Advanced Business Solutions

Staffplan SaaS Portfolio

Staffplan is designed as a complete care management software, serving all functions of a modern care service - from initial referral through to scheduling, timesheet processing, invoicing, gross payroll and reporting. The optional modules (Landline Monitoring/Electronic Call Monitoring, Business Intelligence Reporting) also help automate the running of care businesses.

Features

• Standard Microsoft Windows convention compliant (consistent and intuitive user interface).
• Supports 3rd party integration via XML.
• Self-Service Reporting + Exports.
• Mobile point of care solution for online/offline task capture.
• Database views live and dynamic (wallcharts interlinked and instantly update).
• ‘Multiple Document Interface’, allowing multiple forms to remain open simultaneously.
• Extensive service user and care worker records.
• Supports ‘drag and drop’ visits between care workers/different times.
• Integrated SMS Text, email and roster optimisation modules.
• Integrates with electronic monitoring, third party systems (commissioning, finance, payroll).

Benefits

• Match service user requirements with suitable care worker resources, skills.
• Manage rapidly changing service requirements efficiently.
• Mobile solution provides real time view of staff activity.
• Optimise rosters for one, and multiple care workers.
• Manage available resource, flagging in advance where deficiencies could arise.
• Manage training requirements, health and safety, QA reviews.
• Offer visits to care workers via integrated SMS Text service.
• Integrated mobile solution streamlines paperless business process.
• Highly configurable alarms to meet business and commissioner rules.
• Easily manage multiple service offerings for public and private customers.

£90 a user a month

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidmanagementteam@oneadvanced.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

881598214252740

Contact

Bid Support
0330 343 8000
bidmanagementteam@oneadvanced.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: N/A
• System requirements:
  • Client PC: Window's 8.1 X64, Windows 10 X64
  • Citrix Client
  • Internet Access

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: For all priorities clients should expect to receive confirmation that an Incident has been raised via email within one hour. Clients may also receive additional information or be contacted by a Support Professional within this hour, depending on the priority of the incident raised.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Advanced will provide a multi-tiered telephone based Service Desk, supporting our services in-line with the Clients Terms and Conditions. ; Our Service Management processes are based on the ITILv3 framework and ISO 20000 standard for IT Service Management.; Advanced have multiple support offerings based customers' requirements ranging from our standard offering of normal business hours to our premium service which is available 24/7 365 days per year via the following means:; • Telephone; • Email; • Customer Portal; All support will be provided by remote access in-line with the clients own security policies. Onsite support can be provided subject to contract and may incur additional cost.; As part of Advanced’s continual improvement plan, periodic service reviews will be scheduled with the client to review the ongoing support services; to include the support model and agree any relevant changes.; Support or Service Levels are agreed with the customer at the Service Design phase to ensure that we're able to provide a service that meets their business requirements. Our standard offering for application support consists of the following target response times. ; Priority 1 - 1 Hour; Priority 2 - 4 hours; Priority 3 - 8 hours; Priority 4 - 24 hour
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: A full consultative approach is taken and appropriate consultancy and training is given in line with the go live. Ultimately Advanced understand that every customer is different and will tailor the methodology around the needs of each individual customer/council.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Written into any contract is an exit clause. We are able to run through a number of options with the customers and provide a tailored archiving solution that suits their needs.
• End-of-contract process: A contract extension will be offered to continue using the software, if this is not signed an ‘out of contract’ service will continue (without explicit cancellation from the customer) which will be charged at an unfixed rate.; ; When a contract ends explicitly, Advanced charge for the Exit Process because customer generated content is to be returned to the customer, or to an alternative supplier at the customer’s request and/or listed and/or certified as destroyed upon termination.; ; Advanced charges for these services on a time and materials basis, at rates that are in accordance with the SFIA Rates Card for Staffplan SaaS portfolio.

Using the service

• Web browser interface: No
• Application to install: Yes
• Compatible operating systems: Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Dedicated mobile solution available for point of care usage
• Service interface: No
• User support accessibility: WCAG 2.1 AA or EN 301 549
• API: Yes
• What users can and can't do using the API: Our API allows integration with 3rd party systems to allow a master system to feed data into our application for read only usage, reducing data duplication and transcription errors. Allows for integration with 3rd party HR, CRM or social services. Our API does not allow full access to the system but is extensible allowing for additional data and functionalities as required.
• API documentation: Yes
• API documentation formats: PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Customers can customise the service in a number of ways:; - Terminology can be customised, providing their own translations and business terms. ; - Customers can add additional fields to the UI to capture additional business information. ; - Customised exports and reports can be designed to extract information as required. More complex customisation can be performed by the supplier on request i.e. reports, invoices, functionality. ; - Customers can customise security of any field/form/button at read, write or view at user or group level. ; - Customisation of mobile solution business rules and processes.; - Customisation of charge and pay rates for individual services or contracts.

Scaling

• Independence of resources: We run resource management profiles ensuring no single user can adversely impact another user. Due to active/active deployment, individual servers are only loaded to 50% under normal usage.

Analytics

• Service usage metrics: Yes
• Metrics types: We can provide statistics around data size, usage, audit and login audit.
• Reporting types: Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Microsoft- Bing Maps

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: There are a number of built in exports for 3rd party finance systems. These can be run by end users with sufficient privileges. Additional exports can be developed in app by the customer or via the supplier as required. Extracts for ETL reporting/BI performed from a dedicated reporting database. Datasets also available through CSV/ XML exports.
• Data export formats:
  • CSV
  • Other
• Other data export formats: XML
• Data import formats:
  • CSV
  • Other
• Other data import formats: XML

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: Robust backup policy with regular restore tests. Physical security restricts access to hardware and disks.

Availability and resilience

• Guaranteed availability: We undertake to provide a minimum of 99.95% availability. Although we do not always need it, we do set a contractual maintenance window of 4 hours per month, set in the small hours of a night. There are many users already on the infrastructure and we have proven to deliver at this level to them. The Managed Services environment has been purpose built between two active/active data centres for High Availability and resiliency to failure.
• Approach to resilience: Data is synchronously replicated between the two centres using Microsoft and web technologies including Hyper-V Server virtualisation and SQL Availability Groups. With the technology enabling a real time replica to be created at an alternate location, it provides operational continuity in the unlikely event of a partial or complete failure of either centre. ; ; Communication lines between the data centres, N3 and the Internet are resilient, with diverse points of presence, and have the ability to link to other data centres within the Advanced Group. ; ; Data is then in turn backed-up using Dell DR4100 Disk Backup Appliances, de-duped and then replicated in the alternate data centre. A full weekly backup is taken and a daily differential backup, each one being automatically verified with any inconsistencies automatically and immediately flagged to our team of database administrators.; ; A combination of the data centres’ significant infrastructures and our active/active operating model therefore delivers a flexible, robust and proven approach to disaster avoidance and resilience and provides a high degree of business continuity
• Outage reporting: In Line with our High Severity Support Incident Process, should the service become unavailable the customer will receive both a verbal and written notification of the outage. A verbal update schedule will be agreed with the customer who will also receive written updates for the duration of the outage. The written update will include details of any progress made and the time of the next update. Following the outage a root cause analysis (RCS) report can then be made available to the customer on request. A copy if our HSSI process, Email notification and RCA report template can also be made available on request

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: StaffPlan uses role based access to gain access to various modules of the system.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 30/06/2021
• What the ISO/IEC 27001 doesn’t cover: All of Advanced's operations on GCloud are within scope of the certificate.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: Information Governance Statement of Compliance (IGSoC) V14, L3, 100%

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: IGSoC Version 14
• Information security policies and processes: Advanced have implemented IS policies to cover Data Security, Information Security Systems, Acceptable Use, Data Protection, Patient Data, Mobile Working, Access Control and Monitoring. These are all outlined in our InfoSec Manual and supported by in-depth Policy statements. Key processes have been developed and implemented which include, but are not limited to, Secure transfer of data, access provisioning and incident reporting.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: The configuration and change management process ensures operational systems, services and application software are subject to change control. All staff are responsible for submitting completed change requests to the change authorisation board (CAB) using the change request form. Change requests forms, before submission to the CAB must be peer reviewed and pre-authorised by the appropriate system service owners and or business stake holder. All changes are recorded, tested and verified prior to implementation, (where possible), and are communicated to relevant members of staff and users as appropriate.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Vulnerability management is an essential component of Advanced Information Security Program and the process of vulnerability assessment is vital to effective vulnerability management. The vulnerability assessment process provides visibility into the vulnerability of critical assets deployed in the IT Infrastructure. The process comprises of identifying critical systems, their corresponding owners, vulnerability scanning on regular basis, determining and assessing potential vulnerabilities, documenting and establishing a time line to remediate critical vulnerabilities.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Advanced complies with protective monitoring in line with GPG 13.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Incident management control objectives are defined within our ISO 27001:2013 certified Information Security Management System and the procedures for Incident management are aligned to ITIL v3 industry best practice.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  We are committed to building a better tomorrow for our staff, customers and wider community through outstanding environmental sustainability performance. Our vision is underpinned by five core principles: ; ; 1. To protect the environment by reducing our carbon footprint.; 2. To reduce the environmental impact of our operational activities through effective management of our estate.; 3. To create and maintain a positive environmental sustainability culture.; 4. To maximise the positive impact of our sustainability actions through effective communication, collaboration and partnership.; 5. To fulfil all environmental compliance obligations and seek to exceed regulatory requirements.; ; To achieve this vision, we have a multi-step sustainability strategy, containing details of the overarching objectives, performance targets, key performance indicators and implementation mechanisms. It is continuously reviewed to ensure it is as strong as it can be. Our success also relies on effective engagement with staff, utilising and developing their skills, knowledge and understanding. ; ; We are proactive in the property management of our offices, maintaining pressure on landlords and staff to ensure energy efficiency. Home working is facilitated and encouraged, and unnecessary travel is minimised by the delivery of consultancy, training and implementation services remotely, where appropriate. Reducing the amount of paper we generate is a key focus, and we use recycled paper - which we then recycle ourselves. We have also taken steps to recycle other materials such as plastics and cardboard. We comply with WEEE regulations and recycle our electrical items. ; We are focused on our transition to a Cloud service company ensuring our customers have solutions which are future proofed and don’t require costly or energy inefficient hardware.
• Covid-19 recovery:

  Covid-19 recovery

  Advanced has a documented Health and Safety policy regarding Covid-19 Arrangements, which focuses on handwashing, hygiene, self-isolation and social distancing. ; ; We encouraged working from home, opening our offices only when government guidance was updated and promptly carried out a Covid-19 risk assessment. Our HR system was updated for employees to confirm their vulnerability status, allowing us to tailor support. ; ; Social distancing measures were introduced in our offices, e.g., staggered arrival and departure times, a one-way walking route around the office and workstations at a 2-metre distance. We continue to operate a desk booking policy to ensure an audit trail and line manager clearance. ; ; Working from home is undoubtedly challenging and may have a negative impact on the wellbeing of our employees. We hosted a wide range of virtual communal events throughout, to allow our staff to stay connected to each other e.g., quizzes, coffee mornings and time allocated for informal catch ups. ; ; We have also made changes to our approach to visiting customers on-site. Where appropriate, training and consultancy can be provided virtually.
• Tackling economic inequality:

  Tackling economic inequality

  Advanced is committed to tackling economic inequality. We are renowned for our recruitment processes which seek to eradicate biases that can perpetuate economic inequality. We hire for potential rather than based on experience. ; ; Our commitment to tackling economic inequality is also exemplified in our pay reporting transparency. In addition to the legal requirements to produce a Gender Pay Gap Report, we have also released our Diversity Pay Gap Report to ensure accountability and so that we can take steps to address economic inequality.
• Equal opportunity:

  Equal opportunity

  Cultivating a diverse workforce and inclusive culture is a priority for Advanced. Diversity of experience, age, race, ethnicity, culture, gender and sexual orientation provides a wide range of talent from entry level through to our leadership teams creating richer perspectives and a powerful frame of reference. ; ; Not only is it right to recognise and celebrate differences, and ensure everyone has the opportunity to thrive, but creating a culture that is genuinely committed to a meritocratic workplace is important to our success. Ensuring all our employees understand and engage with our values, and have the opportunity to realise their full potential, is fundamental to our business. ; ; Last year, we released our first Diversity Pay Gap that extends beyond the legal requirement for gender to ethnicity, sexuality, education, disability and socio-economic status. This data provides transparency and will aid us significantly on our journey to creating a fair and equitable workplace for all. ; ; Advanced is delighted to have been announced as one of the top 100 Diversity Leaders of 2020 across UK businesses following an independent survey carried out on behalf of the Financial Times. The award assesses diversity across gender, age, ethnicity, disability and sexual orientation, and ranks organisations in Europe on the extent to which they offer diverse and inclusive workplaces. The survey focused on two broad areas, looking at the scale in which employers promoted diversity within the workforce, and identifying companies that stood out when it came to encouraging diversity and equal opportunities. ; ; Advanced is renowned for its innovative recruitment process, which seeks to eradicate bias – unconscious or otherwise – when hiring. In our recruitment, we use tools that give us additional insight into intellect and attitude, and remove CVs from the interview process, so managers go in without preconceptions.
• Wellbeing:

  Wellbeing

  We take wellbeing very seriously at Advanced, all employees have access to the following initiatives to promote wellbeing: ; ; Our Employee Assistance Program (EAP) is a 24/7 phone line where our employees can speak to a trained professional regarding any matters. Whether that is related to their current workload, or whether it is related to their finances for example. This service is 100% confidential. ; ; Advanced continually run mental health webinars/sessions to show our employees what stress looks like and how to manage it, and we have recently announced the Friendly Faces scheme which is a network of colleagues who are open to listening and signposting. We will be running training for employees who wish to take part and make space for wellbeing conversations. ; ; The Wellbeing hub on our internal website is central point for resources, such as the Thrive app to which our employees have an access code. In addition, the Hub is a link to our partnership with Perks at Work who offer discounts and classes for wellbeing, fitness, and meditation. ; ; Our offices have been made more friendly and accessible than ever before as part of our office changes brought on by the new, flexible ways of working. All our offices now contain a ‘wellbeing room’, sharp boxes for needles and free sanitary products in all bathrooms (available to guests as well as our staff). ; ; We understand that working from home and being separated from one another is undoubtedly challenging and in some cases may have a negative impact on the wellbeing of our employees. ; Throughout the pandemic, we hosted a wide range of communal events virtually, to allow our stuff to stay connected to each other, even though they weren’t in the office together. Some of the events were quizzes, coffee mornings and time allocated for informal catch ups.

Pricing

• Price: £90 a user a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidmanagementteam@oneadvanced.com. Tell them what format you need. It will help if you say what assistive technology you use.