OGEL IT LTD

Office 365 Backup & Protection

OGEL IT provides the licensing and software to enable buyers to secure and backup their business assets leveraging the power of Datto Cloud Continuity, SaaS Protection and Datto Workplace.

Features

• Cloud PC Backup & Recovery
• Cloud Server Backup & Recovery
• SaaS Content Backup & Recovery

Benefits

• Extend native Cloud backup functionality
• Enhance Buciness Continuity Plans
• Data storage in purpose built Data Centre
• Support for multiple workloads

£1.85 a unit a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@ogelit.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

989903518172848

Contact

Sam Newman
01438 300335
gcloud@ogelit.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: Backup services support Microsoft Azure/Office 365 and Google Suite.
• System requirements:
  • Office 365 / Azure AD tenant
  • Google suite

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Standard support hours are 9-5 Monday to Friday.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: //Level 1 - Initial response within 4 hours : Business critical incident that impacts all users; // Level 2 - Initial response by end of next business day : Medium impact incident that affects a single business unit or group of users (>25); // Level 3 - Initial response within 5 working days : Minor impact incident that affects a single user, not business critical
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Service onboarding is a simple process where we support customers in scoping the project to understand the licensing types and quantities required.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: The system interface enables the exporting of customer data to PST and ZIP files. However it should be noted that some data can only be restored back into the source environemnt as part of a BCR event or recovery request. ; Data left withn the environemtn will be deleted after 60 days following service termination.
• End-of-contract process: There are no additional costs, stored data is automatically removed after 60 days.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: The platform is build upon a fully scalable private cloud environment with appropriate monitoring and scale out solutions.

Analytics

• Service usage metrics: Yes
• Metrics types: Data volume, and instances backed up and licenses consumed.
• Reporting types: Regular reports

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Datto

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: Never
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Data can be exported to PST or ZIP depending on the content type.
• Data export formats: Other
• Other data export formats:
  • PST
  • ZIP
• Data import formats: Other
• Other data import formats: Data is imported from configured cloud services using native API.

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: 99.95% availability.
• Approach to resilience: Additional information regarding the resilience of our backup platform is available upon request.
• Outage reporting: Email alerts are provided

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: All management access is secured with two factor authentication limited to known regional source addresses.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Peers Quality Assurance Limited
• ISO/IEC 27001 accreditation date: 26/04/2024
• What the ISO/IEC 27001 doesn’t cover: The Datto / Kaseya services are covered by their own certifications.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Datto grants access to stored data internally using the “principle of least privilege through appropriate roles and only on a “need-to-know” basis and manages its systems in line with security industry best practices, including the ISO 27000 series and NIST Security Publications.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Please get in contact should you wish to understand more about our internal change management processes or to seek assurances.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Please get in contact should you wish to understand more about our internal vulnerability mangement processes or to seek assurances.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Please get in contact should you wish to understand more about our internal monitoring processes or to seek assurances.
• Incident management type: Undisclosed
• Incident management approach: Please get in contact should you wish to understand more about our internal incident management processes or to seek assurances.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Tackling economic inequality
  • Equal opportunity

  Tackling economic inequality

  OGEL IT are an SME committed to developing a business within the local and surrounding community by creating employment and training opportunities.

  Equal opportunity

  All employees will be treated fairly and with respect. Selection for employment, promotion, training or any other benefit will be on the basis of aptitude and ability. The company is also committed to preventing discrimination of any type against its employees by third parties like suppliers, clients and the general public. Our SpeakUp policy and processes enable anonymous reporting by anyone should they have any concerns or issues with the company or any of its employees.

Pricing

• Price: £1.85 a unit a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@ogelit.com. Tell them what format you need. It will help if you say what assistive technology you use.