Indigo Cloud Limited

Debtview - Revenue Recovery & Debt Collection

Debtview automates your revenue recovery and debt collection process from early stage arrears to debt collection, litigation and high court enforcement.

With two-way multi-channel comms, multiple PCI compliant payment gateways and open banking, the platform is highly configurable enabling you to build automated workflows for your debt collection processes.

Features

• Microsoft 365 integration
• 2-Way multi-channel comms
• Scheduled outbound comms
• Automated payment arrangement & arrears management
• Payments via Apple Pay, Google Pay & Pay by Bank
• Use of real time dynamic email or SMS payment links
• Linked account capabilities
• PCN management process
• Enforcement agent solutions
• Civil National Business Centre (MCOL) integration

Benefits

• Increase amounts collected earlier in the collection cycle
• Reduce roll of unpaid balances to 3rd Party collection agencies
• Free up resources by reducing time spent on routine tasks
• Enables both remote and onsite working with no operational differences
• Collection activities configurable in line with your policies and procedures
• Multiple workflows allow for multiple treatment paths, not one-size-fits-all scenario
• iPhone & Android App available for external, door-to-door collection agents

£85 to £125 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at <removed>@06045882-d40e-4af9-aa23-c93889060ed6.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

718488276313519

Contact

<removed>
<removed>
<removed>@06045882-d40e-4af9-aa23-c93889060ed6.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: The service may not be available outside of the agreed service hours due to maintenance.
• System requirements:
  • Google Chrome version 85 and above
  • Microsoft Edge version 85 and above
  • Internet connection with a minimum 25mb download speed

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Priority 1 tickets 1 hour response during business hours (9-5 Mon-Fri); Priority 2 tickets 4 hour response during business hours (9-5 Mon-Fri); Priority 3 tickets 8 hour response during business hours (9-5 Mon-Fri)
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: No
• Support levels: Standard support is provided free of charge. This covers service incidents during contract hours.; ; Tickets are managed through our web based portal, with email & phone support also provided. Incidents are triaged and passed to the relevant technical resource as required.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Once the system is provisioned, we schedule an online session with the user to provide configuration guidance and training. We assist the user in setting up the system including comms templates, activities, fees and workflows for example. We can come on-site for this if required. Administrator and user guides are available through our knowledge base, accessible from the support portal.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats: Video
• End-of-contract data extraction: On request, we will provide data extracted in a standard pre-determined format (CSV). This is included in the contract price. If the customer requires a more bespoke extract, we can accommodate this for a fee.
• End-of-contract process: We will extract your data in a predefined CSV Format. If you require a more bespoke output, this can be accommodated and will be billed at the database rate published in the pricing document.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The following are some examples of our comprehensive API:; ; Load new cases, Add payments, Add charges, Get status updates,; Get/update case details, Add/update name & address details, Add/update contact details, Add new customer to existing case.; ; Our API is a REST API and documentation is available on request and/or via Postman Collections.
• API documentation: Yes
• API documentation formats:
  • PDF
  • Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: DebtView is highly configurable, users can configure most items within the platform, from renaming standard list items, creating input file mapping through to completely bespoke workflows. In addition users can create custom database field values which can be grouped by field sets.; ; DebtView can also be used as a "white label" platform; and badged with the User's name and logo.

Scaling

• Independence of resources: Each customer has their own App Service within a shared environment. We carefully monitor resource usage and receive alerts if thresholds are breached. In such cases we either move the service to a new environment or scale up as required.

Analytics

• Service usage metrics: Yes
• Metrics types: We can provide custom metrics on request.
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Mark to complete
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: There are many ways to export data in DebtView. For example, the standard reports can be exported to CSV or Excel, as can ad-hoc queries and search results. In addition, if you need to export data on a fixed regular basis (e.g. sending a file to an external party), we can usually automate this.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • XML
  • XLSX
  • TXT (Fixed Width)
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • XML
  • API

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Other
• Other protection between networks: We utilise Role Based Access controls and separation of duties to ensure only fully qualified personnel have access to buyers resources.
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Our standard SLA is 99% business hours availability with no refund option. Customers can optionally subscribe to our Advanced Business Continuity package for enhanced SLA including Service Credits.
• Approach to resilience: Available on request
• Outage reporting: These will be reported by email

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: Integration with Microsoft 365/Entra ID
• Access restrictions in management interfaces and support channels: Access is controlled through Azure AD/Entra ID authentication. Multi Factor Authentication and Conditional Access Policies are enforced at every sign-in. In addition Role Based Access Control (RBAC) is in place to restrict access to specific resources.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Description of management access authentication: Integration with Microsoft 365/Entra ID

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Nettitude Ltd
• PCI DSS accreditation date: 2019
• What the PCI DSS doesn’t cover: As a Software Developer, we are 'SAQ-D Service Provider' certified. No cardholder data flows exist within the environment, with all card payments utilising a payment page hosted by a third-party service provider. The following are excluded on the basis that all of the infrastructure is managed by Microsoft Azure, who are PCI compliant. Requirement 1, 3, 4, 5, 7, 9, 11 and Appendices A1 & A2
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Cyber Essentials Plus
• Information security policies and processes: We are in the process of adopting the ISO270001 ISMS standard and the recommended policies and procedures.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Configuration and changes are managed in our ITIL compliant service desk. Cloud assets, are managed directly in the Azure Portal using native configuration and change tools. Only specific roles are permitted to make changes to configuration items.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerabilities are managed with Microsoft Intune Endpoint Management, Defender for Cloud, Defender for 365 & Defender for Endpoints. This combination of tools provides an automated approach to vulnerability management. When a vulnerability is identified, automated alerts notify the asset owner and a remediation plan is put in place.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Our vulnerability management systems (MS Defender), include Threat detection and alerting at multiple layers. Any detected threats and/or vulnerabilities are forwarded to our Service Desk for assessment. Management and escalation (including to Microsoft security analysts if required) is managed via Microsoft Defender for Cloud platform.
• Incident management type: Supplier-defined controls
• Incident management approach: Incidents are managed in our ITIL compliant service desk. Incidents are recorded, triaged and prioritised in accordance with the ITIL Incident Management Process.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Other
• Other public sector networks: Civil National Business Centre

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Microsoft Azure has been 100% carbon Neutral since 2012 and has a firm target for its data-centers to be powered by 100% renewable energy by 2025 and to be water positive by 2030.; ; Indigo-Cloud operates a digital-first methodology, with most meetings (whether internal or external) offered via online means (Teams, Google Meet etc.) only then moving to in person / on-premises where required or for collaborative effectiveness.; ; Any company travel is prioritised for public / mass transit means, with car-sharing as the default fallback method. Single vehicle travel is only used in exceptional circumstances.; ; Low energy appliances are used and plastic, paper and refuse recycling processes are in place at the Indigo-Cloud offices as standard.

  Covid-19 recovery

  As a fully cloud-based SaaS service operating a platform accessed via a web-browser, Indigo Cloud was particularly well placed to ensure that our clients were able to move to mass home-working during the Covid 19 lock-down periods with the least possible impacts.; ; Having no on-premises requirements or physical servers / desktops there was no need to engineer a solution to a workforce moving to disparate locations. ; ; In addition, there are no operational changes to be made for those companies still operating under a remote first policy or looking to migrate team members back to centralised on-site working.

  Tackling economic inequality

  Following on from the global Covid-19 pandemic and the subsequent economic slow-down, Indigo Cloud has looked to help promote growth, efficiency and support for smaller SME / start-ups by creating a new tier of subscription for the DebtView platform.; ; By having a smaller minimum user volume, but still allowing access to key features of the DebtView platform, we are looking to assist those 'smaller' / SME companies who may not normally be able to access the functionality available to larger or mature companies.

  Equal opportunity

  Leaving aside the standard, legal requirements for the purposes of explaining this point, Indigo-Cloud believes that people want to work for employers with demonstrably positive employment practices that will make them feel valued at work.; We pride ourselves on having an inclusive and open culture in the workplace, where everyone can feel valued and so will want to make their best contribution to the business as a whole. To foster this, we have always looked to recognise inclusion and diversity in recruitment and (more importantly) in the retention of skills and talent required to remain a competitive organisation.

  Wellbeing

  Indigo Cloud promotes a positive mental health & well-being atmosphere , with team members allowed to take personal time, health breaks and time-outs throughout the working day. ; ; There is a key focus on building strong interpersonal relationships, with a programme of social events and interactions always in play. As a responsible employer we recognise the importance of the work/life balance on employee wellbeing and promote the importance of the same at every relevant opportunity.

Pricing

• Price: £85 to £125 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at <removed>@06045882-d40e-4af9-aa23-c93889060ed6.com. Tell them what format you need. It will help if you say what assistive technology you use.