ISDM Solutions Ltd

Zoom Rooms Licencing

A Zoom Rooms Licence is the licence required to run the Zoom Room system, which is the hardware collaboration solution built on the Zoom Meeting technology platform. Zoom Rooms are purpose built for group collaboration, and enhance the meeting experience, both for in room participants and remote participants.

Features

• Video Conferencing
• Audio & Web Conferencing
• Host up to 500 participants per meeting
• Wireless Content Sharing
• Up to 10,000 webinar participants
• Join from Mobile, Desktop, Polycom/Cisco endpoints

Benefits

• Transform spaces into collaboration spaces on a lower budget.
• Connect Remote Zoom users with Office based Zoom users
• One Touch to Join simplifies the joining experience
• Zoom Rooms offer Audio Conferencing in addition to video collaboration.
• Increase Meeting Productivity
• Modular system so elements can be swapped out when required

£390 a licence a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at andy.ford@isdmsolutions.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

832712755214820

Contact

Andy Ford
0333 300 1876
andy.ford@isdmsolutions.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Zoom End User Licences, Zoom Cloud Room Connector, Zoom Webinar
• Cloud deployment model: Public cloud
• Service constraints: Routine Maintenance is carried out from time to time, however this does not impact unduly on operations. ISDM Service desk is in a position to support the vast majority of hardware configurations. Any outages, or known issues within the service are communicated to customers.
• System requirements:
  • In Room Audio System (Speakers and Camera)
  • HD Camera
  • In Room Display
  • 1MB up 1MB down for optimal video conferencing
  • PC with a minimum i5 Processor

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: No difference in response times at weekends; Zoom- Available 24/7 over email using a ticketing system. ISDM-24/5 global support desk available at extra cost. SLAs are agreed with customer depending on level of support required.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Zoom operate their own web chat function, which is available directly through the Zoom.us website, ISDM Solutions do not currently operate a live web chat function.
• Web chat accessibility testing: As outlined above ISDM Solutions offer support to end users who have a support contract directly with ourselves via email, phone or video. Zoom offer direct web support through the Zoom.us website.
• Onsite support: Yes, at extra cost
• Support levels: ISDM Solutions can provide an onsite engineer, that can be dispatched to site should this be required. In addition ISDM Solutions can supply an engineer on site semi permanently or permanently if necessary at additional cost.; ; Zoom also provides a 24/7 email support ticket service that is included with pro tiers of licence, however response times differ based on the licencing level that the user has.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: ISDM provides training and adoption support in addition to user documentation. As outlined above, additional training and adoption services can be purchased should these be required.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats:
  • Word
  • Adobe In Design
• End-of-contract data extraction: Users can download their data from the platform and can request to ISDM/Zoom that all corporate data and analytics are deleted.
• End-of-contract process: Contract is prepaid at the beginning of the term and can be 1,2 or 3 years, additional discounts are applied based on the length ofo the contract. As the contract comes up for renewal ISDM will discuss this with the customer and how they would like to proceed, regular service reviews will help to identify where ROI has been achieved, and where additional work is required.

Using the service

• Web browser interface: No
• Application to install: Yes
• Compatible operating systems:
  • MacOS
  • Windows
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The Service Interface for Zoom Rooms can be accessed through the main Zoom Portal
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: Zoom is committed to ensuring universal access to our products and services, so that all meeting hosts and participants can have the best experience possible. Zoom's accessibility features enable users with disabilities to schedule, attend, and participate in Zoom meetings and webinars, view recordings, and access administrative features across our supported devices.
• API: Yes
• What users can and can't do using the API: The Zoom API provides the ability for developers to easily add Video, Voice and Screen Sharing to your application. Our API is a server side implementation designed around REST, it does not support cross-origin resource sharing or access via a client side web application. The Zoom API helps manage the pre-meeting experience such as creating, editing and deleting resources like users, meetings and webinars. It also provides access to post-meeting information for tasks such as reporting and analytics. It does not provide access to the in-meeting experience such as current attendee list, who is current speaker or ability to mute participants; if you seek these features please have a look at our SDKs. Zoom API allows you to manage: Users Meetings Reports Groups IM Groups Cloud Recordings (Business and Education) Webinars Sub-Accounts
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: ISDM Solutions can provide information on further APIs should this be required

Scaling

• Independence of resources: Zoom employ traffic management to ensure that video meetings/audio meetings are not unduly affected

Analytics

• Service usage metrics: Yes
• Metrics types: Meeting minutes, active hosts, inactive hosts, meeting minutes, top 10 users, 10 ten countries by participant, number of meetings, most popular operating systems
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Zoom Cloud Licencing for Conference Type Spaces

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: Less than once a year
• Penetration testing approach: In-house
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can use the management console to export their data in the form of CSV files
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Excel
  • MP3
  • MP4
  • TXT
• Data import formats:
  • CSV
  • Other
• Other data import formats: Excel

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: SLA are included in our MSA. Our MSA guarantees 99.9% uptime. Zoom give a credit if Downtime exceeds 0.1%. “Downtime” means the Services were not available to the Internet due to causes within the reasonable control of Zoom other than scheduled maintenance performed between the hours of 11 pm and 3 am PT. Downtime does NOT include any failure of Customer to access the Services due to third parties outside of the control of Zoom (such as internet service providers, network service providers or telecommunications service providers) or due to Customer hardware, software, systems or networks.
• Approach to resilience: Zoom web services leverage AWS high availability infrastructure with multi-region configuration operating in Active/Standby mode. For realtime communications, Zoom leverages multiple Tier 1 data centers running in Active/Active mode.
• Outage reporting: Zoom posts any general incident announcement and other announcements including scheduled maintenance, outages, updates, through our status page at status.zoom.us. For incidents affecting a specific customer, Zoom will notify the account owner and administrator(s) through email or as specified in fully executed agreement.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Management interfaces are accessed via user name and password derived from integration via SSO or user name and password stored in a salted hash. Interfaces are accessed based upon role based access control (RBAC)
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Zoom's security policies are derived from ISO 27001 framework. ISDM's security policies also conform to ISO 27001 standard.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Weekly meetings held to request changes that need to be performed during maintenance windows. Change requests are presented, validated, and scheduled. Changes are approved by the Change Manager. Implementation in production should not be by the same individual who developed the change. When staffing levels do not permit this separation, management oversight and approval of the change and testing process ensure appropriate processes are followed. Dev and test environments are physically and logically segregated from production. No customer data is used in testing.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Zoom has a formal Vulnerability Management Plan in place. Zoom performs monthly vulnerability and web application scanning using an external party (Qualys). Scan reports are reviewed by our Security and technical teams and discussed with the engineering and development teams. Validated findings are tracked in our JIRA system throughout remediation.; ; Zoom has a monthly patch cadence. Zoom will patch all applications, workstations, and servers (virtual or physical) with all current operating system, database, and application patches deployed in our computing environment according to a schedule predicated on the criticality of the patch. Maintenance/patching typically will have no service downtime.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We have monthly vulnerability and web application scan. Findings are reviewed and validated by our technical and engineering team. Vulnerability rated on severity level and tracked using our JIRA system. Vulnerability fixes are release from our engineering team and follow our formal change management process for deployment to production. Zoom also has DDoS monitoring and Managed service in place. Affected traffic are diverted and filtered through a scrubbing centre.; ; Zoom responds to incidents as defined within our SOC2 report available upon execution of a mutual NDA.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Zoom communicates the incident response policy to internal and external users and instructs users to contact their supervisor and the information security representative if they become aware of a possible security breach. When a potential security incident is detected, a defined incident management process is initiated by authorised personnel. Incidents are tracked through the tracking application, which includes the corrective actions implemented in accordance with the defined policies and procedures. ISDM service desk will also work to track these and will communicate these to customers.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  ISDM have introduced a Sustainability Policy to define a common goal to work towards as a team to promote good sustainability practice, to reduce the environmental impact of all our activities and to help our clients to do the same.; ; Our Sustainability Policy is based upon the following principles:; ; • To comply with, and exceed where practicable, all applicable legislation, regulations, and codes of practice.; • To integrate sustainability considerations into all our business decisions.; • To ensure that all staff are fully aware of our Sustainability Policy and are committed to implementing and improving it.; • To make clients and suppliers aware of our Sustainability Policy and encourage them to adopt sound sustainable management practices.; • To review, annually report, and to continually strive to improve our sustainability performance.; • Ensure that we measure everything that we do by creating a company culture that seeks to reduce carbon emissions as a standard part of all within ISDM.; ; These will be achieved through:; ; • Research - Engage in and develop ideas to support defined principles that ISDM will harness in the pursuit of direct and indirect goals for sustainability and environmental practices and policies.; • Promotion – Thoughtful measurable outcomes that algin to continuous sustainable improvements within the ISDM journey.; • Challenge - Highlight the status quo within current working practices, seek change-house management behavior to meet enlightened sustainable outcomes.; • Support – Change, through the validation of measured data and metrics.; • Enablement - Creation of a journey through leadership for all

Pricing

• Price: £390 a licence a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: 14 day free trial, can be made available on request

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at andy.ford@isdmsolutions.com. Tell them what format you need. It will help if you say what assistive technology you use.