BLUESTONEX CONSULTING LIMITED

Maextro - Master Data Management & Governance For SAP ERP ECC6 & S/4HANA

Maextro is a comprehensive Master Data Management (MDM) and Governance solution designed to optimise SAP data processes. It offers a no-code, user-friendly interface, simplifying data management across business objects. Maextro enables efficient processing and easy governance, ensuring accuracy your data investments; supporting strategic decisions and operational efficiency within core ERP.

Features

• SAP ERP MDM Plug-in requires minimal integration effort.
• Template driven approach for simple fast deployment typically in weeks.
• Fully configurable to model business requirements, business rules and workflows.
• Enables users to create, maintain and consume reliable SAP data.
• Designed to enable simple and effective data governance and compliance.
• Supports data entry via non-SAP ERP systems.
• Built on & fully integrated within existing SAP ERP.

Benefits

• Rapid deployment and therefore quicker time to value.
• Low cost alternative to ERP vendor's MDM/G solution.
• Ease of data governance promotes compliance & risk reduction.
• Removes reliance on manual data input, reducing error risk.
• Automates data processes, offering staff redeployment options.
• Scalable commercial model

£1,250 a licence a month

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at richard.henry@bluestonex.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

339100803661683

Contact

Richard Henry
+44 7714775537
richard.henry@bluestonex.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Pre-reqs mentioned for Maextro require SAP ERP.
• Cloud deployment model:
  • Private cloud
  • Hybrid cloud
• Service constraints: Users must be existing SAP ERP licensed users.
• System requirements:
  • SAP ERP ECC6 or S/4 HANA
  • Available for SAP RISE Private

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 24 hours for non urgent issues.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Monday to Friday UK Office Hours: ; ; P1 (Critical Defect) - 4 hour resolution ; P2 (Defect) - 8 hour resolution ; P3 (Defect) - 12 hour resolution ; P4 (Non Critical Defect) - 24 hour resolution
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: In addition to a User Guide and Configuration Guide, we provide training services and implementation services.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: The data always resides within the customer's on premise system (so the data never leaves them). Only the UI (user interface) sits within the cloud along with the APIs.
• End-of-contract process: At the point of subscription termination, the licensed Maextro software will become unavailable.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Chrome
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: We have mobile responsive UI5 applications for create request, approve request, data gather, data approval and KPI reports.
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: Maextro service interface is via web browser or Fiori client.
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: We have tested the user interface with varying skills of users from a wide section of society. Each User Interface screen can be amended from colors to fonts for specific users.
• API: Yes
• What users can and can't do using the API: We have Maextro APIs that connect to other systems that may trigger a request for new data. APIs are also used in checking data and when creating new business partner data (e.g. post code checkers).
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Configuration of process, workflow and business rules are all configurable.

Scaling

• Independence of resources: Maextro Software will reside on customer ERP stack whilst end users will access the interface via UI5 web browser. We have meticulously tested Maextro and are confident in its ability to deal with pressing demand.

Analytics

• Service usage metrics: Yes
• Metrics types: There are a number of standard usage reports with the option to expand these at an extra cost.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest: Encryption of all physical media
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: The data always resides within the customers on premise system (so the data never leaves them). Only the UI (user interface) sits within the cloud along with the APIs. If customers want to export from existing ERP they would use the standard tools to download to xls.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: Standard cloud UI availability of 99.5%
• Approach to resilience: Available on request.
• Outage reporting: A private dashboard that each customer will have for support/maintenance & monitoring.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: The Authorization and Trust Management service lets you manage user authorizations and trust to identity providers. Identity providers are the user base for applications. You can use an identity authentication tenant, an SAP on-premise system, or a custom corporate identity provider. User authorizations are managed using technical roles at the application level, which can be aggregated into business-level groups and role collections for large-scale cloud scenarios.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: PWC
• ISO/IEC 27001 accreditation date: 14/02/2020
• What the ISO/IEC 27001 doesn’t cover: This certificate is based on the report with reference U6QQJ456ZDXZ-42507190-80 and has been issued on 31 May 2018 and will be valid until 31 May 2021
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: SAP Cloud Platform Identity Provisioning automates identity lifecycle processes. It helps you provision identities and their authorizations to various cloud and on-premise business applications.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We follow a process via our customer portal where tickets and requests for change are managed. Each change is packaged into solutions and moved upon approval from the customer.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: SAP cloud platform is monitored and alerts are real time.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We monitor all usage of apps including users by application and alert accordingly.
• Incident management type: Supplier-defined controls
• Incident management approach: Incidents are either raised by users or internally and assigned to an agent for resolution. The Bluestonex support portal is used to track incidents real time for all customers.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Tackling economic inequality
  • Equal opportunity

  Tackling economic inequality

  At Bluestonex, we believe in the power of giving back to the community that has nurtured us. We understand that our success is intertwined with the well-being of our community, and we are committed to making a positive impact on it. Our commitment to community support is not just a corporate responsibility; it’s a core part of our identity. We actively seek opportunities to contribute to our local community, particularly through the sponsorship of children’s sports. We believe that sports play a crucial role in children’s development, teaching them valuable life skills such as teamwork, discipline, and perseverance. In 2024, our commitment to community support has manifested in the form of sponsoring a junior football team. This sponsorship is not just about providing financial support; it’s about investing in the future of our community. By sponsoring the junior football team, we are helping to provide the children with opportunities to learn, grow, and excel both on and off the field. We are proud to support a sport that brings people together and fosters a sense of community. Football is more than just a game; it’s a platform for instilling values, building character, and creating lasting memories. Through our sponsorship, we hope to inspire the children to pursue their passions, strive for excellence, and believe in their potential.

  Equal opportunity

  At Bluestonex, we are deeply committed to fostering an inclusive and diverse technology industry. We firmly believe that everyone, regardless of their background, should have access to the opportunities that this dynamic field offers. To this end, we have established a partnership with a local school to provide work experience placements for students. These placements are not just about gaining exposure to the tech industry; they are about empowering the next generation of tech leaders. We have designed our work environment to be welcoming and supportive to all students, irrespective of their socio-economic, cultural, or personal backgrounds. We believe that diversity is our strength and that it fuels innovation and creativity. Moreover, we recognize and value neurodiversity. We understand that individuals with neurodiverse challenges bring unique perspectives and strengths that can greatly contribute to our organization and the tech industry as a whole. We strive to create a work environment where neurodiverse individuals can thrive and reach their full potential. In our commitment to inclusivity, we continuously work towards eliminating any barriers that might hinder anyone from pursuing a career in technology. We are dedicated to creating a culture of acceptance and understanding, where everyone feels valued and respected. Through our partnership with the local school, we aim to inspire students and provide them with valuable insights into the tech industry. We hope that this experience will ignite their passion for technology and encourage them to consider a career in this field. In conclusion, at Bluestonex, we are not just building a diverse workforce; we are shaping the future of the technology industry. We are proud to play a part in paving the way for a more inclusive and diverse tech industry. We believe that our efforts today will lead to a more equitable and innovative tech industry of tomorrow.

Pricing

• Price: £1,250 a licence a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at richard.henry@bluestonex.com. Tell them what format you need. It will help if you say what assistive technology you use.