Engeneum Limited

Engeneum - Data Distribution, Online Payslips & HR Portal

Sending information securely to where it's needed
Online/e- Payslips - Secure on-boarding and easy access.
Fraudulent Data Sharing - Controlled access to invalid documents
HR & Employee Portal - GDPR Compliant HR record delivery & archive
Online Statements - Controlled, audited delivery
Customs & Freight - On-line shipping documents e-delivered

Features

• On-Line Payslips or E-payslips with encrypted delivery
• Stores all HR related documention in any format
• View any documents via web browser on any device 24x7x365
• Design and build customizable process flows to control routing
• Real time upload of documents directly from desktops using EUS
• Secure login to view information, download to PDF or print
• Data Centre is ISO27001, and Tier 4 certified
• Register via self-service portal for E-payslip/Online payslip delivery
• Supports GDPR – employee/citizen owns PII
• Customizable process flows to control routing

Benefits

• Secure and full control of all HR related documentation
• HR & other Departments reduce costs and comply with GDPR
• Enables historic confidential employee documents to be protected
• Traceability, the employer can be sure documents are received
• Employees and managers receive notifications via email
• Fixed monthly fee ensuring easy budgeting
• DoAvoids using insecure e-mail delivery of payslips
• Access available using corporate of private e-mails addresses
• Save paper, postage, and delivery costs
• Can be used for current employees, and or pensioners

£375 to £12,000 an instance a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  ODS

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at chris.haden@engeneum.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

762703346673545

Contact

Chris Haden
07770425135
chris.haden@engeneum.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Engeneum Employee Portal; Engeneum Digital Records; Sage 50, Sage 100, ; Microsoft Dynamics 365 GP, ; Oracle Financials, ; SAP, SAP By Design, ; JD Edwards, ; Charter CRM, ; Northgate Housing, ; ABBYY, ; AnyDoc, ; Kofax, ; Opentext MBPM, ; Acuant, ; Q-DAS, ; Salesforce and ; C3.
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: Customers are notified if planned maintenance is required 3 weeks in advance
• System requirements:
  • Phone, Laptop, Tablet or PC with Browser and Internet access
  • Scanner of MFD for paper based data capture

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Support between 09:00-17:30 Monday to Friday. ; Responses based on severity / priority as defined. ; Example definitions are as follows:; Priority 1 Complete loss of the service for one or more; users of the service. No work around - 1/2 hour 1/2 hourly; Priority 2 Partial loss of the service for one or more users of; the service. Temporary workaround available- 4 hours 4 hourly; Priority 3 A problem unlikely to disrupt the user of the; service immediately - 24 hours 24 hourly; Priority 4 A problem with no discernible impact on the user; of the service - 1 week Weekly
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: In hours and out of hours support options. ; Out of hours is charged, charges are dependant on the agreed Service Level Agreement
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Remote imlementation; On-Line training provided for Intuitive User Interface, ; Customised training materials provided at additional cost.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: End of contract data extraction is project based dependant on specific customer requirements.; Optional retention of original source data can be provided back to the user at end of contract
• End-of-contract process: Additional charges apply for:; Project Management; Decommissioning; Data export and conversion; Data Purge

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There are reduced features for zoom and export in other formats
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Accessed only by Administration Users and Included with the standard browser based user interface
• Accessibility standards: None or don’t know
• Description of accessibility: Can be used with voice recognition and activation add-on to PC Windows software. Can exploit many of the browser tools for accessibility zoom, scroll, and read aloud functions
• Accessibility testing: Only internal testing
• API: Yes
• What users can and can't do using the API: API users can:; Upload data; Request processing; Request documents; Receive output; Interact with workflows
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Users can:; - Create their own verification and validation controls/workflows; - Manage additional repositories and index structures; - Create single or multiple output formats and structures; - Connect to other solutions

Scaling

• Independence of resources: Capacity planning provided through flexible infrastructure where resources can be brought on-line within 2 hours, dedicated Virtual servers can be deployed depending on requirements

Analytics

• Service usage metrics: Yes
• Metrics types: The solution maintains logs of activity as the documents/e-mails are processed
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data is typically exported during the processing phase of operation.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • PDF
  • Image - TIFF, JPEG, GIF, BMP etc
  • XML
  • CSV
  • Excel
• Data import formats: Other
• Other data import formats:
  • PDF
  • Image - TIFF, JPEG, GIF, BMP etc
  • Various e-mail formats

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: SLA's are agreed dependant on project requirements. A typical SLA would be 99% availability for website access 24x7x365.
• Approach to resilience: Available on request, subject to a Non-Disclosure Agreement
• Outage reporting: E-mail alerts

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Super Administration can manage client instance access. Client Administration can manage Users and Groups
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Schellman
• ISO/IEC 27001 accreditation date: 15/06/2020
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 29/09/2016
• CSA STAR certification level: Level 3: CSA STAR Certification
• What the CSA STAR doesn’t cover: None
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications: Cyber Essentials

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Our processes are aligned with ISO 9001 principles with the data centre following ISO 27001.
• Information security policies and processes: Our processes are aligned with ISO 9001 principles

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Configuration and change management of the infrastructure is provided by our Cloud Hosting partner.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: This is managed by our Cloud Hosting Partner and included:; Threat Detection; Next generation Firewall ; Endpoint Management
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: This is managed by our Cloud Hosting Partner
• Incident management type: Supplier-defined controls
• Incident management approach: This is managed by our Cloud Hosting Partner

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Covid-19 recovery:

  Covid-19 recovery

  Our solutions improve operational and staff efficiency. They allow secure home working with ease. This reduces travel time and carbon footprint. Costs are always reduced to help business profitability.
• Equal opportunity:

  Equal opportunity

  Our solutions are usable from any internet enabled location so users can be homeworkers or office workers. Disabled or reduced mobility employees can access on a wide variety of devices

Pricing

• Price: £375 to £12,000 an instance a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Software available free of charge for 1 user, limited to 5000 transactions, and 1 month. Configuration, training and setup fees are chargeable at SFIA rate, should these be required.

Service documents

• Pricing document

  ODS

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at chris.haden@engeneum.com. Tell them what format you need. It will help if you say what assistive technology you use.