IPLICIT LIMITED

iplicit Finance for Housing Associations

iplicit is a sustainable and flexible solution that caters to the long-term needs of Housing Associations.

Its advanced automation features eliminate tedious data entry, reducing errors and simplifying intercompany accounting.

Facilitating timely, accurate management reports, detailed insights into financial data enable enhanced efficiency and improved decision-making for housing finance teams.

Features

• iplicit Finance Software is built to accommodate partial VAT
• Enables fixed asset depreciation to your defined policy and rules
• Software includes auto-capitalisation of fixed assets
• System can store related documents such as guarantees and manuals
• Multi Dimensional General Ledger with unlimited levels of analysis
• End-to-End Purchase to Pay
• Automated Accounts Payable & Receivables
• Advanced, all-inclusive budgeting, planning and forecasting capabilities
• Automation and Approval Workflows
• Business Intelligence including on-screen reporting and Dashboards

Benefits

• Saves hours of work tracking assets across multiple entities/groups
• Real-time management information available across single or multiple entities
• Saves weeks, every month; streamlining processes across the finance function
• Reports that took weeks compiling are completed in a day
• Minimal organisational disruption to deploy; typically 20 working days
• System’s intuitive nature means easier onboarding and users fully engage
• System efficiency frees-up resources to focus on more important tasks
• As organisations grow, system allows greater productivity with same team
• Reporting accuracy increases, without cross-checking multiple data sources
• Single sign-on to cloud systems; one version of the truth

£57.00 to £117.00 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidteam@iplicit.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

973738560674062

Contact

Bid Team
020 7729 3260
bidteam@iplicit.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: None
• System requirements: Internet connectivity required.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: P1 URGENT (Critical failure - no workaround available) = 1 Hour.; ; P2 HIGH (Includes high-impact issues where a short-term workaround is available) = 4 Hours.; ; P3 MEDIUM (Issue limits the functionality of the System, but is not critical and has little or no operational impact) = 8 Hours.; ; P4 LOW (General usage questions affecting a small number of users and an acceptable workaround is available) = 24 Hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Iplicit's Support Levels are integrated into its Service Level and Support Agreement, ensuring users receive dedicated assistance as part of their subscription. The agreement outlines a commitment to a 99.8% Target Availability of services, with detailed protocols for handling downtimes and maintenance, ensuring minimal disruption to the customer experience.; ; iplicit provides comprehensive support through its Customer Support Team, available during business hours for telephone and email inquiries. The Support team is ready to assist with any system-related queries or issues, prioritising swift and effective solutions. ; ; Moreover, the Customer Success aspect of Iplicit's service ensures that subscribers receive ongoing support and guidance to maximise the benefits of the system. This includes help with configurations, usage optimisation, and understanding how to leverage the system's full capabilities.; ; iplicit's approach to support is designed to ensure a high level of user satisfaction and operational efficiency, providing a robust safety net that contributes to the overall positive experience of using the platform. This customer-focused support structure is included as part of the subscription.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Iplicit delivers a fully managed service implementation that encompasses not only initial setup and training - typically conducted remotely - but also full-scale project management. Our training offering includes an interactive learning management system alongside comprehensive online user guides. To facilitate a seamless adoption process, we provide users with access to a sandbox environment during the implementation phase, enabling hands-on practice in a risk-free setting. After the initial implementation, customers transition to our dedicated Customer Support team and are assigned a Customer Success Manager. This ensures ongoing, personalised support. Furthermore, iplicit is committed to continuous learning and improvement. We maintain a rich collection of knowledge bases for self-directed learning and offer the opportunity for customers to request additional training as needed.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: On termination of the Licensing Agreement, iplicit may destroy or otherwise dispose of any of the Customer Data in its possession unless iplicit receives, no later than 10 days after the termination of this agreement, a written request for the delivery to the Customer of the then most recent backup, or a single retained backup from a previous period as specified by the Customer, of the Customer Data. iplicit shall use reasonable commercial endeavours to deliver the backup to the Customer within 7 days of its receipt of such a written request, provided that the Customer has, at that time, paid all fees and charges outstanding at and resulting from termination (whether or not due at the date of termination). The Customer shall pay all reasonable fees and expenses, as set out in the Backup Policy, incurred by iplicit in returning or disposing of Customer Data. iplicit will delete all of the Customer Data in its possession, no later than 14 days after receiving a written request from the Customer to do so.
• End-of-contract process: Once the service ends, the following happens. ; [1] All your access to the software stops immediately.; [2] You must return any iplicit property you have, and you can't use their documents or anything related anymore.; [3] If you want your data back, you need to ask Iplicit within 10 days after the service ends.; [4] iplicit will delete all your data within 14 days after you request them to do so.; [5] Any money you still owe iplicit becomes due right away.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Accessing iplicit through its mobile app offers a streamlined, optimised user experience tailored for on-the-go usage, with interfaces and features designed specifically for smaller screens and mobile interactions. This ensures enhanced usability and efficiency for key tasks and notifications. Conversely, using iplicit via a browser provides a comprehensive view of the platform's full capabilities, suited for in-depth tasks that require a larger visual workspace and more complex interactions. While the mobile app focuses on accessibility and core functions, browser access on a desktop or laptop allows for a broader range of activities, detailed data analysis, and extensive configuration options.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Iplicit offers a service interface that allows for seamless integration and automation of financial tasks. This includes APIs that support connectivity with other systems and services, enhancing functionality and user experience. The software is designed to cater to a range of business needs, making financial management more efficient through its interactive and user-friendly interface.
• Accessibility standards: WCAG 2.1 AAA
• Accessibility testing: None at this stage.
• API: Yes
• What users can and can't do using the API: Users with an iplicit "API License" can integrate and interact with iplicit's APIs (available 24/7), allowing for automated data transactions and system interactions. These APIs are designed for continuous availability, even during maintenance, thanks to robust resilience and disaster recovery measures, including multi-region cloud hosting for failover capabilities. However, API only users cannot directly log into the iplicit platform; their access is restricted solely to API functions. The APIs are subject to rate limiting to ensure fair usage and may require version compatibility management, with iplicit providing either backward compatibility or requiring updates for API integration. Security is a priority, with token-based authentication and rigorous penetration testing part of the security framework. Volume throughput and call rates are controlled through throttling and are subject to a fair usage policy. iplicit proactively monitors, logs, and conducts stress tests on API performance, ensuring scalability and reliability.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • HTML
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Iplicit enables users to tailor its platform to their specific needs through extensive customisation and configuration options, all without the necessity for bespoke development or coding. This user-friendly approach allows for a high degree of personalisation to align with the unique processes, workflows, and reporting requirements of different organisations.; ; Users can customise their experience by adjusting settings, preferences, and parameters within the iplicit environment. This includes configuring dashboards to display relevant metrics, setting up custom reports to analyse data in meaningful ways, and defining workflows to streamline operations. The platform's flexibility extends to financial setups, such as adjusting ledgers, tax configurations, and payment options, to suit various business models.; ; Additionally, iplicit offers a range of templates and pre-configured options that users can select and modify. These templates cover common business processes and reporting needs, providing a solid foundation for further customisation.; ; The platform's intuitive interface ensures that all these adjustments are straightforward, requiring no technical expertise. Users benefit from the ability to adapt the platform to their evolving business needs, enhancing efficiency and effectiveness without the need for custom software development.

Scaling

• Independence of resources: Each client's data is securely stored in segregated data stores, ensuring that there's no overlap or mingling of information. More than just data separation, iplicit smartly routes traffic based on the geographical location of the client. This geolocation-based management not only guarantees optimal performance by reducing latency but also ensures that data residency requirements are met, further enhancing the security and compliance posture for every client. In essence, iplicit's architecture provides a harmonious blend of performance, security, and compliance in managing multi-client traffic.

Analytics

• Service usage metrics: Yes
• Metrics types: - Platform uptime over last 90 days; - Platform uptime historic view; - API and other interface statuses; - Historic incidents
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: All our data at rest is encrypted using the AES 256 encryption method. AES 256, or Advanced Encryption Standard with a 256-bit key length, is a globally recognised and robust encryption standard. By leveraging this encryption, we ensure that our stored data remains secure and protected against unauthorised access or potential breaches, underlining our commitment to maintaining the highest level of data security.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: In iplicit, exporting data involves user-friendly steps. Users access the relevant section of the platform that holds the data they wish to export, such as financial records or customer details. From there, they should look for an 'Export' feature, which might be located in a toolbar or under a settings menu. This feature typically allows users to select the data range and the format for the export, such as CSV or Excel. After configuring the export settings to match their needs, users simply initiate the export process. The system then prepares and downloads the file to their local device.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • Microsoft Excel (.xls)
  • Adobe PDF
  • HTML
• Data import formats:
  • CSV
  • ODF

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Service Level Agreement: iplicit's guarantees a 99.8% uptime (outside of the scheduled maintenance windows) for its customers. iplicit will measure Target Availability and will publish such report on the respective webpage: https://status.iplicit.com/. If the uptime percentage is lower than the target availability, customers will receive the applicable Service Level Credits, subject to the terms and conditions stated in the Service Level Agreement.
• Approach to resilience: Iplicit's service is architected for high resilience through cloud-native, multi-tenant capabilities and robust Azure cloud services, ensuring operational continuity and data protection. The platform leverages geo-redundant storage and active geo-replication across multiple Azure regions, facilitating automatic data replication and failover to safeguard against regional disruptions. Comprehensive backup strategies, including real-time, weekly, and monthly backups with up to 7 years of retention, underpin data recovery capabilities. Network segmentation enhances security, while disaster recovery plans ensure service availability. Continuous monitoring and proactive incident management maintain system integrity. Data centers, powered by Azure, embody resilience with redundant power, cooling, and networking facilities, alongside strict security measures. This multi-layered approach guarantees service reliability and data security, with specific details available upon request.
• Outage reporting: A public dashboard can be found here: https://status.iplicit.com/

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Iplicit incorporates an advanced user management module that allows for granular access control in its management interfaces and support channels. Access to various features and data within the application is regulated through user roles and user groups, facilitating both detailed control and ease of administration. This ensures that access rights are appropriately assigned, controlling what individual users can view and manipulate. Additionally, these access restrictions are embedded at the core of the iplicit product, ensuring that external systems interacting with iplicit, such as the Excel Add-in, also adhere to these defined access controls.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users receive audit information on a regular basis
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 20/03/2023
• What the ISO/IEC 27001 doesn’t cover: Our UKAS-certified ISO 27001 management system comprehensively adheres to the full standard. ; ; Therefore, all controls, procedures and documentation adhere to that standard whether or not they apply to our organisation
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: ISO 9001:2015 for quality management.
• Information security policies and processes: Iplicit has a comprehensive set of data privacy policies, which includes data handling processes, information security protocols, data access agreements, all in line with GDPR. These policies are reviewed on a regular basis in line with processes to ensure adherence.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Every component's lifecycle is meticulously tracked via our change management process and system, ensuring full visibility and traceability. Changes undergo rigorous assessment through automated SAST/SCA scanning integrated into our CI/CD pipelines, and manual reviews in our source and change management system. This setup helps identify potential security vulnerabilities early. Additionally, we implement threat modelling practices to evaluate and mitigate risks proactively. Together, these processes ensure that security considerations are central to our development lifecycle, maintaining the integrity and security of our services.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Available on request
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Available on request
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Available on request

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Wellbeing

  Fighting climate change

  Environmental sustainability is hardwired into the iplicit business model in two key ways: ; ; Firstly, iplicit was founded to help more organisations move on from legacy software systems whose data is stored on outdated, energy-inefficient servers based on the user’s own premises. ; ; Instead, iplicit stores data in the cloud, through Microsoft’s Azure platform, taking advantage of the latest advances in sustainability and energy efficiency now and in the future. ; ; Secondly, as a new breed of software business, iplicit was founded without many of the environmentally wasteful practices that were part of the industry’s traditional business model. ; ; All but a handful of staff are based remotely, eliminating the environmental impact of commutes among its workforce, and doing away with the need to provide heat and power to large office sites. ; ; Traditional providers were expected to deliver all sales presentations in-person, while their implementation models involved their staff travelling to be on the customer’s site for at least 15 days. iplicit has instead been able to deliver its services remotely, only requiring in-person appointments when they are most meaningful or most important to the customer. ; ; In alignment with our Environmental and Sustainability Policy, we aim for continuous improvement in our sustainability performance. ; ; We are dedicated to minimising our environmental impact through responsible sourcing, engaging reputable suppliers, and fostering innovation. Our investment in sustainable practices and infrastructure is designed to promote the development of efficient, beneficial technologies for the environment and communities. ; ; Each year, we pledge to lessen our environmental footprint and integrate several key areas into our business strategy, focusing on: ; ; The services we provide. ; ; Our interactions with people and communities. ; ; The environmental implications of our energy consumption. ; ; Our travel practices while delivering services. ; ; Along with other environmental, social and governance issues, climate change is a board level priority.

  Covid-19 recovery

  iplicit demonstrated resilience and adaptability throughout the Covid-19 pandemic, successfully navigating its challenges without resorting to staff furloughs. We are especially proud of our ability to maintain uninterrupted operations, thereby fulfilling our commitments to our customers. This achievement was made possible through the swift adoption of innovative work practices, including remote working, which not only ensured our operational effectiveness during the pandemic but also positioned us strongly for the recovery phase.; These measures were not mere temporary adjustments but strategic initiatives that have fortified our business model, enabling us to enhance service delivery and customer satisfaction. The experience has underscored the importance of flexibility and adaptability in our operations, qualities that will continue to guide our approach as we move forward. Our successful navigation of the pandemic reflects our team's dedication and our company's commitment to excellence, setting a robust foundation for future growth and resilience.

  Wellbeing

  iplicit was founded with staff wellbeing at its core. ; ; Its remote and flexible working model frees staff from the pressure of commuting, allowing them to organise their lives around their other commitments and to maintain a healthy work-life balance. ; ; Staff have Vitality health insurance, not only providing them with medical cover but offering numerous rewards to incentivise healthy living, as well as support such as the Headspace meditation app. ; ; An HMRC-approved EMI share option scheme makes everyone a stakeholder, providing an opportunity for the first 100 staff to receive material benefit when the business achieves its goals. ; ; We acknowledge the benefits and challenges of a remote working environment. To create a sense of community and connectivity, we organise regular social events at both regional and company-wide levels. These gatherings are designed to take place during working hours, allowing the entire team to engage socially. This approach not only strengthens team bonds but also ensures that our remote working culture thrives on collaboration and camaraderie. ; ; Social interaction is also encouraged through Teams groups based on different interests and through monthly “coffee roulette”, which partners people from different areas of the business for a virtual coffee appointment. Twice a year, an iplicit “rock star”, nominated and chosen by colleagues, receives £1,000.

Pricing

• Price: £57.00 to £117.00 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at bidteam@iplicit.com. Tell them what format you need. It will help if you say what assistive technology you use.