Skotkonung Ltd

MetricsLed DEPLOY

MetricsLed DEPLOY is a secure cloud-based enterprise solution for resource management. Manage time and expenses, allowances, staff absence, leave, and forecast project availability. Manage IR35 compliance; maintain project, task and person profiles (including duty of care information); integrate with third-party accounting software and deliver on-line and downloadable management information.

Features

• HR/People and project management, including travel, training and working overseas
• User profile maintenance for individuals, including duty of care information
• Easy-to-use time and expense logging tools
• Productive, leave, sick and personal days logging and reporting
• Simple and automated claims for standard allowances
• Multi-currency expenses with automated exchange rate application to base currency
• Receipt image uploads and storage for audit purposes
• Organisation defined HR and finance account codes
• Client defined workflows for approval of time and expense claims
• Data export/integration ability for upload to third-party accounting systems

Benefits

• Increased efficiency with end-to-end management of tasks and people
• Greater accuracy with consistent, validated time and expense capture
• Management oversight of deployments and claims across all projects
• Accurate time saving claim processing compared to manual systems
• Real-time reporting, employee/contractor data analysis and management information
• Billed and unbilled time and expenses management in one place
• Secure external line manager approval process for timesheets
• Scalable to give increased value for money with use
• GDPR compliance with data residing in secure live shared workspace
• Robust audit information on all claim related approvals and rejections

£15 a user a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@metricsled.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

546470788562092

Contact

MetricsLed
+44(0) 33 0088 3933
tenders@metricsled.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: MetricsLed ENGAGE and OPERATE platforms.
• Cloud deployment model: Public cloud
• Service constraints: Maintenance is planned in advance (normally to take place between 8pm and 6am) and users are advised of disruption (normally with 48hr notice).
• System requirements:
  • Internet connection and browser
  • Service is designed to work on a tablet/laptop/desktop
  • Screens will render on a mobile device

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: The help desk is available 09:00 to 17:00 on UK business days. We respond to high priority issues within four working hours. Medium priority within one business day. Low priority as agreed with the Customer on receipt of a service request.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Support level is tailored to client needs and is normally set out in full in a service level agreement with the client. We provide single point of contact for technical support, finance and management. We provide a 24hr monitored single email address for all technical issues and run server monitoring on all client servers to flag connectivity and other issues. We can provide further details on request.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Clients are assigned an account manager. The account manager will organise system setup and initial configuration; managing data migration (subject to additional charge if data is not in ready to import format); setting us initial admin/user accounts; preparing training materials (as agreed with the client) and setting up training for client administrators (and if required users).; ; Copies of training materials (videos, manuals etc.) will be provided to the client to share with new users.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • ODF
  • PDF
• End-of-contract data extraction: Data export is provided at the end of service as follows:; ; For documents in the database these are provided in zip files containing the documents.; ; For specific data these can be provided in MS-Excel worksheets or flat file CSV format.; ; The majority of information can be extracted by the customer from the user interface.
• End-of-contract process: Based on an agreed end-of-service date, we provide data as above. We hold data for an agreed period, not normally exceeding one month, or as agreed with the client, and then delete it unless we are legally required to retain it.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Pages reformat depending on the size of the device screen.
• Service interface: No
• User support accessibility: WCAG 2.1 AA or EN 301 549
• API: No
• Customisation available: Yes
• Description of customisation: MetricsLed DEPLOY is highly configurable. Administrative users can configure the system to suit their organisations needs. Customisation includes accounting configurations, financial exports, user employment roles, leave, customers, users, projects, deployments plus invoice and claim management workflows.

Scaling

• Independence of resources: We use Microsoft Azure Cloud servers that scale on real-time demand.

Analytics

• Service usage metrics: Yes
• Metrics types: Active User, Invoice / Claim Status and task metric data is provided
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data export is based on permissions granted for each user and client customisable outputs (to be agreed with client during on-boarding). Data is downloadable in various formats such as PDF reports, MS-Excel Tables and flat file CSVs, via the user interface.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • HTML
  • PDF
  • PNG
  • Excel
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • Word
  • Excel
  • PDF
  • PNG
  • JPEG
  • MSG

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: Only named administrators have access to customer databases. Sensitive data for government services can only be accessed by SC cleared personnel.

Availability and resilience

• Guaranteed availability: 99.5% uptime
• Approach to resilience: Available on request
• Outage reporting: A public dashboard is used to report outages and email alerts to administrators as required. Planned outages are notified to users via email alerts and or system announcements.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: Access is restricted to named users and user accounts are subject to strong password policies. Two-factor authentication is enabled.
• Access restrictions in management interfaces and support channels: Access is restricted to named users and user accounts that are subject to strong password policies, 2-factor authentication and validated IPs.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Dedicated link (for example VPN)
  • Username or password
  • Other
• Description of management access authentication: Access is restricted to named users and user accounts are subject to strong password policies. Two-factor authentication is enabled.

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Approachable Certification
• ISO/IEC 27001 accreditation date: 26/09/2017
• What the ISO/IEC 27001 doesn’t cover: ISO 27001 certification covers all aspects of this service. Details of scope are available on request.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO 9001
• Information security policies and processes: We have fully documented information security policies. A copy is available on request.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We have internal processes for change control that includes a full cycle of testing and audit from development to production release. Changes are assessed at time of request for security implications and if necessary additional testing or external verification is completed prior to production release. These processes are documented and comply with our ISO 9001 and 27001 quality systems.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Information available on request
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Available on request
• Incident management type: Supplier-defined controls
• Incident management approach: Available on request

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  MetricsLed is disability confident ("Committed") Employer. Our tools are used to implement and track the impact of international development programmes, linking inputs with outcomes across issues including: Climate change, economic development, and equal opportunity. ; ; Our tools are also used to track and manage staff well-being.

  Tackling economic inequality

  MetricsLed is disability confident ("Committed") Employer. Our tools are used to implement and track the impact of international development programmes, linking inputs with outcomes across issues including: Climate change, economic development, and equal opportunity. ; ; Our tools are also used to track and manage staff well-being.

  Equal opportunity

  MetricsLed is disability confident ("Committed") Employer. Our tools are used to implement and track the impact of international development programmes, linking inputs with outcomes across issues including: Climate change, economic development, and equal opportunity. ; ; Our tools are also used to track and manage staff well-being.

  Wellbeing

  MetricsLed is disability confident ("Committed") Employer. Our tools are used to implement and track the impact of international development programmes, linking inputs with outcomes across issues including: Climate change, economic development, and equal opportunity. ; ; Our tools are also used to track and manage staff well-being.

Pricing

• Price: £15 a user a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Proof of concept service giving users an opportunity to test on a small data set (provided by client or if requested by us). Trial period is negotiable but not to exceed 6 weeks. Please contact us to discuss further.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@metricsled.com. Tell them what format you need. It will help if you say what assistive technology you use.