CAPITA RETAIN LIMITED

Retain

Retain is a Resource and Talent Management platform.

Our mission is to unlock agility, people, and business performance​. Retain is a deeply featured, globally scalable, professional services automation platform with everything you need to run and manage a people-based business.​

Features

• Schedules and Resource Plans
• Notifications and Audit Histories
• Talent and Skills Profiles
• AI Suitability Matching
• Reporting and Analytics
• Roles and Talent Marketplace
• Scenario Planning
• Project Health and Milestones
• Configurable Security Profiles
• People Finder

Benefits

• 360 view of workforce
• Improved Utilization
• Improved revenue/profits
• Resource audits and history
• Role and skills demand reporting
• Unbias and inclusive resource management
• Single pain of glass for time accounting

£12.50 to £20 a user a month

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Rob.Thomas@advt-group.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

905855111588824

Contact

Robert Thomas
+447977414640
Rob.Thomas@advt-group.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: There are no service constraints. Planned maintenance details are in our service charter.
• System requirements: Internet Browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our service charter is available on request, this contains all of our SLAs.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: No
• Support levels: Our customers have access to the customer portal 24 hours a day, 7 days a week. The Support Desk's standard hours are 0900 to 1730 Monday to Friday (GMT/BST), excluding Bank Holidays in the United Kingdom. At our entire discretion, the support team may be available between 0700 to 1900 to assist customers and we can also provide an out-of-hours 24/7/365 service for P1 incidents upon request for an additional charge.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: We have online help documentation and onboarding documentation that we issue during implementation. Our professional services team offer a full onboarding service inclusive of training and hypercare.; ; Our service portal also has a knowledge base and FAQs.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: In the event of termination of the contractual relationship we will return all data belonging to users in our standard .csv format. We will do this within 90 days subject to a formal termination in writing and service request being logged.
• End-of-contract process: Access to all core Retain Modules and functionality. We reserve our right to charge additional fees for new features and modules in our roadmap. Access to these services terminates at the end of the agree contract.; ; Professional Services and Testing Environments are subject to additional charges.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Chrome
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: There is a mobile application with reduced functionality on IOS and Android. ; ; It currently allows a user to:; - View future bookings; - View your booking schedule; - View Booking Detail; - View Job Details; - Comment on bookings
• Service interface: No
• User support accessibility: WCAG 2.1 AAA
• API: Yes
• What users can and can't do using the API: We have an API and Microsoft Logic Application. We have full documentation available on request.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Retain is very configurable in a number of areas this is inclusive of and not limited to visualisations, calculated data fields (e.g. Utilisation) and security configurations.

Scaling

• Independence of resources: Retain Cloud is developed using services and features in the Microsoft Azure platform. Our architecture is scalable with demand through Azure Technologies using Azure SQL, Service Fabric and AKS. We have made considerations in the technologies above that prevent noisy neighbour scenarios or accidental misuse of APIs.; ; Performance is monitored and measured through our logging and alerting.; ; Our architecture means single clients can be moved into their own Azure SQL Elastic Pool offering higher compute limits (if required); ; Our architecture allow configuration limits to be changed for customers to be increased from the baseline (If required)

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest: Physical access control, complying with SSAE-16 / ISAE 3402
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: You can export from our user interface in .xls/.csv OR using our APIs to extract data into other systems or data warehouses/lakes.
• Data export formats:
  • CSV
  • Other
• Other data export formats: XLS
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We have an uptime target of 99.5%, we do not offer service credits.
• Approach to resilience: This information is available on request
• Outage reporting: We have a service portal with announcements and service updates. We also send targeted publications (Emails) to inform users of service outages.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Username or password
  • Other
• Other user authentication: SSO into Microsoft Entra
• Access restrictions in management interfaces and support channels: We have access control policies and privileged access management all in line with ISO27001
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Other
• Description of management access authentication: We use Microsoft Entra

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: LRQA
• ISO/IEC 27001 accreditation date: 17/04/2023
• What the ISO/IEC 27001 doesn’t cover: Secure Areas, controls 11.1.5 & 11.1.6
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We have all controls and policies required for ISO27001

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: We have an ISO27001 aligned change policy and change register
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: We have an ISO27001 aligned secure development process. This is available on request along with documented vulnerability resolution targets.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: We have DDOS protection and SIEM technologies as part of the service. These are reviewed and controlled using ISO27001 aligned policies and processes.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: We have an ISO27001 aligned incident management processes inclusive of MIM and MIM reporting. Users have access to our support portal and services to report and track incidents to their resolution.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Our approach to ESG -; ; We are committed to building a better tomorrow for our staff, customers and wider community through outstanding environmental sustainability performance. ; ; Our vision is underpinned by five core principles:; ; 1. Minimise our carbon emissions.; 2. Reduce the environmental footprint of our operational endeavours.; 3. Foster and sustain a proactive environmental sustainability ethos.; 4. Cultivate sustainability initiatives.; 5. Ensure environmental compliance and surpass regulatory standards.; ; To achieve this vision, we have a multi-step sustainability strategy, containing details of the overarching objectives, performance targets, key performance indicators and implementation mechanisms. It is continuously reviewed to ensure it is as strong as it can be. Our success also relies on effective engagement with staff, utilising and developing their skills, knowledge and understanding.; ; Reducing our Carbon Footprint -; The Majority of our staff are now Home based and unnecessary travel is minimised by the delivery of consultancy, training, and implementation services remotely, where appropriate. Reducing the amount of paper we generate is a key focus, and we use recycled paper - which we then recycle ourselves. We have also taken steps to recycle other materials such as plastics and cardboard. We comply with WEEE regulations and recycle our electrical items.; ; We have also made changes to our approach to visiting customers on-site. Where appropriate, training and consultancy can be provided virtually.; We are focused on our transition to a Cloud service company in order to provide a sustainable approach to hosting and reducing the costly or energy inefficient hardware.; ; Working from home is undoubtedly challenging and may have a negative impact on the wellbeing of our employees. We hosted a wide range of virtual communal events and coffee chats) to allow our staff to stay connected to each other and regularly have team meet ups.

  Tackling economic inequality

  We are committed to tackling economic inequality. We have recruitment processes which seek to eradicate biases that can perpetuate economic inequality. ; ; Our commitment to tackling economic inequality is also exemplified in our pay reporting transparency. In addition to the legal requirements to produce a Gender Pay Gap Report, we to ensure accountability and so that we can take steps to address economic inequality.

  Equal opportunity

  Cultivating a diverse workforce and inclusive culture is a priority for us. Diversity of experience, age, race, ethnicity, culture, gender and sexual orientation provides a wide range of talent from entry level through to our leadership teams creating richer perspectives and a powerful frame of reference.; ; Not only is it right to recognise and celebrate differences, and ensure everyone has the opportunity to thrive.

  Wellbeing

  We take wellbeing very seriously at Retain, all employees have access to the following initiatives to promote wellbeing.; ; Establishing a Benefits hub for resources and partnering to offer discounts and classes for physical and mental wellness.; ; Organising virtual communal events to maintain employee connectivity and support mental wellbeing during remote work arrangements.

Pricing

• Price: £12.50 to £20 a user a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Free trial available on request. Limited to 4 weeks.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Rob.Thomas@advt-group.com. Tell them what format you need. It will help if you say what assistive technology you use.