Eurostep Limited

ShareAspace Design to Manufacturing (D2M)

ShareAspace Design to Manufacturing (D2M) enable primes, OEMs, suppliers, and partners to collaborate on product data in a new and innovative way. Using a hub-based cloud solution you stay in control with exactly what is shared with whom.
For a more in-depth technical description of the ShareAspace platform visit: https://docs.shareaspace.com/

Features

• Secure sharing of information, e.g. files, documents, drawings, CAD-models, etc.
• Invite partners and users, manually or through import from CRM
• Review and Approve, review delivered documents and approve
• Request for information, request information from suppliers with total control
• Request for manufacture, order suppliers to manufacture and deliver parts.
• Request for Approval, share and audit documents to/from suppliers
• Monitor deliveries, dashboard view with progress information of suppliers deliveries
• Planning of document deliveries, control delivery dates and responsible persons
• Apply template for deliveries, control exactly how partners deliver documents
• Import data, import and consolidate data from source systems (CRM,PLM,SAP)

Benefits

• Stay in control of suppliers and partners you work with
• Effortlessly share engineering data with multiple partners and suppliers
• Combine purchasing information in ERP with engineering data from PLM
• Centralize information required by suppliers into one convenient package
• Keep control of your data, recall access at any time
• Identify and track changes and their impact on your project
• Preview documents and 3D files in one central hub
• Manage all metadata, including versioning and access control
• Load and share 3D data from internal CAD and PDM
• Convert monolithic files into comprehensive BOMs

£1,900 an instance a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at phil.spiby@eurostep.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

501128526161423

Contact

Phil Spiby
+44 7442 105766
phil.spiby@eurostep.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: The solution works standalone however can connect and integrate with ERP, PLM/PDM and other product data systems.
• Cloud deployment model: Private cloud
• Service constraints: Runs on Windows environment
• System requirements:
  • Operating System (OS) - Microsoft Windows Server 2022
  • SSL Certificate - Valid SSL certificate
  • Firewall Rules - See firewall rules section in documentation
  • .NET Core Hosting - ASP.NET Core 8.0 Runtime
  • Web Server(IIS) Role - Web Management Tools

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Response times are defined in the SLA agreement
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Different service levels are offered and linked to the customers need for availability of the system, i,e if it is classified as business critical or not.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Online user documentation
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Data is most easily extracted as an export using the ShareAspace DataExchange module. From here you can select different formats including csv, json and various ISO STEP 10303-formats.
• End-of-contract process: Depends on SLA contract.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Full documentation of ShareAspace is found at https://docs.shareaspace.com/
• Accessibility standards: None or don’t know
• Description of accessibility: .
• Accessibility testing: .
• API: Yes
• What users can and can't do using the API: Everything you can do in the UI is available through the API.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Users and system administrators can configure the views presented in the UI as well as creating custom queries and configure the dashboard.

Scaling

• Independence of resources: Load balancing of the service can be obtained by upscaling the Cloud infrastructure on demand.

Analytics

• Service usage metrics: Yes
• Metrics types: Usage reports can be setup. Eurostep normally does not have access to the private cloud instance but a system administrator can be instructed on where to access these reports.
• Reporting types:
  • API access
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Scale, obfuscating techniques, or data storage sharding
  • Other
• Other data at rest protection approach: The ShareAspace database files are not encrypted. Database files should be stored on drives with limited access. The service account running the ShareAspace Windows Service must have access to the database files. Content files stored in ShareAspace are stored in a secure file vault with obfuscated file names.
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported using the ShareAspace DataExchange module. From here you can select different formats including csv, json, Excel and various ISO STEP 10303-formats.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Json
  • Excel
  • ISO10303-239 (PLCS)
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Json
  • Excel
  • ISO10303-239

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: All customer data is stored in the Private Cloud. No customer data is stored in Eurostep network.

Availability and resilience

• Guaranteed availability: Availability of the service is dependent on the hosting environment (i.e. private cloud) setup.; SLA for expected service availability can be arranged but is tailored for each contract setup.
• Approach to resilience: Failover support as an available feature in the platform. ; Data center resilience is dependent on hosting environment, i.e. private cloud.
• Outage reporting: Depends on hosting environment.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Other
• Other user authentication: ShareAspace is configured to trust any commercial Identity provider using OpenID connect.
• Access restrictions in management interfaces and support channels: Admin access is role based. Also this is is private cloud hosted environment, hence Eurostep does not have access to any data. Appointed system administrators do.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Other
• Description of management access authentication: Authentication is controlled within ShareAspace by appointed administrators.

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Cyber Essentials
• Information security policies and processes: Cyber Essentials

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Customer security policies apply. ; The ShareAspace solution is installed in the Customer's Private Cloud instance.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Potential threats that has surfaced, either from our customers or from our relationships with cloud vendors, are assessed and evaluated in our core Product Development Team at Eurostep.; Escalation patches, based on imminent security threats are delivered to our customers as soon as they have been validated. Deployment is done by the customer's IT-organisation on their Private Cloud.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Customer Security policies apply, ; The ShareAspace solution is installed in the Customer's Private Cloud.
• Incident management type: Undisclosed
• Incident management approach: We have adopted the ITIL incident management processes and these are tailored to the customers need during SLA contracting.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  As a fully owned company of BAE Systems we adhere to their policies for Human right and fight for a better climate.; ; As such, we have an important role in society because we:; - help our customers to provide security and safety; ; - contribute to the economic prosperity of the places where our people live and work; ; - support high-value jobs in our business and in our supply chains; ; - value our people and their diversity so they can fulfil their potential in an inclusive and supportive working environment; ; - seek to identify opportunities for individuals from disadvantaged backgrounds; ; - support employees’ rights in relation to freedom of association;; - inspire and excel in the work we do – the technologies we develop and the talent we build; ; - develop cutting-edge technologies to sustain the competitive strength of the Company in global markets; ; - create best-in-class products and services by forging strong relationships with our suppliers and partners; ; - care for and support our local communities; and ; - use our knowledge and technologies to reduce the environmental impacts of our activities. We have set ourselves the target of achieving net zero greenhouse gas emissions across our operations (Scope 1 and 2) by 2030.

Pricing

• Price: £1,900 an instance a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at phil.spiby@eurostep.com. Tell them what format you need. It will help if you say what assistive technology you use.