edison365

edison365 Standard

Perfect for companies wanting to manage new initiatives, while introducing business case development. Build bespoke templates, assess feasibility throughout your portfolio, and present all the findings you need for confident stakeholder buy-in. Our Standard License turns those ‘Aha moments’ into strategic decisions.

Features

• Configurable templates, forms and approval stages
• Personalized access depending on individual permissions and approval rights
• Real-time portfolio reporting
• Business case assignment and ownership
• Complex workflows
• Periodic and standard tables
• Personal dashboards
• Available across multiple devices and browsers
• Built on Microsoft
• Includes everything our Base license offers

Benefits

• Transparent and standardized way to produce business cases
• Immediately identify bottlenecks and accelerate approval
• Visibility of financial and resourcing requirements
• Drag-and-drop business case templates
• Fully configurable and aligned to your own processes
• Entire audit trail of each business case
• Easy to adopt engaging user interface
• Foresee risks and challenges
• Easily identify ROI

£5.25 to £25.00 a licence a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ivan.lloyd@edison365.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

736590942144810

Contact

Ivan Lloyd
07710132013
ivan.lloyd@edison365.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: Microsoft Azure AD Tenant
• System requirements:
  • Modern Browser
  • Lite or Full edison365 License
  • Azure Entra ID Admin Allowance

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our Help Desk is open Mon-Fri 9am until midnight UTC. Response time as follows: Priority 1 defect- within 1 hour Priority 2 defect- within 1 hour Priority 3 defect- within 4 hours More information can be found here: https://support.edison365.com/service-level-agreement
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: NVDA
• Onsite support: No
• Support levels: Our support levels are consistent for every user of edison365 and adhere to our Service Level Agreement- https://support.edison365.com/service-level-agreement. We offer additional, paid support at varying levels via our Customer Success Support Services. These range from consultancy to a fully managed service https://edison365.com/support-services/
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: User documentation available via https://support.edison365.com/
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: By retaining customer data for 30 days; from the end date of the agreement, we give the customer ample time to review and retrieve any crucial information before it is permanently deleted.; In the scenario that, the database needs to be deleted earlier than the specified timeframe, the customer can simply request the deletion when terminating the subscription agreement. This flexibility puts you in control and allows you to align the deletion of the database with your specific requirements. Detailed information can be found: https://support.edison365.com/retention-policy
• End-of-contract process: The customer owns and has full access to all edison365 data both during and post termination. The service itself is proprietary and upon termination the service provision ceases but the data access remains

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Browser experience is optimised for mobile resolutions. edison365 does not have a native mobile application.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Modern, consistent, fully-configurable.; ; Dedicated areas for Administrators to configure all aspects of the service. Personal areas for users to manage ones workload. Each capability has its own access point. Shared homepage experience.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: NVDA (Desktop screen reader); VoiceOver on iOS (Mobile screen reader); Windows Magnifier (Screen magnifier)
• API: Yes
• What users can and can't do using the API: Edison365's Public CRUD API is accessible to any user using the customer's tenant. Access is managed by edison365. The API enables users to read data and produce detailed insight reports using their chosen reporting tool- edison365 provides default PowerBI reports for any customer to use. The API also enables connectivity with other data sources allowing users to push and pull data to and from the application. Documentation can be found here https://support.edison365.com/azure-api-portal
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Administrators (assigned by the customer) can edit large elements of the application such as: - Fields and data entry - Tables - Forms - Workflows and processes - Templates - Access and User roles - Resource Management - Calendars - News and events - Record Cards - Triage and review metrics/processes - Idea submission, Challenges, Business Cases, Projects, Programs and more edison365 can be customized in whatever way suits the end user to meet their exacting needs. There really is very little that cannot be customized

Scaling

• Independence of resources: Edison365 ensures all customers are properly provided help through both the Help Center with dedicated FAQs and a Support team covering hours in the US, Australia, Europe and Asia to maximise promptitude in answering questions. https://support.edison365.com/service-level-agreement

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Using modern APIs customer data is accessible to the customers easily and works with reporting software like PowerBI or Tableau.
• Data export formats: Other
• Other data export formats: API
• Data import formats: Other
• Other data import formats: Microsoft Project Plans (.mpp)

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Other
• Other protection between networks: All services (except for the publicly accessible endpoint) are within a VPN that is not exposed to the outside world Firewalls are used to monitor and control incoming and outgoing network traffic Data Segregation - each tenants data is isolated from others Data encryption - Sensitive data is encrypted Encryption at rest - Data is encrypted at rest for relavent services Strict access control measures - only authorised users have access to services
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Software Service monthly uptime: 99.99% https://support.edison365.com/service-level-agreement
• Approach to resilience: Edison365 is a solution that has been meticulously developed within the robust and secure Microsoft Azure cloud infrastructure. By leveraging the power of platform as a service (PaaS) components, edison365 is able to deliver exceptional performance, scalability, and reliability to its users. Built on the solid foundation of Azure's globally distributed data centers, edison365 is hosted in multiple Azure regions, specifically West Europe, US (Central), UK (South), and Australia (East). This strategic approach ensures that the service remains highly available and resilient, even in the face of potential issues in one of the regions. In the unlikely event of any disruption, users will seamlessly be redirected to another region through the intelligent routing mechanisms implemented in the Azure infrastructure. https://support.edison365.com/disaster-recovery-policy
• Outage reporting: Email alerts: *Excludes scheduled downtime (of which the Publisher will give at least one (1) week notice and which will be targeted to not to exceed forty-eight (48) hours in any twelve (12) month period). https://support.edison365.com/service-level-agreement

Identity and authentication

• User authentication needed: Yes
• User authentication: Identity federation with existing provider (for example Google Apps)
• Access restrictions in management interfaces and support channels: Access to customer specific data stored within the service is highly restricted. edison365 takes data privacy seriously and implements strict controls to safeguard customer data. In the event of a support escalation that requires access to review the data, edison365 follows a procedure that prioritizes customer consent. Written consent is requested from the customer by the edison365 team before proceeding with data access. This ensures that the customer maintains control over their data and has the final say in granting access. https://support.edison365.com/data-management-policy
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Dedicated link (for example VPN)

Audit information for users

• Access to user activity audit information: No audit information available
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: QMS
• ISO/IEC 27001 accreditation date: 20/03/2024
• What the ISO/IEC 27001 doesn’t cover: Edison365 is a remote working organisation, therefore the certification does not cover physical security. edison365 does not manufacture physical products, therefore manufacturing is not included.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Edison365 conducts internal audits to ensure processes and policies are followed. This is also reviewed during external audits. A list of our information security policies and procedures are below, and they are governed by the Information Security Management System, audited through ISO27001. edison365 Acceptable Use Policy edison365 Access Control Policy edison365 Anti-Piracy Policy edison365 Backup Policy edison365 Clear Desk Policy edison365 Cloud Computing Policy edison365 Complaints Policy edison365 Cryptographic Policy edison365 Data Protection Policy edison365 E-communication & Internet Acceptable Usage Policy edison365 Hiring Policy edison365 Information Classification Policy edison365 Information Exchange Policy edison365 Information Security Incident Response Procedure edison365 Laptop Policy edison365 Leaving Policy edison365 Network Systems Monitoring Policy edison365 Password Policy edison365 Personal Data Breach Notification Procedure edison365 Remote Access & Mobile Computing Policy edison365 Retention of Records Procedure edison365 Secure Development Policy edison365 Security Incident Reporting Policy edison365 Security Policy edison365 Social Networking Policy edison365 USB Memory Sticks Usage Policy edison365 Virus Protection Policy edison365 Whistleblowing Policy

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Changed management is managed through our Change Request Procedure. Changes are submitted, reviewed and approved/rejected through a committee. All changes are monitored during implementation, with any roll back procedures noted. All change requests are in writing, with detail on impact of product, impact on security and impact on service detailed in full. All communication of changes are included within the request.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Edison365 manages and maintains a risk analysis of any potential threats or risks to services. This is reviewed at least biannually, or when there are changes to suppliers, services or governance.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Edison365 manages and maintains a risk analysis of any potential threats or risks to services. This is reviewed at least biannually, or when there are changes to suppliers, services or governance.
• Incident management type: Supplier-defined controls
• Incident management approach: Edison365 has an incident management procedure, in line with the business continuity plan. This is documented in the edison365 Security Incident Response Procedure. Incidents can be detected through customers, employees or self detection with tools and software used. Once notified of an incident, the Incident Response Team for edison365 follows our incident response procedure. Defined roles and responsibilities are included within the document. Interested parties or those affected for the incident will be communicated with, in accordance to the communication plan. edison365 tracks all incidents in an incident report.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fighting climate change edison365 is ISO 14001 certified, which sets out the criteria for an environmental management system. It maps out a framework that a company or organization can follow to set up an effective environmental management system. The Company are also committed to becoming carbon neutral by 2025. This will be monitored in line with the Environmental Objectives register with the Environmental Aspects and Impacts Register.

  Covid-19 recovery

  Covid-19 recovery In response to the COVID-19 global pandemic and in line with our business continuity plan, edison365 pivoted to a fully remote working environment to keep our employees and customers safe as well as operational. Additionally, the work we are doing with our customers on a daily basis helps them address their own COVID-19 issues. We have also assisted Healthcare Organizations by providing discounted licences and services to support their relief and recovery efforts.

  Tackling economic inequality

  Tackling economic inequality edison365 supports innovation and transformation across organizations worldwide, big and small, by offering substantial discounts. For example, we provide discounted licences and services to non-profit organizations, to enable our customers to access software and knowledge that will allow them to fulfill and accomplish their organizational objectives.

  Equal opportunity

  Equal opportunity edison365 invests significant proportions of yearly profit back into its staff, this is to ensure that each employee is paid fairly for the work they do. edison365 employees are granted the option of shares in the business so that they benefit from the overall success of the organization. edison365 are a certified great place to work organization, with a diverse workforce, that does not discriminate by age, race nor gender.

  Wellbeing

  Equal opportunity edison365 invests significant proportions of yearly profit back into its staff, this is to ensure that each employee is paid fairly for the work they do. edison365 employees are granted the option of shares in the business so that they benefit from the overall success of the organization. edison365 are a certified great place to work organization, with a diverse workforce, that does not discriminate by age, race nor gender.

Pricing

• Price: £5.25 to £25.00 a licence a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Edison365 Standard offers customers a free trial version of the solution for 2-weeks and a limited number of users. Users can create and submit business cases, manage and approve them, star rate them, automate workflows, assign reviewers, all within the free version.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ivan.lloyd@edison365.com. Tell them what format you need. It will help if you say what assistive technology you use.