Method Apps Limited

Method Grid

Method Grid, empowered by AI, enables the collaborative capture, sharing, continuous-improvement and delivery of structured project delivery frameworks, operating procedures and service methodologies (indeed, any form of repeatable best-practice).

The solution is adopted by organisations seeking to improve their knowledge management and project management capabilities.

Features

• Methodology Platform (uniquely combining knowledge management and project management features)
• Methodology framework and AI-driven content management builder
• Project management control with resource assignment and due-date scheduling
• Clone master methodology frameworks into specific workflow instances
• Executive dashboard (portfolio-level) reporting
• Multiple content areas available (text, images, videos, files, links etc.)
• Checklist functionality and workflow progress tracking (personal task manager)
• Collaborative chat and @mention notifications (user configurable)
• Content labelling, filtering and deep search (of process library)
• Fully featured Gantt charts to plan, schedule and deliver projects

Benefits

• Deliver services more consistently
• Enhance staff productivity
• Facilitates knowledge-based staff collaboration
• Executive oversight of service and project delivery portfolios
• Effective staff on-boarding and dynamic training resource provision
• Improved control - project and operational workflow tracking and QA
• Supports oversight and assurance of regulatory/standard practices
• Builds (structured, continuously-improving) value into intellectual property (IP)
• Process streamlining
• User configurable access control enabling multi-party collaboration

£21 to £21 a licence a month

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at steven.webb@methodgrid.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

541446527918109

Contact

Steven Webb
07779207519
steven.webb@methodgrid.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: No constraints
• System requirements:
  • Internet browser
  • Internet connection

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within two hours on weekdays (0900-1700hrs) and same day during weekends.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: We aim to adhere to the WCAG 2.0 accessibility guidelines. Our code is written so that the chatbox is navigable by keyboard using screen reader software.
• Web chat accessibility testing: No testing
• Onsite support: Yes, at extra cost
• Support levels: Our Professional Services team provide implementation/on-boarding services, with engagements typically lasting between 1-4 weeks. They are priced individually for each customer’s needs. Our implementation service is designed to equip customers with the capability to create world-class playbooks and elevate their capability using Method Grid. This comprehensive service includes initial kick-off meetings, the formulation of their content development approach, specialised training sessions, and the design of an operating model that treats their Intellectual Property (IP) as a strategic asset.; ; Incident response times:; ; Method Grid define the severity classification of the reported incident and respond to the incident accordingly to the response time set forth in the list below:; ; CRITICAL: Service unavailability ; – RESPONSE TIME: Immediate (but within two hours); ; HIGH: Major functionality in the service is impacted, or the service performance is significantly degraded, or the Incident is persistent and affects many Users ; – RESPONSE TIME: Immediate (but within two hours); ; MEDIUM: Service Performance issue or a material bug affecting some Users or some functionalities. Reasonable workaround is available – RESPONSE TIME: Within 24hrs; ; LOW: Bug or other technical issue affecting some Authorised Users. Reasonable workaround is available ; – RESPONSE TIME: Within 48hrs
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: The solution is designed to be very intuitive to use. New users are supported by a detailed FAQ and video tutorial knowledge base. In addition, our Tier 1 support includes a same-day response support ticket and in-app chat bot. ; ; For larger installations, we offer onsite and online 'super user' training (typically run as four 1.5 hour modules).
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Users have the ability to self-service export data via an export function. This produces a Microsoft Excel (.xlsx) file that preserves content structure along with a zip file of all uploaded content. ; ; Additionally, our support team can be contacted for data extracts in additional formats.
• End-of-contract process: At the end of the contract, user access simply ceases but account content is retained for twelve months to facilitate any subsequent account resuscitation. ; ; The software-as-a-service (SaaS) contract - typically invoiced annually - subsumes all user subscription licence and service support costs. ; ; There are no additional end of contract costs.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The service is fully responsive on mobile; however, we recommend mobile for the primary use of the service (accessing content, procedure/activity tracking etc.) rather than the capture, editing and maintenance of content.
• Service interface: No
• User support accessibility: WCAG 2.1 A
• API: Yes
• What users can and can't do using the API: https://help.methodgrid.com/help/api
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The service is inherently customisable in so much as it is a platform for the bespoke capture of structured operating procedures, service methodologies and repeatable best-practice. ; ; In addition, users can configure the look-and-feel (logos and colour palette), system APIs and notifications settings. This is all done from within the service "Settings" area. ; ; Administrators can configure access control across the solution - right down to the individual grid (project) level. ; ; Administrators can customise system-wide settings allowing all users the ability to configure individual user experience (e.g. notification settings).

Scaling

• Independence of resources: We have a dedicated account management team/capability. This team/capability scales according to our user growth. We anticipate having a dedicated G-Cloud 14 lead in our support team to ensure this framework is always given due prominence and service attention.

Analytics

• Service usage metrics: Yes
• Metrics types: We provide basic user access metrics (e.g. days since last login). ; ; There are detailed activity logs available also - providing an audit of all user-activity across the solution.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The service includes an export function at a grid (content unit) level - accessible to all users. This creates an Excel file preserving the logical structure of a user's data and data links along with all associated files. ; ; Additional export formats are available on request.
• Data export formats: Other
• Other data export formats: Microsoft Excel (.xlsx)
• Data import formats: Other
• Other data import formats: Microsoft Excel (.xlsx)

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We outsource our servers and rely on third party SLA's for availability. We currently use Digital Ocean - hosted in London, UK. ; ; In the past three years, our uptime has been over 99.999%.; ; https://www.digitalocean.com/help/policy/
• Approach to resilience: Information available on request.
• Outage reporting: We determine which customers were/are affected and notify them by regular emails with respect to the issue and mitigation response/timeline. Significant outages (and our mitigating response) will be messaged additionally through our social media channels. Any maintenance related downtime (affecting the whole platform) is scheduled at quiet hours and users are notified well in advance.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Access to management interfaces and support channels are managed by our CTO in the role of super admin. Access is granted based upon business need and reviewed on a monthly basis.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: ISO27001/2 (2022) in progress

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We use industry standards to operate our data security management. Method grid has its own data security policy which is available on request.
• Information security policies and processes: We review our security policy twice a year. The information security policy is the responsibility of a Board Level Director.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Code and assets are tracked and versioned in Git.; ; Releases are versioned and deployed using deployhq.com.; ; Any code changes are reviewed by a member of the development team and released to a staging environment for testing before being released to production.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We assess potential threats using Burp Suite (https://portswigger.net/burp) and manual penetration testing. We monitor our network for unusual activity and our application is also covered by CloudFlare.; ; We also receive alerts from NCSC (National Cyber Security Centre) of newly found threats which, if applicable are prioritised into our workflow.; ; We seek to undertake a full application and network security (grey box) test at least annually. The last such audit was undertaken in December 2023 (by Uniquely). A copy of this penetration test report is available on request.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We routinely monitor server data and statistics as well as deploying external third-party tools to test our server response time. Any unusual activity is investigated by analysing the server logs such that appropriate resolution action can be decided/acted upon.
• Incident management type: Supplier-defined controls
• Incident management approach: Our customer support team respond initially to all incidents that have been reported to us by users. The incident is then passed over to the relevant technical team who prioritise the incident and a configure a resolving plan of action (along with the estimated time frame for a fix to be tested/released). This information is fed back to the reporting user. ; ; Users can report incidents through our application or via a support page.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Wellbeing

  Wellbeing

  The Method Grid platform is an inherently collaborative solution that communities of users to deliver projects consistently, to the highest of scrutiny.; By having a detailed playbook, users can follow detailed tasks, guided by video explainers, to simplify processes and enable teams to reduce the stress of delivering large-scale projects and programmes - whilst ensuring continued consistency - and the ability to assure the deliverables they are working on.

Pricing

• Price: £21 to £21 a licence a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Our full-feature service is available for proof-of-value evaluation. ; ; The term and nature of these trials is contingent on the nature of the users' requirement but are typically very short exercises (5 days maximum). ; ; Department-level trial domains are configurable on request.
• Link to free trial: https://methodgrid.com/demo/

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at steven.webb@methodgrid.com. Tell them what format you need. It will help if you say what assistive technology you use.