COSTRATIFY LIMITED

CoPerceptuo

The CoPerceptuo SaaS Technology Value Assessment platform collaboratively brings together data associated with IT service delivery, cost, end-user satisfaction, IT service maturity and technology business need to provide a value review, enabling insights into the opportunity to increase the value of technology to your organisation.

Features

  • CSV data upload and ingestion engine
  • Packaged data analysis and insights
  • Business structure definition (IT roles, functions, services, departments)
  • Application, server and IT service management data upload
  • IT capability and maturity assessment engine
  • End user satisfaction surveys
  • Cost analysis
  • Process and business usage of IT analysis
  • Intelligence and collaborative data allocation model
  • SAAS, public cloud hosted, secure by design

Benefits

  • Easily complete information offline and upload safely and securely
  • Quickly obtain key metrics and insights needed to make decisions
  • Insights, bringing awareness of technology consumption to business owners
  • Enabling insights into inefficiency in delivery of IT services
  • Identify inefficiencies in IT service delivery against best practice
  • Adjust IT services according to end user priorities, increasing value
  • Replicate successes in other organisations through data insights
  • Giving accurate CSAT insights based on user feedback
  • Enabling transparency in assumptions on which the calculations are based
  • Confidence in data safety and security

Pricing

£1,500 to £5,000 a unit a month

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at contact@costratify.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

4 2 8 7 4 2 6 6 6 1 9 1 1 9 1

Contact

COSTRATIFY LIMITED Andy Yates
Telephone: 01615134204
Email: contact@costratify.com

Service scope

Software add-on or extension
No
Cloud deployment model
Public cloud
Service constraints
None - Internet access and recent / up to date browser.
System requirements
Internet and browser access

User support

Email or online ticketing support
Email or online ticketing
Support response times
Email responses from 8am to 6pm. Initial response within 2 hours.
User can manage status and priority of support tickets
No
Phone support
No
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
Support services are available from 8 am to 6 pm.

A dedicated technical support manager will be provided for priority accounts and will provide end to end resolution management for each ticket raised.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
We provide:

Remote in-person training
Web training videos and documents
User guides and FAQ
Service documentation
Yes
Documentation formats
HTML
End-of-contract data extraction
All baseline data uploaded can be exported to CSV.
End-of-contract process
Small amounts of anonymous data insights are saved centrally in the application (as agreed with the customer). All specific customer data is then deleted and the application instance is deactivated and removed from the cloud platform, deleting all data in that instance.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Upload of CSV files and display of large data upload tables maybe be impacted on small screen devices however insight charts and text will display fine.
Service interface
No
User support accessibility
None or don’t know
API
No
Customisation available
No

Scaling

Independence of resources
Each organisation has their own infrastructure and database instance based on a public cloud platform.

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
No
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
In-house
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
In-house destruction process

Data importing and exporting

Data export approach
Through CSV extracts from within the application.
Data export formats
CSV
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
We provide the level of SLA's that our hosting providers (Azure, AWS) provide and refunds from poor services are passed directly on to the customer in full.
Approach to resilience
Available upon request
Outage reporting
Internal alerting
Internal availability dashboard
External notification on the website
Email notifications to end-users

Identity and authentication

User authentication needed
Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels
Access to the systems is controlled in the following ways:

1. User must have access to the environment, which is controlled through manual user setup.
2. User access is role-based and controls system functionality.
3. Users must have CoPerceptuo domain access for which MFA is switched on as well as a username and password.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
Between 6 months and 12 months
Access to supplier activity audit information
You control when users can access audit information
How long supplier audit data is stored for
Between 6 months and 12 months
How long system logs are stored for
Between 6 months and 12 months

Standards and certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
No
Cyber essentials plus
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
No
Security governance approach
Cloud hosting design aligned to and continually monitored against UK Official recommended blueprint. As a minimum, this means policies aligned to this standard are set up, applied and monitored across the solution (using native public cloud toolsets) and assured by CCSP qualified security experts.
Information security policies and processes
Processes aligned to ISO 27001, Azure CIS 1.1.0 and PCI DSS 3.2.1

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Further information provided upon request
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
All services are monitored using Public cloud-native security management toolsets with regular vulnerability assessments and reporting implemented. Upon identification, vulnerabilities are investigated and resolved the same day.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
All services are monitored through Public cloud-native toolsets and alerted upon as part of a central monitoring dashboard with email alerts. These events are responded to, investigated and resolved the same day with escalations where necessary to senior management in the organisation through a defined escalation and major incident management process.
Incident management type
Supplier-defined controls
Incident management approach
Internal incident management tooling logs the incident and tracks this as well as updates from the various roles involved in resolving the incident. Periodic communication and update reporting with the end-user are provided until the incident is fully resolved.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks
No

Social Value

Fighting climate change

Fighting climate change

We are highly passionate about helping the UK meet its net-zero obligations and creating a greener, more sustainable long term future for our society and our families. As a technology consultancy, we are continually looking at ways in which we can use technology to help lower the carbon footprint of our client’s operations, enable sustainable energy sources in their supply chain and bring leadership, awareness and commitment to addressing climate change.
Covid-19 recovery

Covid-19 recovery

We are committed to assisting partners, employees and clients in their ongoing recovery from the effects of the global pandemic. Our activities in this area include working flexibly with clients and partners to help facilitate new working practices whilst enabling internal covid safe operations. This has meant finding new ways to collaborate with our clients using digital tooling and ensuring our employees and associates have the support they need, whatever the circumstances.
Tackling economic inequality

Tackling economic inequality

One of our key values is operating in such a way as to enable others. We, therefore, seek opportunities to engage with and diversify our supply chains by partnering with other like-minded SMEs, enabling growth across a strong community of partner companies that increase the quality of outcomes and enable lower delivery costs. In addition, we are committed to graduate apprentices and are continually looking at ways in which we can develop members of our team and hire new graduate capabilities to strengthen our delivery.
Equal opportunity

Equal opportunity

We celebrate diversity and are committed to providing an inclusive environment in which CoStratify employees, associates and partners can collaborate, work together and thrive without fear of prejudice, discrimination or harassment. We are clear that our decisions made when hiring, promoting, discharging or setting pay, will be based on merit, competence, performance, and business needs. We are committed to identifying and eradicating modern slavery in the delivery of our services, including within our supply chain.
Wellbeing

Wellbeing

As a consultancy organisation, we are dependent on great people and the health and wellbeing of our workforce is our top priority. We are committed to ensuring our employees and associates have a good work-life balance and we provide a support framework of tools that are readily accessible. For example, we are continuing to implement the 6 mental health at work commitment standards and monitoring against them using internally accessible tooling, as well as providing access to mental health nurses through partner programmes.

Pricing

Price
£1,500 to £5,000 a unit a month
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at contact@costratify.com. Tell them what format you need. It will help if you say what assistive technology you use.