MUTHERBOARD.COM LTD

Integrations

Our integration services connect your diverse software tools and systems, creating a seamless digital ecosystem. By automating data flows and eliminating manual tasks, we optimize your processes and enhance productivity.

Features

• Data Synchronization
• API Integration
• Process Automation
• Real-time Data Integration
• Data Transformation
• Error Handling and Monitoring

Benefits

• Enables timely decision-making based on up-to-date information.
• Allows a wide range of software, applications and services integrations.
• Minimizes human error and improves accuracy
• Provides real-time access to data to help business decision making.
• Ensures data is clean, accurate, and consistent.
• Maintains system availability and minimizes downtime.

£2,000 to £10,000 a unit a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rob@mutherboard.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

562829486175885

Contact

Rob Meyer
01423609002
rob@mutherboard.com

Service scope

• Software add-on or extension: Yes
• What software services is the service an extension to: Monday.com
• Cloud deployment model: Private cloud
• Service constraints: Software needs to have an API in order to be integrated into monday.com
• System requirements: API access

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: 24 hour response times with an average of 3 day resolution time. This is impacted by complexity of the ticket being submitted. We do not trade on weekends so support is provided during business hours, Mon - Fri.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Basic (£2,500 for 3 months): - Valid for 3 months - Total of 15 support hours (5 hours per month) - Ticketing support only Premium (£7,500 per year): - Annual contract - 75 hours per year - Ticketing and video call support Enterprise (£20,000 per year): - Unlimited support hours - Ticketing, video and in-person support - Dedicated support agent - Annual account review
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide access to online training resources. We also provide online and in-person (additional cost) training for all staff using the system. User documentation can also be created and provided at an additional cost.
• Service documentation: Yes
• Documentation formats:
  • PDF
  • Other
• Other documentation formats: Monday.com doc
• End-of-contract data extraction: All data can be exported from the platform at any stage
• End-of-contract process: We deliver the customised solution to the buyer. After which we move into support where we are there to help maintain and manage the solution we have delivered within monday.com.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Full administration (access & permissions) and set up features are only available on desktop/browser interface.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Data can be pulled from or pushed into the software with no known limitations.
• API documentation: Yes
• API documentation formats:
  • HTML
  • Other
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Monday.com is hugely customisable. The flow of data and all business processes can be customised according to the buyers needs. Permissions to customise the platform are managed within the platform to ensure only certain people are able to make changes.

Scaling

• Independence of resources: We plan recruitment in advance to ensure adequate coverage for all projects. We have implemented a robust ticketing system to ensure demand is managed and tracked over time. Projects are run with a single point of contact who only works on said project for the duration of it to ensure demand for other services do not affect delivery.

Analytics

• Service usage metrics: Yes
• Metrics types: Platform administration data: - Active users (weekly and monthly) - Actions completed (last 30 days) - Storage stats - Automations used (time and people) - Top creators - Top communicators Dashboards - Anything that exists within the platform can be added to a dashboard
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Monday.com

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Monday.com encrypts all data both in transit and at rest: - Traffic is encrypted using TLS 1.3 with a modern cipher suite, supporting TLS 1.2 at minimum - User data is encrypted at rest across our infrastructure using AES-256 or better - Credentials are hashed and salted using a modern hash function
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported from individual "boards" within the platform. Data can also be exported at an account level which will include all data from all "workspaces" across the entire account.
• Data export formats:
  • CSV
  • Other
• Other data export formats: Xlsx
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Xlsx
  • Xls

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Monday.com offers a Service Level Agreement (SLA) that guarantees a 99.9% uptime for users on the Enterprise plan, ensuring reliable service availability. If the service level commitment is not met, monday.com provides its users with dedicated support to address and rectify the situation. No refunds are available.
• Approach to resilience: All monday.com services and data are hosted on AWS across multiple countries. monday.com is committed to providing continuous and uninterrupted service to all its customers. We consistently backup user data every 5 minutes. All backups are encrypted and distributed to various locations. Our Disaster Recovery Plan is tested at least twice a year to assess its effectiveness and to keep the teams aligned with their responsibilities in case of a service interruption.
• Outage reporting: A public dashboard which can be found at status.monday.com as well as the ability to sign up for notification updates about service levels - this can be found at the same URL.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: We use monday.com and Google Drive to segment data using these services built in functionality. This is done by role based permissions, as well as using access management within these platforms to ensure specific areas and data are protected.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Standards Institution of Israel
• ISO/IEC 27001 accreditation date: 01/02/2018
• What the ISO/IEC 27001 doesn’t cover: None
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • GDPR Compliance
  • ISO/IEC 27018:2014
  • ISO/IEC 27017:2015
  • ISO/IEC 27032:2012
  • ISO/IEC 27701:2019
  • HIPAA Compliance

Security governance

• Named board-level person responsible for service security: No
• Security governance certified: No
• Security governance approach: We adopt a structured approach to security governance, focusing on tailored measures that suit our size and operations. We are committed to implementing best practices in security management. Our strategy involves regular risk assessments, employee awareness training, and the deployment of appropriate security tools. We prioritise the protection of sensitive information and continuously evaluate and refine our security measures to adapt to evolving threats.
• Information security policies and processes: We have established clear information security policies tailored to our business needs, covering areas such as data protection, access control, and incident response. Our reporting structure includes designated personnel responsible for overseeing security compliance and reporting directly to senior management. We ensure policy adherence through regular employee training, periodic audits, and implementing technical controls where feasible. Additionally, we encourage a culture of accountability and provide channels for reporting security concerns or breaches promptly.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We maintain a basic process for managing our system configurations and changes to ensure smooth operations. While we may not have elaborate tracking systems, we keep records of our components and any changes made to them. We assess changes informally, considering their potential impact on security as part of our routine checks. Our focus is on keeping things running smoothly and addressing any issues promptly as they arise.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: As partners of monday.com, we leverage their expertise in vulnerability management to ensure the security of our services. monday.com handles the assessment of potential threats and the deployment of patches to their platform. We rely on their robust processes and timely updates to safeguard our data and operations. Our role is to stay informed about any relevant communications or recommendations provided by monday.com and to promptly implement any actions advised to maintain the security of our systems.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We rely on monday.com's protective monitoring processes to identify potential compromises. They promptly notify us of any suspicious activities or security incidents detected on their platform. In response to a potential compromise, we follow monday.com's guidance and take appropriate actions as advised. We aim to respond swiftly to any incidents to mitigate risks and minimise any impact on our operations. Our partnership with monday.com ensures that we have access to their expertise and resources to address security incidents effectively.
• Incident management type: Supplier-defined controls
• Incident management approach: As partners of monday.com, we benefit from their incident management processes. They have pre-defined procedures for common events, ensuring a structured response to incidents. Users can report incidents directly through monday.com's support channels, and we receive updates and guidance from their team throughout the incident resolution process. monday.com provides incident reports detailing the nature of the incident, its impact, and the steps taken to address it. This transparent approach helps us stay informed and reassured about the security of our services.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity

  Fighting climate change

  Our service promotes environmental sustainability by offering cloud-based solutions that reduce the need for on-premises infrastructure, leading to lower energy consumption and carbon emissions. Additionally, we encourage remote work practices, reducing the carbon footprint associated with commuting. We also run our projects as carbon positive by donating to carbon offset charities.

  Equal opportunity

  We are committed to promoting diversity and inclusion within our workforce and business practices. Our service provision adheres to non-discriminatory policies, fostering an environment of equal opportunity for all employees and stakeholders.

Pricing

• Price: £2,000 to £10,000 a unit a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at rob@mutherboard.com. Tell them what format you need. It will help if you say what assistive technology you use.