Skip to main content

Help us improve the Digital Marketplace - send your feedback

Floww

Floww for Companies

Floww provides companies solutions to manage their fundraise, a full suite of managements tools and workflows to manage their information sharing, investor outreach, legal documentation and post transaction aspects.

Features

  • Data Processing
  • Dealflow CRM
  • Deal Sourcing
  • Data Analytics and Insights Engine
  • Deal Sharing and Distribution
  • Fundraise Management and Syndication
  • Portfolio Analysis and Management
  • Investor Management and Reporting
  • Regulatory solutions

Benefits

  • Flexible data ingestion. Any file, any format, AI optimised
  • Track and manage inbounds, portfolio, dealflow and investments in real-time
  • Full suite of deal infrastructure for distributing and making investments
  • Instant notifications and reminders to your networks
  • Seamless engagement with new and existing networks
  • Accurate industry benchmarking
  • Powerful Kanban solution linked to reporting database
  • Access data effortlessly using Floww command bar
  • Platform services include legal, settlement and regulatory rails

Pricing

£35 a licence a month

  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloudenquiries@floww.io. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

4 5 5 0 8 9 4 3 2 6 1 5 0 6 5

Contact

Floww Martijn de Wever
Telephone: +44 2045820447
Email: gcloudenquiries@floww.io

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Full flexibility to use as standalone service for an organisation's sole use or benefit from inviting own clients & stakeholders as well as ability to connect with other networks and additional solutions.
Cloud deployment model
Public cloud
Service constraints
There are no constraints
System requirements
  • Dual Core 2Ghz or faster CPU
  • 4GB RAM
  • 1920 x 1080 Resolution Recommended
  • 2Mbit Internet or faster
  • Up to date OS ethier MAC or Windows
  • Either Chrome, Firefox, Sarfari or Edge ( Latest version Recommended)

User support

Email or online ticketing support
Email or online ticketing
Support response times
All of our user support emails are manned during UK working hours. Outside of hours and on weekends they are not, but an auto-response is always triggered. Regardless, our protocol is to Respond and Resolve within the below timeframes (including only 'working day' hours - i.e. if I message is received at 10pm the response window clock will begin 8:30am the following day) 4 hour Response
8 hour Resolution"
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Online widget on every page of platform and website. Links to live Customer Support during working day, all responses ticketted and tracked internally
Web chat accessibility testing
Our webchat is provided by Zendesk who work hard to meet the WCAG 2.1 AA standard. During the development of their products they carry out accessability testing throughout their release cycle.
Onsite support
No
Support levels
1. We provide buyers email and telephone support via our customer support desk

2. We offer buyers a number of support packages that deliver various levels of support. Support is provided for both the platform and business process related issues such as data ingestion.

3. When necessary we can provide direct access to our technical teams via our documented escalation process.
Support available to third parties
No

Onboarding and offboarding

Getting started
A technical account manager/ presales consultant will work closely with buyers to help assist with the onboarding to the Floww platform.

Buyers will upload their data and Floww's skilled data ingest team will then cleanse and validate the data. End user training can be provided onsite, remotely or via buyers own preferred training methods. A continued service to support the customer including for data ingestion; network management; and reporting can be provided.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
At the end of the contract the buyer’s account will be deleted. Floww support will work with the buyer if necessary to extract/export the data from the platform prior to deletion.

Please contact us for further details on this process.
End-of-contract process
Buyers must cancel their subscription via email within 30 days prior to the end of the subscription period. Access to the platform will be removed once the subscription ends.

Using the service

Web browser interface
Yes
Supported browsers
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
Application to install
Yes
Compatible operating systems
IOS
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Our web applications are responsive and optimised to work on mobile devices.
Service interface
Yes
User support accessibility
None or don’t know
Description of service interface
Access to the service is available via our web-based interface, in which we apply standard browser controls, with a fully responsive intuitive user experience, allowing users to interact freely with the features available to them. This includes the ability to upload their own files and data to the platform, as well as being able to sort and filter views and export data in certain view types. Configuration of the system can be performed in this interface too.
Accessibility standards
None or don’t know
Description of accessibility
Users can access all features via the browser and all content is optimised for readability, predictability and to provide appropriate input assistance and error prevention when collecting and processing any user-submitted data.
Accessibility testing
No assistive testing is carried out at present.
API
No
Customisation available
Yes
Description of customisation
As we are a multi-tenanted platform there is some level of customisation available, in addition buyers can also brand specific areas of their profile on the platform, such as the addition of a company logo and banner image.

Scaling

Independence of resources
The Floww platform is built using highly scalable application microservices and is designed from the ground up to scale out on demand as load increases.

An individual user on the platform will have no impact to other users of the platform as the platform is designed to always have available capacity and to autoscale if capacity reaches a defined threshold.

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
None

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations
No
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
All transaction data can be exported in platform. Buyers will need to contact the Floww support desk to organise the export of their portfolio data. Once a support ticket has been raised Floww will work with the buyer to securely export their data within an agreed period of time.

Further details on this process can be provided.
Data export formats
  • CSV
  • Other
Other data export formats
  • SQL DB
  • Word
  • Excel
  • Powerpoint
  • PDF
Data import formats
  • CSV
  • Other
Other data import formats
  • Excel
  • PDF
  • Word
  • PowerPoint

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
Floww does not offer a service level agreement however the platform has been designed to provide 99.9% availability. This availability is achieved by using the latest resilient microservices application architecture and other clustering and high availability technologies.

The infrastructure has been designed to survive the loss of a single component or indeed an entire data centre.
Approach to resilience
The Floww platform is hosted in Microsoft Azure across two regions. All services are duplicated within a region and are active/passive across multiple regions. This design provides both intra and inter regional high availablity. Further details can be provided on request.
Outage reporting
Floww will report all service outages via its in house support desk. The ITSM function is aligned to ITIL's support framework and will manage and own any incident/problem through to final resolution.

If neccessary users will be informed of a service interruptions via an initial email, further email updates will be provided as part of Flowws incident/problem management process. Root cause analysis will be provided as part of the post incident report.

Service maintenance will be scheduled in advance with as much noticed as possible, and all work will be completed out of hours.

Identity and authentication

User authentication needed
Yes
User authentication
Username or password
Access restrictions in management interfaces and support channels
Access to support and managment channels are restricted to specific individuals. Floww adheres to the principles of least privialge access and where possible access is only provided for a specific period of time. Role based access is used to restrict access to all services and resources.

All managment interfaces are accessed across secure TLS or secure VPN tunnels. All critical resources have Identity Access Managment auditing enabled for logging purposes.
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Centre for Assessment (UKAS-accredited body)
ISO/IEC 27001 accreditation date
14/12/2021
What the ISO/IEC 27001 doesn’t cover
The whole company is in scope
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
No
Cyber essentials plus
No
Other security certifications
Yes
Any other security certifications
  • ISO 27017
  • ISO 27018

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
Floww information security policies and processes are certified and audited to the ISO27001 standard. The security of the Floww platform is ultimately owned by the CTO and CEO however the Head of Security manages, reviews and maintains compliance across the business.

All policies and processes are reviewed during security review meetings and annual external auditing

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
All changes to Flowws services are assessed for business impact/risk, security risk and operational resilience. A change must pass through change control where it is vetted by members of the change advisory team. If authorised, then the change is completed, and any relevant service design documentation is updated to reflect the new state.

All changes are reviewed against the current security posture of services to determine the impact of the change and any change to the overall risk profile of the business. Any that are of significant impact will be authorised by the CTO and Head of Security.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Flowws vulnerability management approach is focused on maintaining both an affective security posture and the cyber-resilience of the company. Floww makes use of security tools provided by Microsoft and other security vendors to regularly scan, report and remediate on potential security threats across the infrastructure. Code is also regularly reviewed and scanned for weaknesses and vulnerabilities. If a incident is detected then IT Teams will follow a documented incident response process to contain/remove any threat whilst maintaining effective communication channel with our clients.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
All alerts and security events are configured to send an email alert when triggered. Alerts are fed into our Incident management process and immediately investigated and escalated up to the CTO if required. In addition, Microsoft security centre and other security services provide centralized dashboards to determine Flowws current security posture and visualise any threats or suspicious events that may have occurred. Internet facing firewalls are configured with IPS and Advanced Malware protection services that monitors/alerts/blocks threats. Web application firewalls and Content Security Headers are also implemented as further layers of security.
Incident management type
Supplier-defined controls
Incident management approach
All staff are aware of the process that needs to be followed in the event of a security incident and this awareness is audited as part of our ISO27001 certification. Once an event has been trigged an email will be generated which will be picked up by one on the technical engineers. The severity and the potential impact of the threat is quickly determined, and work commences to contain/remove the threat. Once the threat has been contained/removed then as with other incidents a report will be created and sent out to the business or our clients if required.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
No

Social Value

Social Value

Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

Fighting climate change

Recycling in the office, we're paper free office, hybrid working environment. 100% of our staff travel to work by public transport.

Covid-19 recovery

Employee support programs through Private Medical Insurance (Bupa). Remote working infrastructure in place if necessary, safety protocalls that are reviewed as necessary.

Tackling economic inequality

We are proactive in our hiring towards ensuring equal opportunities. We also meausre equality, diversity and inclusion metrics as part of our pulse and engagement surveys.

Equal opportunity

We are proactive in our hiring towards ensuring equal opportunities. We also meausre equality, diversity and inclusion metrics as part of our pulse and engagement surveys.

Wellbeing

Floww has onboarded a private healthcare plan for all employees. In addition employee's are given a monthly budget to spend on health and wellbeing subscriptions, services, etc.

Pricing

Price
£35 a licence a month
Discount for educational organisations
No
Free trial available
Yes
Description of free trial
A 30 day fully featured trial can be arranged.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloudenquiries@floww.io. Tell them what format you need. It will help if you say what assistive technology you use.