The Access Group

Access Legal Learning

Learning Management System provided as Software as a Service. Preloaded with off-the-shelf content selected specifically for the Legal sector. Provides peace of mind that regulations are met and compliance issues are mitigated.

Features

• Course management. Create and manage many formats of learning
• Companion app. Launch and complete learning activities on the go
• Off the shelf catalogues. Cyber, GRC, Leadership, Legal specific
• Diagnostic assessments. Providing gap anaylsis and skill based learning pathways
• Reporting. Thorough reporting using out the box and customisable reports
• Online help forum. Videos, how-to guides, peer to peer
• Intuitive user friendly design.
• Aggregate learning activities into pathways
• Continuous Professional Development tracking against a simple scheme

Benefits

• Centralised learning. One place for all learning activities and reporting.
• Management information from the workforce in terms of L&D
• Mitigate the risk of lack of knowledge
• Allow staff to grow and engage
• Create and nurture a culture of learning and improvement
• Satisfy regulations through evidence of compliance

£28.79 a user a year

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendernotifications@theaccessgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

347115849513579

Contact

Access UK
01206322575
tendernotifications@theaccessgroup.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: No specific constraints
• System requirements:
  • IE11+
  • Firefox (latest)
  • Chrome (latest) Windows/Android tablets
  • Edge (latest)
  • Safari (latest) Windows/Mac/iPad

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response times can be viewed here https://pages.theaccessgroup.com/rs/302-WOS-863/images/SuccessSupport2017_access_Brochure_PrintableVersion.pdf
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: See here https://pages.theaccessgroup.com/rs/302-WOS-863/images/SuccessSupport2017_access_Brochure_PrintableVersion.pdf
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Training for administrators is provided via webinar. Support for administrators is then provided continually via online help portal, regular blogs and public webinars on a number of subjects. This is all in line with various levels of support plan from FOC minimal contact, online only to full premium service named support and customer success manager giving personalised and proactive service.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats:
  • Video
  • Blog post
• End-of-contract data extraction: Data can be exported via self service at the end of the contract at no charge.
• End-of-contract process: At the end of the contract, all user and learning data can be exported and provided. Confirmation of disposal of data can be provided aligned to data protection laws.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The LMS is accessible through a mobile device using an adaptive display model. A companion app isavailable which is developed specifically for mobile devices. This provides learner centric features but not admin specific features like reporting and user admin.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Public APIs are available and typically used for reporting functionality accessing the data held.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: No
• Customisation available: No

Scaling

• Independence of resources: Access Legal Learning is hosted by Access Cloud Hosting providing a secure and highly scalable hosting environment.

Analytics

• Service usage metrics: Yes
• Metrics types: Access help can provide statistics and data from the usage of the system down to specific usage against specific activities.
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data is exported through the reporting function. Data is exported to .csv or .xlsx file.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Xls(x)
  • Rich Text
  • PDF
  • Word
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Xls(x)
  • Rich Text

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: We will use commercially reasonable efforts to make the SaaS available 99.7% except for unavailability during emergency or routine maintenance.
• Approach to resilience: Available on request
• Outage reporting: We have a portal with a dashboard (privately accessed) and email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Users are set with specific roles within the organisation governed within the LMS. Different roles provide different views and access privileges.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Alcumus ISOQAR
• ISO/IEC 27001 accreditation date: 08/08/2020
• What the ISO/IEC 27001 doesn’t cover: Nothing is excluded
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: The Access Group is ISO27001 certified and operates an Information Security Management System (ISMS) in accordance with the ISO27001 standard. Access is audited annually by the British Standards Institute (BSI) who audit process adherence and compliance with ISO27001 controls. Access internally audits information security every month with a specialist security consultant. The ISMS is steered by the Information Security Working Group (ISWG) headed by the Chief Technical Officer and attended by the Chief Operating Officer, Finance Director and Information Security Analyst with representation from HR, IT and Hosting teams. The ISWG has an operational meeting every month following audits and a strategic review meeting every 4 months. Access operates a risk register and an incident, improvement and audit log for managing the ISMS on an operational basis. All Information Security and Acceptable Use policies are reviewed at least annually and changes to the ISMS are reviewed 3 times a year and form part of the ISWG strategic review.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: No major change should be implemented without: A completed Change MAnagement Form to record business case, problem, solution and risks Approval by the relevant Business Unit Director, Information Security Working Group or Quality Management Working Group An approved, documented plan of the sequence or steps for implementing and releasing the change into business as usual. This should be stored in an appropriate place. Evidence demonstrating the fact that this change has been tested first A rollback/mitigation plan A post-change test being documented to check that the change has been successful Appropriate communication and training for any change.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Available on request
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Available on request
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Available on request

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Access UK Limited is a Software author and provide associated services, including Hosting, Payroll Bureau and Payment services. We recognise that although we do not undertake manufacturing, our day to day operations will have impact on the environment at global, national, and local level. We are committed to the care of the environment and the prevention of pollution. •Access ensures that all our operations are carried out in with the minimum adverse effect on the environment but implementing many available resources and approved processes •We protect the environment by striving to prevent and minimise our contribution to pollution of land, air, and water •We keep wastage to a minimum and maximise the efficient use of materials and resources, and manage disposal of all waste in a responsible manner •We use energy, water, and natural resources wisely and prevent pollution by minimising waste, recycling whenever possible and properly disposing of waste that cannot be recycled. •Our management processes are developed to ensure that environmental factors are considered during planning and implementation •We raise employee awareness and encourage best practices for sustainability at work

  Equal opportunity

  We want everyone to feel at home at Access, knowing that they are valued for what they do, not who they are. We want people to feel that they truly belong here regardless of their age, gender, race, sexual orientation, or anything else that makes them individual; after all, if we were all the same it would be a pretty dull place. We love the fact that we’re all different. Having more diverse perspectives at work improves how we run our business, helps us support our customers, and when you think about it, it's just more fun. For us, this all starts with helping everyone feel part of the family and being at their best every day, making Access a place where everyone can love what they do and do what they love. We all have regular check-ins with our leaders, take part in monthly employee surveys, have lots of chances to share our views and ask for help, and with our own learning system, 'Access Shine', we really can make things even better each and every day. At Access we'll always hire the best candidate but we're continually looking for creative ways to increase the mix of diverse candidates into our recruitment process. On the basis that you ‘have to see it, to be it’, one thing we're doing is sharing more stories to celebrate the wonderful diverse range of talent we have at Access. It is important for us that our employees understand and reflect the customers and communities we support, and we want everyone to feel at home here, knowing that they are valued for what they do, not who they are. We want people to feel that they truly belong here regardless of their age, gender, race, sexual orientation, or anything else that makes them individual.

  Wellbeing

  Access places specific emphasis on the health and wellbeing of its staff and provides a “Well-being” hub in workspace that provides support for Mental Health, Finances, Social, Physical, Emotional and purpose. Assistance from Health Assured is available for all staff and there are training resources for “working in the new normal” and “Mental health and wellbeing” . Access also has “well-being” champions throughout the organisation. This is supported by monthly employee “check in” surveys and offers of flexible working for staff to meet caring commitments.

Pricing

• Price: £28.79 a user a year
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tendernotifications@theaccessgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.