ARRIBATEC UK LTD

Prophix One - Financial Performance Management

Arribatec, working with our partner Prophix, offers a state of the art Financial Performance Management solution. Prophix One is the only Financial Performance Platform that brings your data, people, and processes together into a single, scalable solution enabling you to focus on what drives real business performance.

Features

• One platform addressing financial close to financial planning.
• One platform addressing financial close to financial planning.
• Centralised data integration with seamless sharing across the platform
• Platform level workflow
• Centralised starting point and sign-on (Portal)
• ESG capabilities
• Seamless movement between processes, consistent user experience
• Self-service UI for modelling, analysis, and “what-ifs”
• Delivers a simplified but powerful consolidation module
• Drill down, drill back and drill through to transactional details

Benefits

• Decentralised reconciliation enables early and more frequent reconciliation
• Seamlessly analyse financial data, spot trends with AI Technology
• Faster, more frequent Consolidation
• Reduce costs and risks by eliminating spreadsheets
• Increased confidence - Have more certainty in your data
• Enhanced strategic decision making
• Faster month-end through direct integration, automated reporting and distribution
• Improved data governance with fewer errors and issues
• Improved control and visibility
• Improved collaboration with greater accountability and budget ownership

£20,000 to £90,000 a licence a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info.uk@arribatec.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

448635199538891

Contact

Allan Burrows
0333 444 1005
info.uk@arribatec.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: There are no Service Constraints
• System requirements:
  • Prophix Cloud is offered as a software-as-a-service (SaaS) model.
  • There is nothing to install on individual machines locally.
  • There is nothing to install on application servers.
  • Instead, you securely access Prophix Cloud via a web browser.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Prophix support typically aims to respond to inquiries within one business day. However, the actual response time may vary depending on the nature and urgency of the request, as well as the current volume of support tickets. They prioritize critical issues and strive to provide timely assistance to all users.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Prophix typically offers several support levels to cater to the varying needs of their customers. While specific details may vary, the following are common support levels offered by Prophix:; ; 1. **Standard Support**: This level usually includes basic support services such as access to online resources like knowledge bases, user forums, and self-help documentation. It may also include email support during standard business hours.; ; 2. **Premium Support**: Premium support often includes faster response times and extended support hours compared to standard support. It may also include access to phone support during business hours, allowing customers to speak directly with support representatives for assistance with their issues.; ; 3. **Enterprise Support**: This level of support typically offers the highest level of service and priority. It may include 24/7 support availability, dedicated support representatives assigned to the customer's account, and guaranteed response times for critical issues.; ; 4. **Custom Support**: Prophix may also offer custom support packages tailored to the specific needs of larger enterprise customers. These packages may include additional services such as onsite support, personalized training, and dedicated account management.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Prophix is committed to providing comprehensive training and support to empower users to leverage the full capabilities of Prophix and achieve their financial management goals.; ***Online Training***: self-paced courses covering basic functionality, advanced features, and best practices. Courses are accessible through Prophix's Learning Management system. ; ***Webinars/Workshops***: Frequent live webinars and virtual workshops on specific topics including reporting/analysis, budgeting/planning, and financial consolidation. Sessions typically include demonstrations, Q&A and real-world use-cases to enable better understand.; ***Onsite Training***: Prophix offers onsite training delivered by experienced trainers. Sessions are tailored to your specific requirements covering topics including system setup, configuration and advanced functionality. ; ***Documentation and Knowledge Base***: Prophix provides comprehensive documentation, user guides, and knowledge base articles supporting users navigate Prophix and troubleshooting common issues. Resources are often accessible through Prophix's website or the software interface.; ***Certification***: For users seeking to validate their proficiency, we offer certification programs assessing and recognising individual’s knowledge and skills. Programs typically involve completing training modules and passing an exams to earn certification.; ***Customer Support***: Prophix offers customer support to assist with questions, issues, or challenges encountered using Prophix This may include email support, phone support, live chat, and a ticketing system, depending on the user's support plan.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Export Functionality: Prophix often provides built-in export functionality that allows users to export their data in various formats such as Excel spreadsheets, CSV files, or PDF documents. Users can typically select the data they want to export and choose the desired format before initiating the export process.; Data Backup: Prior to the end of the contract, users can typically request a data backup from Prophix. The backup file will contain a snapshot of their data at a specific point in time, which they can then store and access as needed.
• End-of-contract process: Should there be a reason to transition the data to another Product, Prophix offers the service of fully exporting all data to flat files for the State's use. Prophix will also provide a certificate of destruction if required to validate complete destruction of client's data after the fact.; Please note that the below sub items will be answered as transition services included as Post Implementation Support.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There is no difference between the mobile and desktop service.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The service interface allows users to interact with Prophix's functionality programmatically, enabling integration with other systems, automation of tasks, and customisation of workflows.; ; The service interface may include APIs (Application Programming Interfaces) that expose Prophix's functionality, allowing developers to build custom applications or integrate Prophix with existing software systems. Additionally, Prophix may offer connectors or adapters for popular integration platforms or enterprise software solutions, simplifying the process of connecting Prophix with other systems.; ; For specific details about the service interface offered, including available APIs, documentation, and support resources, we recommend consulting their official documentation or contacting their support team directly.
• Accessibility standards: None or don’t know
• Description of accessibility: Not applicable
• Accessibility testing: Not applicable
• API: Yes
• What users can and can't do using the API: Prophix integrates with external systems in a variety of ways and support "cloud-to-cloud" and "cloud-to-ground" integrations via industry standard ODBC / JDBC connectivity, API (SOAP & REST) as well as automated flat-file imports/exports
• API documentation: Yes
• API documentation formats: Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Customisation options vary depending on specific version and configuration of Prophix. Users should consult Prophix's documentation or contact their support team for guidance, Options include:; ***Configuration Settings***: Prophix typically provides configuration options allowing users to adjust settings related to financial processes, reporting preferences, user permissions, and more.; ***Custom Reports/Dashboards***: Users can create custom reports/dashboards to visualise data to their requirements. This involves selecting relevant metrics, applying filters, and arranging visualisations to present information in a meaningful way.; ***Workflow Automation***: Prophix often offers workflow automation allowing users to streamline repetitive tasks/processes. Users can define rules/triggers automating tasks including data entry, approval workflows, and notifications.; ***Integration with External Systems***: Prophix supports customised integration with other solutions, including ERP systems, BI tools, and data warehouses ensuring data consistency and accuracy.; ***Scripting and Custom Development***: Users with programming skills can write scripts or develop custom applications to extend Prophix's functionality or for integration with third-party systems.; ***User-defined Fields/Attributes***: Users can define custom fields and attributes to capture additional information relevant to their organisation allowing for extended granular data analysis and reporting.; ***User Interface Personalisation***: users have the ability to personalise user interfaces by rearranging elements, setting preferences, and customising layouts to suit their preferences.

Scaling

• Independence of resources: Prophix employs strategies and technologies ensuring users are not adversely affected by demands placed by other users. These measures include:; ***Resource Allocation***: Prophix utilises resource allocation techniques to ensure each user or organisation has access to necessary computing resources (such as CPU, memory, and storage) to support their operations. This may involve dynamically allocating resources based on demand and workload patterns.; ***Scalability***: Prophix's cloud infrastructure is designed for scalability, allowing automatic adjustment of resource allocation and provisioning based on changes in demand. This ensures users have consistent performance and responsiveness, even during periods of high usage or spikes in demand.

Analytics

• Service usage metrics: Yes
• Metrics types: Prophix typically provides service usage metrics to help users track and analyse their usage of the software.
• Reporting types: Regular reports

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Prophix Software Inc. Cloud platform

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: All data at rest is encrypted using AES 256
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Exporting data involves:; ***Selecting Data***: Selecting specific data to export: eg. financial data, reports, charts, or other information.; ***Choosing Format***: Determine export format: Prophix supports Excel(XLSX), CSV, PDF, or other common formats.; ***Accessing Export Functionality***: Accessed through the Prophix interface by navigating to a specific report or dataset and selecting the appropriate option.; ***Customising Export Options***: includingnclude specifying data format, column headers, date ranges, or other parameters to tailor exported data; ***Initiating Export***: initiate the process by selecting appropriate menu option.; ***Downloading Exported File***: Following completion notification, exported data can be saved to the user’s local computer or storage device.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Excel XLSX
  • PDF
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: Each Prophix Cloud instance leverages perimeter / edge firewalls and Intrusion Detection Systems. Each instance is hardened to industry standards, regularly scanned for host / application level threats and running the latest available stable OS and packages.

Availability and resilience

• Guaranteed availability: Prophix Cloud's Service Level Objective (SLO) is 99.999% and offers Service Level Agreement (SLA) of 99.5%. Prophix' trailing 12-month average is 99.97%. Please find our publicly available statistics at: https://trust.prophix.com.
• Approach to resilience: Available on request
• Outage reporting: Outage reporting is achieved via email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Prophix' supports Role Based Access Control where roles define specific features and data that everyone within that role can access. Prophix also supports User Specific features and data access control where Administrators define which functions/features and data a specific user can access. Data access security supports granularity, down to individual account, department, version, time period, etc. Running Reports is a function/feature which can be enabled disabled on a per user or per role basis. Additionally, each model (Finance, HR, Capital, etc.) can have it's own security model for each user even if the same user has access to multiple models.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: MSECB
• ISO/IEC 27001 accreditation date: 07/07/2022
• What the ISO/IEC 27001 doesn’t cover: This infornation can be provided on request
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 06/03/2017
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: This information is available on request
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • ISO/IEC 27001
  • SOC 2
  • SOC 3
  • ISAE 3402
  • SKYHIGH
  • TRUSTe Enterprise Certification

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Please see https://trust.prophix.com for the latest security governance standards.
• Information security policies and processes: Please see https://trust.prophix.com for the latest security governance standards.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: This information is available on request.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: This information is available on request
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: This information is available on request
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: This information is available on request

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Arribatec has an environmental policy geared towards minimising our environmental impact. We have an Environmental Management System and are working towards a goal of being carbon neutral by 2030. Progress towards this, and other ESG goals, is reported each year as part of our Annual Report. We have ensured that all our data centres have green electricity; certificates and that the suppliers are chosen based on their environmental performance. ; Our environmental policy also includes such activities as recycling material wherever possible, and an increasing effort to minimise travel. We have a goal of re-using or recycling all electronic waste by 2026 and our progress towards this is measured in our environmental management system.; We have significantly reduced our business travel over recent years, taking advantage of remote working technologies to allow us to do this. Our UK head office is notable for its many eco-friendly credentials including solar and photovoltaic panels on the roof, and ground source heat pumps to supply natural heating. We support the cycle to work scheme which is utilised by head office staff in travel to and from our head office.; ; Furthermore, he nature of our work in automating and increasing the efficiency of transaction processing, and moving processes to the cloud where possible, has a naturally beneficial environmental impact.; ; We publish an annual ESG report, which is available on request or via our website, which also contains details of our ESG commitment and our on-going ESG activities including climate change.

  Covid-19 recovery

  As a business, we weathered the Covid 19 epidemic well, and are proud that we were able to continue business without any furloughing or loss of staff. The rapid deployment of new ways of working allowed us to continue to service our customers’ needs. We instigated a number of measures around social distancing and remote working which allowed us to operate effectively during the pandemic and which will continue to allow us to operate effectively through Covid-19 recovery. We anticipate that the effectiveness of these measures will leave us well placed to create further employment opportunities in the high growth technology sector in which we operate. We also work with various service providers to offer physical and mental health support services to those who need it and regularly incorporate discussion of well-being issues in company meetings.

  Tackling economic inequality

  We are proud to have supported, and we continue to support, sub-contractors in the growth of their businesses through both financial assistance and collaborative working. This includes assistance to small business start-ups, and close collaboration with partners, to develop lower cost/higher quality solutions and boost mutual growth. Scalable and future-proofed technologies and solutions are integral to what we do.; As an operator in a high growth technology sector we have, over many years, provided, and will continue to provide, significant investment in support and training in technology to both our customers and our own staff including towards a number of recognised accreditations. Identification of skills gaps, and plans to address these, are frequent features of our work.; We hold Cyber Security accreditations which include plans for the identification and management of cyber security risks. Cyber security briefings are a regular part of information sharing sessions in the company. Parts of our business have and maintain special expertise in cyber security, and their services are offered to our customers to help them build resilience.

  Equal opportunity

  Arribatec has an Equal Opportunities Policy which states our firm belief in equality, diversity and respect for all, including those with a disability. It is our policy that all employment decisions are based on merit and the legitimate business needs of the organisation. Arribatec recognises the value of an inclusive environment in which people from differing backgrounds and experiences are encouraged to offer fresh ideas and perspectives. We monitor our workforce diversity (with 29 different nationalities currently represented in the group), and our age and gender balance, including salary ratios. We undertake succession planning, monitor and respond to employee satisfaction across a range of measures, and undertake personal development planning for all staff. Our intention is to enable all our staff to work in an environment which allows them to fulfil their potential without fear of discrimination, harassment or victimisation; We publish an annual ESG report, which is available on request, or via our website, which also contains details of our ESG commitment and our on-going ESG activities including Equal Opportunities.

  Wellbeing

  Arribatec aims to be a supportive and flexible employer and has supported staff through difficult periods in terms of both mental and physical health. We include regular presentations on the subject of mental and physical well-being in our company meetings and offer training and support in these areas. We have a range of services available to staff through our healthcare and pension providers. We run periodic team building exercises with the aim of supporting staff to support each other. ; We also engage in various community-based activities to support the communities in which we work. This includes volunteering and fundraising activities, some of which are undertaken jointly with our customers, and we have a regular programme of social events.; We publish an annual ESG report, which is available on request or via our website, which also contains details of our ESG commitment and our on-going ESG activities including on employee wellbeing.

Pricing

• Price: £20,000 to £90,000 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info.uk@arribatec.com. Tell them what format you need. It will help if you say what assistive technology you use.