Th3rd Curve Ltd

Amplify: Training software solution

Amplify is a web-based tool that efficiently delivers organisational training by engaging learners through proven, science-based training features and tools, such as bite-size learning, social learning, memory retention and gamification. The training content can be highly personalised to individuals or role groups and readily supports classroom-based learning.

Features

• Adaptive learning - custom learning experiences based on existing competency
• Blended learning - supporting technology taking advantage of online/offline resources
• Retention training - lessons delivered at intervals until knowledge retained
• Learning pathways - customised learning journeys to meet individual needs
• Microlearning - learning content in bite-sized chunks
• Accessibility - content delivery via PC, Tablet, Phone App
• Social learning and gamification - increasing learners' engagement and learning
• Assessment and Assurance - practical and virtual assessment of competence
• Certification, accreditation - of training courses custom to client needs
• Continuous learning enabled through push and pull content delivery

Benefits

• Time to competency halved with faster onboarding, skill acquisition
• Single-concept learning: Focusing on one concept enhances engagement, skills retention
• Efficiency, completion rates: microlessons, 3-7 minutes, achieve 82% completion rate
• Provides learner insights into knowledge retention, application, enabling risk identification
• Learner performance assessments, balanced of technology and human touchpoints
• Tailored solutions addressing challenges in learning and business transformation
• Prescribed and assured learning pathways with accreditation via knowledge assessment.
• Achieve measurable improvements in organisational performance through competency development
• Flexible, habitual learning integrated into daily routines without workflow disruption.

£59 to £188 a user a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@th3rdcurve.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

736586580658615

Contact

Niall Faris
07989 437362
info@th3rdcurve.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: None
• System requirements:
  • Internet connection
  • Modern web browser on PC, tablet or mobile

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: An initial response will be given within two hours and a solution (if needed) will be started within 24 hours.; Support through the help desk is available during office hours (09.00 hrs to 17.00 hrs Central European Time on working days). Outside these hours, contact can be made with the emergency telephone number for Priority 1 reports only.; On receiving a report, ANewSpring will assign it a priority and launch a solution process. Incident response is provided between 1-8 hours depending on report priority: critical service impact; major service impact; moderate to no service impact.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Helpdesk and ticketing system services are included in the licence costs. This includes an online ticketing system with a back office support team and dedicated phone support is also available. A technical account manager or cloud support engineer can be provided if required. An interactive knowledge centre, comprising administrator and user helpguides and support, is supplied within the software as standard at not extra cost.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: New users follow our established Success Framework, a learning journey that helps them get the most out of the platform. We schedule up to three onboarding virtual training sessions and provide an academy of on-demand training courses, guiding users through each aspect of the training platform. An in-depth knowledge base is also available to assist people in mastering the various tools within the platform. Onsite training can be provided as required.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: All user data and results can be exported in .csv format. All content types (ie PDFs, JPEGs etc) can be exported as XML and HTML and bulk downloaded into a zip file.
• End-of-contract process: All customer data, content will be extracted and provided to the customer upon request. Any documentation that supported the deployment of the software will also be provided. This not part of the licencing costs and would be charged at a day rate as part of our implementation service. Additional termination terms are discussed and agreed upon based on the service provided. We ensure flexibility and alignment with the customer's needs throughout the contract period.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
  • Windows Phone
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The mobile application is used by learners to engage with learning activities. Full software functionality is provided in the browser-based version.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The API should be called using HTTPS. It accepts HTTP requests with the GET and POST method. We advise POST requests if you also want to send data. The encoding of the parameters should be UTF-8. To get access to the API, it is required to use an API key. An administrator of the learning environment can create an API key or multiple API keys within the platform tools. The API allows for management of users, user groups, learning sub-environments, subscriptions, courses, bundles, calendar items, access codes, events and profiles. The API is also used to request login tokens for Single Sign-On (SSO).; ; SAML is also supported allowing users to log in from a remote system; Webhooks are also supported. The format of the message can be either JSON (application/json) or XML (text/xml). The encoding is UTF-8.; Courses can be embedded in any external system that supports AICC, version 3.5.2.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
  • Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The software cannot be customised however it is highly configurable.; Various roles such as instructor, author, designer and administrator can be assigned to users to allow them to use the tools. Dependent on the roles, users can use design tools and content creation tools to customise the following elements to reflect the training requirements of any organisation: Learning content, learning journey and/or course design; visual identity, design, layout and branding of the platform.

Scaling

• Independence of resources: The solution is provided on fully scalable platform and infrastructure. ; The deployment is designed and sized such that the system will provide a responsive end user experience to all of the proposed users of the system. The software is multi-tenant (all customers make use of the same software), but every learning environment is linked to its own database. This way, the data and performance of different environments remain strictly separated.

Analytics

• Service usage metrics: Yes
• Metrics types: A broad range of metrics are tracked of learners/users progress on their learning journey and course progress and completion, such as learning retention, course progress, completion, certificates, scores, leader boards, engagement metrics. A live status of the overall software availability and usage is also available.
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: ANewSpring

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: Data security: Separate database per learning environment. The learning platform is multi-tenant (all customers make use of the same software), but every learning environment is linked to its own database. This way, the data of different environments remain strictly separated and there is no chance that (e.g. as a result of a programming error) customers can view another customer's data. ; Encrypted storage: The databases (and their backups) for all learning environments, as well as the file storage linked to them (in Amazon S3), are stored encrypted using the AES-256 algorithm.
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: There are various tools within our training platform that allow export of user data and learning content types. Export files types are XML, .ZIP, CSC, IMS-QTI, SCORM, LTI, MS WORD.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Questions within our platform can be exported as IMS-QTI standard
  • Content can be exported as HTML, Microsoft Word and SCORM
  • User data can be export in .CSV format
  • Moderation statistics (learner progress) can be exported in .CSV format
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Text
  • Image
  • Audio
  • Video
  • Documents and Presentations
  • HTML
  • Web
  • SCORM

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: ANewSpring guarantees a standard average minimum availability; of 99% per month during and outside office hours. ANewSpring aims; for a standard average minimum availability of 99.9% per month; during and outside office hours.; ; ANewSpring will endeavour to ensure the uninterrupted availability of and a rapid response time from the software, and to ensure access to client content, all in accordance with the Service Level Agreement and User Agreement provided. ; ; Unless the damage is due to a violation of the Service Level Agreement, ANewSpring is not liable for any damage suffered in relation to the non-availability, poor response time, or loss or unavailability of client content. ; ; The web application contains links and integrations with online services of independent third parties, such as Google Documents, Office Viewer, YouTube for videos and Slideshare for presentations. ANewSpring does not have any influence on the manner of services provided by such third parties, and gives no guarantees regarding their quality, availability or response time, but will endeavour to keep the links and integrations functioning.
• Approach to resilience: No single point of failure: All parts of the production environment have a redundant setup, keeping the learning platform operational should any part fail. The following systems are redundant: load balancer, web server, application server, and database server. ; The application servers are configured with session replication, preventing the user from noticing (i.e. by having to log in again) the switch to the other application server in the case of a failure of one of the application servers. ; The database servers are configured with replication, resulting in very little or no data loss in case one of the database servers fails.; ; Additional information on datacentre setup is available upon request.
• Outage reporting: Monitoring and alerting: The availability and functioning of all servers is monitored on a 24/7 basis. If a problem is detected, it will either be solved automatically (e.g. by moving the (virtual) server to different hardware) or, if not, it will be handled manually. Because the traffic is redirected to the other server automatically, users will experience only a short or no interruption of service. Furthermore, the logs of all services are monitored and any security-related events are forwarded to an issue and incident tracking system, where they will be assessed by a support engineer. If any deviations are observed, appropriate action will be taken. For example, should a port scan or numerous (unsuccessful) login attempts be detected, this will result in an IP ban. Should a successful hacking attempt be detected, the incident response plan will be put into operation.; A public dashboard is available and a link to it will be supplied to the client. Although no interruptions to service would be expected, email alerts would be sent if any communication was needed regarding service availability.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Servers are within a professional hosting environment with the ; following properties: 1) Only authorised employees have access to the locked cabinets that hold the servers. 2) Access is secured 24 hours a day; access granted only to people on a 'white list' carrying their identity cards. Additionally, at the termination of employment, all email accounts, file server accounts and application accounts of a (former) employee are deleted or deactivated. In addition, all administrative passwords that were known to the (former) employee are changed.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: The Amplify training platform provided by ANewSpring (as well as the hosting provider that manages the production environment) is ISO 27001 certified, guaranteeing processes around information security. From these (continuous) processes, business risks are identified and appropriate control measures are determined and implemented. This includes risks pertaining to the learning platform and technical control measures to limit/eliminate these risks.; ; More information on information security governance, policies and procedures are available upon request.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: All potential software and middleware changes are logged in a change control register, assessed for any potential security or performance impacts and reviewed by a Change Approval Panel. Only approved changes are deployed to the production environment following successful local and test environment testing. Changes are applied to one of two production servers (the second being a redundant setup) and testing is completed before redirecting traffic to it and then applying the changes to the other server. The configuration register is updated to reflect implemented changes to the configuration baseline and allow service components to be tracked through their lifetime.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: A secure development checklist, based on the OWASP Proactive Controls, is followed during all software development to prevent the introduction of vulnerabilities in an early stage. All source code changes are reviewed by at least one other developer and/or the CTO. Vulnerabilities are also assessed and the change is not accepted if one is detected or suspected. ; All requests to the platform are inspected by a so-called 'web application firewall' (in the form of Amazon Web Services WAF). This blocks request patterns that are known to try and detect or exploit vulnerabilities.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: The production servers operate in a network that is monitored continuously by a so-called 'network based intrusion detection system' (in the form of Amazon Guard Duty). This system analyses all traffic across the network and raises an alarm if any malicious activity or unauthorised behaviour is detected. An incident response plan is in place, describing how (security) incidents are dealt with. Details include who is contacted in case of an incident and how the communication is done with the rest of the company and the customers. Additional information available is upon request.
• Incident management type: Supplier-defined controls
• Incident management approach: An Incident Response Plan is in place, describing how (security) incidents are dealt with. Details include who is contacted in case of an incident and how the communication is done with the rest of the company and the customers.; Users can submit a report by phone or e-mail. On receiving a report, ANewSpring will assign it a priority and launch a solution process. An incident response is provided between 1-8 hours depending on the report priority: critical service impact; major service impact; moderate to no service impact.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Th3rdcurve believes in and is committed to being an environmentally friendly company. We do not operate company vehicles and we encourage our staff to use public transport when travelling to both the office and to our clients' offices or sites. We encourage remote working and all our roles are hybrid. We participate in the Bike2Work scheme to encourage our staff to cycle instead of using motorised public transport. Our office is located in a shared office space, which is committed to climate change and decreasing greenhouse house emissions and being a net zero carbon business by 2030. Year on year, it has reduced its overall energy consumption, by removing gas boilers, installing LED lighting and efficient heating and ventilation systems. We ensure our office waste is separated and recycled accordingly. We are a majority paperless company, with printing used only as a last resort or legal requirement. We discourage the use of a printer if work can be done electronically. Th3rdcurve works with clients and suppliers to promote a focus on climate change. This has included the design and implementation of reports and dashboards on large infrastructure projects to monitor and drive their commitments to the environment, notably compliance with environmental and energy efficiency requirements.; We will continue to seek further opportunities and improvements, wherever possible, to tackle climate change to try to safeguard our planet for future generations.

  Covid-19 recovery

  Throughout COVID-19 all our roles were fully remote and now have transitioned to a hybrid working model. During lockdown, we supplied our staff with office equipment to set up a functional and healthy workspace at home. We set up Slack, a messaging app for that connects people to business-related information and discussion. To retain morale and grow team bonding, we used Whatsapp to stay in regular social contact and we organised (non-compulsory) after work virtual team quizzes. We also encouraged our staff to think of each other during the lockdown and look out for signs of anyone that seemed to be withdrawn or struggling.; ; When it was required, we implemented social distancing and face masks in line with government guidance. We are proud that, despite being a small company, we were able to flex and adapt to the situation to provide continued services to our clients to work in a fully virtual and then later hybrid way. We did not need to use the furlough scheme - we continued to keep everyone working and paid.; ; Additionally, once hybrid working began, we fully supported the decision of a member of staff who wanted to continue to fully work from home to protect their physical and mental health.; ; In early 2021, a small team took part in Race The Thames where, through indoor rowing, cycling and running, covered a distance of 346km and raising £2,822 for charity in just one week.

  Tackling economic inequality

  Th3rdcurve runs both graduate and internship schemes. For our first graduate scheme, we partnered with GradFuel and the Kickstarter Scheme, which is for 18–24-year-olds on universal credit. For our internships, we approach a variety of universities and courses across the UK to ensure a diverse range of candidates. ; ; We support our staff in undertaking additional training and professional qualifications. We encourage our staff to share their knowledge and expertise by training other members of staff regularly and hosting lessons learnt sessions. ; ; We have a corporate social responsibility partnership with Date Sultan, a company that sources premium dates with ethical and Fairtrade purchasing at the heart of what it does, ensuring that everyone in its supply chain is paid a fair living wage and isn't a victim of modern slavery.

  Equal opportunity

  Th3rdcurve employs individuals from a diverse range of social, economic and ethnic backgrounds. We firmly believe that having a diverse and inclusive workforce, where people are valued for their individuality – in fact, ‘individuality’ is one of our company values – brings a wealth of differing experiences and perspectives that strengthen the services that our company provides. We currently have a gender ratio of 40% females, which we pride ourselves in as this much higher than the industry average.; ; We have a partnership with The Diversity Hut, a social enterprise that actively and positively promotes diversity and inclusion, and equips companies with the knowledge and tools to attract and retain diversity, therefore increasing productivity, profitability and innovation.

  Wellbeing

  Th3rdcurve is fully committed to employee wellbeing. We pride ourselves in being proactive and campaigning for healthy mental and physical health. We have appointed a mental wellbeing champion who regularly provides insight, tips and help for our employees’ wellbeing through regular bulletins and events.; ; We provide SAD lamps to help our team through the winter months and have an internal guide on supporting mental wellbeing. All staff members have access to wellbeing portals via Vitality and UNUM, which has a 24/7 employee assistance helpline. ; ; We run wellbeing days where the whole company gets together to focus on our mental wellbeing and support each other. We encourage our staff to take part in charity events, particularly focused around wellbeing and mental health charities. For example, we have participated in the Race the Thames rowing competition and The Lost Hours Walk, both supporting CALM (Campaign Against Living Miserably) charity. We also ran an internal step competition to encourage our staff to walk more and get outside for the benefit of their mental and physical health.; ; Throughout the year we run anonymous surveys to get feedback on our employees’ wellbeing and gather suggestions for other events or improvements. We encourage our employees to meet up in person to ensure there is connection across the team as we know this is beneficial for wellbeing especially with hybrid working.; ; We are particularly mindful of our staff’s wellbeing when individuals are embedded within a client organisation. Each commission has a director-level commission lead who is responsible for the team's wellbeing. Additionally, everyone meets regularly with their line managers, where a discussion on wellbeing is part of the standard agenda. We also have a ‘buddy’ system, where our staff have a nominated colleague to contact for advice, encouragement and to ‘check in’ with each other informally.

Pricing

• Price: £59 to £188 a user a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: A 30-day free trial is available. This includes a demonstration of all features and is based on sample training content, as well as access to authoring tools to create own training content.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@th3rdcurve.com. Tell them what format you need. It will help if you say what assistive technology you use.