Creative Networks

Desktop-as-a-service (Daas) Solution

Desktop-as-a-Service (DaaS) delivers virtual desktops over the internet, offering device-independent access, scalability, centralised management, security features, and cost efficiency. It enables businesses to provide remote work flexibility and access to applications and data without investing in hardware infrastructure.

Features

• Cloud-based virtual desktops for remote access.
• Access from any device: PC, tablet, phone.
• Scalable desktop instances for changing needs.
• Centralised admin for easy management.
• Security: encryption, authentication.
• Cost-effective subscription model.
• Customisable desktop environments.
• Integration with existing IT systems.
• Performance optimisation for smooth usage.
• 24/7 technical support for uninterrupted operations.

Benefits

• Remote work enabled via cloud-based desktops.
• Flexibility: access from any device.
• Scalability: adjust resources easily.
• Centralised admin streamlines management.
• Enhanced security with encryption, authentication.
• Customised desktops tailored to user needs.
• Seamless integration with existing IT systems.
• Improved performance for efficient workflows.
• 24/7 support ensures uninterrupted productivity.
• Cost-effective subscription model reduces hardware expenses.

£55.00 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at aj@creative-n.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

337016990392348

Contact

Azeem Javed
03303337337
aj@creative-n.com

Service scope

• Service constraints: Desktop-as-a-Service (DaaS) may face constraints such as reliance on stable internet, occasional performance variability, data privacy concerns, vendor lock-in risks, limited customisation options, shared resource allocation, and support arrangements. Buyers should assess internet dependency, understand performance factors, ensure data privacy compliance, evaluate vendor lock-in risks, consider customisation limitations, confirm resource adequacy, and inquire about support and maintenance procedures. By recognising these constraints, buyers can mitigate risks and make informed decisions when implementing a DaaS solution.
• System requirements:
  • Stable internet connection for accessing virtual desktops remotely.
  • Compatible devices: PCs, laptops, tablets, smartphones, etc.
  • Standard web browser for accessing virtual desktop environment.
  • Adequate network bandwidth to ensure smooth performance.
  • Compliance with relevant software licenses for applications and software suites.
  • Endpoint security measures such as antivirus software for client devices.
  • Compatibility with major operating systems: Windows, macOS, iOS, Android.
  • Secure network protocols (TCP/IP) for communication between client-server.
  • Adequate storage space for storing data/applications in the cloud.
  • Sufficient RAM and CPU resources for optimal virtual desktop performance.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 08:30 - 18:00 Weekdays, excluding Bank Holidays. Out of hours support available where necessary. 30 minutes to 8 hour response dependent on priority call, P1 - 30 mins, P2 - 1 hour, P3 - 4 hours, and P4 - 8 hours.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 A
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), 7 days a week
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: No web chat testing has been done with assistive technology users by Creative Networks.
• Onsite support: Onsite support
• Support levels: End-user support and training can be provided at an ad hoc cost. We provide a UK based Service Desk for support. Out of hours support is available. Additional support can be provided from our satellite office in Nottingham. Our helpdesk is made up of 1st line, 2nd and 3rd Line technical expertise. A Technical Account Manager will be assigned as standard as a part of our standard and premium IT Support, see our pricing schedule and SFIA Rate Card for details.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We assist users in adopting the DaaS (Desktop-as-a-Service) solution through a variety of resources tailored to their needs. Our user documentation provides step-by-step guides, FAQs, and troubleshooting tips for independent learning. Additionally, we offer interactive online training sessions and webinars led by experienced instructors to guide users through setup and configuration effectively. For those preferring personalised assistance, optional onsite training sessions can be arranged to address specific organisational requirements. Our dedicated technical support team is readily available to assist users with any inquiries or challenges they may encounter, offering prompt resolution via email, phone, or online chat. With these resources and support channels in place, we aim to ensure a smooth onboarding experience and empower users to utilise the full capabilities of the DaaS solution for their desktop needs.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Exported upon request. Contact the Support Helpdesk or Technical Account Manager.
• End-of-contract process: At the end of the contract services will continue on a rolling 30 day agreement until either party serves notice. If it is decided the client will exit, Creative Networks will assist in transitioning and migration of services ensuring continuity and a smooth handover. We will, where applicable deliver an Exit Plan which sets out the proposed methodology for achieving an orderly transition of Services on the expiry or termination of the contract. The Exit Plan will contain at minimum: Separate mechanisms for dealing with Ordinary Exit and Emergency Exit. The management structure to be employed during both transfer and cessation of the services and a detailed description of both the transfer and cessation processes, including a timetable. Document how the Services will transfer including details of the processes, documentation, data transfer, systems migration, security and the segregation of technology components. Specify the scope of the Termination Services that may be required and any charges that would be payable for the provision of such Termination Services and detail how such services would be provided. Provide a timetable and identify critical issues and set out the management structure to be put in place and employed during the Termination Assistance Period.

Using the service

• Web browser interface: Yes
• Using the web interface: Through the web interface of the Desktop-as-a-Service (DaaS) solution, users can initiate setup processes, configure initial settings, and customise their virtual desktop environments. This includes adjusting display settings, installing applications, and managing files. Users can also personalise preferences like desktop wallpaper and accessibility options. Administrative features such as password changes and security settings may also be accessible. However, more advanced configurations or administrative changes may require additional tools or permissions. User roles and permissions may restrict certain settings or configurations. Additionally, while basic tasks are manageable via the web interface, some features available on the desktop client application may not be fully supported. Changes made through the web interface may need synchronisation across devices for consistency. Overall, the web interface streamlines setup and customisation tasks but may have limitations regarding advanced configurations and administrative actions, which might necessitate accessing other tools or permissions for complete functionality.
• Web interface accessibility standard: WCAG 2.1 AA or EN 301 549
• Web interface accessibility testing: Creative Networks have not done any web interface testing with assistive technology users.
• API: Yes
• What users can and can't do using the API: Through the API of a Desktop-as-a-Service (DaaS) solution, users can automate setup procedures by provisioning virtual desktops, configuring user accounts, and allocating resources programmatically. They can integrate the DaaS service with existing systems and workflows to streamline deployment processes. Additionally, users can make changes to the DaaS environment via the API, including adding or removing applications, updating configurations, and managing user permissions. Administrative tasks such as scaling resources, monitoring performance, and enforcing security policies can be automated to ensure optimal operation. However, some administrative actions may require elevated permissions not available through the API. Additionally, certain features available in the web interface may not be fully supported by the API. Users must adhere to API usage limits and authentication mechanisms specified by the provider to maintain system stability. Changes made through the API should undergo thorough testing to ensure compatibility and prevent unintended consequences. Overall, the API provides extensive capabilities for managing the DaaS environment, enabling users to automate tasks and integrate the service into their existing workflows efficiently.
• API automation tools:
  • Ansible
  • Terraform
  • Puppet
• API documentation: Yes
• API documentation formats: PDF
• Command line interface: Yes
• Command line interface compatibility:
  • Linux or Unix
  • Windows
  • MacOS
• Using the command line interface: Using the command-line interface (CLI) for the Desktop-as-a-Service (DaaS) solution, users can streamline setup processes and automate administrative tasks. They can provision virtual desktops, configure user accounts, and allocate resources using CLI commands or scripts, enabling efficient deployment procedures. Additionally, users can make changes to the DaaS environment, such as adding or removing applications, updating configurations, and managing user permissions, all through the CLI. By automating administrative tasks like scaling resources, monitoring performance, and enforcing security policies, users can ensure optimal operation of the DaaS environment. However, some administrative actions may require elevated permissions not available through the CLI, and certain features or functionalities available in other interfaces may not be fully accessible via the CLI. Users should be familiar with CLI usage limitations, such as command syntax and scripting capabilities, to effectively utilise automation and manage tasks within the DaaS environment. Overall, the CLI offers extensive capabilities for managing and customizing the DaaS environment, enhancing efficiency and flexibility for users.

Scaling

• Scaling available: Yes
• Scaling type: Manual
• Independence of resources: Hosted by Microsoft and they scale.
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types: CPU
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: Yes
• Backup controls: Backups can be scheduled by contacting the support team.
• Datacentre setup: Single datacentre with multiple copies
• Scheduling backups: Users contact the support team to schedule backups
• Backup recovery: Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: All service level agreements are as per the ones supplied by Microsoft, and published by them.
• Approach to resilience: Hosted by Microsoft Amazby Web Servico, they have multiple locations and replication
• Outage reporting: Website Updates.; Email alerts.

Identity and authentication

• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Supplier defined controls.
• Access restriction testing frequency: Less than once a year
• Management access authentication: 2-factor authentication
• Devices users manage the service through: Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Less than 1 month
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Less than 1 month
• How long system logs are stored for: Less than 1 month

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: UKAS
• ISO/IEC 27001 accreditation date: 24/10/2022
• What the ISO/IEC 27001 doesn’t cover: Areas not covered by ISO/IEC 27001 certification include specific business processes unrelated to information security, certain third-party services or suppliers, or compliance with other industry-specific regulations.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Organisations adhering to ISO 27001 establish robust information security practices. They develop policies aligned with ISO 27001 requirements, covering areas like access control, data protection, and incident response. Through risk assessments, they identify and prioritise security risks, implementing controls to mitigate them. Employees receive training on security policies and procedures to enhance awareness and compliance. Monitoring and review processes ensure the effectiveness of security controls, with regular audits and assessments conducted. A designated individual or team oversees the implementation and maintenance of the Information Security Management System (ISMS), reporting to senior management or the board. To ensure policy adherence, organisations employ various mechanisms such as audits, reviews, and ongoing monitoring. Non-compliance issues prompt corrective actions and improvements to the ISMS. By following these practices, organisations demonstrate their commitment to information security and continuously strive to enhance their security posture in line with ISO 27001 standards.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Creative Network's have in place a Change Management Process that follows the ISO 20000 Standard. A change is proposed with the Change Manager and then added to the Changes-overview. The change is scheduled to be executed and a roll back plan is created (if necessary). Rollback is actioned immediately upon confirmation as per following the rollback matrix, resources are freed and announcements are published. Periodically, the overview of archived changes is checked.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Creative Network's have a Vulnerability Management process that implements the following: Receives information about zero day threats from the National Cyber Security Center; subscribe to newsletters from vendors and used products, in contact with special interest groups; Technical vulnerabilities are handled either using the Incident management process or the Change management process; Patches are tested following the Installation of software on operational systems.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: All devices have a monitoring agent on them which can identify potential issues and report back to our service desk. If an issue is identified we have an internal 4 hour SLA to ensure remedial actions are carried asap, the seriousness of an incident will be assessed on discovery so that any priority issues can be responded to quickly.
• Incident management type: Supplier-defined controls
• Incident management approach: Fully developed Business Continuity and Disaster Recovery management process developed in line with ISO 22301. Creative Network's have a pre-defined Incident Management Process in place where by an incident is reported with the Incident Manager and then added to the Incidents-overview. After which, relevant log files (from all systems affected) and evidence is gathered. The incident is corrected by implementing a patch, temporary fix or workaround. It is determine whether future occurrences of the incident can be prevented, e.g. by modifying/strengthening one or more controls. Periodically, the overview of archived incidents is checked for apparent trends and effectivity of corrections.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Third-party
• Third-party virtualisation provider: Hyper V
• How shared infrastructure is kept separate: Separated by Microsoft.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: Our Data Centre follows the ISO 14001 standard. We have in place a robust environmental management system ; • Procuring consumed energy from sustainable energy sources wherever possible

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  DaaS reduces the need for individual hardware, resulting in lower energy consumption and carbon emissions associated with manufacturing, transportation, and disposal of devices. By centralising computing resources in data centres, DaaS providers can optimise energy efficiency and utilise renewable energy sources, further diminishing environmental impact.

  Covid-19 recovery

  DaaS facilitates remote work, supporting business continuity during lockdowns and social distancing measures. It enables swift deployment of virtual desktops to employees, ensuring productivity while minimising disruptions to operations. DaaS helps businesses adapt to changing circumstances, fostering resilience and recovery in the face of economic challenges.

  Tackling economic inequality

  DaaS lowers barriers to access to technology by providing affordable, pay-as-you-go subscription models, reducing upfront costs for businesses and individuals. It enables remote work opportunities, allowing individuals from diverse backgrounds and locations to participate in the workforce without geographical constraints.

  Equal opportunity

  DaaS ensures equal access to technology and software tools regardless of location, socioeconomic status, or physical ability. By providing a consistent user experience across devices, DaaS promotes inclusivity and accessibility for individuals with disabilities or limited access to traditional computing resources.

  Wellbeing

  DaaS supports work-life balance by enabling remote work, reducing commuting stress, and allowing employees to work from environments that suit their preferences and needs. It enhances cybersecurity measures, protecting sensitive data and safeguarding users' privacy, thus contributing to a safer online environment and promoting peace of mind.

Pricing

• Price: £55.00 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at aj@creative-n.com. Tell them what format you need. It will help if you say what assistive technology you use.