SkillGate Limited

SkillGate Online Courses (XST)

XST allows SkillGate’s Infinity range of courses to be used on any SCORM compliant LMS.

Courses include practically every subject required for professional development with online courses in mandatory and self-development subjects.

Using SmartAuthor, courses can be edited or linked to create unique learning paths.

Features

• Approximately 1,000 online courses in core subjects.
• Courses previewed on the web before uploading.
• Simple upload/installation process.
• SmartAuthor supports programme editing and authoring .
• Tutor support/marking of assignments for Certificate awards.

Benefits

• A 'one stop shop' for professional development online courses.
• A simple upload puts our courses on your LMS.
• Tailor learning objects to create your own learning courses.

£5 to £10 a licence a year

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at James.page@skillgate.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

722859554020703

Contact

James Page
01730815670
James.page@skillgate.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: None
• System requirements: Modern browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 1 working day
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: No
• Support levels: Please refer to SkillGate's full service level agreement, but in summary SkillGate offers four levels of service subject to different pricing, which depends on the number of users and the products in use. ; ; Bronze - Level 1. This is the basic level and covers system maintenance and errors; essential training for administrators; and assisting administrators adding and remove users from the system.; ; Silver - Level 2. As per Bronze plus full service support for administrators via telephone and work order system.; ; Gold - Level 3. As per Silver plus telephone based help service for Users.; ; Content. Support for content development and management.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: SkillGate has delivered learning management systems to hundreds of organisations over the last 20 years, and as such have developed a tried-and-tested approach to a smooth implementation.; ; Communication between the client and their dedicated SkillGate account manager is key to a successful implementation and as such is at the forefront of our approach. Regular conversations to discuss progress and configuration decisions are essential and would be scheduled.; ; Another key element is user acceptance testing (UAT), providing the client with an environment where they can familiarise themselves with the system and ensure that the system serves its purpose in a real-world scenario.; ; A typical SkillGate implementation plan consists of three branches:; 1. System Setup; 2. Testing and Training; 3. Launch; ; SkillGate begins the process with an introductory conversation with your account manager who then provides a checklist outlining the optional elements of the SkillGate LMS, which your account manager will go through with you.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Data would typically be transferred as an encrypted data file. SkillGate will hold client data for as long as the migration phase requires. SkillGate handles all client data in accordance with its data protection policies.; ; The SkillGate LMS can export data reports in CSV format. There is an exhaustive selection of reports that can be created to give comprehensive export data.; ; Manual Export; The administrator can log into the system and following the links into; “Activity Reports” can select the type of report required, then specify both the date range and the data that is needed in the final CSV. The report settings can be saved for future use and either an html or CSV report is generated.; ; Automated Export; The same steps are taken for the automated report but at the end of the; process is the option of how often the report is to be generated and where it will be stored for the user to recover when required. Options to generate; and save the CSV are as follows; ; 1. Generate as a unique URL for simple web access; 2. Store on the SkillGate SFTP server for retrieval; 3. Transfer over to the customers own SFTP server.
• End-of-contract process: SkillGate offers full support with migration to facilitate contract exit at no additional charge. ; ; Data would typically be transferred as an encrypted data file. SkillGate will hold client data for as long as the migration phase requires. SkillGate handles all client data in accordance with it’s data protection policies.; ; SkillGate will save personal data for as long as required by the Data Controller subject to duration specified in the contract. Without specific instructions, data is held for a minimum of five years after the User is archived on the system.; ; Permanent deletion may be completed after that time, or at any time, on instruction from the Data Controller.; ; The designated account manager would be the responsible person for all aspects of the migration from SkillGate.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There is an app for Android and Apple devices, but the service will work with a mobile browser, the service will reformat for the mobile device screen, but the functionality of the service is the same.
• Service interface: No
• User support accessibility: WCAG 2.1 AA or EN 301 549
• API: No
• Customisation available: Yes
• Description of customisation: The service can be branded to the clients requirements (subject to review), this includes the look and feel, branded courses, custom URLs and email addresses. Customisation is discussed as part of the service purchasing process and carried out by SkillGate.

Scaling

• Independence of resources: We use system monitoring and capacity planning along with data segregation to ensure users are not impacted by the action of others on the service.

Analytics

• Service usage metrics: Yes
• Metrics types: SkillGate includes a suite of reporting functions covering User activity; intelligence gathered; and administration activity logs. Reports can be saved and distributed. Reports are typically provided in online dashboard formats and in HTML, CSV and Excel formats for download.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: The SkillGate LMS can export data reports in CSV format for interpretation by external systems such as HR or Reporting tools. From the Activity Reports option there is an exhaustive selection of reports that can be created to give comprehensive export data. Currently there are 2 methods to retrieving this data; manual or automated.
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: IP Address whitelisting

Availability and resilience

• Guaranteed availability: SKILLGATE aims to ensure that the System is available to Users for at least 99% of the Business Hours, aggregated over any calendar month. Refunds for failure to attain this level are subject to agreement on performance targets which may vary and can be subject to client specification.
• Approach to resilience: Available on request
• Outage reporting: The primary method for communicating outages is that the client account managers will email or phone the list of emergency contacts that are held on file. Other methods that are available, include:; ; A Public Dashboard, Email/Phone Communication, Alert email subscription

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Clients have the ability to manage their own service, this is controlled via user rights and user access control systems. SkillGate staff have separate accounts for system management and support, that they do for normal line of business work. There is an established process for enabling staff management access to any client service and minimum rights approach is taken, along with dual authorisation and regular reviews.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: QAS International
• ISO/IEC 27001 accreditation date: 15/04/2022
• What the ISO/IEC 27001 doesn’t cover: Anything that is excluded from our statement of applicability version 1.4, dated 29/3/22
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: Cyber Essentials
• Information security policies and processes: Supplier Security Policy, Mobile Computing Policy, Acceptable Use of Assets Policy, Clear desk and clear screen policy, Password Security policy, Data protection Policy, Secure Systems Engineering Principles, Change Management Policy, Access Control Policy, Physical Security Policy, Business Continuity Policy, Backup and Restore Policy, Software development policy, and Patch Management Policy. Each policy details responsibilities and reporting procedure for non compliance. There is an internal audit procedure that is followed to ensure that the policies are being followed, along with an external audit to ensure compliant with ISO 27001

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: A Director is responsible for the authorisation of changes. A changes impact is risk assessed. Any changes are planned, reviewed and carried out in a manner that would not present a security failure and all concerned personnel should be informed of the nature of the change. Version control logs are maintained. A recovery process is developed and approved to be used in the event of change failure. Where possible the environment for the change should be isolated from day to day operating systems. Where version upgrades through patches or software changes are involved, they are be fully tested before release.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Any new threats or vulnerabilities that are identified or SkillGate are alerted to, go through a risk assessment process. During this process, the risk to the solution is discussed and assed by the risk assessment team. Dependant upon the risk to the solution a priority is assigned and depending on this, a solution to minimise or remove the risk is worked upon. Once the solution is complete it goes through a testing and change control process before being implemented into the live system. A number of sources for security and threat intelligence, including updates from vendors and 3rd party suppliers.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: SkillGate uses specialist software and it’s own developed systems to carry out analysis and reporting on malicious activity. Our hosting provider also monitors for malicious activity and alerts SkilGate of any identified possible activity. Once a potential compromise is identified, it is assessed and classified and responded to accordingly.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: As part of our ISO 27001:2013 documentation there is an Incident Management procedure that all staff are required to read. ; All users of the information services are required to note and report any observed or suspected security weakness in systems or services. Reporting should be to the Information Security Management Representative as quickly as possible, then awaiting a management decision on appropriate action.; An Incident log is maintained for all incidents and detailed report for an incident is produced

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Tackling economic inequality:

  Tackling economic inequality

  SkillGate has created a library of tailored training modules, designed to help support individuals in their day-to-day lives, with topics ranging from interview skills and CV writing to managing a household budget and coping with stress. The Next Steps course library is intended to provide the type of skills development that is often overlooked by society. The library is supported by a SmartFeed that delivers microlearning bites on a weekly basis by email on varied topics. SkillGate offers significant reductions and pro bono offerings on this package subject to specification, in order to contribute social value.
• Wellbeing:

  Wellbeing

  SkillGate's Wellbeing course library contains a wide range of resources to improve personal wellbeing. Some examples of course titles:; ; Achieving Work Life Balance ; Are you feeling SAD? ; Beat the Common Forms of Stress ; Being Aware of your Unconscious Bias ; Change Bad Habits to Become Happier ; Coping with Isolation ; Counting Sheep - How to Get a Great Night's Sleep ; Deskercises for Wellbeing ; Develop the High Self Esteem Habit ; Do You Want to Transform Your Leadership Capability? ; Feeling Stressed? Try Mindfulness ; Five Ingredients for a Flourishing Life ; Getting Rid of Stress! ; Relax - How to Switch Off After Work ; Remove Stress - Focus and Centre Yourself ; Reward Yourself with a Digital Detox ; The Art of Being Patient ; The Power of Positive Reframing ; Think Differently - The Reframing Matrix ; Wellbeing – The Science of Happiness

Pricing

• Price: £5 to £10 a licence a year
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: It is normal for us to set up demonstration systems to allow interested organisations to examine the main features of the system in their own time, or with our account managers in support.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at James.page@skillgate.com. Tell them what format you need. It will help if you say what assistive technology you use.