CTMS

Liberty Spark - Process Mapping

Liberty Spark is an online process mapping, analysis and management software that makes process improvement easy for everyone. Whether you are delivering Digital Transformation, Continuous Improvement, Quality Assurance and Compliance; Spark helps you engage teams and improve processes faster.

Features

• Intuitive Process Mapping
• Engaging Process Workshops
• Easy to use Process Library
• Powerful Process Analytics & Insights
• Process Collaboration
• Roles and Responsibilities Mapping
• Process Lifecycle Management
• Feedback for continuous improvement
• Process Health Tracker
• Connected process data model

Benefits

• Reduced time and costs associated with process discovery
• Reduced risk in digital transformation projects
• More efficient processes (time and cost)
• Knowledge retention
• Quicker onboarding of new starters
• Reduced time spent searching for process knowledge
• Easier continuous improvement to a wider audience
• Reduced time and costs for compliance audits
• Increased employee satisfaction and engagement
• Single source of truth for all processes and procedures

£6,500 a licence a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at david.keen@ctms-itsm.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

905080594723290

Contact

David Keen
01189338070
david.keen@ctms-itsm.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Liberty Spark can be used standalone or as an add-on to following Netcall applications: Liberty Create low code platform including Citizen and Tenant Hub Accelerators; Rent-IQ; Liberty RPA; Liberty AI; Liberty Converse CX - Omnichannel contact centre solution and virtual Chat Assistant
• Cloud deployment model: Public cloud
• Service constraints: The service is subject to planned maintenance, which will be notified in advance.
• System requirements:
  • Web Browser
  • Internet connectivity

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Target 90-minute initial response
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: As a browser-based interface, third-party tools deployed on the users' desktop or browser can be used to support user accessibility.
• Onsite support: Yes, at extra cost
• Support levels: We will provide a Standard level of support which will be included within the cost. This includes access to the Support Online Portal, and contact by telephone, chat or email to the remote support teams during contracted hours. A technical account manager will be provided.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide an Onboarding Service, which covers: ; • Strategy Definition; Project Plan, Governance Structure, Process Scope, Roles and Responsibilities, Process Architecture, use-case, standards.; • Workspace set-up and configuration. ; • Process Mapping Training.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Before the end of the contracted term, Users can export content out of Liberty Spark via the browser interface.; Process can be exported as PDF's, as images or into Visio files. Any report can be downloaded into Excel or .csv format.
• End-of-contract process: At the end of the contract, access to the platform will be suspended.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: All processes and associated content is accessible on both mobile and desktop devices, although Process Mapping is optimised for the desktop.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Liberty Spark provides an easy-to-use browser-based service interface. ; User permissions define who has access to certain features, be it a Viewer, Editor or Administrator.
• Accessibility standards: None or don’t know
• Description of accessibility: As a browser-based interface, third-party tools deployed on the users desktop or browser can be used to support user accessibility, for example, increased font size.
• Accessibility testing: None
• API: Yes
• What users can and can't do using the API: The system uses JSON:API standard. Detailed documentation will be provided on request.
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: The following can be customised for a Liberty Spark workspace:; • Workspace Colour Scheme and Logo.; • Diagram Template.; • Process Style sheet.; • Various other admin options to customise the behaviour of the workspace.

Scaling

• Independence of resources: We have an auto-scaling infrastructure built on 'serverless' functions and a robust monitoring system which alerts on significant load.

Analytics

• Service usage metrics: Yes
• Metrics types: Access and usage metrics can be provided upon request.
• Reporting types: Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: CTMS Service Management Ltd

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can export content out of Liberty Spark via the browser interface.; Process can be exported as PDF's, as images or into Visio files. ; Any report can be downloaded into Excel or .csv format.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • .xls, .xlsx
  • .doc, .docx
  • Visio
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • BPM X Change (Tibco Nimbus)
  • Visio import is on the product roadmap.

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: Other

Availability and resilience

• Guaranteed availability: Liberty Spark has an agreed Service Availability Target of 99.9%. Service credits can be discussed as part of your contract.
• Approach to resilience: Information regarding the resilience of the data centre is available upon request.
• Outage reporting: Netcall’s Cloud systems and services are proactively monitored for availability and system health by the event management process. System events and alerts of threshold breaches are detected by Netcall’s system management tools and these alert our Customer Support team of state changes, including service outages in any of Netcall Cloud service offerings.; Customer Support are responsible for informing service affecting outages to customers and these are tailored to match the business needs of the customer. The form of the communication can be either email or telephone to the customer’s service desk or preferred service contacts. The alert to the customer contains information on which service has failed, the likely effect it will have on customers IT service along with reference information for follow up. Netcall Customer Support then maintain regular updates to affected customers on the expected service restore time until de-escalation.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Liberty Cloud applications including Spark uses assigned roles and permissions to control user access. Liberty Cloud applications are accessed via a browser-based user interface; on sign-in the assigned roles and permissions are applied.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA Certification Limited
• ISO/IEC 27001 accreditation date: 12/11/2023
• What the ISO/IEC 27001 doesn’t cover: Netcall's ISO 27001 is certified around the protection of the Confidentiality Integrity and Availability (CIA) of data assets for all platforms, products, services and suppliers relating to the processing of data. The governance also extends to the premises where the assets are hosted.; The Statement of Applicability is a comprehensive scope that takes about a week of onsite auditing by an external auditor working closely with the critical teams from Operations (including InfoSec), the business and other stakeholders such as the client, data centre managers etc. The Netcall process owners also include the facilities, legal and finance teams. Therefore, ISO27001 will only exclude policies, controls and components that are not explicitly defined within the scope of the Statement of Applicability published for Netcall. ; The priority will always be to protect the CIA of the client data as per the Netcall solution and product design proposed to and contractually accepted by the client. The actual likelihood of any risks remaining unmanaged/missed through the comprehensive scope of controls in the SOA is low.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: NHS DSP Toolkit

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: It is also accredited to the NHS DSP Toolkit and CyberEssentials+
• Information security policies and processes: All Information Security Policies and processes are documented and audited into the ISO27001:2013 Info Sec Statement of Applicability. It lists the Netcall controls, policies and work instructions documented and recorded for the standard. The SOA in PDF form can be shared on request. All process owners are internally and externally audited for compliance with the policies set out in the SOA and listed below:; • Quality Policy. ; • Security Guiding Principles. ; • Information Security Policy. ; • Clear Desk Policy. ; • Keyholder Policy. ; • Access Control Policy. ; • Information Classification Policy. ; • Data Protection Policy. ; • Network Access Control Policy. ; • Information Exchange Policy. ; • Password Policy. ; • Cryptographic Policy. ; • External Parties Access Control Policy. ; All the policies are reviewed throughout the year and recorded in the Audit Calendar.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Netcall's Change Management processes are audited under the ISO27001:2013 and ISO9001:2015 Info Sec standards. The statement of applicability for the standards can be shared. No change will be permitted unless it has been approved by the relevant authority at Netcall against the relevant tracker ticket.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Netcall's compliance involves running external and internal vulnerability scans as part of our vulnerability management system to support the vulnerability management and internal patching process. Escalations are through our tracker system as part of the Risk Assessment/Vulnerability Management Process. These scans form evidence used to our InfoSec accreditations. The scanning vulnerabilities are prioritised within the reports, fed into the tracked Risk Assessment and resolution Process, reviewed by Netcall’s operations and relevant process/risk owner for resolution. Where necessary threat control and corrections/prevention tickets are raised and linked to the original vulnerability to audit the fix and risk.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Netcall manages and controls compromises to the confidentiality integrity and availability of information assets through its Incident Management System. Control/ownership is centralised yet overseen with stakeholders. The process is ISO 27001:2013 compliant, linking risks to treatments and SLAs. Compromises are monitored, tracked, recorded in several ways:; • Being raised by customer/production support calls.; • Via account managers. ; • After changes.; • Risk reviews. ; • Actual security incidents.; • Picked up via IDS/IPS systems or event identification. ; The owner is the Information Security Manager working with the respective Process Owners and impacted stakeholders to resolve any compromises and apply preventative actions.
• Incident management type: Supplier-defined controls
• Incident management approach: Netcall uses native and licensed software to manage risks and is ISO27001:2013 compliant for Incident Management. It is tracker-based linking risks, assessments into corrective and preventative processes. Compromises are recorded after changes, risk reviews, security incidents, event identification or, in worst case scenarios, invoking the Business Continuity Plan.; The owner is the Information Security Manager working with the respective Process Owners and impacted stakeholders to identify, contain and resolve an incident. Our Tracker to prioritise, tailor and make the risk progress visible to stakeholders.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fighting climate change; The Netcall Group is on track to achieve its Net Zero goal by 2026. Some of our recent activities to fight climate change include:; • Carbon Offsetting - Netcall has purchased carbon offsets Highland Carbon. The native woodland restoration project will see the planting of 100,000 native tree species.; • Environmental Management System (EMS) - Built on our low-code platform (with partner DI Blue), the EMS supports the management of key actions and improvements to environmental performance. The app is available to Netcall customers through the AppShare and enables organisations to implement the ISO14001:2015 standard.; • Renewable Energy - The purchase of 100% renewable electricity for our offices has been implemented since the 2020 baseline. Our preferred cloud provider (AWS) uses 100% renewable energy in Europe.; • SBTi - This independent validation provides a clear path to reduce emissions to net zero. Netcall is one of only 18 software businesses in the UK to have set targets with the SBTi.; • EcoVadis Bronze Award - Awarded to Netcall in recognition of the Group’s sustainability achievements.; Greener; Netcall’s strategy expands beyond its operations, our customers benefit from solutions that:; • Reduce resource requirements and associated office/transportation costs, such as contact centre agents working from home.; • Use technologies such as Automatic Speech Recognition (ASR), Optical Character Recognition (OCR), and Computer Vision to improve efficiency and lower operational carbon intensity and,; • Are cloud-based and leverage cloud operators' large-scale efficiency innovations combined with their ongoing carbon reduction strategies.; Digital transformation by increasing automation and improving stakeholder engagement/communications, makes processes/interactions more efficient and supports the reduction of Co2 for our customers and their eco-systems.

  Tackling economic inequality

  Netcall as an employer:; This ethos of improving lives and inclusivity extends to our workforce. As a UK-based SME, we have a diverse workforce distributed across the country. Our flexible and home working policies promote a healthy work-life balance, reduce commuting costs for staff and CO2 emissions, and open opportunities to a wider talent pool who may feel restricted by commuting distance, have disabilities which would restrict commuting options or are restricted due to financial circumstances etc. We actively encourage employees to continually develop their skills and have formal training plans to support this. In line with this we regularly support student placements and apprenticeships – in fact some of our senior leaders started with Netcall as apprentices.; Netcall as a responsible business; During the year, as elements of winning bids, Netcall has committed to provide digital services to reduce digital exclusion, provide connectivity solutions to reduce digital exclusion, digital training and support to residents at risk of digital exclusion, provision of in-kind equipment, and materials or resources to VCSEs/community projects.; We embrace Fair Payment practices with our supply base to pro-actively support SMEs. Our average payment timeframe being 10 days in 2023, down from 12 days the previous year.

  Equal opportunity

  Netcall is committed to encouraging equality, diversity and inclusion in the workplace, and eliminating unlawful discrimination. We embed equality and diversity into our planning, our decisions and our actions. Our aim is for our workforce to be truly representative of our society and for each employee to feel respected and able to give their best. Employees are expected to treat Netcall stakeholders (suppliers, customers, partners etc) with respect and consideration in line with company policies. Netcall takes complaints of bullying/harassment/victimisation/unlawful discrimination by fellow employees/customers/suppliers/visitors/ the public and any others, in the course of the organisation's work activities, very seriously. Such acts will be dealt with as misconduct under the organisation's grievance or disciplinary procedures.; For employees with protected characteristics (c.11% of our workforce in 2023) support/adaptations are provided and (where appropriate) contracts allow for remote/flexible work.; We have an anti-slavery policy in place that is adhered to. We have salary benchmarking and job evaluation methodologies in place to ensure that employees are remunerated fairly. We regularly monitor our employment practices/demographics to ensure fairness and to encompass any changes in the law. Netcall is an accredited Living Wage provider.; We make opportunities for training, development and progress available to all staff, who will be helped and encouraged to develop their full potential. Netcall aims to:; • provide a thorough induction for all new appointees and people moving jobs.; • equip staff with the technical skills required.; • ensure staff understand their role and expected performance standards by having accurate role profiles and performance reviews.; • link individual development activities with the Company’s strategic aims.; • ensure equality of access to all development opportunities.; • ensure the effective delivery of mandatory training e.g. Health and Safety, Equal Opportunities etc.

  Wellbeing

  Fair Work First.; Netcall's Fair Work First commitments are demonstrated by our compelling employee value proposition which has a real focus on wellbeing and engagement. Our People plan focuses on what it means to be a good employer/responsible business and ensure better inclusion, fairness and opportunity for all. This includes:; • appropriate channels for effective voice, e.g. trade union recognition.; • investment in workforce development.; • no inappropriate use of zero-hours contracts.; • actions to continually monitor and tackle any potential gender pay gap and create a more diverse and inclusive workplace.; • payment of the real Living Wage (accredited living wage employers).; • offering flexible and family-friendly working practices for all workers from day one of employment, and; • opposing the use of fire and rehire practice.; Health and Safety.; All employees are given access to the Health & Safety management system. This is where the Health & Safety policies and risk assessments are held, and where employees complete their H&S training/DSE assessments. ; Employee Support.; All employees have free access to a 24/7 employees assistance programme to support their physical, mental and financial wellbeing. ; Netcall has accredited Mental Health First Aiders who are available to colleagues to support their wellbeing.; Wellbeing for our society.; Our commitment to wellbeing extends to our customers and their citizens, tenants and patients they serve. Many of our solutions empower citizen self-service at a time and via a channel of their choice, improving the experience they receive from their essential public sector services.; Some examples of our charitable work over the past year include:; • A charitable donation to a school for a wellbeing centre bringing much value to students and families across the community in Royston, Hertfordshire.; • Support for the Big Tea for NHS event included matching staff donations.

Pricing

• Price: £6,500 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at david.keen@ctms-itsm.com. Tell them what format you need. It will help if you say what assistive technology you use.