EnableIT Technologies Ltd

mondayCRM - Customer Relationship Management Platform - monday.com

mondayCRM is a customisable platform designed for efficient sales management. It streamlines your sales cycle, automates tasks, and centralises communication. Features include custom pipelines, email integration, mobile app, and lead management. Trusted by businesses across industries, it’s a flexible solution to enhance your sales process.

Features

• Email Sync And Tracking, Log Emails, Track Leads, Receive Notifications
• Activity Management, Track Meetings, Calls, Notes, For Comprehensive Activity Management
• Dashboards, real time insights on on sales deals
• Sales Forecasting, Track Deal Values, Close Probability, With Customisable Reports
• Lead Capturing, From Website Forms, Or Manual Entry
• Contact Management, Access And Manage Your Contacts From Anywhere
• No Code Automations, Create Your Own Automations
• Activity Tracking, Access Your Teams Activates In One Place
• Mass Emails, Send Emails To Prospects And Leads In Bulk
• Team Goals, Manage Your Teams Quota

Benefits

• Easily Centralise And Track Communication With Your Customers
• Keep Track Of Your Pipelines, Targets, And Team Performance
• Seamlessly Connect All Your New And Existing Data
• Manage Your Sales Process And Client Communications Wherever You Are
• Create Your Own Automations To Do The Manual Work
• 100+ Apps Built Specifically For monday.com
• Manage Your Entire Sales Pipeline Without Switching Tabs
• Instant Access To Past Emails And Activity On Your Phone.
• Seamlessly Log Your Calls With An Automatic Summary Screen
• Access All Your Team’s Activities, Like Calls And Meetings

£17 to £55 a licence a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jbushnell@enable.services. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

328266909068612

Contact

Joseph Bushnell
01473618980
jbushnell@enable.services

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: Monday.com software can only be run in the cloud by monday.com in AWS data centres.
• System requirements: An active license is required for each user

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Our friendly UK Based support team are available on the phone Monday - Friday, 7.30am to 6pm. We also have strict Service Level Agreements within these times. SLA Response Times P1 Response Time: 30 mins (response), 1 hour (target fix), 1 hour (max fix) P2 Response Time: 4 hours (response), 24 hours (target fix), 40 hours (max fix) P3 Response Time: 8 hours (response), 50 hour (target fix), 70 hours (max fix)
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: Through extensive testing, we've developed a system to promptly notify users when a new chat becomes available. Additionally, we've implemented features to guide visitors outside of office hours, ensuring they receive appropriate assistance or information.
• Onsite support: Yes, at extra cost
• Support levels: We offer comprehensive support services, including Basic End User and Technical Support. Every customer benefits from a dedicated Technical Account Manager. Our in-house team of Helpdesk & Infrastructure Engineers is readily available to assist all clients. Furthermore, we conduct onsite or remote sessions to optimise your system's performance and ensure its seamless operation.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Upon engagement, you'll be paired with a dedicated project manager who ensures your system is primed for go-live, equipped with all essential functionalities. We offer comprehensive training options, including both onsite and online sessions, supplemented by detailed documentation and recorded tutorials for system navigation. Additionally, you'll have a dedicated account manager post-launch, available to address any inquiries and provide ongoing support for seamless operation.
• Service documentation: Yes
• Documentation formats:
  • PDF
  • Other
• Other documentation formats:
  • Word Documents
  • Video
• End-of-contract data extraction: A full system data snapshot is provided to customers at the termination of any service.
• End-of-contract process: Various terms are available which can be discussed prior to contract agreement.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: On monday.com, our mobile app delivers a streamlined, thumb-friendly interface designed for seamless on-the-go productivity. Conversely, the desktop platform boasts a spacious, horizontal layout. Certain functions like password changes, time/date preferences, notification configurations, two-factor authentication adjustments, email integration management, and session review are desktop-exclusive due to differing platform behaviours and feature availability.
• Service interface: No
• User support accessibility: WCAG 2.1 A
• API: Yes
• What users can and can't do using the API: GraphQL structure, an alternative to REST based API's, which operates on the single URL/endpoint. The API rate limit is 10 million queries per minute.
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: On monday.com, users have full control over managing custom fields, automations, and naming conventions. For additional changes such as colour schemes and functionality adjustments, users can collaborate with their dedicated account manager. Our in-house team of developers stands ready to implement these customisations, ensuring seamless integration and optimal user experience.

Scaling

• Independence of resources: Continuous monitoring of performance metrics, analysis, and provisioning.

Analytics

• Service usage metrics: Yes
• Metrics types: Data includes metrics such as emails sent, emails opened, emails clicked, content & campaigns created, campaign interaction, points changed, contacts created, contacts qualified. This is not an exhaustive list.
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Monday.com

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The exporting of data can be limited by users, roles, and teams. For example, a user can only export records assigned to them, or only admin users can export any data.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Excel
  • HTML
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: Create security zones using subnets, gateways and access control lists.

Availability and resilience

• Guaranteed availability: Availability and contractual obligations thereof can form part of any contractual agreement.
• Approach to resilience: Full-stack redundancy and multiple routes to the internet backbone.
• Outage reporting: Public Dashboard

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: We use security groups and public key authentication.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: The standards institution of Israel
• ISO/IEC 27001 accreditation date: 01/02/2018
• What the ISO/IEC 27001 doesn’t cover: The certificates validity is subject to the organisation maintaining their system in accordance with SII-QCD requirements for system certification.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • Protected By Privacy Team
  • ISO/IEC 27018 , Security techniques
  • ISO/IEC 27017:2015
  • ISO/IEC 27032:2012
  • ISO/IEC 27701:2019
  • HIPAA
  • GDPR Certified
  • SOC1 Type I Security Certification
  • SOC2 Type II security certification
  • SOC3 Type III Security Certification

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO/IEC 27018 Cyber Essentials Certified - enable.services
• Information security policies and processes: This is laid out in in out 27001/13 policies under POL_SEC_0023, all incidents are record by the compliance director who reports directly to the Board of directors

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: The company uses monday.com as it change request platform, any changes to any internal or external systems. The change request is made by either the customer or employee via a downloadable form which is then summited to the compliance officer who then forwards to the appropriate person. If the change is agreed then the applicant will receive an email authorising to carry out the change within a set period. All services are both internal and external are subject to the change management policy.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Both internal and external systems are continually scanned from both inside and external from secure scan points. Manual scans are carried out using the Metasploit framework carried out by the infrastructure. s Snort and Open VAS network intrusion detection vulnerability & prevention servers are also deployed which provide updates real-time. All Equipment are scanned and patched automatically from a central server, updates are applied on as soon as a possible but within 4 hours. The company subscribes to industry standard NGIPS list and rule sets which update automatic both the Snort, Open VAS, and Metasploit servers.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Both the internal and external facing ports are scanned one a week and the internal network is scanned daily. Once a month the external port are per tested and the report export and any vulnerabilities rectified. As soon as a potential compromise is found it is dealt with within 4 hours.
• Incident management type: Supplier-defined controls
• Incident management approach: The company has a pre-defined policy for all incidents as laid out in our 27001/13 policy document.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  Enable IT is committed to ensuring that everyone employed by us has equality of opportunity open to them. We are committed to equal access to employment training, promotion and day to day management of all individuals thus ensuring that your employment is: Free from discrimination on the grounds of gender, sexual orientation, race, colour, religion or beliefs, marital status, disability, age or union status Based solely on the objective assessment of ability and job related criteria Policy Objectives Through our Equality Policy and with the support and active involvement of directors, partner’s management and employees, we will seek to: Remove barriers to equality where these are identified Treat employees, applicants, customers, business associates and other contacts with equal respect and dignity Protect employees and all internal and external contacts from any form of discrimination or harassment Responsibility Our effectiveness in creating an environment offering equal opportunities will depend on the co-operation of our people in all our locations within the group. Directors and managers have a responsibility: To make themselves familiar with the policy and behave in a manner which reflects the culture To ensure the principles are applied in all employment related situations To ensure employees are fully trained All employees have a responsibility to: Adhere to this policy when carrying out activities related to their job and behave in a manner which reflects the equality principles Directors have a responsibility to: Develop policies and practices which support an equality culture Administer the policy effectively and provide training to ensure that employees are aware of their responsibilities under the policy Monitor progress towards equal opportunities, identify issues and drive actions to overcome obstacles with partners and managers.

Pricing

• Price: £17 to £55 a licence a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Free two week trial
• Link to free trial: https://monday.com/?utm_source=Partner&utm_campaign=enable

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at jbushnell@enable.services. Tell them what format you need. It will help if you say what assistive technology you use.