DATAQUEST (HEATHROW) LIMITED

Acronis Cyber Protect Cloud - Backup as a Service (BaaS)

Our BaaS is a safe, scalable, hybrid cloud solution allowing you to minimize data loss across your infrastructure and workloads with the best backup and recovery technology from Acronis. The service is available in consumption-based or per workload licensing models. Storage can either be local, in the cloud or both.

Features

• Unites backup and next-generation, AI-based anti-malware, antivirus, and endpoint protection
• Backs up multiple environments - Physical, Virtual, Cloud, Microsoft 365
• Multiple backup storage options - local, cloud, multiple public clouds
• Immutable storage ensure backups cannot be encrypted/deleted by ransomware attacks
• AES-256 data encryption for data in transit and at rest
• Protects MySQL, Oracle, SAP HANA
• Geo-replication available
• Backup options range from complete physical/virtual servers, disks/volumes, individual files/folders
• Restore complete physical/virtual servers or disks/volumes or individual files/folders
• Single pane of glass web portal for managing your backups/restores

Benefits

• Data High Availability, multiple copies of data, AAG, DAG
• Fast Remediation - Restore data to any device
• Downtime Prevention - AI based anti-malware, regular scanning of backups
• Lower TCO - improved performance, internal SLA & IT efficiencies
• Streamlined Protection; Integrated data protection, malware prevention & security controls
• Continuous Data Protection: safeguards data as it's created
• Fail-safe_patching: eliminates the risk of bad patches rendering systems unusable
• Forensic backup: manage compliance requirements
• Safe recovery: Avoid malware reinfection through up-to-date patching & scanning
• Real-time alerts on malware/vulnerabilities/natural disasters that affect data protection

£0.07 to £0.15 a gigabyte a month

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@dqgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

890093793888900

Contact

Michael Lyons
07799894781
gcloud@dqgroup.com

Service scope

• Service constraints: Poor connectivity and slow firewalls can reduce the throughput of data from customer sites.; ; Service management and associated services may be impact if the customer is running an operating system that has reached the end of it's support life.
• System requirements:
  • Sufficient internet bandwidth
  • Sufficient firewall throughput
  • Where applicable application vendor requirements must be followed

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Support is provided through a Contracted Service Agreement. This Agreement is purchased separately to the BaaS solution. Depending on the level of service purchased the period of cover is either 24/7 or Normal hours.; ; Normal hours for telephone/email support for product related issues from Dataquest are: Monday to Friday 0900-1730 excluding public holidays; ; Response time are within 1 hour for all services depending on the contracted period of cover
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: All support is co-ordinated by each dedicated customer account manager and levels are agreed on a customer-by-customer basis. A technical account manager or cloud support engineer can be appointed, as requested.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: All of Dataquest's managed cloud service contracts start with an initiation meeting, it is at this point that the Customer will be trained on how get started and how to interact with Dataquest 's service desk. This training will take the form of either remote or onsite training dependent on the customer's preference. Documentation will also be provided.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Before the end of a contract is reached the assigned Service Delivery Manager at Dataquest will reach out to the customer to discuss and agree on a contract exit strategy. Part of the agreed strategy will include data extraction and deletion from the Dataquest infrastructure. Furthermore the customer can add change or remove their data at any time with or without Dataquest's input.
• End-of-contract process: Where a client chooses to terminate their subscription with Dataquest, we are able to provide support for data extraction and/or migration where reasonable. We will agree a point of service termination with the client when the transition is complete. At this point, our dedicated support and technical teams will cease to provide any services. We will work to ensure that this transition is seamless.

Using the service

• Web browser interface: Yes
• Using the web interface: Where a Buyer opts for Dataquest's self-managed IaaS they will be able to configure their environment by using the VMware tool Cloud Director. (formerly vCloud Director)
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: They can not access anything other than their own environment. They will have limited access to vCentre
• Web interface accessibility testing: None
• API: No
• Command line interface: No

Scaling

• Scaling available: No
• Independence of resources: We use a number of tools to monitor our infrastructure and alert the support team accordingly. Furthermore we use tools within VMware to dynamically load our infrastructure.; We also do not over sell the capacity - vCPU is on a 4:1 ratio, RAM is on a 1:1 ratio and we do not thin provision the SAN.
• Usage notifications: Yes
• Usage reporting:
  • API
  • Email
  • SMS
  • Other
• Other usage reporting: Dataquest will call the customer, as well as automated email alerts and can configure API integration, as well as SMS depending on customers environment.

Analytics

• Infrastructure or application metrics: Yes
• Metrics types:
  • CPU
  • Disk
  • HTTP request and response status
  • Memory
  • Network
  • Number of active instances
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Managed Service wrap covering; Backup/restore & integrity check

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: Yes
• What’s backed up:
  • Virtual Machines
  • Active Directory
  • SQL
  • Exchange
  • Sharepoint
  • File data
  • Short , Medium and Long Term storage
  • 0365 Backup
• Backup controls: Users can create there own backup schedule through a web portal. We can provide advice on what retention cycle to follow based on the customer's data protection objectives along with any compliance requirements.
• Datacentre setup: Multiple datacentres with disaster recovery
• Scheduling backups: Users schedule backups through a web interface
• Backup recovery:
  • Users can recover backups themselves, for example through a web interface
  • Users contact the support team

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: Each service is provided with a guarantee of availability at contract level and sanctions in case of the service availability dropping below guaranteed level.
• Approach to resilience: Available on request
• Outage reporting: An API, email alerts, SMS

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Access to management interfaces and support channels is restricted through a combination of username and passwords, multifactor authentication, firewalling, IP restrictions, the use of bastion hosts as appropriate.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Devices users manage the service through: Dedicated device on a segregated network (providers own provision)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Standards Institute (BSI)
• ISO/IEC 27001 accreditation date: 19/09/2022
• What the ISO/IEC 27001 doesn’t cover: No software development on premise
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: A mature security program is in place. Head of Compliance manages the company’s risk through security technologies, auditable work processes, and documented policies and procedures such as; Acceptable Use Policy (AUP), Access Control Policy (ACP), Change Management Policy, Information Security Policy, Incident Response (IR) Policy, Remote Access Policy, Email/Communication Policy, Disaster Recovery Policy, Business Continuity Plan (BCP). These policies are just some of the basic guidelines Dataquest use to build successful security programs.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: The key elements of Dataquest's configuration management are:; version control, baseline and release information, audits & review; documented process and build, integrate and deploy scripts.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Evaluated and appropriate measures are taken to address any associated risks; management of technical vulnerabilities, restrictions on software installation, information systems audit controls. In accordance with Dataquest’s ISO 27001 ISMS (technical vulnerability management) testing is carried out at least once annually and when applicable patches to the system are introduced to the main systems, when new network infrastructure or applications are added, if significant upgrades or modifications are applied to infrastructure or applications and end user policies are modified.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: PMCs used to assist Dataquest in the protection of its staff, assets and information and to assist in the investigation of misconduct or criminal activity. Accurate time in logs, recording relating to business traffic crossing a boundary,recording relating to suspicious activity at a boundary,recording of workstation, server or device status, recording relating to suspicious internal network activity,recording relating to network connections,recording of session activity by user and workstation,recording of data backup status,alerting critical events, reporting on the status of the audit system,production of sanitised and statistical management reports and providing a legal framework for protective monitoring activities.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: As part of Dataquest's service operation, incident management aims to manage the lifecycle of all incidents. Our primary objective is to return the IT service to users as quickly as possible. The incident management sub-processes and objectives are aligned to ITIL and ISO 27001:2013 standard. Incident management support, incident logging and categorisation, incident resolution, incident monitoring and escalation, incident closure and evaluation, pro-active user information and incident management reporting.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: Yes
• Who implements virtualisation: Supplier
• Virtualisation technologies used: VMware
• How shared infrastructure is kept separate: VLANs; Each customer's environment is protected via a Next Generation FireWall.

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: Design PUE of less than 1.3; Highly efficient chilled water cooling system configured; as N+1; Highly efficient UPS systems; DCIM metering and monitoring; Waste heat reuse in communal parts; Advanced cooling design, utilising VIRTUS air; flooded room principle; Free cooling chillers

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Dataquest recognises the importance of achieving global CO2 neutrality, we are taking proactive steps in becoming carbon neutral by 2050. We have also adopted a responsible approach by working with supply chain partners and third parties who share this commitment so together we can drive CO2 emission down to net zero. Through ISO 14001, Dataquest aims to achieve long-term sustainability goals, ensuring a greener and more environmentally responsible approach to business. As part of our commitment to society, our people and the environment, Dataquest completes a thorough assessment of its business sustainability practices every year through EcoVadis, the global standard for business sustainability ratings. The EcoVadis process validates our sustainability commitments, practices and performance, and offers a clear roadmap for continuous improvement.

  Covid-19 recovery

  Covid-19 caused significant and unprecedented impact across all global supply chains. Dataquest was able to respond favorably due to its robust systems and processes. In the wake of the pandemic, Dataquest continues to actively review and respond to risks and uncertainties that has affected the whole UK economy and the business environment from the pandemic. We are optimistic that Dataquest has come out of this stronger than ever, given that technology has potentially been the largest beneficiary of this crisis. We are seeing significant, undeniable changes in behavior, and tech adoption across sectors at levels never seen before.

  Tackling economic inequality

  Dataquest is committed to tackling economic inequality at root, from creating new businesses and new employment opportunities, to improving education and training, Our overriding vision is to help lower the unequal distribution of income and opportunity between different groups in society.

  Equal opportunity

  Dataquest provide equality of opportunities for all employees by providing a working environment free from unlawful discrimination, harassment, bullying or victimisation on the grounds of sex, marital status, sexuality, disability, age, race, colour, ethnic origin, nationality, religious or political beliefs. This principle will equally apply to recruitment, training, promotion, dismissal, transfer and all benefits, terms and conditions of employment. Inclusion and Diversity (I&D) is a foundational principle at Dataquest. It is at the core of all we do and drives us to build and reinforce an inclusive culture. We recruit, develop, retain, and promote diverse talent. We continue to build partnerships with diverse organisations and develop resources to support diverse employees. Our leaders are held accountable to actively support I&D in words and actions.

  Wellbeing

  We’re committed to ensuring our teams maintain high levels of physical and mental wellbeing. There is a strong focus on ensuring work is enjoyable at Dataquest. We have various team-building activities and events, and we host staff parties and socials throughout the year. We know the importance of employee wellbeing and how this can affect not only our team but also business performance. Our priority is to be proactive, so employees can gain awareness, education, and support to successfully function at work and at home, free from factors which may negatively impact upon their health. We provide access to professional coaching which looks to optimise their professional and personal development.

Pricing

• Price: £0.07 to £0.15 a gigabyte a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: The trial encompasses a fully functional suite of Acronis Cyber Protect Cloud services. This can run initially for up to 30 days.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@dqgroup.com. Tell them what format you need. It will help if you say what assistive technology you use.