GLANTUS UK LIMITED

Statement Reconciliation (Delve)

Delve reconciles vendor statements to AP transactional data and enables the digital capture of statements in paper, PDF, or Excel formats. It creates an automated side-by-side comparison of supplier invoices and payment activity to customer AP transactions.

Features

• Automatic & electronic statement data capture
• Reconciliation, 3 pass matching comparing ledger, DMS & payment details.
• Identifies variances in amounts, dates, document types and currencies
• Identifying missing transactions from supplier statements
• Overpayment detection
• Audit traceability
• Root cause analysis
• Visualized dashboards
• Exception management
• ISO 27701 & 27001

Benefits

• Enables staff to analyse supplier statements, uncovering anomalies at source
• Removes monotonous, repetitive and manual statement reconciliation
• Eliminates 90% of manual staff effort in reconciling supplier statements
• Strengthens supplier relationships by proactively managing variances
• Dashboards provide insights to workflow, unresponsive suppliers & trending variances
• Enables more innovative AP projects to be undertaken
• Errors are eliminated and staff retention is improved
• On-demand auditing now available
• Locate root causes of problems on transactions and identifies issues
• Identifies and tracks overpayments, missing invoices and missed credits

£30,932 to £111,708 a licence a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@glantus.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

379187233769739

Contact

Andy Cornish
01727 829640
info@glantus.com

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Glantus specialises in automating AP processes for organisations. Our solutions can coexist, compliment or can operate in isolation, depending on the set up at a specific customer site. Eg. some of our customers only avail of our Flow product and have another incumbent solution in place for statement reconciliation.
• Cloud deployment model: Private cloud
• Service constraints: No
• System requirements:
  • Microsoft Edge
  • Mozilla Firefox
  • Google Chrome
  • Apple Safari

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Depending on the severity of the issue, typically our response times are as follows:; ; 1 - Total Stop - 4 hours*; 2 - Severe impact - 4 hours; 3 & 4 - Material or Marginal effect - 8 hours; ; This is in line with our standard SLA's. ; ; *Hours mean local business hours 9:00am to 5:30pm Monday – Friday excluding national and bank holidays in ROI. (Unless otherwise agreed under an Advanced services agreement)
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Onsite support
• Support levels: We provide a single level of support across our products and services, which includes a helpdesk (in solution contact), support email address and helpdesk contact number. This is free of charge to our customers and included in the subscription cost. Within the solution is a helpdesk function with direct access to the customer / technical support team. This support is available to assist in both technical issues and user queries. Customers will also be issued with a technical account manager to support this function.; ; The handling of a support request which concerns a disruption to or a reduction of the Licensed Programs’ functionality with deviation from the specifications is divided in the following events: ; ; Response - The acknowledgement from Glantus Support that the support request has been issued. Incident ID number created. Severity Level assessed and initial problem description documented.; ; Resolution - The confirmed delivery of necessary instructions that – when applied – will remove or minimize the reported reduction of the Licensed Programs’ functionality.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Full training is provided as part of the standard implementation and install. Upon contract award Glantus will provide a full training plan.; ; Typically our training plan will include the: ; • Identification of training needs and who will be responsible; • Outline details on the delivery of training and how it will be administered ; • Methods of training (e.g. classroom, online tutorials, user manual) – Training for an implementation can be done remotely but we are also happy to look at other innovative ways in which to roll out training; • The resources required/supplied including documentation and a timetable for delivery ; • Measurable outcomes and KPIS of the training programme, including certification of achievements etc ; ; • Establish project goals, identifying the greatest pain and challenge that we are addressing and always referring back to the main goal ; • Choosing the right employees to champion the product and be able to roll out training after the necessary courses ; • Create useful, personalized and engaging employee learning experiences; • Deliver training to employees at the right time – This is key as we need to ensure training part of the momentum that has built during the implementation. ; • Track and improve – Nurture
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Reports and analysis data can be extracted directly from the solution at any point in time. At the end of the term the solution and the data within it will remain available to the customer for a period of 6 months. No data is lost as all original data remains in the customer ERP. The primary data is stored in the clients ERP, with our delve product where we are capturing supplier invoices and statements, this data can be exported and provided to the client.
• End-of-contract process: At the end of the contract it renews at the same term as original contract duration. If cancellation is required, written notice should be given 6 months prior to expiry date. ; ; Included in the cost is; ; ; Implementation; Maintenance; Hosting; Training; Customised Reports; ; Additional costs - bespoke customisation, not specified in original statement of work.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: Typically Glantus deliver our solutions off the shelf however we also realize that some customers are going to have some nuances and workflows that need to be incorporated into a new solution delivery. There are a number of key areas in the Delve solution that can be customised such as: ; ; • Capture of fields on invoices/ statements ; • Authorisation levels ; • Workflow; • Triggers ; • Matching capabilities; • Analytics and Reports. ; ; Typically the only area of the solution that users can customise post delivery and sign off is the reporting section. Typically this will be performed by the product champion, Finance lead or IT lead, depending on the customer.

Scaling

• Independence of resources: Segregation of virtual machines and databases ensure no adverse effects on end users performance.

Analytics

• Service usage metrics: Yes
• Metrics types: Within the solution Glantus provide administration reports. These include; ; ; Current Users; Last Login Date / Time; Login History
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users have the ability to export any of the reports into Microsoft Excel.
• Data export formats:
  • CSV
  • Other
• Other data export formats: XLSX
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • XML
  • EDI

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection between networks: Files are sent via a PUSH or PULL SFTP process.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Glantus only use ‘best in class’ technologies such as Microsoft Azure Cloud Storage and Microsoft O365. These solutions have multiple failover and recovery systems and downtime if any, would be minimal. ; ; Glantus have a Business Continuity Plan and can provide more details on our policy for acceptable service recovery.
• Approach to resilience: Currently, Glantus BCP is active. Systems working with Microsoft and Zoho – have robust DR solutions with multiple failover servers. BCP and DR plans were reviewed and tested during our previous ISO audit (August 2021). A hard copy of BCP and DR plans are kept in head office Dublin and soft copy on our Integrated Management System (IMS) – REG14 Business Continuity and Disaster Recovery. ; ; Recovery Time Objective (RTO) for Helpdesk is max 1 day. When BCP is enabled, staff are asked to work from home. Shared office spaces can be made available for staff who require. Glantus do not have physical servers. ISO27001 has an element of business continuity and disaster recovery. ; ; BCP status is active due to Covid19 pandemic. Activated February 2019.; ; If required, we would be able to provide copies of the following docs; ; REG14B - Business Continuity Plan; REG14C - ICT Disaster Recovery Plan; REG14A - Business Impact Assessment
• Outage reporting: Clients are notified via email in advance of any planned maintenance, and also alerted via email during any unplanned outages as to the status of the system.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Customers are allocated administrator rights to one senior user in the organisation. That administrator can add / remove / restrict other users access.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA
• ISO/IEC 27001 accreditation date: 20/04/21
• What the ISO/IEC 27001 doesn’t cover: Nothing.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications: ISO27701: 2019

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Glantus' processes and procedures are audited internally, and by an external independent accreditation body on an annual basis. Glantus is certified and accredited to ISO9001 Quality Management, ISO27001 Information Security and ISO27701 PIMS (Privacy Information Management System) standards.; ; Glantus recently completed a Tier2 security assessment achieving excellent results. Glantus were deemed to be low risk in every area of information security and organisational security standards. This report can be made available on request. ; ; We would be able to provide upon request the following:; ; ISO Certificates for 9001, 27001, 27701.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Glantus operate system configuration standards and ensure system changes follow a change management process. PROC08 - Design and Development, Change Management Procedure (SOP) Glantus' processes and procedures are audited internally, and by an external independent accreditation body on an annual basis. Glantus is certified and accredited to ISO9001 Quality Management, ISO27001 Information Security and ISO27701 PIMS (Privacy Information Management System) standards.; ; We can also provide a copy of our Design and Development; Change Management Procedure (SOP) upon request.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Risks are recorded, reviewed and mitigated through our Risk Procedure (PROC11) and Improvements Procedure (PROC03). This is supported by the Risk Committee which is comprised of the senior management team and the Board of Directors. Glantus Risk Management & Legal Compliance - Risk Register 02, PROC11 Form 11 Generic Risk Assessment, Form 06 Potential Data Breach Reporting Form, Form 02 Improvement Report Glantus' processes and procedures are audited internally, and by an external independent accreditation body on an annual basis. Glantus is certified and accredited to ISO9001 Quality Management, ISO27001 Information Security and ISO27701 PIMS (Privacy Information Management System) standards.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Risks are identified and measured through qualitative and quantitative methods to ensure risk mitigation within the business and are recorded, reviewed and mitigated through our risk procedure (PROC11 Risk Management & Legal Compliance) on the Risk Register. Supported by the Risk Committee which is comprised of the senior management and the Board of Directors. ; ; Glantus has a robust data breach reporting procedures and policies; POL-003IT ICT Security, POL-012IT Security Incident Management, PROC02 Information Control, PROC03 Problems & Improvements, all of which are audited internally, and by an external independent accreditation body annually. Certified and accredited to ISO9001, ISO27001, ISO27701 standards.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: PROC03 Improvements Procedure, POL-012IT Security Incident Management Policy & POL-005IT Acceptable Use and Secure Working Policy. Glantus Data Protection Breach Management Guide V3 July 2021.pdf Glantus' processes and procedures are audited internally, and by an external independent accreditation body on an annual basis. Glantus is certified and accredited to ISO9001 Quality Management, ISO27001 Information Security and ISO27701 PIMS (Privacy Information Management System) standards.; ; We are also able to provide the following docs upon request:; ; Documents:; PROC03 Improvements Procedure, ; POL-012IT Security Incident Management Policy ; POL-005IT Acceptable Use and Secure Working Policy

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  N/A
• Covid-19 recovery:

  Covid-19 recovery

  N/A
• Tackling economic inequality:

  Tackling economic inequality

  N/A
• Equal opportunity:

  Equal opportunity

  N/A
• Wellbeing:

  Wellbeing

  Glantus are committed to building & developing a “great workplace” ethos, with a holistic approach to health & wellness. We’ve signed up to the ‘Mental Health at Work Commitment’. This is a simple framework that is based on the ‘Thriving at Work’ standards, pulling from the pledges and standards, using up-to-date research from UK employers and mental health experts. We believe the Mental Health at Work Commitment, is a roadmap to achieving better mental health outcomes for those within our company. ; ; The six standards are;; ; 1. Prioritise mental health in the workplace by developing and delivering a systematic programme of activity; 2. Proactively ensure work design and organisational culture drive positive mental health outcomes; 3. Promote an open culture around mental health; 4. Increase organisational confidence and capability; 5. Provide mental health tools and support; 6. Increase transparency and accountability through internal and external reporting.; ; For 2022, we’re focused on the first two standards. Planned activity is aimed at increasing importance and awareness of mental health. This will include presentations & webinars from external providers, plus events like hackathons, Great Glantus Bake Off and summer step challenge. ; ; We’re reviewing our current leave and time off policies, to assess the suitability of adding to our core policies. To include additional time off for staff who volunteer in their local communities, recognition of those undergoing fertility treatment and miscarriage and policies in relation to women’s health specifically in the areas of periods and menopause.; ; In line with the second standard, we’re reviewing all our company policies to ensure they take account of positive, mental health outcomes. e.g. asking all team members to complete a WFH Self-Assessment at least annually, this has been redesigned with a dedicated section on the importance of scheduled rest breaks and incorporating more movement into the working day.

Pricing

• Price: £30,932 to £111,708 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@glantus.com. Tell them what format you need. It will help if you say what assistive technology you use.