Responsiv Solutions Ltd

Responsiv Cloud Decision Platform

Capture, automate and manage rules-based business decisions with this easy to use business rules automation platform designed for business users.
Ideal for supporting business rules management projects across the enterprise.

Features

• Externalise decisions from underlying process and improve responsiveness
• Share decisions across business, web, mobile applications and IT platforms
• Robust decision repository supporting version control
• Parametise rules, promoting lower change cost and increasing agility
• Extensive and extendable library for managing business rules
• Drive self-service and personalisation capabilities
• Powerful decision engine to rapidly execute business rules
• Adapt quickly to changing market demands and customer feedback
• Enable business and IT users to create/ change/ manage rules

Benefits

• Support business users maintain and govern business decisions
• Auditable rule lifecycle management and increased transparency
• Capture complex business rules easily with limited technical support.
• Intuitive user interface to enhance business user interaction
• Complete audit of business decision execution including when and why
• Ensure compliance with external business rules, complex legislation and regulation
• Enable straight through processing

£2,085 an instance a month

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@responsiv.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

672347683888264

Contact

Mike Axial
+44 (0)1344 266 980
sales@responsiv.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Normally used stand-alone to provide rules for business, web and mobile applications, however it can be combined with Responsiv Cloud Platforms when a separate policy and rule management and execution capabilities are required to complement the development of business logic when developing processes and integrations.
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: Cloud Services are designed to be available 24/7, subject to maintenance. Client will be notified of scheduled maintenance.
• System requirements: Supported browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response time depends upon request severity. Severity 1 has an RTO of 4 hours, whilst a Severity 4 has an RTO within 1 business day (Monday-Friday business hours) Full details at https://responsiv.co.uk/responsiv-cloud-platform-support/
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Included within the price https://responsiv.co.uk/responsiv-cloud-platform-support/ On-site support provided as a Time & Materials basis and will be scoped and agreed before attending site
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Full documentation, tutorials, video guides available. ; ; Onsite and online training can be provide as required (charges apply).
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Customer can download the data directly themselves via the export functions available in the Consoles.; Responsiv will return the Client Data within a reasonable period in a reasonable and common format upon receiving written instructions from the Client prior to termination or expiration.
• End-of-contract process: If the user chooses not to renew the contract the account will be suspended and access denied.; The instances will be decommissioned and all data will be securely destroyed

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Rule Service execution is exposed as a REST and SOAP API so can be accessed directly by mobile devices.; The rule authoring tools are accessible via supported browsers on mobile devices
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Web based Decision Center Portal to manage all aspects of the rule changes, testing and deployment.; Web based Decision Server Console for administrators to mange the rule service versions deployed to the Decision Server component.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: https://www.ibm.com/able/product_accessibility/request?requestId=162ef22811c2a8388c67301ad56e9ec3
• API: Yes
• What users can and can't do using the API: Extensive REST APIs exist for:; - Executing the rule services deployed to the Decision Server (including SOAP); https://www.ibm.com/support/knowledgecenter/en/SS7J8H/com.ibm.odm.cloud.integrating/topics/con_call_decision_service.html; ; - Managing rule services in the Decision Server; ; - Managing rule projects in the Decision Center; https://www.ibm.com/support/knowledgecenter/en/SS7J8H/com.ibm.odm.dcenter.ref.dc/topics/dc-swagger-cloud.json; ; https://www.ibm.com/docs/en/odmoc?topic=reference-operational-decision-manager-cloud-subscription-services-rest-api
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The Web interfaces cannot be customised. ; The client is free to create and deploy whatever decision services they like.

Scaling

• Independence of resources: The architecture of Responsiv cloud platforms and services maintains logical separation of client data. Internal rules and measures separate data processing, such as inserting, modifying, deleting, and transferring data, according to the contracted purposes.

Analytics

• Service usage metrics: Yes
• Metrics types: Logs maintain execution details for each deployed service including number of time executed and average execution time.; An in-built metrics page can be used to display information about the projects stored in the repository including the total number of artefacts.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: By using the export functions available in the Consoles.
• Data export formats: Other
• Other data export formats:
  • HTML - for rule reports
  • ZIP files - for Rule Projects and RuleApps
  • XLS - for Decision Table Rule Export/Import
• Data import formats: Other
• Other data import formats:
  • XLS - for Decision Table rules
  • ZIP - for rule projects and RuleApps

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection between networks: Responsiv will encrypt content not intended for public or unauthenticated viewing when transferring content over public networks. Further, unless excluded by a TD, Responsiv will enable use of a cryptographic protocol, such as HTTPS, SFTP, and FTPS, for Client’s secure transfer of content to and from the Cloud Service over public networks.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Other
• Other protection within supplier network: Use of segregated networks behind a firewall

Availability and resilience

• Guaranteed availability: Technical support for the Cloud Service, including support contact details, severity levels, support hours of availability, response times, and other support information at https://responsiv.co.uk/support/ Availability during a contracted month = Compensation (% of monthly subscription fee for contracted month that is the subject of a claim) <99.9% = 2% <99.0% =5% <95.00% = 10.0%
• Approach to resilience: Available on request
• Outage reporting: Email notifications for scheduled changes

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: Responsiv maintains individual role-based authorisation of privileged accounts that is subject to regular validation. A privileged account is a duly authorised Responsiv user identity with administrative access to a Cloud Service, including associated infrastructure, networks, systems, applications, databases and file systems.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA
• ISO/IEC 27001 accreditation date: 25 April 2022
• What the ISO/IEC 27001 doesn’t cover: The ISO/IEC 27001 certification covers the the hosting for the service
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Cyber Essentials
• Information security policies and processes: Responsiv has a set of security policies documented as part of our policy framework. Responsibility and accountability for executing internal security programs is established through these formal documented policies.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Responsiv maintains policies and procedures to manage risks associated with making changes to the Responsiv Cloud Platform offerings. Changes are documented and tested against non-production environments to develop detailed run-books that are used to implement changes. Where possible changes are scripted and automated to further reduce the potential for human error and mitigate security risks.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Responsiv Cloud Services are regularly assessed for potential security vulnerabilities and deployed in an isolated manner to mitigate the risk of contagion. Operating systems and other components are chosen with security in mind. Patches are tested and deployed as needed and according to a specific risk assessment. Potential threats are identified through our vendor and partner links, and security forums.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Administrative access and activity to Responsiv Cloud Platform and Services are logged, and the logs retained. Our policies and measures help identify unauthorised access and activity to facilitate a timely and appropriate response.
• Incident management type: Supplier-defined controls
• Incident management approach: In the event of an incident, automated monitoring in the Responsiv Cloud Platform will raise a ticket in our ITIL based service desk. Standardised processes are then followed to address the incident. A root cause analysis is performed where appropriate and notified to the customer. Incident details are recorded in our service desk and where appropriate available to the specific customer. Root cause reports are recorded in the same way for records and sent to the customer.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Tackling economic inequality:

  Tackling economic inequality

  Responsiv Solutions is a new business that employs both graduate and school leavers. We have approximately 40% non-native English speakers, and a gender balance of around 50% male. Our business works with smaller businesses to help them use technology to grow and prosper. We are bringing knowledge and expertise more commonly found in larger organisations to the masses.
• Equal opportunity:

  Equal opportunity

  Responsiv prides itself in selecting our staff on their individual merits, and their ability to work with our customers as part of the Responsiv team. We do not single out particular groups by any measure and regard ourselves to be an equal opportunity employer.; Responsiv has signed up to the Disability Confident initiative as a Disability Confident Committed Employer.
• Wellbeing:

  Wellbeing

  Responsiv provide our staff with wellbeing advice and private medical care that includes mental health and encourages good habits to promote healthy lifestyles. Many of our staff are keen sports people who participate in cycling and sporting events.

Pricing

• Price: £2,085 an instance a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

• Modern Slavery statement

  ODT

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@responsiv.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.