cloud, DTP is focused on efficiency and continuous innovation across our infrastructure. We are committed to being carbon neutral by 2025, and our data centre partnerships are carefully selected to align with our sustainability goals.

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  DTP takes its role as an environmental steward extremely seriously and is well advanced towards its target of being a Carbon Neutral organisation by the end of 2024.; DTP has invested significantly into achieving this for the last decade, with its own packaging re-cycling plant, and education and in-office recycling programs that mean that we have not been sending anything to landfill since well before the CV19 pandemic, combined with a hybrid vehicle policy and the creation and use of renewable utilities in terms of solar and the purchase of power from renewable sources. All of which are part of our ISO14001 accreditation, and have been recognised by multiple awards in this area over a number of years.; DTP as well as focusing on its own carbon footprint also works with clients to help them on their own initiatives and carbon neutral journeys, and provides consultancy services and carbon offset services as part of our offering, whereby a client who subscribes to a product or service for a period, its carbon footprint covering manufacture, distribution, usage and environmental disposal can be offset, which is achieved via UK tree planting, within new forests in the Scottish Borders and the Lake District, and other initiatives such as a UK Seaweed Farm, with Seaweed growing much faster so sequestering higher levels of Carbon. These offset services can be purchased as an annual certified service or for the planned duration of any contracted period.; DTP has also hosted many client and user events to promote best practice in the area of environmental stewardship, with lectures for students, roundtables as part of events such as Leeds Digital Festival, and webinars for clients, all of which have been well received.

  Covid-19 recovery

  DTP has done a massive amount of work with clients and the wider community in terms of voluntary activities in supporting them during and through the CV19 pandemic.; As an organisation with a wide focus in terms of the technologies and services we provide to clients we have been at the forefront of providing devices and wrap around services that has allowed our clients to move to initially remote, and more recently hybrid working and teaching, not only for staff and students, but also other initiatives around supporting underprivileged students with the means to continue their studies by providing compute and connectivity solutions as subsidised rates.; As well as access to functionality for staff and students we were also heavily involved in governance and business continuity related projects during the early stages of the pandemic, helping clients with their back up, recovery and disaster recovery policies and the technology and expertise that underpins these. We have also worked with clients as part of this to refine their security as well, including anti-ransomware services and solutions.; Outside of work related CV19 activities we have also supported our local communities in terms of food banks, providing volunteer support, and also bulk product in terms of anti-bacterial wipes to be part of food parcels, and also in the early stage of the pandemic providing these also to university student cohorts, which has resulted in us donating over 1m packs of anti-bacterial wipes. ; As we move out of the pandemic we are working closely with clients to enhance their ability to maintain their position as hybrid working and teaching environments, implementing cloud based solutions such as collaborative working, desk booking and meeting room booking, as well as technologies that allow for hybrid meetings – with participants at home or in the office.

  Tackling economic inequality

  As an SME ourselves we understand the importance of economic equality, especially as our two Leeds Centres are based in less prosperous areas, namely Hunslet and Holbeck.; Also as a small business working in the area of IT we realise that we cannot always compete for new staff in todays era of the Great Resignation, and with the IT sector growing at an exponential rate, we have to look at alternative and a mixture of ways to bring new talent into the business, and retain existing talent.; We also have to recognise that certain demographics are more likely to struggle in todays world, especially young people and those on lower incomes, and we have focused on bringing in talent from both areas into roles where they can gain a foothold on the employment ladder, and have a roadmap for progression, and hopefully the flexibility to allow groups such as single parents to be able to progress without it adding further pressure to what can be already challenging balancing acts in terms of working/living. ; DTP also monitors the cost of living and its baring on those entry level, part time and lower level rolls, and especially utility prices within the current economic situation, with us able to support as appropriate which we believe will be particularly relevant this coming winter.

  Equal opportunity

  DTP heavily committed to promoting diversity within it workforce, and ensuring we have diversity friendly policies and approaches to all aspects of our operations. DTP has put in place specific initiatives geared towards the training and advancement around gender inequality, with the target of promoting specific traditionally male orientated roles to a more diverse community. These include sales, technical and management at all levels within the business.; If any specific targets are needed to be put in place for individual customers these will be agreed with each customer at contract commencement, such as targeted training, work placement targets, or apprenticeships as required.

  Wellbeing

  Wellness in the workplace is a key DTP focus area, even prior to the CV19 pandemic we had put in place the structure, training and resources through a team of DTP Mental Health First Aiders, who as well as an employees line manager can be the first point of contact when an employee is struggling with a wellness issue or concern.; During CV19 we doubled down on wellness support as we realised that although working from home was convenient, it was not always the best working practice for some employees optimum wellness, and as such we put in extra measures including anonymous contacts for issues/concerns, and more sign posting support to the correct support or resolver resource whether that be DTP or external.; DTP also became a launch member of This is Me Yorkshire when it launched at the end of Lockdown 1.0, and which is a charity focused on ending any stigma around wellness issues within the workplace. This is Me Yorkshire (TiM) is aligned to the national This is Me network and focuses on creating content covering senior managers and business owners own mental health and wellness journeys, to show that if your bosses can talk about their mental health then it is safe for employees to do so also. TiM also focuses on storey telling support for people wanting to be articulate their own journey and of course sign posting materials and events that promote wellness in the workplace.; DTP has also run a number of wellness in the workplace events for both staff and customers, including webinars and round table events to promote best practice and top tips around wellness – whether individually or for the organisation.

Pricing

• Price: £3.27 a virtual machine a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Free evaluation trials can be provided.; Trials are usually in place for a 1 week period, but if justified other periods may be possible by mutual agreement.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@dtpgroup.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.