HCL Technologies UK LImited

HCLTech Volt MX- Rapid Application Development

Rapid Application Development IDE

Rapid App Development (RAD) platform with power of custom coding, help enterprises build and launch applications faster.

Application development platform for building unified digital experiences across all channels.

Create mobile and desktop applications in a low code environment.

Mobile Application Development.

Multi-experience Development Platform.

Features

• Rapid Application Development
• Mobile application Development
• Application Integration
• Automation
• Workflow
• Analytics
• DevOps

Benefits

• Provide the applications that run your business.
• Hide back-end integration complexity while connecting diverse systems.
• Ease complexity of business processes.
• Industry leading security and resilience
• Supports distributed clients and servers.
• Can be deployed cloud native, cloud hybrid or on premises.
• Includes secure remote and external access.
• Low code development environment for applications that run your business.
• Up to 60% reduction in development time and lower TCO.
• Deliver applications as progressive web and native mobile applications.

£4 to £60,000 a unit

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at CCSFrameworks@hcl.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

748129033977386

Contact

Paul Montgomery
+44 (0) 20 7105 8600
CCSFrameworks@hcl.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: None
• System requirements:
  • Supports most modern Operating Systems (OS) and cloud platforms.
  • Requires Separate Database, like MySQL, Oracle, SQL Server or MariaDB.
  • Requires Java installation.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: During business hours:; Severity 1 = 1 hour; Severity 2 = 2 hours; Severity 3 = 1 working day ; Severity 4 = 2 working days
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AAA
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AAA
• Web chat accessibility testing: Not Applicable
• Onsite support: Onsite support
• Support levels: Service levels are categorised according to severity levels from 1 through 4. These levels are determined by business impact and defined response times are allocated to each level.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Online training academy courses.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: "Export of the development work is provided with the solution; Data storage is independent of the service and maintained by the user."
• End-of-contract process: "At the end of the contract term, a new term will be initiated unless cancelled by the user. If cancelled, Users will no longer be able to connect their front end application to the back-end services.; ; If the software is deployed on cloud then the terms and conditions of the cloud provider must be considered."

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: Yes
• Compatible operating systems:
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Not Applicable
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Client app communicates to the backend via JSON web service calls. The backend communicates to other systems via a host of technologies, includinf XML, JSON, SAP JCO, SOAP, DB connectors, etc.
• Accessibility standards: None or don’t know
• Description of accessibility: Volt MX supports accessibility requirements for its native, web/SPA and desktop web channels. WCAG is a web accessibility guideline and applicable to our mobile Single Page Applications (SPA) and the Desktop Web channel. WCAG 2.0 support depends on the underlying browser and assistive technology used by the device.
• Accessibility testing: N/A
• API: Yes
• What users can and can't do using the API: Users can be autheticated and, once authenticated, they can call multiple services to get data from backend data sources. User can call engagement services to send emails, SMS and push notifications.
• API documentation: Yes
• API documentation formats: Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: An in-built web app allows for customisation.

Scaling

• Independence of resources: "The scaling of the hosted service is performed based on the total number of users and peak time concurrency level. Each hosted virtual machine is configured to handle 350 concurrent user requests. ; ; For the on premise service, we utilise an infrastructure team to calculate the hardware required based on the number of transactions being completed, the number of connected users and the volume of the data being passed."

Analytics

• Service usage metrics: Yes
• Metrics types: Transaction history report, performance report, exception report, login logout report, offline report, geo fencing report.
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: The storage is protected with persistent key and encrypted further by strong encryption key (AES 256) format.
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Exporting of both the front and backend applications are provided via the service interfaces.
• Data export formats: Other
• Other data export formats: Applications built create Javascript code.
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • IPsec or TLS VPN gateway
• Data protection within supplier network: Other
• Other protection within supplier network: Data within the network travels in binary format. Each request or response data is associated with a security token.

Availability and resilience

• Guaranteed availability: High availability is provided via a multi-system solution to allow for failover.
• Approach to resilience: The backend production servers for OnPremise require a cluster of web servers that communicate with multiple application servers working against a clustered DB solution, this allows for any one component to fall down without affecting the overall solution
• Outage reporting: Monitoring tools (Microsoft SCOM) are configured to monitor hosted services and virtual machines. Disk coverage and capacity related configurations are performed to raise the alarm to mitigate any failure. An email is sent by the monitoring tool to all stakeholders before any failure happens. Transaction logs are maintained to generate a report on defined intervals.

Identity and authentication

• User authentication needed: Yes
• User authentication: Other
• Other user authentication: To connect to the service requires the user to login, they receive a token which is then used to call all additional services.
• Access restrictions in management interfaces and support channels: Users are setup with a profile and their actions are limited based on roles.
• Access restriction testing frequency: At least once a year
• Management access authentication: Other
• Description of management access authentication: To connect to the service requires the user to login, they receive a token which is then used to call all additional services.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Bureau Veritas
• ISO/IEC 27001 accreditation date: 21/06/2023
• What the ISO/IEC 27001 doesn’t cover: Not Applicable
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: Yes
• Who accredited the PCI DSS certification: Not Known
• PCI DSS accreditation date: Not Known
• What the PCI DSS doesn’t cover: Not Known
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • CISSP / CISM / CCSK (Various Employees)
  • ISO 9001:2008 - Quality Management
  • ISO/IEC 20000-1:2011 - Service Management
  • ISO 14001 - Environmental Management

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • CSA CCM version 3.0
  • ISO/IEC 27001
  • Other
• Other security governance standards: Annual SOC 2 Type 2 audit ; GDPR Compliance; PCI Compliance; ; For more information, please refer to the link at:; https://www.hcltechsw.com/legal/compliance
• Information security policies and processes: HCLTech has adopted ISO/ IEC 27001: 2013 standard for ensuring protection from a variety of threats and minimising the business damage in its endeavour to provide Mobile Application implementation and support services. HCL is also Cyber Essentials and Cyber Essentials Plus certified.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: "Configuration Management tracks the IT environment.; ; A repository maintains all versions of individual work products to help/ permit developers to revert to previous versions during testing and debugging.; ; Dependency tracking and change management covers relationships between enterprise entities and processes, parts of an application design, design components and the enterprise information architecture, design elements and other work products.; ; HCLTech tracks all the requirements, design and construction components and deliverables that result from a requirements specification.; ; An audit trail is maintained about when, why and by whom changes are made, with source information of changes as specific objects in the repository."
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: The HCLTech Volt MX team has developed and implemented a concrete and comprehensive plan to handle and manage security patches. HCLTech monitors for announced Critical Vulnerabilities and Exposures (CVEs) and conducts regular vulnerability assessments and penetration testing in compliance with ISO:27001, SOC 2, and PCI-DSS requirements. CVEs are recorded in internal tracking system and evaluated for risk using vulnerability and risk management procedures. All CVEs exhibiting significant risk and requiring treatment are then scheduled to be addressed/ patched. Patch schedule is based on a combination of severity and overall risk. Critical and high risk vulnerabilities are treated within 30 days
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: In addition to the services provided by AWS, the Volt MX Infrastructure and customer clouds are installed with OSSEC agents to run periodic system checks for rootkits file-integrity, and HIDS monitoring on the systems. In addition, ClamAV anti-virus is installed on the hosts to capture malware and ensure the system’s data integrity.
• Incident management type: Supplier-defined controls
• Incident management approach: It is the responsibility of all Volt MX Cloud members to report security incidents through the appropriate management channels as quickly as possible. All suspected incidents may be reported by sending an email to the Cloud Foundation Security team or by filing a Sev 1 support ticket where a member of the Cloud Security team will evaluate the reported security incident and determine if action is warranted. The incident management policies and procedures are reviewed annually.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Other
• Other public sector networks: Dependant on the implementation

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  At HCL Technologies, we believe that we have got accountability to the future, as well as an imperative role to play in addressing global challenges, such as climate change and environmental sustainability. ; HCLTech commits itself to confronting these challenges by assuming a leadership role in fostering a sustainable environment and responding appropriately to the risk posed by environmental degradation. ; HCLTech will strive to achieve excellence in environmental management by:; • Integrating environmental considerations into our all areas of operations, considering our environmental risks, responsibilities and organisational capability; • Meeting all environmental compliance obligations applicable to the organisation; • Reducing our ecological footprint through optimised utilisation of natural resources, including land, water and by ensuring the responsible use of energy throughout our operations, including conserving energy, improving energy efficiency and giving preference to renewable over non-renewable energy wherever feasible; • Introducing more sustainable and green procurement approaches; • Preventing pollution and minimising all types of waste, including e-Waste by adopting a Reduce-Reuse-Recycle-Recovery philosophy; • Being an environmentally responsible neighbour in the community where we operate, and correct incidents or conditions that endanger the environment; • By committing ourselves to open and constructive engagement with communities surrounding our operations on environmental matters; • Providing a framework for setting and reviewing environmental objectives and targets; • Continually improving and learning from our efforts in working towards environmental sustainability; • Monitoring and reporting our environmental performance to key stakeholders; • Ensuring that environmental policy is communicated to all the concerned persons working for or on behalf of the organisation, to make them aware of their environmental responsibilities ; • By making our environmental policy available to all stakeholders, including public on demand; • Maintaining appropriate controls, including periodic review of environmental policy, to ensure its applicability and relevance to the changing scenarios and stakeholder’s expectations.

  Covid-19 recovery

  The outbreak of the COVID-19 pandemic and its ruinous effect on lives and livelihoods has been unprecedented in modern times. HCLTech has used its position as a global IT company to mitigate the effects where possible, supporting our clients to continue operating in these difficult times and providing help to those affected. We have developed rapid solutions to support our customers in returning to work during the pandemic with examples ranging for PPE stock management, workforce social-distancing solutions and the deployment of remote working technology. ; Our HCLTech Foundation is a focal point for global programmes and has coordinated our support for COVID-19 affected communities. ; As a result of the pandemic there have been many industries that have been heavily impacted economically and many job losses have been caused as government support is reduced, companies going into administration and many freelance/ self-employed prospects have simply disappeared.; Some of the people displaced by the pandemic will have transferable skills and just need limited support in cross-training. ; We offer a number of opportunities to help semi-skilled staff enter the IT services world. Schemes such as our ‘Consultant in Training’ programme where staff are taken on and have a mix of formal training and on the job mentoring to give them the skills to continue on this path. The formal training can result in recognised qualifications, such as technology or project management certifications. Many alumni of this programme are taken on by HCLTech as the first rung on their new career ladder.; With regard to the less skilled people left stranded by the Coronavirus outbreak we provide targeted help in a similar way to how we support disadvantaged individuals.; We will work with our customers to understand the impact of COVID-19 and develop CSR plans to support these at a local level.

  Tackling economic inequality

  HCLTech is committed to Corporate and Social Responsibility (CSR) to help equality/diversity, the economy, health/wellbeing and local communities. For local economies/communities, HCLTech creates and maintains positive industry partnerships, engaged employees (including a focus on staff behaviours) and a diverse workforce, working collaboratively to make work a great experience for all.; In the UK, HCLTech works in partnership with the Prince’s Trust to maximise our CSR activities relating to how technology can make a positive difference to the lives of people and organisations worldwide. We have developed an education programme called “Get Started with Technology” to upskill disadvantaged youth across the country.; In the UK, HCLTech runs a CIT (Consultant in Training) programme every year, whereby we hire fresh graduates with no prior corporate experience in the UK and train them on relevant technologies, then employ and mentor them to be Consultants. This has been run in conjunction with Manchester Business School and we are looking to expand this programme to include the other Higher Education establishments.; We are mindful of our role to play in of supporting local businesses and generating additional economic development through our engagements. As such, we consider using local suppliers to meet requirements that we cannot fulfil ourselves. As an example, a significant proportion of the initial User Experience and Design work for new Manchester United app was undertaken by Manchester based Small/Medium sized Enterprises (SMEs). ; HCLTech runs innovation labs, collaborating through global Hackathons or developing patents for new and emerging technologies. We share this knowledge via events and Webinars, as well as providing access to thought leadership in the guise of our Chief Information Officer (CIO) Council. Recent events have covered such diverse topics as Blockchain, Robotic Process Automation (RPA), Cognitive Systems and Artificial Intelligence (AI) and Internet of Things (IoT).

  Equal opportunity

  HCLTech focusses on creating/sustaining a nurturing environment for all employees, irrespective of backgrounds, gender, nationality, culture, ethnicity, age or differing abilities of individuals. ; Gender parity and inclusion at all levels of the hierarchy is our top priority, with a special focus given to increasing the representation of women leaders at key leadership positions. The female employee ratio is a crucial metric that is reported and reviewed quarterly in the company board meetings. All our recruitment teams carry a target on gender hiring and all our job specifications have been reviewed to make them gender neutral. ; HCLTech is committed to Corporate and Social Responsibility (CSR) to help equality & diversity, the economy, health & wellbeing and local communities. We have initiatives running to support, nurture, develop and celebrate the successes of disadvantaged communities or individuals. We endeavour to make a positive impact in the lives of people within the communities we operate in. ; ; For local economies/communities, HCLTech creates and maintains positive industry partnerships, engaged employees (including a focus on staff behaviours) and a diverse workforce, working collaboratively to make work a great experience for all. ; ; The company implements and maintains a management system that sets targets to monitor and continually improve our social performance across the company. Also, we comply with all relevant legislative and regulatory requirements relating to be a responsible business, including, but not limited to, the Modern Slavery Act, the Equality Act, the Public Services Act and the Living Wage Act.; ; To propagate an inclusive culture at HCLTech, a virtual Inclusion Lab model has been designed in consultation with business and HR stakeholders. The objective was to design a systemic, top down approach where each leader was sensitised and given the necessary skillset, mindset and toolset to actively demonstrate and promote inclusive behaviours.

  Wellbeing

  HCLTech is committed to employee overall wellbeing through.; Physical/Occupational; •Ergonomics Training; Employees have access to e-Learning based ergonomics training. ; •Chiropractor consultations; Organised at the workplace to advise employees on correct sitting posture.; •Virtual General Practitioner; This allows employees to seek an appointment and follow ups with a GP to discuss medical issues.; •Gym Flex/Cycle to Work; This benefit allows employees to seek attractive discounts on gym memberships and purchase a bicycle.; •Health Check-ups; We organise for basic health check-ups, like Body Mass Index (BMI), glucose and cholesterol screening at the workplace for all our employees. ; •Preventive Healthcare; Webinar on smoking cessation and good nutrition.; Mental/Emotional; •Employee Assistance Programme; Free, confidential counselling services available for employees and their families in the local language on areas of emotional health, family issues, financial and legal guidance and other work and personal matters. ; •Wellbeing Webinars; Monthly workshops facilitated by clinical psychologists around various topics to have a better understanding on mental health issues and practical tips on how to deal with them.; •Mental Health Awareness; Campaign to create awareness on mental health, breaking stereotypes and proactive ways for employees to become more self-aware, mentally resilient and emotionally secure.; •Mindfulness and Yoga Workshops; To help employees overcome stress, anxiety and increase resilience and emotional intelligence, while improving communication.; Financial ; •HCLTech Discount Scheme/Perks at Work; Employees and family access to avail attractive discount schemes on over 3,000 products; •Financial Wellbeing Workshop; To help employees understand the various financial instruments to enable them to make the right decision on investments, pension decisions and future savings.; Emotional/Psychological; •Chat sessions, culture and festive celebrations; This helps to bring various teams to interact and come together to create a livelier environment at the workplace. ; •Part time and Flexi Working Policies to help people effectively manage their work life balance.

Pricing

• Price: £4 to £60,000 a unit
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: The trial version allows for unlimited development resource. Applications built within this environment cannot be published to Production environments during the trial period.
• Link to free trial: https://manage.demo-hclvoltmx.com/registration

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at CCSFrameworks@hcl.com. Tell them what format you need. It will help if you say what assistive technology you use.