Rainmaker Solutions

Indr Software

Indr is a Software as a Service (SaaS) offering that implements a proven methodology for accelerating and standardising Digital Transformation around human-centered design principles. This approach automates manual work, provides a single pane of glass around tools and visibility, provides a way to evaluate business centric decision making and implementation.

Features

• Cluster users and generate personas
• Service blueprinting functionality
• Create and send surveys to service delivery teams and users
• Gather insight into service performance and pain points
• Process mining
• Options analysis
• Transformation roadmap and management
• Reporting and analytics
• Wardley mapping

Benefits

• Visibility, organisational alignment and control of digital transformation initiatives
• Reduced risk, cost and delay
• Accelerating service launch and successful change
• Data-led roadmap to achieve digital transformation
• Enable visualisation of where to act and why
• Reduced reliance on external consulting

£34,900 a licence a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@rainmaker.solutions. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

527285077958293

Contact

Tenders Department
0330 223 4407
tenders@rainmaker.solutions

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: NA
• System requirements: None (browser-based system)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: We will determine an SLA that matches user needs in each case. Our minimum response time is 30 minutes and this applies 24/7/365.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We will determine an SLA that matches user needs in each case. Our minimum response time is 30 minutes and this applies 24/7/365.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: We have onboarding help through user documentation. We also provide video examples, walkthroughs, and best practice for users
• Service documentation: Yes
• Documentation formats:
  • HTML
  • Other
• Other documentation formats: Video
• End-of-contract data extraction: Full reporting available to extract all data on demand
• End-of-contract process: Customer data will be deleted in 90 days unless an export is requested, which may be at a small additional charge

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Indr was developed using a responsive web design that will automatically adjust for different screen sizes and viewports and can be used on mobile.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: TBD
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: No testing with users of assistive technology has been completed
• API: No
• Customisation available: No

Scaling

• Independence of resources: Indr is designed as a scalable architecture with a deployment model capable of responding to increased traffic and usage spikes. Leveraging Amazon's elastic compute capabilities, we can automatically and proactively deploy additional resources to meet rising demand.

Analytics

• Service usage metrics: Yes
• Metrics types: We provide user engagement reporting statistics.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Indr Ltd

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Full reporting available to extract all data on demand
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Indr offers 99.95% uptime
• Approach to resilience: Indr is designed as a scalable architecture with a deployment model capable of responding to increased traffic and usage spikes. Leveraging Amazon's elastic compute capabilities, we can automatically and proactively deploy additional resources to meet rising demand.; ; We deploy the service to different AWS Availability Zones within a Region for redundancy.
• Outage reporting: Email alerts are issued on service outages

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Indr use Role Based Acccess Controls that require users have special permissions to access any management function within the application.
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications: SOC 2

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Indr Software achieves SOC Type 2 standards
• Information security policies and processes: Indr Software achieves SOC Type 2 standards; ; SOC2 requires all employees to accept all stated company security policies and maintain records of such. Indr use a 3rd Party system called Drata to track this.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change managment is managed using an internal tickeing system which require sign-off from various stakeholders before any change is made to production systems.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We use AWS Inspector automated reporting to tell which CVE vulnerabilities our Ec2 instances are susceptible to and patch appropriately.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Indr utilise Crowstrike Dashboards to be notified of any incident in our organisation or service infrastructure, responding to any incident immediately.
• Incident management type: Undisclosed
• Incident management approach: We have a predefined process. ; ; Incidents can be riased either internally or externally. ; Internal incidents will come from our Endpoint Detection & Response (EDR) platform vendor Crowdstrike which continually monitors our systems for threats or breaches.; External incidents can be raised by users through a special email address that is published on the site. ; ; All incidents will be reviewed within one hour to determine priority and severity and escalated appropirately through an internal ticketing system. ; ; We will provide a Root Cause Analysis report to customers within 14 days of incident.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Covid-19 recovery:

  Covid-19 recovery

  We are deeply committed to playing our part in the economic recovery of the UK. Whilst we are an SME and therefore have limited ability to hire at scale, we are actively prioritising hiring brilliant people whose employment was affected by the pandemic whenever possible. Our Covid-19 response also includes supporting people and communities to manage and recover from the pandemic’s impact, as well as establishing new ways of working and delivery of physical and mental health support services.; ; We have embraced the significant change Covid-19 has introduced to the world of work. Whilst we have always worked remotely, never owning or leasing offices, the pandemic has strengthened our commitment to enabling Rainmakers to work from where they are most productive. Therefore we have not needed to introduce social distancing measures on our own premises, but issued guidelines to staff who use co-working spaces and/or visit client sites to ensure appropriate compliance with social distancing, surface sanitation and any local rules.; ; To support a distributed staff network, we introduced changes that improve remote working and foster collaboration and community across the company. These include Monday check-ins, regular socials, virtual Rainmaker days, and guidance on using digital tools effectively. Rainmaker believes every organisation has a responsibility to support the Covid-19 recovery effort. In support of this, we released Remote Working Guidance in April 2020 and made this available publicly, enabling others to adopt a more flexible approach to working location to protect staff.; ; As new members of CarbonNeutralBritain we are also actively seeking ways to minimise travel with our clients to reduce our climate footprint, and dramatically reduce the number of in-person meetings. We also offer a ‘Cycle2Work’ scheme, encouraging staff to make sustainable travel decisions where possible.
• Tackling economic inequality:

  Tackling economic inequality

  Rainmaker is committed to providing services that provide good value for money during delivery, and unlock long-term social value to support the growth of the public sector. We have been advocates of supporting innovation, disruptive technologies and driving the adoption of new solutions to deliver better value for money and higher quality services for over a decade. We do this by using a range of techniques and tools to spot inefficiencies early, allowing us to rapidly identify new workflows/technologies/ways of working to deliver better value for money. ; ; Rainmaker was established on the principle that there were better ways to deliver services across government and the public sector. It is in our DNA to disrupt the markets in which we operate and create a diverse supply chain in the public sector; indeed, Rainmakers played a leading role in the establishment of an open marketplace for public setor procurement with the earliest iterations of G-Cloud.; ; Rainmaker is committed to enabling the public sector to leverage the power of disruptive technologies, restructuring their supply chains to meet user needs in the most effective and cost-efficient way. From working with organisations to disaggregate monolithic contracts that no longer met user needs, to enabling new market entrants to deliver public services in markets around the world, our history of enabling equal opportunity within public sector procurement will enable us to unlock potential savings for buyers.
• Equal opportunity:

  Equal opportunity

  Rainmaker firmly believes in creating new in-house knowledge and skills to manage cloud services and enabling equal access to opportunties. We actively work to upskill and improve knowledge amongst teams to ensure that ongoing management of services is sustainable. We commit to making our online learning modules available to clients at no cost, whilst working with your internal teams. to enable you to deliver with less reliance on consulting in future.; ; Alongside our efforts to transfer knowledge to client teams and close the skills gap, enabling them to access new work opportunities, we are deeply proud of our contribution to tackling workforce representation and inequality over the past 10 years. Since our inception we have continually implemented inclusive recruiting, onboarding and people development processes. Our Smart Recruitment process reflects this.; ; As signatories of the Tech Talent Charter, continuing to use (and contribute to) the Open Playbook to increase inclusion and diversity in the tech workforce, we're promote and advocate equal opportunity within our own workforce. We support Rainmakers who mentor young people from disadvantaged backgrounds with opportunities to place mentees into secondments and contract roles, whilst also influencing staff, suppliers, customers and communities through the delivery of the contract to support disabled people by leading by example, ensuring our teams demonstrate the brilliance that enables diverse teams to deliver exceptional outcomes.
• Wellbeing:

  Wellbeing

  Pre-pandemic, our wellbeing programme focused on physical health, with access to training advisors and a flagship, company wide 'Rainmaker Active' step-count challenge to encourage health travel.; ; Since the first lockdown we rapidly predicted the mental wellbeing impacts - whilst Rainmakers were used to working from any location and all capable of working from home, the impact of working alone was going to be felt. We pivoted the pogramme to focus on mental wellbeing, introducing company socials online, explicitly arranging times every week to check in with and see how life - not just work - was going, to preserve our feeling of camaraderie. Mental health is openly discussed throughout the organisation.; ; As restrictions decrease, we've actively introduced opportunities to physically get together to refresh the bonds between our individuals.

Pricing

• Price: £34,900 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@rainmaker.solutions. Tell them what format you need. It will help if you say what assistive technology you use.