DXC Technology GDPR Services for Oracle Cloud
Following the introduction of the General Data Protection Regulations (GDPR) in May 2018, DXC has developed a “Personal Details Report” that can be run on demand to extract relevant data from core Oracle applications. This is extendable to include data held in user defined fields, custom tables and specialised modules
Features
- Management of ERP solutions throughout their lifecycle
- Design to build and delivery and ongoing maintenance and support
- Provision of the environment and platforms to optimise business processes
- Delivered via cloud or hosted in DXC UK-based data centre
- Visibility and predictability to lower total cost of ownership
- Advisory services on upgrades and implementations to replace legacy applications
- Full life-cycle services for Oracle and CRM applications
- Mobility services to provide mobile access to critical business processes
Benefits
- End-to-end estate management
- Experience to customise applications where required
- Rapid data migration in a move to the cloud
- Integrates with third party applications
- Replace legacy applications if non-Oracle applications can optimise your processes
- Delivery of service is aligned to the ITIL framework
- Accommodates all data classified at OFFICIAL, and OFFICIAL-SENSITIVE
Pricing
£495.00 to £2,200.00 a person a day
Service documents
Request an accessible format
Framework
G-Cloud 11
Service ID
2 2 9 0 5 9 2 8 9 5 2 0 2 9 5
Contact
EntServ UK Ltd part of the DXC Technologies Group
DXC Frameworks Team
Telephone: +44 7966 827455
Email: ukitenders@dxc.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
-
- Public cloud
- Private cloud
- Hybrid cloud
- Service constraints
- No
- System requirements
- Requirements vary with the situation in hand. Contact for advice.
User support
- Email or online ticketing support
- Yes, at extra cost
- Support response times
- Dependant on client SLA needs
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- Yes, at an extra cost
- Web chat support availability
- 24 hours, 7 days a week
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Online digital support services.
- Web chat accessibility testing
- NA
- Onsite support
- Yes, at extra cost
- Support levels
- SLA to be agreed with customer
- Support available to third parties
- No
Onboarding and offboarding
- Getting started
- We supply a variety of training approaches, to be agreed with the customer
- Service documentation
- Yes
- Documentation formats
-
- HTML
- Other
- Other documentation formats
-
- Word
- PowePoint
- End-of-contract data extraction
- Options around data extraction are available on application
- End-of-contract process
- Our service is tailored, and as such details will differ.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 10
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari 9+
- Opera
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Descriptions available upon application
- Service interface
- Yes
- Description of service interface
- Oracle front end web interfaces
- Accessibility standards
- None or don’t know
- Description of accessibility
- Online via Web
- Accessibility testing
- NA
- API
- Yes
- What users can and can't do using the API
- Description supplied upon application
- API documentation
- Yes
- API documentation formats
-
- HTML
- Other
- API sandbox or test environment
- No
- Customisation available
- Yes
- Description of customisation
-
Description upon application
Customisation at extra cost
Scaling
- Independence of resources
- Details around capacity and stress testing are available upon application
Analytics
- Service usage metrics
- Yes
- Metrics types
- Details available upon application
- Reporting types
-
- Regular reports
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Conforms to BS7858:2012
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
-
- United Kingdom
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- In-house
- Protecting data at rest
- Physical access control, complying with CSA CCM v3.0
- Data sanitisation process
- No
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- Details available upon application
- Data export formats
- CSV
- Data import formats
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
- IPsec or TLS VPN gateway
- Data protection within supplier network
- IPsec or TLS VPN gateway
Availability and resilience
- Guaranteed availability
- Details available upon application
- Approach to resilience
- Details available upon application
- Outage reporting
- Details available upon application
Identity and authentication
- User authentication needed
- Yes
- User authentication
- Public key authentication (including by TLS client certificate)
- Access restrictions in management interfaces and support channels
- Details available upon application
- Access restriction testing frequency
- At least every 6 months
- Management access authentication
- Public key authentication (including by TLS client certificate)
Audit information for users
- Access to user activity audit information
- Users contact the support team to get audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- BSI
- ISO/IEC 27001 accreditation date
- 23/09/2015
- What the ISO/IEC 27001 doesn’t cover
- N/A
- ISO 28000:2007 certification
- No
- CSA STAR certification
- Yes
- CSA STAR accreditation date
- 29/11/2016
- CSA STAR certification level
- Level 3: CSA STAR Certification
- What the CSA STAR doesn’t cover
- N/A
- PCI certification
- No
- Other security certifications
- Yes
- Any other security certifications
-
- HMG Accreditation
- PSN Accreditation
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- CSA CCM version 3.0
- Information security policies and processes
- Details available upon application
Operational security
- Configuration and change management standard
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Configuration and change management approach
- Details available upon application
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
- Details available upon application
- Protective monitoring type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Protective monitoring approach
- Details available upon application
- Incident management type
- Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
- Incident management approach
- Details available upon application
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Pricing
- Price
- £495.00 to £2,200.00 a person a day
- Discount for educational organisations
- No
- Free trial available
- No