Floww for Companies
Floww provides companies solutions to manage their fundraise, a full suite of managements tools and workflows to manage their information sharing, investor outreach, legal documentation and post transaction aspects.
Features
- Data Processing
- Dealflow CRM
- Deal Sourcing
- Data Analytics and Insights Engine
- Deal Sharing and Distribution
- Fundraise Management and Syndication
- Portfolio Analysis and Management
- Investor Management and Reporting
- Regulatory solutions
Benefits
- Flexible data ingestion. Any file, any format, AI optimised
- Track and manage inbounds, portfolio, dealflow and investments in real-time
- Full suite of deal infrastructure for distributing and making investments
- Instant notifications and reminders to your networks
- Seamless engagement with new and existing networks
- Accurate industry benchmarking
- Powerful Kanban solution linked to reporting database
- Access data effortlessly using Floww command bar
- Platform services include legal, settlement and regulatory rails
Pricing
£35 a licence a month
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
4 5 5 0 8 9 4 3 2 6 1 5 0 6 5
Contact
Floww
Martijn de Wever
Telephone: +44 2045820447
Email: gcloudenquiries@floww.io
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
- Full flexibility to use as standalone service for an organisation's sole use or benefit from inviting own clients & stakeholders as well as ability to connect with other networks and additional solutions.
- Cloud deployment model
- Public cloud
- Service constraints
- There are no constraints
- System requirements
-
- Dual Core 2Ghz or faster CPU
- 4GB RAM
- 1920 x 1080 Resolution Recommended
- 2Mbit Internet or faster
- Up to date OS ethier MAC or Windows
- Either Chrome, Firefox, Sarfari or Edge ( Latest version Recommended)
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
All of our user support emails are manned during UK working hours. Outside of hours and on weekends they are not, but an auto-response is always triggered. Regardless, our protocol is to Respond and Resolve within the below timeframes (including only 'working day' hours - i.e. if I message is received at 10pm the response window clock will begin 8:30am the following day) 4 hour Response
8 hour Resolution" - User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Web chat
- Web chat support availability
- 24 hours, 7 days a week
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Online widget on every page of platform and website. Links to live Customer Support during working day, all responses ticketted and tracked internally
- Web chat accessibility testing
- Our webchat is provided by Zendesk who work hard to meet the WCAG 2.1 AA standard. During the development of their products they carry out accessability testing throughout their release cycle.
- Onsite support
- No
- Support levels
-
1. We provide buyers email and telephone support via our customer support desk
2. We offer buyers a number of support packages that deliver various levels of support. Support is provided for both the platform and business process related issues such as data ingestion.
3. When necessary we can provide direct access to our technical teams via our documented escalation process. - Support available to third parties
- No
Onboarding and offboarding
- Getting started
-
A technical account manager/ presales consultant will work closely with buyers to help assist with the onboarding to the Floww platform.
Buyers will upload their data and Floww's skilled data ingest team will then cleanse and validate the data. End user training can be provided onsite, remotely or via buyers own preferred training methods. A continued service to support the customer including for data ingestion; network management; and reporting can be provided. - Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
-
At the end of the contract the buyer’s account will be deleted. Floww support will work with the buyer if necessary to extract/export the data from the platform prior to deletion.
Please contact us for further details on this process. - End-of-contract process
- Buyers must cancel their subscription via email within 30 days prior to the end of the subscription period. Access to the platform will be removed once the subscription ends.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
- IOS
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Our web applications are responsive and optimised to work on mobile devices.
- Service interface
- Yes
- User support accessibility
- None or don’t know
- Description of service interface
- Access to the service is available via our web-based interface, in which we apply standard browser controls, with a fully responsive intuitive user experience, allowing users to interact freely with the features available to them. This includes the ability to upload their own files and data to the platform, as well as being able to sort and filter views and export data in certain view types. Configuration of the system can be performed in this interface too.
- Accessibility standards
- None or don’t know
- Description of accessibility
- Users can access all features via the browser and all content is optimised for readability, predictability and to provide appropriate input assistance and error prevention when collecting and processing any user-submitted data.
- Accessibility testing
- No assistive testing is carried out at present.
- API
- No
- Customisation available
- Yes
- Description of customisation
- As we are a multi-tenanted platform there is some level of customisation available, in addition buyers can also brand specific areas of their profile on the platform, such as the addition of a company logo and banner image.
Scaling
- Independence of resources
-
The Floww platform is built using highly scalable application microservices and is designed from the ground up to scale out on demand as load increases.
An individual user on the platform will have no impact to other users of the platform as the platform is designed to always have available capacity and to autoscale if capacity reaches a defined threshold.
Analytics
- Service usage metrics
- No
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- None
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
-
- United Kingdom
- European Economic Area (EEA)
- Other locations
- User control over data storage and processing locations
- No
- Datacentre security standards
- Managed by a third party
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
-
- Physical access control, complying with CSA CCM v3.0
- Physical access control, complying with SSAE-16 / ISAE 3402
- Encryption of all physical media
- Data sanitisation process
- Yes
- Data sanitisation type
-
- Explicit overwriting of storage before reallocation
- Deleted data can’t be directly accessed
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
-
All transaction data can be exported in platform. Buyers will need to contact the Floww support desk to organise the export of their portfolio data. Once a support ticket has been raised Floww will work with the buyer to securely export their data within an agreed period of time.
Further details on this process can be provided. - Data export formats
-
- CSV
- Other
- Other data export formats
-
- SQL DB
- Word
- Excel
- Powerpoint
- Data import formats
-
- CSV
- Other
- Other data import formats
-
- Excel
- Word
- PowerPoint
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
-
Floww does not offer a service level agreement however the platform has been designed to provide 99.9% availability. This availability is achieved by using the latest resilient microservices application architecture and other clustering and high availability technologies.
The infrastructure has been designed to survive the loss of a single component or indeed an entire data centre. - Approach to resilience
- The Floww platform is hosted in Microsoft Azure across two regions. All services are duplicated within a region and are active/passive across multiple regions. This design provides both intra and inter regional high availablity. Further details can be provided on request.
- Outage reporting
-
Floww will report all service outages via its in house support desk. The ITSM function is aligned to ITIL's support framework and will manage and own any incident/problem through to final resolution.
If neccessary users will be informed of a service interruptions via an initial email, further email updates will be provided as part of Flowws incident/problem management process. Root cause analysis will be provided as part of the post incident report.
Service maintenance will be scheduled in advance with as much noticed as possible, and all work will be completed out of hours.
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Username or password
- Access restrictions in management interfaces and support channels
-
Access to support and managment channels are restricted to specific individuals. Floww adheres to the principles of least privialge access and where possible access is only provided for a specific period of time. Role based access is used to restrict access to all services and resources.
All managment interfaces are accessed across secure TLS or secure VPN tunnels. All critical resources have Identity Access Managment auditing enabled for logging purposes. - Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Dedicated link (for example VPN)
- Username or password
Audit information for users
- Access to user activity audit information
- Users contact the support team to get audit information
- How long user audit data is stored for
- At least 12 months
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- Centre for Assessment (UKAS-accredited body)
- ISO/IEC 27001 accreditation date
- 14/12/2021
- What the ISO/IEC 27001 doesn’t cover
- The whole company is in scope
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- No
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
-
- ISO 27017
- ISO 27018
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
-
Floww information security policies and processes are certified and audited to the ISO27001 standard. The security of the Floww platform is ultimately owned by the CTO and CEO however the Head of Security manages, reviews and maintains compliance across the business.
All policies and processes are reviewed during security review meetings and annual external auditing
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
All changes to Flowws services are assessed for business impact/risk, security risk and operational resilience. A change must pass through change control where it is vetted by members of the change advisory team. If authorised, then the change is completed, and any relevant service design documentation is updated to reflect the new state.
All changes are reviewed against the current security posture of services to determine the impact of the change and any change to the overall risk profile of the business. Any that are of significant impact will be authorised by the CTO and Head of Security. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
- Flowws vulnerability management approach is focused on maintaining both an affective security posture and the cyber-resilience of the company. Floww makes use of security tools provided by Microsoft and other security vendors to regularly scan, report and remediate on potential security threats across the infrastructure. Code is also regularly reviewed and scanned for weaknesses and vulnerabilities. If a incident is detected then IT Teams will follow a documented incident response process to contain/remove any threat whilst maintaining effective communication channel with our clients.
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- All alerts and security events are configured to send an email alert when triggered. Alerts are fed into our Incident management process and immediately investigated and escalated up to the CTO if required. In addition, Microsoft security centre and other security services provide centralized dashboards to determine Flowws current security posture and visualise any threats or suspicious events that may have occurred. Internet facing firewalls are configured with IPS and Advanced Malware protection services that monitors/alerts/blocks threats. Web application firewalls and Content Security Headers are also implemented as further layers of security.
- Incident management type
- Supplier-defined controls
- Incident management approach
- All staff are aware of the process that needs to be followed in the event of a security incident and this awareness is audited as part of our ISO27001 certification. Once an event has been trigged an email will be generated which will be picked up by one on the technical engineers. The severity and the potential impact of the threat is quickly determined, and work commences to contain/remove the threat. Once the threat has been contained/removed then as with other incidents a report will be created and sent out to the business or our clients if required.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Covid-19 recovery
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Recycling in the office, we're paper free office, hybrid working environment. 100% of our staff travel to work by public transport.Covid-19 recovery
Employee support programs through Private Medical Insurance (Bupa). Remote working infrastructure in place if necessary, safety protocalls that are reviewed as necessary.Tackling economic inequality
We are proactive in our hiring towards ensuring equal opportunities. We also meausre equality, diversity and inclusion metrics as part of our pulse and engagement surveys.Equal opportunity
We are proactive in our hiring towards ensuring equal opportunities. We also meausre equality, diversity and inclusion metrics as part of our pulse and engagement surveys.Wellbeing
Floww has onboarded a private healthcare plan for all employees. In addition employee's are given a monthly budget to spend on health and wellbeing subscriptions, services, etc.
Pricing
- Price
- £35 a licence a month
- Discount for educational organisations
- No
- Free trial available
- Yes
- Description of free trial
- A 30 day fully featured trial can be arranged.