Skip to main content

Help us improve the Digital Marketplace - send your feedback

Phoenix Software Ltd

Azure Stream Analytics

An on-demand real-time analytics service to power intelligent action. Easily develop and run massively parallel real-time analytics on multiple IoT/non-IoT streams of data using simple SQL-like language. Use customised code for advanced scenarios. With no infrastructure to manage, process data on demand, scale instantly and only pay-per-job.

Features

  • Perform real-time analytics for your Internet of Things solutions
  • Stream millions of events per second
  • Get mission-critical reliability and performance with predictable results
  • Create real-time dashboards and alerts over devices and application data
  • Correlate across multiple streams of data
  • Use familiar SQL-based language for rapid development

Benefits

  • Perform real-time analytics for your Internet of Things solutions
  • Stream millions of events per second
  • Get mission-critical reliability and performance with predictable results
  • Real-time dashboards: Create alerts, monitor device and application data instantly
  • Correlate across multiple streams of data
  • Use familiar SQL-based language for rapid development

Pricing

£645 a unit a day

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ccs@phoenixs.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

4 9 9 7 7 3 4 9 8 1 2 5 7 9 2

Contact

Phoenix Software Ltd Jonny Scott
Telephone: 01904 562200
Email: ccs@phoenixs.co.uk

Service scope

Service constraints
https://learn.microsoft.com/en-us/azure/azure-resource-manager/management/azure-subscription-service-limits
System requirements
Service selection dictates system requirements; consult online pages for details.

User support

Email or online ticketing support
Email or online ticketing
Support response times
The Initial Response Time varies with both the support plan and the Business Impact of the request (also known as Severity). For a breakdown of initial response times by several level and business impact, please visit https://azure.microsoft.com/en-us/support/plans/response/
Weekend support availability varies depending on your Azure support plan. For more information, please visit https://azure.microsoft.com/en-us/support/plans/
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
Microsoft is committed to developing technology that empowers everyone, including people with disabilities. Microsoft has a Disability Answer Desk where customers with disabilities get support with Microsoft Office, Windows, and other products. Microsoft also has Accessibility Conformance Reports (ACR) which describe how products and services support recognized global accessibility standards.
https://www.microsoft.com/en-us/Accessibility/disability-answer-desk
https://www.microsoft.com/en-us/accessibility/conformance-reports
https://learn.microsoft.com/en-us/windows/apps/design/accessibility/accessibility-testing
Onsite support
Onsite support
Support levels
Microsoft provides four (4) Azure support plan options, which includes varius levels of technical account management and cloud support engineering. The support options and cost include the following:
- BASIC (included for all Azure customers)
- DEVELOPER
- STANDARD
- PROFESSIONAL DIRECT
- UNIFIED SUPPORT
For more information, vist https://azure.microsoft.com/en-us/support/plans/ and https://www.microsoft.com/en-us/unifiedsupport/overview
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Microsoft provides all Azure customers with 24/7 self-help resources, including Microsoft Learn, Azure Portal how-to videos, documentation, and community support. For more information, visit:
- https://azure.microsoft.com/en-us/support
- https://learn.microsoft.com/en-us/azure/
- https://azure.microsoft.com/en-us/resources/videos/
- https://azure.microsoft.com/en-us/support/community/
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
  • Other
Other documentation formats
Azure Portal how-to videos, documentation, and community support, https://azure.microsoft.com/en-us/
End-of-contract data extraction
As a customer, you maintain ownership of your data—the content, personal and other data you provide for storing and hosting in Azure services. Microsoft will not store or process customer data outside the geography you specify, except for certain non-regional services. You are also in control of any additional geographies where you decide to deploy your solutions or replicate your data.
Azure has established internal records-retention requirements for back-end data. You are responsible for identifying your own record retention requirements. For records that are stored in Azure, you are responsible for extracting your data and retaining your content outside of Azure for a customer-specified retention period.
Azure allows you to export data and audit reports from the product. The exports are saved locally to retain the information for a customer-defined retention time period.
For more information on protection of customer data, visit: https://docs.microsoft.com/en-us/azure/security/fundamentals/protection-customer-data
End-of-contract process
Microsoft is governed by strict standards and follows specific processes for removing cloud customer data from systems under our control, overwriting storage resources before reuse, and purging or destroying decommissioned hardware. In our Online Service Terms, Microsoft contractually commits to specific processes when a customer leaves a cloud service or the subscription expires. This includes deleting customer data from systems under our control.

Please see Data Protection Addendum for full and up to date details about how Microsoft manages your data. https://www.microsoft.com/licensing/docs/view/Microsoft-Products-and-Services-Data-Protection-Addendum-DPA?lang=1

Using the service

Web browser interface
Yes
Using the web interface
Azure provides several web interfaces that allow users to interact with the platform, manage resources, and build applications. These interfaces include, but are not limited to, the following:
- Azure Portal - provides a unified view of all your Azure resources; users can create, configure, and manage various services, virtual machines, databases, etc.
- Azure Cloud Shell: interactive, browser-based shell environment that allows users to manage Azure resources using either Bash or PowerShell; provides a command-line interface directly within the Azure Portal, eliminating the need to install any local tools
Web interface accessibility standard
WCAG 2.1 AA or EN 301 549
Web interface accessibility testing
Microsoft has made significant efforts to ensure the accessibility of its web interfaces. One of the key tools Microsoft uses is Accessibility Insights. This is an open-source web extension that allows users to perform more than 50 automated and manual tests and easily document the detected issues. As of now, it catches up to 40 percent of accessibility bugs, and Microsoft plans to improve this percentage through the use of AI. For more information, visit https://accessibilityinsights.io/docs/web/overview/
In addition, Microsoft’s web development practices include the use of Accessible Rich Internet Applications (ARIA), a W3C specification that helps dynamic web content accessible.
API
Yes
What users can and can't do using the API
"Azure users can set up services and make changes via Microsoft’s API using Azure API Management. To set up a service, users can sign in to the Azure portal, navigate to your API Management instance, and create a resource from the Azure portal menu. Detailed instructions for setting up services are available at https://learn.microsoft.com/en-us/azure/api-management/get-started-create-service-instance
From the API Management section of the Azure Portal, users can make changes using by selecting ""Add API"" and following the steps listed at https://learn.microsoft.com/en-us/azure/api-management/add-api-manually
There are some limitations when using Azure API Management. For instance, the maximum number of subscription (API Keys) per service instance is 500. Additional API import restrictions are available at https://learn.microsoft.com/en-us/azure/api-management/api-management-api-import-restrictions"
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
  • Puppet
  • Other
Other API automation tools
https://learn.microsoft.com/en-us/azure/api-management/automation-manage-api-management
API documentation
Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • Other
Command line interface
Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface
The Azure Command-Line Interface (Azure CLI) allows users to interact with Azure services and manage their Azure resources in many ways, including the following:
- Create, update, delete, and manage Azure resources (e.g., virtual machines, storage accounts, web apps, databases, and networks)
- Automate routine tasks (e.g., deploying applications, scaling resources, and configuring networks)
- Integrate with other tools and services (e.g., with Azure DevOps for CI/CD pipelines)
- Using multiple shell environments (e.g., Windows Command Prompt, Bash, PowerShell)
- Learning and understanding Azure services

For more information on Azure CLI's features and capabilities, visit:
- https://learn.microsoft.com/en-us/cli/azure/
- https://learn.microsoft.com/en-us/cli/azure/use-azure-cli-successfully

Scaling

Scaling available
Yes
Scaling type
Automatic
Independence of resources
Prometheus metrics are collected from Kubernetes clusters including Azure Kubernetes service (AKS) and use industry standard tools for analyzing and alerting such as PromQL and Grafana.
Usage notifications
Yes
Usage reporting
  • API
  • Email

Analytics

Infrastructure or application metrics
Yes
Metrics types
Other
Other metrics
  • Native metrics use tools in Azure Monitor for analysis, alerting.
  • Platform metrics are collected from Azure resources.
  • Custom metrics are collected from different sources that you configure
  • Prometheus metrics are collected from Kubernetes clusters
  • Failure rates, dependency rates, server and browser exceptions, page views
  • Load performance, user and session counts
  • Host diagnostics (Docker or Azure), and diagnostic trace logs
Reporting types
Real-time dashboards

Resellers

Supplier type
Reseller (no extras)
Organisation whose services are being resold
Microsoft

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least every 6 months
Penetration testing approach
‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
  • Other
Other data at rest protection approach
https://azure.microsoft.com/en-us/explore/trusted-cloud/privacy/

Customers are responsible for ensuring that data stored in Azure is encrypted in accordance with their standards. Azure offers a wide range of encryption capabilities, giving customers the flexibility to choose the solution that best meets their needs. Azure Key Vault helps customers easily maintain control of keys that are used by cloud applications and services to encrypt data. Azure Disk Encryption enables customers to encrypt VMs. Azure Storage Service Encryption makes it possible to encrypt all data placed into a customer's storage account.
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
Yes
What’s backed up
  • Files
  • Folders
  • System state
  • Azure Virtual Machines (VMs) - Windows or Linux
  • Azure Managed Disks
  • Azure File shares
  • Databases running on Azure VMs (SQL Server or SAP HANA)
  • Azure PostgreSQL databases
  • Azure Blobs (blob storage)
  • Azure Database for PostgreSQL Flexible server backup
Backup controls
Role-Based Access Controls (RBACs) allow users to segregate duties within their team and give specific permissions to perform backup tasks. Azure Backup has three built-in roles (Backup Contributor, Backup Operator, and Backup Reader), with the ability to create custom roles.
Azure Backup Policy has two components: Schedule (when to take backup) and Retention (how long to retain backup). You can define the policy based on the type of data that's being backed up, RTO/RPO requirements, operational or regulatory compliance needs and workload type (for example, VM, database, files). For more information, visit: https://learn.microsoft.com/en-us/azure/backup/guidance-best-practices#backup-policy-considerations.
Datacentre setup
Multiple datacentres with disaster recovery
Scheduling backups
Users schedule backups through a web interface
Backup recovery
Users can recover backups themselves, for example through a web interface

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
Other protection between networks
Microsoft employs robust encryption measures to safeguard customer data during transit. Here are the key aspects of data protection:
Encryption for Data-in-Transit:
When data is in transit, Microsoft ensures its security through various scenarios
Azure Data Protection:
For data moving between user devices and Microsoft datacenters or within datacenters, Microsoft adheres to IEEE 802.1AE MAC Security Standards.
https://azure.microsoft.com/en-us/explore/trusted-cloud/privacy/
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
Other protection within supplier network
Microsoft provides several options that can be utilized by customers for securing data in transit internally within Azure network and externally across the Internet to end user. These include communication through Virtual Private Networks (utilizing IPsec/IKE encryption), Transport Layer Security (TLS) 1.2 or later (via Azure components such as Application Gateway or Azure Front Door), protocols directly on Azure virtual machines (such as Windows IPsec or SMB), and more.
Additionally, ""encryption by default"" using MACsec (an IEEE standard at the data-link layer) is enabled for all Azure traffic traveling between Azure datacenters to ensure confidentiality and integrity of customer data.

Availability and resilience

Guaranteed availability
Microsoft provides detailed service level agreement (SLA) metrics for all Azure components and services. To review SLAs for individual Azure services, visit https://www.microsoft.com/licensing/docs/view/Service-Level-Agreements-SLA-for-Online-Services
Approach to resilience
Many Azure regions provide availability zones, which are separated groups of datacenters within a region. Availability zones are close enough to have low-latency connections to other availability zones. They're connected by a high-performance network with a round-trip latency of less than 2ms. However, availability zones are far enough apart to reduce the likelihood that more than one will be affected by local outages or weather. Availability zones have independent power, cooling, and networking infrastructure. They're designed so that if one zone experiences an outage, then regional services, capacity, and high availability are supported by the remaining zones. They help your data stay synchronized and accessible when things go wrong. Datacenter locations are selected by using rigorous vulnerability risk assessment criteria.

Furthermore, you have the ability to build high availability into application architecture by co-locating your computer, storage, networking, and data resources within a zone and replicating in other zones. Azure services that support availability zones fall into two categories:
- Zonal services: you pin the resource to a specific zone (e.g.,, virtual machines, managed disks, standard IP addresses), or
- Zone-redundant services: platform replicates automatically across zones (e.g., zone-redundant storage, SQL database)
Outage reporting
Azure Service Health provides you with a customizable dashboard that tracks the health of your Azure services in the regions where you use them. In this dashboard, you can track active events like ongoing service issues, upcoming planned maintenance, or relevant health advisories. When events become inactive, they get placed in your health history for up to 90 days. Finally, you can use the Service Health dashboard to create and manage service health alerts that proactively notify you when service issues affect you. Service Health tracks four types of health events that may impact your resources:
- Service issues
- Planned maintenance
- Health advisories
- Security advisories

Azure Resource Health helps you diagnose and get support for service problems that affect your Azure resources. It reports on the current and past health of your resources. Resource Health gives you a personalized dashboard of the health of your resources and shows all the times that your resources have been unavailable. This data makes it easy for you to see if an SLA was violated. For more information, visit https://learn.microsoft.com/en-us/azure/service-health/resource-health-overview

Microsoft offers public dashboards that provide service status across all Azure regions. These can be accessed at:
- https://azure.status.microsoft/en-us/status
- https://ms.portal.azure.com/#view/Microsoft_Azure_Health/AzureHealthBrowseBlade/~/serviceIssues

Identity and authentication

User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels
Customer data is encrypted at rest by default when stored in Azure, and customers can control their own encryption keys in Azure Key Vault. Access to customer data is not needed to resolve most customer support requests. Microsoft engineers rely heavily on logs to provide customer support. Azure has controls in place to restrict access to customer data for support and troubleshooting scenarios should that access be necessary. These Azure technologies and processes (data encryption, JIT, and Microsoft Purview Customer Lockbox) provide appropriate risk mitigation to safeguard the confidentiality and integrity of customer data.
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
  • Other
Description of management access authentication
Microsoft Entra ID (Azure Active Directory) and Windows Server Active Directory Domain Services enable you to monitor access patterns both in the cloud and on-premises, and to identify and address unauthorized access attempts and other potential threats. Active Directory Domain Services also support features that are widely used in enterprises, such as domain join, LDAP, NTLM, and Kerberos authentication. 

For more information, please visit https://docs.microsoft.com/en-us/azure/active-directory/hybrid/plan-hybrid-identity-design-considerations-overview
https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles
https://docs.microsoft.com/en-us/azure/active-directory/develop/authentication-vs-authorization
Devices users manage the service through
Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
The Certification Body of Schellman & Company, LLC
ISO/IEC 27001 accreditation date
November 28, 2023 for Certificate version 13. Original registration date: November 29, 2011
What the ISO/IEC 27001 doesn’t cover
Not Applicable
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
2013
CSA STAR certification level
Level 2: CSA STAR Attestation
What the CSA STAR doesn’t cover
Not Applicable
PCI certification
Yes
Who accredited the PCI DSS certification
Coalfire, an independent Qualified Security Assessor (QSA) company
PCI DSS accreditation date
15/03/2021
What the PCI DSS doesn’t cover
Not Applicable
Cyber essentials
Yes
Cyber essentials plus
Yes
Other security certifications
Yes
Any other security certifications
https://learn.microsoft.com/en-us/compliance/regulatory/offering-home?view=o365-worldwide

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
  • Other
Other security governance standards
Azure adheres to numerous, rigorous security and compliance standards, including CSA CCM version 3.0, ISO 27001, ISO 27018, SOC 1, SOC 2, SOC 3, FedRAMP, and HITRUST, among others. For more on specific Azure compliance, visit:
- https://learn.microsoft.com/en-us/azure/compliance/
- https://azure.microsoft.com/en-us/explore/trusted-cloud/compliance/
- https://servicetrust.microsoft.com/
Information security policies and processes
An Information Security Policy exists to provide Microsoft staff and contractor staff with a current set of clear and concise Information Security Policies including their roles and responsibilities related to information assets and security. These policies provide direction for the appropriate protection of Microsoft 365.

The Information Security Policy is made available to new and existing Microsoft 365 employees for review as part of an information security education and awareness program. Microsoft 365 employees confirm that they have reviewed, and agree to adhere to, all policies within the Information Security Policy as part of their annual security training.
A version of the Information Security Policy is available for download from the Service Trust Portal (STP) at https://servicetrust.microsoft.com/

Azure uses the Microsoft Security Policy (MSP) to govern its information systems, which include the following components:
- Infrastructure: Physical and hardware components (facilities, equipment, and networks)
- Software: Programs and operating software (systems, applications, and utilities)
- People: Personnel involved in Azure operation (developers, operators, users, and managers)
- Procedures: Programmed and manual procedures involved in the operation of Azure systems
- Data: Information generated, collected, and processed by Azure systems (transaction streams, files, databases, and tables)

For more information, visit: https://learn.microsoft.com/en-us/compliance/assurance/assurance-governance

Operational security

Configuration and change management standard
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach
Azure addresses change management practices through Microsoft's configuration management policy, which is part of the Microsoft Security Policy (MSP) and the Microsoft Security Program Policy (MSPP). Azure implements the configuration management policy and associated controls through a series of Standard Operating Procedures (SOPs).

Annually, the CST-SE, which is part of the Microsoft Information Risk Management Council (IRMC) that has governance for Microsoft’s security policies, conducts a line-by-line review of MSP and MSPP.
For additional details, refer to Control CM-01 in the FedRAMP Systems Security Plan (SSP) available in the FedRAMP section on the Service Trust portal at https://servicetrust.microsoft.com/viewpage/FedRAMP
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
Azure uses integrated deployment systems to manage the distribution and installation of security updates for Microsoft software. Azure is able to draw on the resources of Microsoft Security Response Center (MSRC). The MSRC identifies, monitors, responds to, and resolves security incidents and cloud vulnerabilities around-the-clock, every day of the year.
Vulnerability scanning is performed on server operating systems, databases, and network devices. The vulnerability scans are performed on a quarterly basis at a minimum. Azure contracts with independent assessors to perform penetration testing of Azure boundary. Red-team exercises are routinely performed and the results are used to make security improvements.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
Azure security has defined requirements for active monitoring. Service teams configure active monitoring tools in accordance with these requirements. Active monitoring tools include the Microsoft Monitoring Agent (MMA) and System Center Operations Manager. These tools are configured to provide time alerts to Azure security personnel in situations that require immediate action.

When potential compromises are identified, Microsoft follows a structured approach to incident response: Microsoft implements a security incident management process to facilitate a coordinated response to incidents. For a breakdown of initial response times by several level and business impact, please visit https://azure.microsoft.com/en-us/support/plans/response/
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
Microsoft implements a security incident management process if Microsoft notices unauthorized access to customer data that's stored on its equipment or in its facilities, it takes the following actions:
- Promptly notifies the customer of the security incident.
- Promptly investigates the security incident and provides customers detailed information about the security incident.
- Takes reasonable and prompt steps to mitigate the effects and minimize any damage resulting from the security incident.
The Azure security incident management team is responsible for managing security incidents, including escalation, and ensuring the involvement of specialist teams when necessary.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
Yes
Who implements virtualisation
Supplier
Virtualisation technologies used
Other
Other virtualisation technology used
VMware, Hyper-V, Oracle VM, Red Hat Virtualisation, KVM hypervisor

Microsoft uses a combination of virtual machines (VMs), virtual disks, data virtualization, and container technologies, automatically deployed through Azure Resource Manager (ARM) templates to enable a dynamically scalable and resource-rich data platform.
How shared infrastructure is kept separate
Azure ensures this through several mechanisms:
- Tenant Level Isolation: Each Azure subscription is associated with one Microsoft Entra directory.
- Azure Virtual Network (VNet): Azure VNet helps ensure that each customer’s private network traffic is logically isolated from traffic belonging to other customers.
- Isolated VM Sizes: Azure offers isolated VM sizes that are dedicated to a single customer.

These mechanisms help ensure that each tenant’s data and applications are kept separate and secure, even though they may be running on shared physical infrastructure. This is crucial for maintaining privacy, security, and compliance standards.

Energy efficiency

Energy-efficient datacentres
Yes
Description of energy efficient datacentres
Microsoft datacenters adhere to the EU Code of Conduct for Energy Efficiency in Data Centres by implementing a variety of best practices and measures. Here are some key aspects:
Power Utilisation Effectiveness (PUE): The EU Code of Conduct for Data Centres uses PUE as a key metric to assess the overall efficiency of a data center. PUE represents the ratio of total data center input power to IT load power. The lower the PUE value, the higher the efficiency of the facility1. The ultimate goal is to achieve a PUE close to 1.0, indicating a perfectly efficient data center where almost all power is delivered to IT equipment.
Monitoring and Improvement: By regularly monitoring PUE, data center operators can identify areas of inefficiency and implement targeted energy-saving measures.
Adoption of Best Practices: The Code of Conduct encourages data center operators and owners to adopt best practices that reduce energy consumption and promote sustainability.
Assessment Framework: The Code of Conduct provides auditors with the necessary tools to assess if data centers apply the Practices correctly.
Microsoft’s commitment to energy efficiency and sustainability is also demonstrated by its ambition to power its data centers with 100 percent renewable energy.

Social Value

Social Value

Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

Fighting climate change

Effective stewardship of the environment with activities that deliver additional environmental benefits in the performance of the contract including working towards net zero greenhouse gas emissions.
We can support customers environmental goals by providing annual carbon emissions on contract and reduction plans.

We will run free of charge sustainability infrastructure reviews for customers to understand how they can reduce carbon emissions of their IT services.

We are working towards 2040 Net-Zero GreenHouseGas emissions.
Since 2021 we have been Carbon Neutral with Gold Standard Certified carbon credits - partner Ecologi.
By 2026 we aimed to reduce Scope 1 and 2 emissions by 50% from a 20/21 baseline year and which we have now achieved.
By 2030 we aim to reduce all of our emissions (including Scope 3) by 50% this is from a 22/23 baseline year.

Achievement of 2030 50% reduction targets (based on last FY) would mean a minimum carbon reduction of 142tCO2e per year for the public sector.

We record and monitor our usage/ conversion to carbon emissions monthly and progress is published annually on the website in accordance with PPN06/21 and SECR guidelines. We are ISO14001 certified, and our targets are currently being verified by SBTi.

Overall, the business:
-Generates solar energy (85%) with REGO renewable purchased energy.
-Zero waste to landfill waste management
-Minimises travel emissions by 60%
-Uses water wisely – reduced by 15%

Influence staff, suppliers, customers and communities through the delivery of the contract to support environmental protection and improvement.

We work hard to influence others and change behaviours to help fight climate change.

Workforce:
-Sustainability inductions
-Sustainability training
-Staff campaigns
-Volunteering opportunities
-Family woodland tree planting

Suppliers:
-Supply-chain reviews
-Sustainability training
-Blogs/ media content
-Sustainability training

Customers:
-Sustainability Infrastructure Review
-Hardware Carbon-Assessments
-Circular-Economy support
-Sustainability training

Covid-19 recovery

Help local communities to manage and recover from the impact of COVID-19 with activities in the delivery of the contract which:
Create employment, re-training and other return to work opportunities for those left unemployed by COVID-19, particularly new opportunities in high growth sectors.
- Phoenix Employability Outreach Programme - Unique access to Microsoft Career Essentials programme
Support organisations and businesses to manage and recover from the impacts of COVID-19, including where new ways of working are needed to deliver services.
-Phoenix Small Business Digital Skills Outreach programme – webinars supporting cyber security, accessibility and licensing.
-Phoenix VCSE Digital Skills Outreach Programme – webinars supporting cyber security, accessibility and licensing.
Support the physical and mental health of people affected by COVID-19, including reducing the demand on health and care services.
-Phoenix Digital Skills Outreach Programme – Supporting people to access services services online e.g NHS app and Banking apps.
Examples of our working with London and Quadrant Housing Association to deliver befriending calls for tenants who were lonely and isolated as a result of Covid19.
We have also worked with Liverpool City Council to promote employability courses to those left unemployed by Covid-19 and who are now in employment.
We provided free of charge IT service desk to 15 charities during the pandemic and have worked closely with them to support them with returning to full operation again.

Tackling economic inequality

Create new businesses, new jobs and new skills with activities that, in the delivery of the contract:
Create opportunities for entrepreneurship and help new, small organisations to grow, supporting economic growth and business creation.
-60% of our supply chain are SME’s
-We are signatories and adhere to the Prompt Payment Code
-Host Dragons Den SME supply chain sessions for new suppliers to showcase their services for our customers.
Create employment opportunities particularly for those who face barriers to employment and/or who are located in deprived areas.
- The Phoenix Employability Outreach Programme provide unique access to Microsoft Career Essentials digital literacy programme, career talks and employability advice.
Create employment and training opportunities, particularly for people in industries with known skills shortages or in high growth sectors.
-Graduate work placements
-Phoenix Employability Outreach Programme - Unique access to Microsoft Career Essentials programme for certifications to skill up for roles in the IT sector.
-We work with our supply-chain to create job roles with shared apprenticeship heads and promotion to permanent employment.
Support educational attainment relevant to the contract, including training schemes that address skills gaps and result in recognised qualifications.
-Apprenticeships whereby we aim for c.10 graduating apprentices and all are moved into permanent employment with Phoenix.
-Skills City Bootcamp where we deliver career talks and provide projects to 19+ year olds seeking to upskill for employment in the technology sector.
Influence staff, suppliers, customers and communities through the delivery of the contract to support employment and skills opportunities in high growth sectors.
-Our programmes are delivered in partnership with our customers, supply chain and workforce, including Career talks, mentoring and IT challenge activities.

Equal opportunity

Reduce the disability employment gap with activities that:
Demonstrate action to increase the representation of disabled people in the contract workforce.
-We are certified Disability Confident Employers (level 2).
-We provide Digital Accessibility training for all staff so we can communicate with each other and our customers in an inclusive manner.
-We are exploring the use of the Voluntary Reporting Framework for understanding the disability makeup of the workforce.
Tackling workforce inequalities with activities that demonstrate action to identify and tackle inequality in employment, skills and pay in the contract workforce.
- We focus on ensuring an inclusive and unbiased recruitment strategy, with unconscious-bias training, blind recruitment processes, and reviewing language and placement of advertisements.

-All staff trained receive mandatory EDI training annually.

Various initiatives include
-Signatories of the Race at Work Charter,
-Disability Confident Committed Employer
-Signatories of the Armed Forces Covenant
-Gender-Neutral toilets
-Prayer room
-Milk-pumping room
-Sponsor York Pride
-We have specific policies for Menopause, and LGBTQ+.
-We have established an Accessibility-Centre-of-Excellence to display the latest technology
-We monitor our workforce statistics and report on them:
Gender 65% male /35% female (industry-average 20%)
Ethnicity 5.6% (local-area 3.9%)
Staff turnover 12.3% (industry-average 13.2%)
Using the Voluntary Reporting Framework, we are working on what and how we can report metrics around disabled people in the workforce, including those with hidden disabilities.

We have been recertified as a Great Place to Work™ and UK's Best Workplaces™ for Women.

Wellbeing

The mental health and well-being (MHWB) of our staff is of the utmost importance to us and our MHWB Policy aims to provide a working environment that promotes and supports the MHWB of all employees.
Activities that demonstrate action to support the health and wellbeing, including physical and mental health, in the contract workforce at Phoenix include:
-We utilise different resources not least those from Mental Health at Work Commitment, NHS Every Mind Matters, and the MIND employer toolkit to improve our employee MHWB programme.
-All our staff heavily discounted private health insurance includes mental wellness. Plan members access a range of health treatments including face to face counselling and cognitive behaviour therapy.
-Phoenix invests in the St Johns Ambulance Mental Health First Aid training course to ensure we have MH first aiders in the business and the skills to address MH in the workplace.
-The new challenges the pandemic has raised, on our employee’s MHWB, has led to the creation of a staff network group who meet monthly, to ensure that all we do and say truly covers all aspects of MHWB.
-All employees are given a monthly wellbeing hour to take for their own personal time and are also supported with monthly tea and toast sessions discussing and normalising MHWB topics.

We influence staff, suppliers, customers and communities through the delivery of the contract to support health and wellbeing, including physical and mental health.
-We provide Digital Accessibility training for all staff so we can communicate with each other and our customers in an inclusive manner.
-We have established an Accessibility-Centre-of-Excellence to display the latest technology to the workforce, supply chain and our customers
-We deliver digital accessibility training to customers
-We are sponsors of the Neurodiversity Awards

Pricing

Price
£645 a unit a day
Discount for educational organisations
Yes
Free trial available
Yes
Description of free trial
Depending upon the service there are range of trial offerings available. There is also a free trial of Azure
Link to free trial
Free trial of Azure at https://azure.microsoft.com/en-gb/free/search/?ef_id=_k_d00f79182b1a1d5b7a5a1f0d4a8f4aaf_k_&OCID=AIDcmm3bvqzxp1_SEM__k_d00f79182b1a1d5b7a5a1f0d4a8f4aaf_k_&msclkid=d00f79182b1a1d5b7a5a1f0d4a8f4aaf

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ccs@phoenixs.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.