Avepoint UK Ltd

AvePoint Opus

Comprehensive solution for Information Lifecycle Management allowing you to have complete control from creation to archive or defensible disposal, all through a central interface.

Discover and understand your data, remove redundancy, optimise storage, automate lifecycle, ensure compliance, and classify content intelligently with advanced machine learning for efficiency.

Features

• Move inactive content to archive storage for cost savings
• Rules engines to manage information lifecycle and enforce disposition policies.
• Auto-classify content as it is created without end user intervention
• Detailed insights on inactive, redundant content, enabling actionable decisions.
• Configure end-of-life: export for preservation, inplace archiving, destruction
• Report centre oversight of archival activity, rule application, cost savings
• Graphical dashboard for insight into system management
• Audit administrative actions, rule and policy creation and updates.
• Export records in NARA, NAA, and other discoverable electronic formats
• Connector framework to manage content from other business systems

Benefits

• Delegate information management to appropriate roles without compromising M365 Control.
• Implement global records management policies across physical and digital boundaries.
• Automate information and records management for minimaul user disruption.
• Gain IM insight: monitor taxonomy and disposition policy use.
• Defensible data governance policy compliance; provide transparency to implemented policies.
• Select only the tools that meet your information management requirements.
• Manage information consistently regardless of format (physical or electronic)
• Achieve records management compliance with limited end user intervention
• Transfer permanent records for long term preservation to archival authorities.
• Connector framework to manage content from other business systems

£1.60 a user a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at salesuk@avepoint.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

444204981911910

Contact

Sarju Raja, Jason Lee, or Adam Callinan
02074215199
salesuk@avepoint.com

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Office 365, Microsoft 365
• Cloud deployment model: Public cloud
• Service constraints: None
• System requirements: M365 tenant required

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Telephone requests are immediate, other methods will be within 2 hours or more dependant on the severity of the request. For more information https://avepoint.com/products/support.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: Please contact AvePoint for further information about web-chat usage by assistive technology users and to discuss testing.
• Onsite support: Yes, at extra cost
• Support levels: AvePoint provides a Premier Support Service which includes 24 hours a day, 7 days a week, 365 days a year. Included within the support service are Hotfixes, Cumulative updates, Service Packs and Platform Upgrades. More information can be found at https://www.avepoint.com/uk/products/support/
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Self-help guides and videos are available to guide users through service set-up, administration, and use. Further onboarding services are defined and agreed in a Statement of Work.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Customers may request a copy of the data via our support team. Large amounts of data may incur a charge.
• End-of-contract process: The functionality will stop working and the customers obligations will end. Where applicable customer data can be exported.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: None
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: Customers access the browser-based interface via www.avepointonlineservices.com/login
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: Our interface is designed to meet common accessibility standards, and undergoes rigorous QA testing.
• API: No
• Customisation available: No

Scaling

• Independence of resources: We employ a number of methods including elastic scaling to manage performance.

Analytics

• Service usage metrics: Yes
• Metrics types: AvePoint Opus displays reports in different graphs based on different conditions to help you gain a comprehensive understanding of records in your environment.
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data Export feature is initiated from the user interface. Conditions apply on data volumes.
• Data export formats: Other
• Other data export formats: Not disclosed
• Data import formats: Other
• Other data import formats: Not disclosed

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Availability is set within the SLA
• Approach to resilience: AvePoint leverages Microsoft Azure for hosting it's cloud service, which has a number of data centers for HA.
• Outage reporting: Portal notifications with additional direct communication when appropriate.

Identity and authentication

• User authentication needed: Yes
• User authentication: Identity federation with existing provider (for example Google Apps)
• Access restrictions in management interfaces and support channels: All authentication is carried out against Microsoft Azure or any supported Azure authentication method
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Identity federation with existing provider (for example Google Apps)

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: ControlCase, accredited to RvA
• ISO/IEC 27001 accreditation date: 24/06/2021
• What the ISO/IEC 27001 doesn’t cover: N/A. The Information Security Management System is applicable to secure software development and maintenance process including support business functions like Infosec, IT, HR, Sales and Marketing, Project Management, Operations and Call Centre.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: AvePoint has a policy of transparency regarding our data collection, use, retention and sharing practices. It is our commitment to implement appropriate technical security measures to protect all AvePoint stakeholder and manage 3rd party risk. Further information is available at: https://www.avepoint.com/company/trust-center

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Change Management is documented, requested, reviewed, approved, tested, and finally rollowed out during off hours in order to have minimal effect on customers.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We use AppScan to perform OWASP testing on every patch release
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We leverage the Azure Health Status page as well as service monitoring. Please refer to Azure documentation https://docs.microsoft.com/en-us/azure/best-practices-network-security for details. Customers are notified via Administrative Console alerts or directly by Customer Success as threats are identified, with proposed course of action.
• Incident management type: Supplier-defined controls
• Incident management approach: Long standing experienced help-desk available 24x7, backed by breach management procedures to notify customers, post information publicly when necessary, and dedicate development resources to a swift resolution.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity

  Fighting climate change

  AvePoint are a Cloud based delivery organisation therefore reduce the impact of running Datacentres in the organisations

  Covid-19 recovery

  AvePoint are helping raising the Digital Skills in the region through education platforms

  Tackling economic inequality

  AvePoint are offering a Digital Inclusion for the digital deprived in the region to raise the skills and ability to find employment

  Equal opportunity

  AvePoint is a UK employer who has a full equal opportunity approach

Pricing

• Price: £1.60 a user a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: It is possible to trial the product for a 30 day period at no cost online https://www.avepointonlineservices.com/services.Please contact SalesUK@avepoint.com to initiate a trial.
• Link to free trial: https://www.avepointonlineservices.com/services

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at salesuk@avepoint.com. Tell them what format you need. It will help if you say what assistive technology you use.