Th3rd Curve Ltd

Microsoft SharePoint

Collaborative web platform for document management, real-time collaboration, and data storage. Facilitates internal and external team collaboration on various devices. Ideal for intranet creation, business processes, and project management. Offers both out-of-the-box and tailored solutions for diverse business needs. Can implement enhanced security features to ensure data protection and compliance.

Features

• Customisable design and layout for personalised branding
• Mobile optimisation ensures seamless access on diverse devices
• Document control ensures governance and data integrity.
• Seamless Office 365 integration fosters collaborative synergy.
• Scalable intranet platform adapts to evolving business demands
• Custom security groups ensure data confidentiality and access control.
• Real-time document collaboration fosters dynamic teamwork.
• Responsive UX design enhances user satisfaction and navigation.
• Potential for integration with Power BI for simple data visualisation
• Integrate group calendars, announcements and rolling news features

Benefits

• Precise audience targeting, aligns with organisational aesthetics.
• Boosts productivity, empowers on-the-go collaboration.
• Mitigates risks, enhances compliance and security protocols.
• Expedited workflow, reduces operational downtime.
• Enhances workflow, streamlines communication and task management.
• Increases productivity, accelerates information access.
• Accommodates growth, scales with organisational expansion.
• Safeguards sensitive information, enhances regulatory compliance.
• Accelerates project timelines, promotes innovation and efficiency.
• Improves usability, optimises user interaction and engagement.

£30 to £299 a user a month

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@th3rdcurve.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

995176838519538

Contact

Niall Faris
07989 437362
info@th3rdcurve.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: SharePoint can be an extension to Microsoft Office 365 suite, enhancing collaboration and document management capabilities. It integrates seamlessly with applications like Teams, Outlook, Power BI, Word, PowerPoint and OneDrive, amplifying productivity. Additionally, it can complement other enterprise software for enhanced workflow and data management.
• Cloud deployment model: Public cloud
• Service constraints: None / Subject to Microsofts' ongoing maintenance and upgrading schedule.
• System requirements:
  • Standard Microsoft 365 requirements
  • Standard SharePoint requirements
  • Internet connection

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Normal business hours support 9 a.m. to 5:30 p.m. 24/7 support is also available outside normal business hours. Standard response within 1 hour.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: No
• Support levels: Our customer support is delivered by experienced cloud support engineers/consultants equipped with full administrative access to swiftly resolve SharePoint issues. Tailored to individual client needs, our support includes seamless communication via Teams chat and call functionalities.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We tailor our SharePoint Intranet services to meet each customer's needs. The support we provide includes assistance with implementation, integration, user documentation and training via Microsoft Teams.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Extracts are made as per customer requirements
• End-of-contract process: Termination terms are discussed and agreed upon based on the service provided. We ensure flexibility and alignment with the customer's needs throughout the contract period.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Our SharePoint solutions are optimised for usage on mobile devices such as mobile phones and tablets and will work on both iOS and Android operating systems. It can either be accessed through a mobile web browser, or by downloading the SharePoint application via the Google Play Store / App Store. All content remains the same on all devices, the level of interactivity remains the same.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Users can use the API for data transfer and integration with other products. SharePoint Intranets facilitate this functionality. Full API details are available at dev.office.com for reference.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
  • Other
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Users can customise SharePoint based on business needs and contract terms. Customisation includes page design, branding, layout, and security settings. Administrators define user permissions and access levels, ensuring tailored customisation aligned with contract requirements and security protocols.

Scaling

• Independence of resources: The solution is provided on fully scalable platform and infrastructure. ; The deployment is designed and sized such that the system will provide a responsive end user experience to all of the proposed users of the system.

Analytics

• Service usage metrics: Yes
• Metrics types: SharePoint offers comprehensive service metrics, including usage reports, site analytics, and content performance insights. It tracks user activity, document views, and site traffic, providing valuable data for optimising collaboration and productivity. Additionally, SharePoint provides metrics on site performance, search queries, and document popularity, enabling organisations to assess user engagement and content relevance. With Office 365 reporting integration, users gain access to a broader range of analytics, enhancing decision-making and performance monitoring capabilities across the SharePoint environment.
• Reporting types: Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: Microsoft

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Users can export data from SharePoint using a variety of means, including built-in export features, third-party migration tools, and SharePoint APIs for custom export solutions. Users can also export data straight from SharePoint lists or libraries to formats such as Excel or CSV for easier retrieval and analysis.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • XLSX
  • PDF
  • DOCX
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • XLSX
  • PDF
  • DOCX
  • PPTX
  • PBIX

Data-in-transit protection

• Data protection between buyer and supplier networks: Private network or public sector network
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: The guaranteed availability for Microsoft SharePoint aligns with the Microsoft 365 license agreement, providing a service uptime of 99.9%. You can find further details and assurance on availability at the provided link. https://www.microsoft.com/en-us/microsoft-365/blog/2013/08/08/cloud-services-you-can-trust-office-365-availability/. The SLA offered would depend on the type of service being provided and would be agreed at the start of the contract.
• Approach to resilience: Our service is designed for resilience with data spread across at least three Microsoft data centres located across the UK to enhance redundancy and minimise service disruptions.
• Outage reporting: Outages are reported on a service dashboard or via email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We adopt a comprehensive approach to security governance, encompassing stringent policies, procedures, and controls. Our strategy involves continuous risk assessment, proactive threat detection, and compliance with industry standards. We prioritise data confidentiality, integrity, and availability through robust authentication, encryption, and access controls.
• Information security policies and processes: We adhere to rigorous information security policies and processes, including Cyber Essentials certification, ensuring robust protection against cyber threats. Our practices encompass data encryption, access controls, regular security audits, and employee training to uphold confidentiality and integrity standards.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Submit request with justification and security assessment.; Review board validates and plans the change (resources, timelines, communication).; Approval body grants final go-ahead.; Implement with clear communication and status updates.; Post-implementation review ensures effectiveness and security.; Close the change request after addressing any issues.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Supplier-defined controls Our hosting services typically comply with CSA CCM v3.0 standards, supplemented by Method4 change management processes.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Our hosting services typically comply with CSA CCM v3.0 standards, supplemented by Method4 protective monitoring processes.
• Incident management type: Supplier-defined controls
• Incident management approach: Our hosting services typically comply with CSA CCM v3.0 standards, supplemented by Method4 incident management processes.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Th3rdcurve believes in and is committed to being an environmentally friendly company. We do not operate company vehicles and we encourage our staff to use public transport when travelling to both the office and to our clients' offices or sites. We encourage remote working and all our roles are hybrid. We participate in the Bike2Work scheme to encourage our staff to cycle instead of using motorised public transport. Our office is located in a shared office space, which is committed to climate change and decreasing greenhouse house emissions and being a net zero carbon business by 2030. Year on year, it has reduced its overall energy consumption, by removing gas boilers, installing LED lighting and efficient heating and ventilation systems. We ensure our office waste is separated and recycled accordingly. We are a majority paperless company, with printing used only as a last resort or legal requirement. We discourage the use of a printer if work can be done electronically. Th3rdcurve works with clients and suppliers to promote a focus on climate change. This has included the design and implementation of reports and dashboards on large infrastructure projects to monitor and drive their commitments to the environment, notably compliance with environmental and energy efficiency requirements.; We will continue to seek further opportunities and improvements, wherever possible, to tackle climate change to try to safeguard our planet for future generations.

  Covid-19 recovery

  Throughout COVID-19 all our roles were fully remote and now have transitioned to a hybrid working model. During lockdown, we supplied our staff with office equipment to set up a functional and healthy workspace at home. We set up Slack, a messaging app for that connects people to business-related information and discussion. To retain morale and grow team bonding, we used Whatsapp to stay in regular social contact and we organised (non-compulsory) after work virtual team quizzes. We also encouraged our staff to think of each other during the lockdown and look out for signs of anyone that seemed to be withdrawn or struggling.; ; When it was required, we implemented social distancing and face masks in line with government guidance. We are proud that, despite being a small company, we were able to flex and adapt to the situation to provide continued services to our clients to work in a fully virtual and then later hybrid way. We did not need to use the furlough scheme - we continued to keep everyone working and paid.; ; Additionally, once hybrid working began, we fully supported the decision of a member of staff who wanted to continue to fully work from home to protect their physical and mental health.; ; In early 2021, a small team took part in Race The Thames where, through indoor rowing, cycling and running, covered a distance of 346km and raising £2,822 for charity in just one week.

  Tackling economic inequality

  Th3rdcurve runs both graduate and internship schemes. For our first graduate scheme, we partnered with GradFuel and the Kickstarter Scheme, which is for 18–24-year-olds on universal credit. For our internships, we approach a variety of universities and courses across the UK to ensure a diverse range of candidates. ; ; We support our staff in undertaking additional training and professional qualifications. We encourage our staff to share their knowledge and expertise by training other members of staff regularly and hosting lessons learnt sessions. ; ; We have a corporate social responsibility partnership with Date Sultan, a company that sources premium dates with ethical and Fairtrade purchasing at the heart of what it does, ensuring that everyone in its supply chain is paid a fair living wage and isn't a victim of modern slavery.

  Equal opportunity

  Th3rdcurve employs individuals from a diverse range of social, economic and ethnic backgrounds. We firmly believe that having a diverse and inclusive workforce, where people are valued for their individuality – in fact, ‘individuality’ is one of our company values – brings a wealth of differing experiences and perspectives that strengthen the services that our company provides. We currently have a gender ratio of 40% females, which we pride ourselves in as this much higher than the industry average.; ; We have a partnership with The Diversity Hut, a social enterprise that actively and positively promotes diversity and inclusion, and equips companies with the knowledge and tools to attract and retain diversity, therefore increasing productivity, profitability and innovation.

  Wellbeing

  Th3rdcurve is fully committed to employee wellbeing. We pride ourselves in being proactive and campaigning for healthy mental and physical health. We have appointed a mental wellbeing champion who regularly provides insight, tips and help for our employees’ wellbeing through regular bulletins and events.; ; We provide SAD lamps to help our team through the winter months and have an internal guide on supporting mental wellbeing. All staff members have access to wellbeing portals via Vitality and UNUM, which has a 24/7 employee assistance helpline. ; ; We run wellbeing days where the whole company gets together to focus on our mental wellbeing and support each other. We encourage our staff to take part in charity events, particularly focused around wellbeing and mental health charities. For example, we have participated in the Race the Thames rowing competition and The Lost Hours Walk, both supporting CALM (Campaign Against Living Miserably) charity. We also ran an internal step competition to encourage our staff to walk more and get outside for the benefit of their mental and physical health.; ; Throughout the year we run anonymous surveys to get feedback on our employees’ wellbeing and gather suggestions for other events or improvements. We encourage our employees to meet up in person to ensure there is connection across the team as we know this is beneficial for wellbeing especially with hybrid working.; ; We are particularly mindful of our staff’s wellbeing when individuals are embedded within a client organisation. Each commission has a director-level commission lead who is responsible for the team's wellbeing. Additionally, everyone meets regularly with their line managers, where a discussion on wellbeing is part of the standard agenda. We also have a ‘buddy’ system, where our staff have a nominated colleague to contact for advice, encouragement and to ‘check in’ with each other informally.

Pricing

• Price: £30 to £299 a user a month
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at info@th3rdcurve.com. Tell them what format you need. It will help if you say what assistive technology you use.