Transalis EDI

Service scope

Software add-on or extension: Yes, but can also be used as a standalone service
What software services is the service an extension to: Integrates with inhouse ERP systems, connects with other Cloud software and services
Cloud deployment model: Private cloud

Hybrid cloud
Service constraints: There are no service constraints
System requirements: Internet connectivity

Firewall, vpn

User support

Email or online ticketing support: Email or online ticketing
Support response times: Business hours standard, bespoke support SLA where required
User can manage status and priority of support tickets: Yes
Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
Phone support: Yes
Phone support availability: 24 hours, 7 days a week
Web chat support: No
Onsite support: No
Support levels: Standard Managed Service solution support at no additional cost
Technical account manager provided
Content technical support
24×7 support plans
Flexible incident notification and tracking
Pro-active monitoring plans
GS1 certified support staff
Multi-lingual support staff
Support available to third parties: Yes

Onboarding and offboarding

Getting started: Provide on-boarding training includes
1. Service Introduction, User Manual -Online Documentation
2.Context Help -User Videos
3. User Training online where required
Service documentation: Yes
Documentation formats: HTML

PDF

Other
Other documentation formats: Online via helpdesk knowledge base
End-of-contract data extraction: The Customer is and shall remain the sole and exclusive owner of all right, title and interest in and to the Customer Data, and Customer Materials. We will retrieve and deliver to Customer a copy of the Customer Data (or such portions as may be specified by Customer), under Transalis’ control or in its possession, in an industry standard format and on the media as agreed by the Parties, at any time during the Term upon Customer request. The format includes but not limited to .CSV, .TXT, Database Dump, XML Format etc. Also Provides export to Excel and PDF format as well.
End-of-contract process: Transalis can export all Customer data retained at the time of offboarding and delete that data once it has been exported. There are no further charges except where additional migration/hand-over or transition work is required.

Using the service

Web browser interface: Yes
Supported browsers: Internet Explorer 11

Microsoft Edge

Firefox

Chrome

Safari

Opera
Application to install: No
Designed for use on mobile devices: No
Service interface: Yes
User support accessibility: None or don’t know
Description of service interface: Dashboards, API's
Accessibility standards: None or don’t know
Description of accessibility: The Transalis Portal provides real-time view of all customer transactions processed through network. It also provides search, retrieval, exception management and on-line archive services.
Accessibility testing: None
API: Yes
What users can and can't do using the API: API for data transfer, can be called from within customers' own systems, webhook triggers supported. API also supports submission and retrieval of electronic documents. Our API integrates with all common market places and ERP systems, including Finance Systems, CRM, and EDI VAN providers. API operations are supported using XML, JSON, JSV, CSV, SOAP 1.1 and SOAP 1.2 messaging frameworks.
API documentation: Yes
API documentation formats: Open API (also known as Swagger)
API sandbox or test environment: Yes
Customisation available: Yes
Description of customisation: A customer logo can be updated. Colour scheme / branding can be updated upon receipt of CSS file from customer.
Transalis also provides customisation services at an additional cost to suit the needs. Clients can customise the services on the UI layer, email, user and role management.

Scaling

Independence of resources: The Transalis EDI service was designed and has been built to scale. The core processing application is replicated multiple times across multiple servers allowing many documents to be processed in parallel. For each customer, we agree a target annual throughput rate. Our SaaS service is running on top of reputed cloud infrastructure with autoscaling capabilities configured. Based on the user demand, all necessary computing resources will be scaled to meet the demand.

Analytics

Service usage metrics: Yes
Metrics types: 1) Daily transaction reports - detailing all transactions processed in previous 24hrs;

2) Supplier on-boarding reports - detailing the progress of the supplier on-boarding programme;

3) Supplier performance reports - detailing transaction throughput
Reporting types: Regular reports

Reports on request

Resellers

Supplier type: Not a reseller

Staff security

Staff security clearance: Other security clearance
Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations: Yes
Data storage and processing locations: United Kingdom
User control over data storage and processing locations: No
Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency: At least every 6 months
Penetration testing approach: Another external penetration testing organisation
Protecting data at rest: Physical access control, complying with CSA CCM v3.0

Encryption of all physical media
Data sanitisation process: Yes
Data sanitisation type: Deleted data can’t be directly accessed
Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach: Transalis's portal provides the customer with a real time view of all transactions processed through the network. The portal also provides users with the ability to search and retrieve transactions. All reports can be downloaded and saved locally.
Data export formats: CSV
Data import formats: CSV

Data-in-transit protection

Data protection between buyer and supplier networks: Private network or public sector network

TLS (version 1.2 or above)

IPsec or TLS VPN gateway
Data protection within supplier network: TLS (version 1.2 or above)

IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability: Our portal is hosted in our datacentre to ensure high availability with regular backups taken. We also leverage AWS Cloud capacity on demand. Refunds are limited subject to a signed agreement and acceptance of our T&Cs. Our SLA for customer facing applications is 99.99%
Approach to resilience: Available on request. Our SaaS service partially also runs on top of AWS Services, hence all AWS resilience features will applicable.
Outage reporting: A public dashboard
an API
email alerts

Identity and authentication

User authentication needed: Yes
User authentication: 2-factor authentication

Username or password
Access restrictions in management interfaces and support channels: Active Directory Service
Access restriction testing frequency: At least once a year
Management access authentication: 2-factor authentication

Dedicated link (for example VPN)

Username or password

Audit information for users

Access to user activity audit information: Users contact the support team to get audit information
How long user audit data is stored for: User-defined
Access to supplier activity audit information: Users contact the support team to get audit information
How long supplier audit data is stored for: User-defined
How long system logs are stored for: Between 6 months and 12 months

Standards and certifications

ISO/IEC 27001 certification: Yes
Who accredited the ISO/IEC 27001: NQA
ISO/IEC 27001 accreditation date: 01/07/2021
What the ISO/IEC 27001 doesn’t cover: All elements covered
ISO 28000:2007 certification: No
CSA STAR certification: No
PCI certification: No
Cyber essentials: Yes
Cyber essentials plus: No
Other security certifications: No

Security governance

Named board-level person responsible for service security: Yes
Security governance certified: Yes
Security governance standards: ISO/IEC 27001
Information security policies and processes: All policies, processes and procedures and maintained in our ISO 27001 portfolio and managed by a dedicated member of staff, our Data Protection Officer. All staff have access to our information security policies and are mandated to read those. The Data Protection Officer reports to the directors.

Operational security

Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach: Our change management process is managed within a project management process. This requires all code changes to follow a strict workflow in our system. Server level changes require authorisation before being completed.
Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach: Detailed process available on request. Threats are assessed systematically at regular intervals. Patches are deployed weekly or as per threat/impact level. Potential threats are communicated via a 3rd party service.
Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach: Using industry reputed Protective Monitoring tools to monitor unusual activity, strange network patterns, configuration changes, unusual activity on the network or odd clues on systems can spot potential attack.

Alert escalation through our infrastructure security team can either prevent an eventual breach from happening -- or at least stop it in its earliest stages.

Acknowledge time : 5 min
Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach: We use guidelines and implement controls as documented in our ISO 27001 procedures.

Secure development

Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks: Yes
Connected networks: Other
Other public sector networks: PEPPOL

We can configure the system to any accessible network

Social Value

Fighting climate change

Electronic Data Interchange (EDI) plays a pivotal role in combating climate change by streamlining processes, reducing paper usage, minimizing transportation emissions, and promoting sustainability throughout supply chains. Firstly, EDI eliminates the need for paper-based transactions by digitizing the exchange of documents such as purchase orders, invoices, and shipping notices. This reduction in paper usage directly translates into reduced deforestation and energy consumption associated with paper production, leading to a decrease in carbon emissions. Moreover, the automation and efficiency offered by EDI optimize supply chain operations, resulting in reduced resource consumption and waste generation. By facilitating real-time communication between trading partners, EDI minimizes unnecessary inventory stockpiling and transportation delays, thereby lowering energy consumption and greenhouse gas emissions associated with transportation. Furthermore, the implementation of electronic invoicing and payment systems through EDI significantly reduces the carbon footprint associated with traditional invoicing methods, which involve printing, mailing, and processing paper invoices. This shift towards electronic invoicing not only saves time and resources but also eliminates the environmental impact of paper production and transportation. Additionally, EDI enables companies to monitor and analyze their supply chain data more effectively, allowing them to identify inefficiencies and areas for improvement. By optimizing logistics routes and minimizing empty cargo space, EDI helps reduce the carbon footprint of transportation activities, further contributing to climate change mitigation efforts. Overall, EDI promotes sustainability by reducing paper usage, optimizing supply chain operations, and minimizing transportation emissions. As businesses increasingly adopt EDI solutions, the collective impact on combating climate change becomes significant. Through its efficient and environmentally friendly practices, EDI serves as a valuable tool in the global fight against climate change, paving the way for a more sustainable future.

Pricing

Price: £495.00 a licence a year
Discount for educational organisations: No
Free trial available: No

Features

Benefits

Service documents

Framework

Service ID

Contact

Service scope

User support

Onboarding and offboarding

Using the service

Scaling

Analytics

Resellers

Staff security

Asset protection

Data importing and exporting

Data-in-transit protection

Availability and resilience

Identity and authentication

Audit information for users

Standards and certifications

Security governance

Operational security

Secure development

Public sector networks

Pricing

Service documents

Cookies on Digital Marketplace

Transalis EDI

Features

Benefits

Pricing

Service documents

Framework

Service ID

Contact

Service scope

User support

Onboarding and offboarding

Using the service

Scaling

Analytics

Resellers

Staff security

Asset protection

Data importing and exporting

Data-in-transit protection

Availability and resilience

Identity and authentication

Audit information for users

Standards and certifications

Security governance

Operational security

Secure development

Public sector networks

Social Value

Pricing

Service documents