Embridge Consulting (UK) Ltd

Unit4 Enterprise Resource Planning - Unit4 ERP MS7 ERPx (Previously Agresso Business World)

Unit4 Enterprise Resource Planning provides an integrated Cloud platform: Finance, General Ledger, Budgeting, Accounting, Creditors, Debtors, Financial Planning, Cash and Income Management (HeyCentric), Procurement, Purchasing, HR, Payroll, Talent Management, Expenses, Absence, Timesheets, Project Management, Accounting/Costing, Research Funding Management (GrantsNow),Reporting/Analytics, Asset Management, Source-to-Contract, Strategic Sourcing, Spend Analytics, Contract Management.

Features

• Full coverage of ERP for Public Sector and Education Sector
• Full suite of Student Management Solutions
• Fully Managed Azure Cloud Solution with UK / EU Datacentre
• Dual site Disaster Recovery
• Mobile Applications available
• Support for collaboration
• Securely accessible from anywhere
• Comprehensive integration capabilities
• Integrated reporting tools
• Industry Good Practice Business Processes

Benefits

• Total Low Cost of Ownership
• Ability to adapt to Business Change
• Sector-specific functionality
• Upgrade elasticity
• Ease of access
• Change when you change
• Working how you work
• Delivering what you choose
• Solution completeness
• Secure Cloud operation with Azure

£56 a user a month

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at enquiries@embridgeconsulting.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

953492115037104

Contact

Emma O'Brien
01474555505
enquiries@embridgeconsulting.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: Support in line with SLAs contained within Service Definition document.
• System requirements: Fully Managed Cloud Service

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: As per response times in our SLA found within our Service Definition document.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: No
• Web chat support: Yes, at an extra cost
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Communicate with Unit4 support via the Embridge Managed Services team.
• Web chat accessibility testing: N/A
• Onsite support: Yes, at extra cost
• Support levels: Access to support and maintenance services is provided as part of the annual subscription fees. ; ; For all system related incident reporting and resolution, using secure, unique login details, users simply need to raise a technical support ticket in the first instance using the online Embridge ticketing portal. ; ; An Issue Resolution process with associated SLAs would then be followed. All service desk personnel are technical engineers equipped to deal with technical issues.; ; The Customer Support Helpdesk is available to provide support on system issues, i.e., errors seen in the system and/or if core functionality is not working as intended. They will also be the first point of contact if you wish to raise a change/enhancement to the solution. ; ; The Helpdesk operates from 9:00am until 17:30pm Monday to Friday (EU/UK/EST time) excluding Bank Holidays.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Implementation will follow our project and programme management methodology for implementation of software solutions. As part of our methodology, we can provide onsite training and/or online training, and we would refer you to our Lot 3 support services listings for further details on how the software would be onboarded if implemented by Embridge Consulting. As part of our standard approach, we provide training on the use of the system to the intended ‘Trainer’s’ of the end users, i.e., the System Administrator. Training is delivered on a standard training environment, and additionally, before entering UAT, the project team steps through the configuration with the Consultant on their environment. The aim is to ensure System Administrators have the skillset and tools to make the best use of the functionality, so they can then be self-sufficient in disseminating the training information to the end users. We adopt a knowledge transfer approach, ensuring the project team users are hands on with the application throughout the project by being involved in the configuration, build and testing, thereby ensuring self-sufficiency post project.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: Upon final exit Unit4 will export the final copy of the Production Database to a Unit4 controlled Azure storage location. The export will be in a format usable with the latest version of Microsoft SQL Server. Customers can manually download this export from this location. Unit4 will maintain a secure read only copy of the customer's production environment including database for a period on 1 month post exit, this copy will then be deleted unless the customer informs Unit4 otherwise. Customer responsibilities for this additional service offering include: • Customer access responsibility – control who has permission to download the export • Ensuring data privacy during and after download •Establishing, monitoring and managing the download process • Restoring or importing the export once downloaded • Licensing, operating and installing in the customer’s IT infrastructure any applications that will be used in the retrieval process and subsequent use of the export.
• End-of-contract process: Upon any termination of the Agreement Unit4shall, provided that it has received a request inwriting from the Customer no less than 3 months prior to the scheduled termination date, continue to provide the Software Service to Customer under the same terms for a transitional period of up to six (6) months. Access to the Software Service during the Transition Period will be subject to the fees set out in the applicable Call Off Agreement, prorated on a monthly basis and payable in advance, based on the annual fees charged to Customer for the Software Service during the twelve month period immediately preceding the termination date plus an additional ten percent (10%). During the Transition Period,Unit4 will provide cooperation and assistance as Customer may reasonably request to support an orderly transition to another provider of similar software, services, or to Customer’s internal operations. Such cooperation and assistance will be limited to consulting regarding the Software Service and will be subject to a fee based onUnit4’s then-current rates for Professional Services and such services will be set out in an Call Off Agreement.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile service accessed through propriety apps or HTML5 rendered browser. Limited number of transactions still require full desktop client typically high volume transactions.
• Service interface: No
• User support accessibility: WCAG 2.1 AA or EN 301 549
• API: Yes
• What users can and can't do using the API: Unit4 ERP Web Services provide a way of processing data, in a secure manner adhering to modern industry standards, but requiring some technical expertise. Unit4 ERP Web Services include options to create and maintain Absences, Applicants, Employee balances, Commitment transactions, Customer master maintenance, Document archive, Employments, HR maintenance, Masters and Attributes, Payroll transactions, Planner transactions, Position master file, Project master file, Rates register, Resource master file, Supplier master maintenance, Timesheets, Travel expenses, User status and maintenance, Value Reference Rates, Workflow. Where a Web Service is not yet exposed, ACT (Customisation Tool can often be used to modify or expose new Web Services.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Unit4 products are highly configurable through the application itself, so very few of our customers find a need to customise the solution. ACT is a customisation tool that is only available to Unit4 Integration consultants to increase the functionality of Unit4 products.

Scaling

• Independence of resources: In Unit4 Cloud, processing resources are shared, but Unit4 monitors and leverages elastic resourcing to ensure all get sufficient to meet the SLAs, and to handle activity peaks. Azure provides the first level of network separation, upon which Unit4 adds further isolation using VNETs. In a Dedicated service model a dedicated VNET is provided so all available network bandwidth is dedicated to a single customer. Unit4 customers always have a dedicated database to ensure data separation. Ina dedicated cloud processing resources are also dedicated to a single customer.

Analytics

• Service usage metrics: Yes
• Metrics types: Service metrics for key performance indicators
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Unit4 ERP, ERPx, FP&A, Talent Management

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: User can export their data in a variety of formats including .xlsx, .csv, or xml.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • XML
  • Direct to xls
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Xml
  • Direct from xls

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Unit4’s service availability commitment for any given calendar month is that the Production Service will be available at least 99.8% of the time. Service Availability is calculated per month as follows: Total time - Service Outage divided by total time times 100 = greater than 99.8%“Service Outage” means the time (in minutes)that the Production Service is unavailable (as measured in accordance with this Section A, paragraph 1) in any month, but excludes any unavailability for those reasons set out below under the heading “Exclusions”; “Total Time” means the total number of minutes in any month; Exclusions Unit4’s service availability commitment excludes any unavailability for the following reasons: • Planned Maintenance; •Unplanned Preventative Maintenance; • failure of any circuits or connections provided by third party telecommunication providers or common carriers; • failure of any external internet service provider or an internet exchange point; • acts or omissions of the Customer or any Users permitted to access the Production Service; •behaviour of Customer applications, equip mentor managed operating systems; • Force Majeure events (as described in the supplier terms).
• Approach to resilience: Available upon request
• Outage reporting: Service outages will be reported via the Unit4 customer portal, which all customers will have access too.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: There is no direct user access to the servers in Unit4 Cloud; but read-only SQL access is offered to a replicated database. Internal Unit4 Cloud operations, (system and database administrators) have access rights to manage and maintain the Cloud Services provided to customers, which are regularly reviewed and a formal change-control and audit log documented. Guidelines and processes regarding access are governed by SSAE and ISO standard compliances that Unit4 has achieved. Unit4 Service desk staff do not have direct access to servers and the production database, so all changes are made by Unit4 Cloud operations.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA Certification Limited
• ISO/IEC 27001 accreditation date: 13/04/2022
• What the ISO/IEC 27001 doesn’t cover: The scope of this approval is applicable to: The design, development, provision and support of Unit4 software products and associated consultancy, technical and managed IT services.; ; Statement of Applicability v2. The scope covers all UK; activities, and also include Global activities, hosting, SaaS etc
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • ISO270017
  • SOC 1 (Type 1 and 2)
  • Soc 2

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Unit4 global SaaS Information Security Policy can be provided upon request. Unit4 SaaS service hold the following: • ISO 27001 • ISO27017 • SOC 1 • SOC 2 • Cyber Essentials

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Unit4 Cloud relies on the expert services of Azure, who provided the underlying platform, network connectivity and System software. The Azure platform offers High Availability, Fault Tolerance, and redundancy at all levels, and components are automatically replaced at the end of their lifetimes or when failed – all contributing to the Unit4 system availability SLA of 99.8% Unit4 software, both Major Feature Releases and Service Updates, is updated automatically as part of the Unit4 Cloud service(with optional deferment). Deployments within Azure allow everyone to benefit from their experience of running highly secure and compliant online services.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Deployments within Microsoft Azure allow everyone to benefit from their experience of running highly secure and compliant online services around the globe (such as Microsoft Cyber Defence Operations Centre, a 24x7x365state-of-the-art cybersecurity and defence facility). Unit4 Cloud has implemented industry leading anti virus, intrusion prevention system and intrusion detection solutions (IPS IDS). Unit4Cloud works with R&D teams to identify, mitigate and share information about known risks. Unit4uses log monitoring and analyses to identify usage anomalies and exceptions. Software patches are applied during the maintenance window, but security patches are applied immediately.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Unit4 Cloud’s end to end service includes hardware and system software, monitoring, management and maintenance of the Unit4software and environment in Unit4 Azure. A continuous 24x7x365 monitoring program is in place to detect and resolve infrastructure and application issues in order to meet Unit4’sapplication availability targets. The monitoring covers solution health, availability and response times. Priority 1 alerts generated are handled byUnit4 staff 24x7x365. See also the response concerning Incident Management Approach.
• Incident management type: Supplier-defined controls
• Incident management approach: Unit4 and Customer comply with their obligations in the following Policies and Procedures, which have been written to explain how to ensure your system is secure now and into the future: Information Security policy; Security Program; Business Continuity and Disaster Recovery; Acceptable Use Policy; Unit4’s external facing information security policy can be provided upon special request with an NDA. Hence, there is a formal incident Management policy, and users may report incidents via the Unit4 Service Desk. Relevant incidents will be reported back to customers on the Customer Portal.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Our services can be delivered entirely remotely, reducing carbon footprints through the removal of travel and reduction in carbon emissions, helping companies and organisations in their drive towards net zero. We are ISO14001 accredited and will always strive to influence staff, suppliers, customers, and communities to leverage the most environmentally advantageous routes to desired outcomes, including where feasible remote delivery and paperless engagements.

  Tackling economic inequality

  We look to increase supply chain resilience and capacity. We are proud to be a Supporting Member of the Social Enterprise UK, which is the leading global authority on social enterprise partnering with and supporting social enterprise and increased social value in local and national communities across the UK. As an SME and with a keen interest in helping UK / local social enterprises (SEs) and SMEs build and grow, we look to engage SEs and SMEs wherever we can within our supply chain.

  Equal opportunity

  We are a Disability Confident Employer and an Equal Opportunities Employer. We are proud of the employment practices under which we operate and invest heavily in sustaining a positive, supportive, and flexible workplace culture. Embridge Consulting is committed to promoting and delivering equality, diversity, inclusivity, and positive culture in the local and wider communities. A Supporting Member of the Social Enterprise UK, and a certified Disability Confident Employer, we do not believe that individuals should be measured or determined by characteristics, but by what they can do and deliver. We are a wholly inclusive employer who will always look to recruit and onboard people with the right work ethos and behaviours, as well as exceptional skills and knowledge, priding ourselves on always being able to say that we promote fairness across all of our actions. Embridge Consulting is proud of its commitment to actively support fair and equal treatment, overcoming inequality, and helping to bridge the gaps and allow people opportunity to realise their full potential. As part of our ethos, behaviours, and Disability Confident certification, we actively influence staff, suppliers, customers and communities to support disabled people and promote the representation of disabled people in a workplace setting. ; ; We take great care to ensure that all our staff and those whom we can impact in a positive way are free from discrimination, restraint, or unfair or poor treatment, believing in the value of human beings and the contribution an individual can make for the better of our local and wider communities. We do not behave or act in a way which is contrary to these beliefs, and we would disengage immediately with any partner or business we felt to be behaving against our approach to equality and fair treatment.

  Wellbeing

  With our positive and supportive culture of fair and equal treatment, respect, and care, we utilise our skills and abilities to deliver the best we can for the people who matter – our staff and our communities. At Embridge Consulting, our staff are given a variety of wellbeing mechanisms from Day One of employment. We have in place comprehensive support for our team members and their families and we actively encourage open conversations and collaboration on identifying wellbeing challenges and how to support resolutions for people. We have Mental Health First Aiders across our organisation who support our team members experiencing challenges and are able to lead information dissemination on wellbeing best practice and approaches to better wellbeing, physical, and mental health. We are always looking to open dialogues and drive conversations about wellbeing and influence staff, suppliers, customers, and communities to take wellbeing seriously and drive better focus on wellbeing and positive impacts across individuals and communities.

Pricing

• Price: £56 a user a month
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at enquiries@embridgeconsulting.com. Tell them what format you need. It will help if you say what assistive technology you use.