Hootsuite Amplify
Hootsuite Amplify is a solution for employee advocacy and employee engagement, that allows your employees to share organisation approved messages and content via their own social networks. Realise the full reach of your employees' social media footprint within a controlled and governed environment.
Features
- User friendly mobile interface
- Browser-based ('desktop') interface fully integrated with Hootsuite
- Share content in just two clicks
- Employee content sharing to personal social media channels
- Distribute pre curated content across your organisation
- Define user roles to control access & assign project responsibilities
- Select which networks advocates can share to
- Track user adoption & report un user activity impact
- Leaderboard for incentivising & managing user activity
- Enable adocates to suggest content (can be deactivated)
Benefits
- Increase your brand reach on social media
- Increase engagement with your brands on social media
- Enhance your brand's reputation on social media
- Reach new audiences
- Gain new followers, customers and business opportunities
- Position your employees as industry experts & thought leaders
- Boots your organisation's social media presence
- Upskill your employees on social media
- Reach your digital transformation goals
- Ensure your brand has a human face on social media
Pricing
£45 to £164 a licence a year
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
8 3 2 1 4 2 1 2 7 4 9 4 3 6 2
Contact
Hootsuite Inc
Robert Mumby
Telephone: 00447737472732
Email: Gcloud@hootsuite.com
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
- Hootsuite Enterprise social media management platform
- Cloud deployment model
- Public cloud
- Service constraints
- Hootsuite is a SaaS solution. An internet connection and web browser are required. Like all SaaS platforms, Hootsuite does not have periodic releases of updates or software versions. Rather, our development teams work to improve our platforms on a continual basis. Updates are made on a daily basis – as such it is not practical (or possible) to provide notification of updates. Please note that each platform will be operational and available to Customer 24 hrs/day, 7 days/week at least 99.9% of the time in any calendar months. Please see the following link for more details: https://hootsuite.com/legal/enterprise-service-level-agreement.
- System requirements
- NA
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
-4 hour SLA for customers who purchase 'Premier Services'
-1 business day SLA for customers who do not purchase 'Premier Services' - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 AA or EN 301 549
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Web chat
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- WCAG 2.1 AA or EN 301 549
- Web chat accessibility testing
- Hootsuite continually reviews the accessibility of its services and works with a third party accessibility speacialist to ensure that we are maintaining optimal standards in this areas. Hootsuite is WCAG 2.1AA compliant Hootsuite provides customer service training to our employees on our accessibility policies and procedures, including services and features that provide accessibility to our customers. We are committed to working towards an inclusive environment that is accessible to all.
- Onsite support
- No
- Support levels
-
Premier Services Customers: -4hr SLA -web chat, ticket (email) & phone
Non Premier Services Customers: -1 business day SLA -web chat & ticket (email) - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- On day 1, requirements are gathered through discovery calls and demos of proposed solutions throughout the sales process, and once aligned, are transferred to the Customer Success team. During onboarding, we begin with a Kickoff call to introduce the solution and to present known goals and strategies. Our Professional Services team has a methodical and phased approach to launch projects, and will be with you from your first day to assist, deploy, train and enable your teams through industry-leading, implementation plans. We begin with Discovery, in which we conduct a thorough needs analysis to confirm best practices for our client's use cases and run through our project plan. We then conduct training, configure users, teams, access permissions and analytics, iterating with our client until sign-off. Hootsuite also provides support through an international team which operates in multiple timezones. Support is via email, phone or online chat. Your Hootsuite team will act as a dedicated resource to connect you with the right resources to solve any technical issues you may need support with.
- Service documentation
- Yes
- Documentation formats
-
- HTML
- ODF
- Other
- Other documentation formats
- PPT
- End-of-contract data extraction
- All user activity and social media data can be exported by users directly from the Hootsuite platform. Your Hotsuite team will also be able to support you with any requests related to this.
- End-of-contract process
- If you decide not to renew your agreement your service will be downgraded from Hootsuite Enterprise to Hootsuite Free. A comparison of the functionality differences between Hootsuite Enterprise and Free can be found here: https://hootsuite.com/plans
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Hootsuite Amplify has been designed as primarily for use on mobile devices. The Hootsuite mobile app is available for Android and iOS devices. Download it for free from your phone’s app store. The minimum OS requirements are Android 5.0 and iOS or iPadOS 15. The Hootsuite mobile app doesn't support complex workflows that take more than a couple minutes. Tasks you must complete in the web version of Hootsuite include creating analytics reports, adding new team members, and managing your Hootsuite organization.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 AA or EN 301 549
- Description of service interface
- Hootsuite Amplify's end user and user management capabilities are fully intergrated within the Hootsuite Enterprise platform.
- Accessibility standards
- WCAG 2.1 AA or EN 301 549
- Accessibility testing
- Hootsuite is committed to making our website's content accessible and user friendly to everyone. If you are having difficulty viewing or navigating the content on this website, or notice any content, feature, or functionality that you believe is not fully accessible to people with disabilities, please contact our Customer Service team and provide a description of the specific feature you feel is not fully accessible or a suggestion for improvement. We take your feedback seriously and will consider it as we evaluate ways to accommodate all of our customers and our overall accessibility policies. Additionally, while we do not control such vendors, we strongly encourage vendors of third-party digital content to provide content that is accessible and user friendly. Hootsuite is committed to providing a respectful, accessible, and inclusive environment for all of our employees and customers in the Province of Ontario. Our goal is to meet the standards outlined in the province’s Accessibility for Ontarians with Disabilities Act (AODA) and to break down barriers to goods, services, and employment opportunities provided by Hootsuite. In order to achieve its goals Hootsuite has developed and implemented a variety of policies and procedures.
- API
- No
- Customisation available
- Yes
- Description of customisation
-
-The Amplify mobile app user interface can display the customer's logo to match the customer's branding
-The Amplify mobile app user interface can be translated into in English, French, German, Italian, Portuguese, and Spanish
-'Newsletter' updates about activity in the project can be customised to show the customer's branding/ logo and choice of content
Scaling
- Independence of resources
- The services architecture is highly available and redundant as it is fully located in the AWS cloud, distributed across multiple AWS availability zones, and based on the Service Oriented Architecture (SOA) and Microservices architecture. AWS has wide regional and geographical redundancy and high scalability.
Analytics
- Service usage metrics
- Yes
- Metrics types
- Usage reports can be requested by customers at any time. Usage data is based on click events and other meaningful activities. These metrics are due to be added as self-service metrics in Hootsuite before the end of Dec 2024.
- Reporting types
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- None
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- Other locations
- User control over data storage and processing locations
- No
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Physical access control, complying with SSAE-16 / ISAE 3402
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- Data can be exported by users at any time in PDF, PPT, XLS & CSV formats
- Data export formats
-
- CSV
- Other
- Other data export formats
-
- PPT
- XLS
- Data import formats
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- TLS (version 1.2 or above)
Availability and resilience
- Guaranteed availability
- The Hootsuite Platform will have a Service Availability of at least 99.9% of the time in any calendar month (the “Service Availability SLA”). Where reasonably possible, Hootsuite will provide at least 24 hours' advance notice to Customer of scheduled maintenance in excess of 30 minutes. If Hootsuite does not meet the Service Availability SLA, Customer will be eligible to receive the Service Credits described below. This Service Availability SLA states Customer's sole and exclusive remedy for any failure by Hootsuite to meet the Service Availability SLA: -< 99.9% - >= 99.0% - 3 service credits (days of service added to end of contract term) -< 99.0% - >= 95.0% - 7 service credits (days of service added to end of contract term) -< 95.0% - >= 95.0% - 15 service credits (days of service added to end of contract term)
- Approach to resilience
- Hootsuite has built-in resiliency provided through its hosting in the AWS cloud across multiple availability zones, and the AWS backup services.
- Outage reporting
- Customers are updated on system status and outages through our status webpage, http://status.hootsuite.com/. We also post information on the @hootsuite_help Twitter feed.
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Username or password
- Other
- Other user authentication
- All users regardless of being an employee or a customer must authenticate prior to accessing any system. Customer can authenticate natively to the Hootsuite dashboard and use the optional two factor authentication or use the Single Sign On option. Employees with privileged access to the system must use two factor authentication (2FA/MFA) and those with access to the production environment must use additional authentication controls (such as specific AWS access keys, SSH certificates, etc.). Hootsuite supports native login to Hootsuite (which also supports two factor authentication) or it can also support SSO via SAML compatible system from the customer side.
- Access restrictions in management interfaces and support channels
- Access to the production environment is possible only from the Hootsuite offices and from the VPN using SSH. For administrators to manage the AWS operational console, they must log in to the production console environment using two factor authentication. The administrator roles are assigned accordingly by the AWS IAM system. Privileged access is logged in all such systems and the Hootsuite Security Operations team has alerting set up to detect abuse.
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Public key authentication (including by TLS client certificate)
- Identity federation with existing provider (for example Google Apps)
- Username or password
- Other
- Description of management access authentication
- Access to the production environment is possible only from the Hootsuite offices and from the VPN using SSH. For administrators to manage the AWS operational console, they must log in to the production console environment using two factor authentication. The administrator roles are assigned accordingly by the AWS IAM system. Privileged access is logged in all such systems and the Hootsuite Security Operations team has alerting set up to detect abuse.
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- At least 12 months
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- Orion
- ISO/IEC 27001 accreditation date
- 09/11/2023
- What the ISO/IEC 27001 doesn’t cover
- N/A Please visit Hootsuite's Trust Center to request access to the certification: https://www.hootsuite.com/trust-center.
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- Yes
- Who accredited the PCI DSS certification
- Control Gap Inc.
- PCI DSS accreditation date
- 11/09/2021
- What the PCI DSS doesn’t cover
- Hootsuite is PCI compliant as Level 3 Merchant. Hootsuite has contracted with PCI DSS compliant third-party payment processors to handle all credit card transactions. Hootsuite itself does not collect, process, or store any PCI data. Hootsuite systems are PCI DSS v3.2.1compliant with respect to the mechanisms they use to communicate with the third-party payment processors. Hootsuite Security reviews the third parties' certification annually. Please note that Hootsuite enterprise customers are invoiced and therefore don't use credit card payments.
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
-
- FedRAMP LI-SaaS
- SOC 2 Type II
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
- Security policies reflect the security postures of Hootsuite and set the principles that Hootsuite employees, processes, and systems must adhere to. Security policies are also the major artifacts that we may share with our auditors for compliance purposes and with our customers for winning opportunities. The policies must be reviewed and updated annually to reflect current organizational status and to adhere with compliance requirements. The InfoSec GRC team is responsible for updating the policies at least annually. More information is available via our SOC 2 report (https://www.hootsuite.com/trust-center). Information Security Policy Asset Management Policy Configuration Management Policy Endpoint Policy Information Classification Policy Security Risk Management Policy Human Resource Policy Acceptable Use Policy Access Control Policy Cryptography Policy Physical & Environmental Security Policy Change Management Policy Network Security Policy Logging & Monitoring Policy Supply Chain Risk Management Policy Security Incident Management Policy Business Continuity and Disaster Recovery Policy Operations Backup Policy Password Policy Vulnerability Management Policy Bring Your Own Device (BYOD) Policy Secure Software Development Lifecycle Policy Password Construction Standard CoPilot policy
Operational security
- Configuration and change management standard
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Configuration and change management approach
- New features, functionality, and design changes go through a review process. In addition, code is tested and manually peer-reviewed prior to being deployed to production. Our security team works closely with our product and engineering teams to resolve any additional security or privacy concerns that may arise during development. The change management procedure is documented and part of our ISMS. It's externally audited for both SOC 2 and ISO27001. Please also visit the Trust Center for more information: https://www.hootsuite.com/trust-center.
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
- Hootsuite has a vulnerability management program in place to identify and remediate vulnerabilties in the product and the supporting infrastructure. Security code review, domain scans and external penetration testing is performed to identify vulnerabilities in the product code and infrstructure. Additionally, vulnerability scans are performed on the production servers and third party dependency libraries to identify and remediate the patch vulnerabilities.
- Protective monitoring type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Protective monitoring approach
- Hootsuite has 24/7 monitoring and alerts setup for any security incidents. All security bugs are risk ranked and rated: Critical severity - time to acknowledge is 4 hours and time to resolution is 14 calendar days High severity - time to acknowledge is 1 day and time to resolution is 30 calendar days Medium severity - time to acknowledge is 7 days and time to resolution is 90 calendar days Low severity - time to acknowledge is 7 days and time to resolution is 180 calendar days
- Incident management type
- Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
- Incident management approach
- Hootsuite has an incident management team, program and policy. Within the policy, the following areas are covered: SIRT Incident detection Assessment and response Post-incident analysis Security incident response plan The policy was last reviewed and updated in February 2023. For more information, please review Hootsuite's SOC 2 report, which is available upon request via our Trust Center: https://www.hootsuite.com/trust-center.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Please review the following link for more information on the social impact Hootsuite commits to: https://www.hootsuite.com/social-impact.Tackling economic inequality
Please review the following link for more information on the social impact Hootsuite commits to: https://www.hootsuite.com/social-impact.Equal opportunity
Please review the following link for more information on the social impact Hootsuite commits to: https://www.hootsuite.com/social-impact.Wellbeing
Please review the following link for more information on the social impact Hootsuite commits to: https://www.hootsuite.com/social-impact.
Pricing
- Price
- £45 to £164 a licence a year
- Discount for educational organisations
- Yes
- Free trial available
- No