Clear Visual Communications Ltd

GoBright Room & Desk Booking Cloud Service

GoBright is an all in one Room Booking, Desk Booking and Visitor Management platform with additional Digital Signage.

Features

• Room Booking
• Desk Booking
• Visitor Management
• Digital SIgnage

Benefits

• Be assured of rooms or desks that meet your needs
• Avoid double bookings and unnecessary empty rooms
• Manage Room/Desk occupancy saving time & money
• Book for you, a colleague or a whole team
• Accelerate the flow of people at the counter
• Shorten waiting times
• Stimulate a punctual appearance
• Show the right content and the right time
• Create the right hybrid working culture
• Integrate with your Microsoft or Google estate

£2.30 to £15 a licence a month

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@clearvc.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

524745184658750

Contact

Rebecca McCartney
033 0088 3984
sales@clearvc.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: GoBright may elect to undertake a service interruption or outage to facilitate improvements to its systems or for maintenance of the Service. Details are available
• System requirements:
  • Management interface requires Windows,Mac,Linux with web browser.
  • Devices require access of specific URL's using ports (80,443)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: The service includes standard support over email and telephone during normal working hours. Out of hours support and site visits are available at additional cost.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Users can liaise directly with a member of the team to access remote support & create tickets,
• Web chat accessibility testing: None at this time
• Onsite support: Yes, at extra cost
• Support levels: The service includes standard support over email and telephone during normal working hours. Out of hours support and site visits are available at additional cost.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Onsite and / or offsite training. This can be arranged as part of the service agreement at the start or on request at an additional cost.; User Documentation; User videos
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: A report can be run to return user data in PDF or CSV format. User data will include a name, email address and all existing room bookings for the next 2 years. ; ; The application supports export of all data, including digital signage content.
• End-of-contract process: The buyer will be notified on 90 days & 60 days that the contract will automatically renew for a period of one year 30 days before contract expires.; ; The buyer must opt out a minimum of 30 days in advance of the contract expiry.; ; The contract will renew on identical terms and services that have been in effect for the final 12 months of the contract.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The desktop service is a complete management platform as well as a user self service platform with enhanced features. The mobile service is a user self-service for room and desk bookings.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The web management interface has role based authentication so admin users and power users will have access to enhanced functions. This can be integrated using third party authorisation such as Azure & Active Directory
• Accessibility standards: None or don’t know
• Description of accessibility: The service is accessible via the Web Portal using a Desktop or Laptop with a compatible operating system and a compatible web browser.
• Accessibility testing: None available.
• API: Yes
• What users can and can't do using the API: Using the standard service API a user can achieve the following:; ; • Control the behaviour of client devices; • User synchronisation with Azure/Active Directory ; • Retrieve information about services; • Monitoring of the servers; • Pulling external data into signage layouts; • Reporting and alerting; • User provisioning
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: The service can be branded with an organisational logo and colour scheme with workflows being built to match existing workflows. This is provided as part of the service.; ; Unique custom floor maps can be created, these are provided as part of the service.

Scaling

• Independence of resources: A lot of work has gone into ensuring the system is dimensioned correctly and hardware resources are adequately distributed. Extensive load testing has been performed on the system to validate this. In addition, a variety of tools are used to limit and prioritise intensive processes where necessary.

Analytics

• Service usage metrics: Yes
• Metrics types: Room & Desk usage - do i have enough/too many, the right size with the rights services?; Ghost Bookings - No Shows ; Zombie Meetings - Recurring no shows; Adhoc occupations; Number of users in meetings (3rd party hardware with people counting capabilities are required); ; Integration with PowerBI
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: GoBright

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest: Other
• Other data at rest protection approach: All media data is stored on dedicated storage servers which form part of the overall offering. Data is exported to the application servers using CIFS V3 with full user and group management protection.; The data is not accessible from any other location, all access to the data for client devices and users is provided by the application instance.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Either through the digital signage application (for digital signage data) or by running a report in the reporting application (for user data).
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Pdf
  • Zipped up folder for digital signage content and data
• Data import formats: Other
• Other data import formats:
  • User data must be input through special forms
  • For media and content a variety of formats is supported

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: To protect the service availability the system has been designed so that in the event of a single VM host failure, access to all other instances is still available. This is achieved by having redundant servers and routing. This approach gives an expected availability of better than 99.999% or ‘five nines’, which equates to less than 5 minutes unplanned downtime per year.; ; Redundant routing is provided by the public Internet DNS.; ; To protect against the loss of one or more instances due to the failure of a VM host, there is the option for redundant operation of the core applications. This is provided by provisioning a clustered application instance. Again, this gives an expected availability of better than 99.999%.
• Approach to resilience: The redundancy described above contributes to the resilience of the service. Local and offsite data backups stretching back 30 days are also made to offer protection from accidental data loss and the ability to recover from a catastrophic event.
• Outage reporting: • Outages to components within the overall infrastructure are reported by email alert to the system administrators at Tripleplay.; • Outages to customer server instances or connected client devices are reported to both the customer and Tripleplay administrators by email and / or through a public user dashboard.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Details can be found in the attached [TN041 System Security.pdf].
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NCI (Nederlands Certificatie Instituut)
• ISO/IEC 27001 accreditation date: 08/12/2020
• What the ISO/IEC 27001 doesn’t cover: No Exceptions
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: GoBright has been selected by government departments across Europe.; A cost effective and highly secure solution, the GoBright platform requires very little operational expertise and support to maintain; the GoBright platform is multi-functional, multi-facet and multi-purpose.; ; Key features of our solution:; ; Room Booking; Desk Booking; Visitor Management; Digital Signage
• Information security policies and processes: Please refer to the attached [HR_ITSecurityPolicy_v1.pdf]

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All new software components are approved by senior management prior to development and by senior developers through code review; during the development process. All new software releases are thoroughly tested and assessed for threats as part of a QA process.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Application vulnerability scanning is performed prior to every new major software release using tools that generate OpenVAS and OWSAP reports. Detected threats are analysed and dealt and fixd as part of the software release if deemed necessary ; ; Periodic scanning of the network and applications is also performed. If any new servere threats can be addressed as a patch, we have a process to address this.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: GoBright are confident in the security of their system. The system is constantly monitored and GoBright would be immediately notified if it became unavailable or was compromised in any way.; GoBright would then act appropriately and promptly to contain, recover, fix, notify and prevent further similar incident.
• Incident management type: Supplier-defined controls
• Incident management approach: Users have access to ClearVC's phone and email support service ; This includes access to a trouble ticket system where incidents can be logged, prioritised and tracked. Tickets can only be closed once the customer is satisfied that the issue / incident is resolved.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  Using automation built into the system, the solution will keep power utilisation to a minimum by disabling meeting room technology and integrate into HVAC.; ; This is a hybrid working resource scheduling tool and is by very nature is intrinsic into fighting climate change.
• Covid-19 recovery:

  Covid-19 recovery

  As this is a Hybrid resource scheduling tool it supports the workplace to become a Hybrid workplace that optimises the return to work from Covid-19 protocols.
• Tackling economic inequality:

  Tackling economic inequality

  This enables all users to access the system to support home working and meeting equality.
• Equal opportunity:

  Equal opportunity

  GoBright is an equal opportunities employer.; ; ClearVC are a National Living Wage employer.
• Wellbeing:

  Wellbeing

  The platform supports hybrid working and the ability to bring users to work together with proximity & Team scheduling for desks, thus keeping teams connected.

Pricing

• Price: £2.30 to £15 a licence a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Unrestricted full access to the cloud service is provided for the duration of 30 days.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@clearvc.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.