ACTIVENAV

ActiveNav Cloud

ActiveNav Cloud provides deep insights and delivers a sensitive data risk audit in a single pane of glass view, right out of the box. Purpose built for unstructured data discovery, you can rest easy knowing your data is compliant with regulations and consumer protection obligations.

Features

• Purpose built for unstructured data discovery.
• Deep insights and delivers a sensitive data risk audit.
• A single pane of glass view, right out the box.
• Understanding your big picture data risk.
• Proprietary classification and data scoring shows your overall risk exposure.
• Sensitive data hotspots let you drill into mitigate the problem.
• True SaaS solution costing very little to deploy and maintain.
• Connect to unstructured data-repositories on-prem or in the cloud.
• Scalable/fast to monitor data compliance, maintain ever-green data inventory.

Benefits

• A low-cost and easy to use unstructured data discovery service.
• Including Fileshares, email, chat, documents, on-premise/cloud, visualized.
• Maintains a current inventory in a single pane of glass
• Provides a consolidated view of data composition and compliance.
• Identifies misfiled and over-retained matter.
• Generates sensitive data reports to respond to client audit requests.
• Enables data mapping and subject access request fulfilment.
• Delivering a series of rich dashboards within minutes.
• Providing unrivalled data insights.

£13,000 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at peter.baumann@activenav.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

695884000513038

Contact

Peter Baumann
01962 396690
peter.baumann@activenav.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: We provide a flexible range of software services based on required capability and volume tiers.
• Cloud deployment model: Private cloud
• Service constraints: No
• System requirements:
  • Email address for approved users
  • Single sign on
  • Network readiness
  • On-Prem collector requirements
  • Cloud collector requirements
  • Content to be discovered - data source locations

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Initial response by engineer based on severity level: [1] 8 hours (or next day for after hours); [2] 8 hours (or next day for after hours); [3] 24 hours
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: The Help Desk maintains a portal, which provides access to registered users to the following resources:; • Downloads: Licensed product software,patches/updates and product documentation is available for download.; • Knowledgebase: The product knowledgebase is added to continually to provide an up to date source of articles to help address known issues and common network problems. The knowledgebase also contains sample rules for adaptation to meet specific project needs.; • Product News: All product news articles can be browsed.; • Ticket/Issue Management: Users can review their own tickets, update ticket properties and manage ticket status.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: ActiveNav can provide bespoke professional services to help with the adoption process of our Cloud platform. As required this training can be in-person or remote and will be delivered on a Time & Materials basis, invoiced based on hours of work delivered.; ; Comprehensive user documentation, knowledge base articles and use case-based playbooks are also available via our support portal.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Because ActiveNav Cloud discovers and catalogues customer data without duplicating or removing it from their infrastructure, once a subscription ends the service will cease to have access to it. Customer data remains in situ so does not require extraction from the Cloud service.
• End-of-contract process: All subscriptions will automatically renew for a term length of 12-months unless notification of non-renewal is provided to ActiveNav 30 or more days before the renewal date. ; ; An automatically renewing order will remain unchanged from the prior term except for any pricing increase of which ActiveNav has notified the customer 60 or more days before the renewal date.; ; For the duration of the subscription period, product maintenance (including access to upgrades) and support is included at no additional cost.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: ActiveNav Cloud service provides the capability for users to specify customisations in the following areas:; ; • Feature Extraction and Scoring models; Through the web interface, admin users can generate custom extensions to scoring rules and feature extraction logic which drive the appropriate insights to inform decision making. This allows users to generate results based on the data elements that are relevant to their organization or specific use case.; ; • Visualization of data by business unit; Admin users can define logic units that represent the business function in their organization and associate the content locations where they are creating and maintaining data. This allows visualsations and reports to be generated at a business unit level and streamlines any IG project or program to manageable levels of effort. ; ; • Configuration of reporting parameters; Users can set custom date ranges, filters and attribute lists that are used throughout the visualization and reporting functions.

Scaling

• Independence of resources: ActiveNav's Cloud service utilises a multi-tenant cloud infrastructure, hosted regionally in Microsoft Azure. Each tenant is unique and remains isolated from other subscribers service.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: We don't hold any customer data.
• Data sanitisation process: No
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Some data can be exported via CSV. Overall, ActiveNav Cloud discovers and catalogues customer data without duplicating or removing it from their infrastructure.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: ActiveNav warrants to Customer: ; (i) that commercially reasonable efforts will be made to maintain the online availability of the Service for a minimum of availability in any given month as provided in the chart below (excluding maintenance outages, outages beyond ActiveNav's reasonable control, and outages that result from any Customer technology issues);; (ii) the functionality or features of the Service may change but will not materially decrease during any paid term; and ; (iii) that the Support may change but will not materially degrade during any paid term.
• Approach to resilience: Available upon request.
• Outage reporting: Email alerts and/or via phone from an Account Manager or member of the Support team.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Only users defined by the client can access the software service.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: Less than 1 month

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: LRQA
• ISO/IEC 27001 accreditation date: 02/11/2023
• What the ISO/IEC 27001 doesn’t cover: The scope of ISO27001 approval is the provision of on-premise and cloud based software for discovery, mapping, analysis and ongoing governance of unstructured data. Activities include the sales, design and development, provision and support of software and related services.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications: Veracode Verified Team

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ISO 27001

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Yes
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Available upon request.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Available upon request.
• Incident management type: Undisclosed
• Incident management approach: Available upon request.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Equal opportunity

  Equal opportunity

  ActiveNav is committed to valuing diversity and seeks to provide all staff with the opportunity for employment, career, and personal development based on ability, qualifications, suitability for the work, and their potential to be developed into the job.; ; We believe that people from different backgrounds can bring fresh ideas, thinking, and approaches that make the way work is undertaken more effective and efficient.; ; ActiveNav will not tolerate direct or indirect discrimination against any person on the grounds of age, disability, gender/gender reassignment, marriage/civil partnership, pregnancy/maternity, race, ethnicity, religion or belief, sex, or sexual orientation, whether in the field of recruitment, terms, and conditions of employment, career progression, training, transfer, or dismissal.; ; It is also the responsibility of all staff in their daily actions, decisions, and behaviour to endeavour to promote these concepts, comply with all relevant legislation, and ensure that they do not discriminate against colleagues, customers, suppliers, or any other associated person with ActiveNav.

Pricing

• Price: £13,000 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: ActiveNav offer a 30-day risk-free trial which precedes any new 12-month subscription. This offers customers a full version of the Cloud service which can be cancelled at any time during the first 30 days.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at peter.baumann@activenav.com. Tell them what format you need. It will help if you say what assistive technology you use.