SaaSam UK Limited

Agiloft Contract Lifecycle Management (CLM) software

The Agiloft Contract Lifecycle Management Solution delivers a flexible scalable and integrated contract management system that automates the entire contract life cycle. Agiloft is designed to map any business process, from the simplest to most complex, on a no-code platform.

Features

• Multiple access levels with fine-grained permissions controls
• Generate contracts: using dynamically populated templates and clause library
• Automated workflows: including sequential, parallel, and conditional
• Time-based notifications, reports, and dashboards
• E-signature: direct connectors to Adobe Sign and DocuSign
• Industry leading security with activity and audit trail (GDPR compliant)
• Open Integrations: director connector to MS365, APIs, scripting
• Built on a no-code platform for easy maintenance & configurability
• Power search by keyword, natural language or filters including OCR

Benefits

• Alleviate the frantic searches for data across different systems
• Generate Contracts with One Mouse Click
• Automate the entire contracting process including notifications and hotlinks
• End the guessing with deep, broad, and actionable analyses
• Reduce sales cycle times bogged down in redlines
• Relieve the pain of slow, siloed, non-collaborative contracting processes
• Flexible Licensing: to suit a wide range of user types
• Remove doubt from contract performance tracking
• Enforce procedural compliance

£1,700.00 a licence a year

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at solutions@saasamgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

886103426151882

Contact

Calum Johnstone
+44 (0) 7398 201 936
solutions@saasamgroup.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: Agiloft schedule monthly maintenance outages that are performed outside of the server regions business hours. Agiloft's platform is a web-based solution that is available 24/7 using all common browsers. The hosted service is provided by AWS data centers, within the EEA.
• System requirements:
  • Buyers must purchase Agiloft software licenses from SaaSam
  • Services are limited to a browser.
  • Training is required and is provided via multiple methods
  • Recommended 40 hours Implementation Consulting Service minimum

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Standard support tickets lodged via the SaaSam web self-serve support portal will be responded to within 4 working hours. SaaSam has a web self-serve support portal available to users of the Agiloft platform to search the knowledgebase and submit requests. SaaSam support is provided during business hours, which are; Monday to Friday, 9:00 am to 5.30 pm (except on; public holidays), in the following countries: UK, Ireland, USA, Australia and New Zealand. SaaSam has an Admin-on-Demand service which can be purchased.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Standard support is included in the license cost. SaaSam offer an Admin-On-Demand service at additional cost (talk to the team at SaaSam for more information). SaaSam provide an Account Manager.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: SaaSam encourage expected users of the Agiloft platform to be involved from the implementation kick-off meeting (especially Admin users). SaaSam provides regular "Show & Tell" engagement meetings throughout the implementation to show the project team and expected users how their Agiloft platform is starting to look. Towards the end of the; implementation, SaaSam provides an Administrator Handover, Print Template Training, Train-the-Trainer Training, and 'as-built' System Documentation to ensure a successful Go-live. Agiloft has comprehensive resources (e.g., Help/Wiki, release notes, data sheets, white papers, online trainings, videos and slides, demo videos, blog and community forums) that are included in the licensing pricing. Agiloft online University provides three levels of admin training and certification that includes hands-on exercises and quizzes. There is also ongoing events and; webinars.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Agiloft will continue to make Buyers data available to the Buyer for export or download (via file export) as provided in the standard administrative interface documentation for 30 days after the termination date.
• End-of-contract process: It is the Buyers responsibility to extract the Buyers data at the conclusion of the contract. SaaSam provides an Admin-on Demand service for purchase should the Buyer wish to engage SaaSam to conduct the data extraction on their behalf.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The Agiloft platform will automatically resize depending on the screen it is being accessed through. There are differences between the mobile and desktop service. Mobile interface is a simplified user-interface.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Integrations and integration methods provide for linking to fields in other databases, real-time integration via Web Services/SOAP and REST APIs, scripts, and Open Engine sync. View and test REST API methods directly in your system: ; ; - Explore convenient, interactive documentation of our REST API methods and responses using Swagger. The documentation is available directly; in your Agiloft knowledgebase and provides the; most up-to-date information of your Agiloft; instance. ; ; - The documentation inside Agiloft showcases REST information using the fields and tables specific to your system. You can even call the API from the documentation to test it out.; ; In addition, the values and parameters included in REST calls can be formatted in JSON.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: The Agiloft Contract Lifecycle Management platform is; readily configurable, customisable and extended using the wizard-based admin interface. Users with the appropriate level of provided training will be able to navigate the wizard-based admin interface to configure and customise the platform. ; ; SaaSam also offers an Admin-on-Demand service where our experienced implementors will take on administering your Agiloft platform, should you chose. ; ; Built on a no-code platform, Agiloft comes with fully customisable best-practise functionality to manage any contracting process. ; ; Additional out-of -the-box applications and modules are available to extend the Agiloft platform to other business processes such as: Sourcing and Supplier Information Management, Legal, HR, and other Request Management, Task Management, and Workflow and Business Process Management. ; ; SaaSam has been leveraging the Agiloft platform for 12+ years and our UK-based team can analyse your business requirements and design them within the Agiloft platform.

Scaling

• Independence of resources: Agiloft has been tested with over 10,000,000 records and 100,000 active users, and the number of records and concurrent users does not place a measurable load on the system. For additional information, please contact SaaSam to obtain a copy Agiloft's Scalability and Redundancy Whitepaper.

Analytics

• Service usage metrics: Yes
• Metrics types: License usage can be viewed within the Contract Lifecycle Management (CLM) system.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Agiloft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: All Buyer data can be exported from Agiloft. Data can also be exported to other systems, manually or at scheduled intervals.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Xlsx
  • JSON
  • XML
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Xlsx
  • JSON
  • XML

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: As part of the Hosted Service, Agiloft will take all reasonable measures to keep uptime at or above 99.7%. Agiloft do not publish historical availability stats. Agiloft provides unlimited scalability. Agiloft's EJB-based technology platform handles a database of ten million records as easily as a database of five thousand. Scale your staff from 3 to 30,000 users without changing platforms. Agiloft is a true multi-threaded, multi-process application that fully exploits the power of multicore processors. It supports multiple concurrent background processes such as multiple timer-based rules, full-text search indexing, backups, and email processing. Agiloft’s Hosted Service ensures high availability and fully recoverable data. Based on more than ten years of experience offering hosted software solutions, Agiloft's superior infrastructure provides the reliability you can count on.
• Approach to resilience: Agiloft's disaster recovery plans are tested at least annually and upon any significant change. Policies and procedures are reviewed and updated based on the results of the test.
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Agiloft offers multiple access levels to provide complete granular field-level control over data access.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: A-LIGN
• ISO/IEC 27001 accreditation date: 12/06/2023
• What the ISO/IEC 27001 doesn’t cover: N/A
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: No
• Security governance certified: Yes
• Security governance standards:
  • CSA CCM version 3.0
  • ISO/IEC 27001
  • Other
• Other security governance standards: Agiloft is SOC 1, SOC 2 Type 2, and ISO 27001 certified. The Agiloft Hosted Service is provided using Amazon Web Service (AWS). AWS offers full regulatory compliance with key standards such as SSAE 18, SOC 1 and 2, GDPR, HIPAA, Cyber Essentials Plus and more.
• Information security policies and processes: Agiloft is SOC 1, SOC 2 Type 2, and ISO 27001 certified. Agiloft's Hosted Service is provided using Amazon Web Service (AWS). AWS offers full regulatory compliance with key standards such as SSAE 18, SOC 1 and 2, GDPR, HIPAA, Cyber Essentials Plus, and more. A complete copy of the Agiloft Security Information Pack can be provided upon signing an MNDA with SaaSam.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Agiloft follows modern product management principles, beginning with identifying problems and related personas, brainstorming and testing proposed solutions, planning of prioritised solutions with a broader team, and delivery and tracking of solution performance. In different phases of this cycle, different methods of documentation are used, leveraging available tools such as Jira, Confluence, Miro, Figma, and MS Word to support problem definition, acceptance criteria, user experience, technical architecture, and testing approach.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Agiloft has a Patch Management Program which requires that all patches and/or hot-fixes recommended by the OEM are installed upon release and remain current. Administrative owner groups are also required to maintain processes to keep current on required patches/hotfixes and to be notified of security vulnerability advisories. Servers are patched as soon as security patches are made available by OS vendors. For other assets/applications critical security patches are installed within one day of their release; non-critical patches are installed with the week. CLM automatically installs security patches onto the server for our Hosted Service customers.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Agiloft uses FIM (file integrity monitoring) which notifies staff about filesystem-level changes which could indicate compromise. Agiloft investigates promptly if any anomalies are found.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Agiloft has an Incident Response Plan in place. A copy of the Agiloft Incident Response Plan is contained in the Agiloft Security Information Pack and can be provided once a Mutual Non-Disclosure Agreement is in place between SaaSam and the Buyer. SaaSam consistently meets its SLA targets. SaaSam has an established, structured way of investigating and resolving incidents that have been classified as bug. Please refer the Terms and Conditions document for a complete breakdown of the priority response targets for incident management.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  SaaSam takes environmental responsibility and sustainability seriously and we have woven the elements of carbon reduction, ethical purchasing, waste reduction and community support into our business practices and policies. We believe all businesses have an important role to play as we transition to a low-carbon economy, so we are doing our part within our company, our homes and our local community to make a difference. SaaSam's Sustainability Policy can be viewed in full on our website. SaaSam also has a Sustainability Plan to ensure that we implement environment, business, and social initiatives to reach out business sustainability goals. The plan encompasses five core objectives; to actively encourage the use of reusable plastic and waste, to use less energy and water, to reduce travel both to and from the office and to and from meetings with customers, to identify opportunities to work with businesses that use ethical practices pertaining to the environment, employees or local communities, and to educate peers about corporate sustainability. A copy of SaaSam's Sustainability Plan can be provide upon request. SaaSam is committed to achieving a Carbon Reduction Policy and a Carbon Reduction Plan to align with UK Public Procurement legislation.

  Equal opportunity

  SaaSam is passionate about ensuring all people are treated fairly, kindly and with respect (in workplaces and everywhere else). SaaSam is committed to conducting business responsibly and ethically and to ensure all aspects of our business practices are free from any form of slavery such as unpaid or underpaid servitude, child labour, people smuggling, human trafficking and forced labour. SaaSam is under the threshold for requiring a Modern Slavery Statement, however due to our total commitment in this regard, a copy of SaaSam's Modern Slavery Statement can be viewed on our website. SaaSam is passionate about ensuring all people are treated fairly, kindly and with respect (in workplaces and everywhere else). SaaSam is committed to conducting business responsibly and ethically and to ensure all aspects of our business practices are free from any form of slavery such as unpaid or underpaid servitude, child labour, people smuggling, human trafficking and forced labour. SaaSam is under the threshold for requiring a Modern Slavery Statement, however due to our total commitment in this regard, a copy of SaaSam's Modern Slavery Statement can be viewed on our website. SaaSam primary method of engagement with Buyers is via virtual communication and connection. By delivering our implementation projects in this way, we aim to facilitate involvement of all people regardless of their working environment or ability to get to a specific location.

  Wellbeing

  SaaSam encourages and facilitates an awareness of a healthy work environment. We have a dedicated Team Wellness SharePoint page where team members can read about how to stay healthy and active. This philosophy is emulated in the project teams responsible for the implementation of SaaSam's software support services. The Project Managers are tasked with coordinating the meetings and workshops and are encouraged to weave wellness exercises for the body and mind into their agenda's. This includes 'Deskercise' routines to avoid aches and pains while working at desks, and mind games to ensure all participants are mentally focused and ready to tackle the challenges of the day's agenda.

Pricing

• Price: £1,700.00 a licence a year
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at solutions@saasamgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.