STANLEY SECURITY SOLUTIONS LIMITED

SpaceTRAX is a real-time point-of-use inventory management solution

SpaceTRAX keeps track of lot, batch, serial number and expiration for every item in a GS1 compatible format. Automating the supply chain process puts an end to manually keying items . Automatic alerts flag when items are approaching expiration and if an expired or recalled product is scanned for use.

Features

  • Inventory Management
  • Expiry date management
  • GS1 Bar code compliance
  • Extensive Global product database
  • Billing & procurement system interfacing options

Benefits

  • Optimise Inventory
  • Reduce costs
  • Reduce loss from expired products
  • Eliminate guesstimating and oversupplying
  • Increase Charge capture
  • real-time point-of-use inventory management
  • Can be used with RFID cabinets

Pricing

£100 to £200 a unit a month

  • Free trial available

Service documents

Framework

G-Cloud 12

Service ID

2 5 4 6 3 2 4 2 3 5 8 8 8 6 7

Contact

STANLEY SECURITY SOLUTIONS LIMITED Peter Highmoor
Telephone: 07747475313
Email: peter.highmoor@sbdinc.com

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Integration to Charge capture software, procurement software and EPR software
Cloud deployment model
Private cloud
Service constraints
N/A
System requirements
Monthly Subscription model

User support

Email or online ticketing support
Email or online ticketing
Support response times
24/7 365 days a year 3 hour response time
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Web based support
Web chat accessibility testing
System review daily
Onsite support
Onsite support
Support levels
STANLEY Healthcare offers 24/7 Technical Support for all its products, including SpaceTRAX. Technical Support has a team of SpaceTRAX subject matter experts available to help resolve technical issues with the system, answer any questions about SpaceTRAX, and provide services such as uploading bulk pricing, attribute, and/or par level values, etc. They are also available to help with any issues that a user might have with an item in the Global Database.
STANLEY Healthcare maintains an online Support Portal that can be used to submit tickets to Technical Support. The Support Portal also contains solutions to common issues as well as documentation such as programming instructions for Barcode Scanners available from Stanley Healthcare. To submit a ticket for SpaceTRAX, you must first register for the portal. Instructions on how to register can be found at:
http://kb.sbdinc.com/article.aspx?article=9802&p=102
Support available to third parties
Yes

Onboarding and offboarding

Getting started
On site training is provided during the installation process, following up or refresher training can be available on site or via on line training modules.
Service documentation
Yes
Documentation formats
PDF
End-of-contract data extraction
We can provide customers with a data download if requested.
End-of-contract process
SpaceTRAX uses a monthly subscription to continue to use the system. A 12 month contract is agreed and subject to yearly renewals via a quotation process.

Using the service

Web browser interface
Yes
Supported browsers
Internet Explorer 11
Application to install
Yes
Compatible operating systems
Windows
Designed for use on mobile devices
No
Service interface
No
API
No
Customisation available
No

Scaling

Independence of resources
We monitor activity and can increase CPU as needed

Analytics

Service usage metrics
Yes
Metrics types
We provide network application metrics
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2012
Government security clearance
None

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
No
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Encryption of all physical media
Data sanitisation process
No
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
Users can export data through the UI or by purchasing outbound interfaces
Data export formats
CSV
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
24/7 support

“Priority 1 - Critical” means an Error which results in a complete system failure or completely disables one or more essential business functions of the System. Response Time 2 hours

(b) “Priority 2 - High” means an Error which disrupts essential business functions of the System. Examples include: (i) useful production is difficult because Covered Products are failing to perform correctly and/or reliably, or (ii) regular failures are occurring, but the System is not completely unusable. Response time - 4 hours

(c) “Priority 3 - Medium” means an Error which disables or disrupts non-essential business functions of the System. Examples include (i) a Covered Product is not performing in a normal manner or the Error is very intermittent, or (ii) the System workload is impaired but it can be used. response time 1 business day

(d) “Priority 4 - Low” means an Error which is cosmetic or non-disabling from a business standpoint. Examples include: (i) Errors causing minor inconvenience, and (ii) documentation errors. This category also includes feature requests proposed for subsequent releases and general questions regarding product usage. Response time 1-3 business days
Approach to resilience
EU database has nightly backup running at midnight.
We keep backups from the previous 4 days.
Outage reporting
Scheduled outages are communicated through system notifications that appear within the application. unscheduled outages are communicated through our knowledge base (users can subscribe to an outage article and get automated email when outages occur).

Identity and authentication

User authentication needed
Yes
User authentication
Username or password
Access restrictions in management interfaces and support channels
Users are granted access based on permissions and security groups. Service accounts and support channels are controlled by active directory. Reviews are conducted quarterly to insure proper access is adhered to.
Access restriction testing frequency
At least every 6 months
Management access authentication
2-factor authentication

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
All policies and practices related to risk and compliance are managed by our host provider Rackspace and can be reviewed here: https://www.rackspace.com/compliance

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Configuration and change management processes are handled by our service provider Rackspace.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Window Patching is done by Rackspace (service provider) as part of a managed service. this occurs once a month.
Protective monitoring type
Undisclosed
Protective monitoring approach
Security Tools
Multiple technologies are employed throughout the environment to enable information security controls and monitoring, including the following:
□ Anti-virus/anti-malware;
□ Intrusion Detection System; and
□ Logging tools.
Performance Monitoring Tools
Rackspace operates several tools for the purposes of monitoring systems and providing health checks across in-scope environments. The primary tool used within the system boundaries is:
□ SCOM (System Center Operations Manager) – Microsoft product to support data center operational monitoring and maintenance of systems.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
We have a defined process

Potential Sources of an incident include:

Unusual or unexpected behavior reported by customer

Rapid7 alert

Engineer detects an unexpected anomaly in the environment
While researching a vulnerability, it’s determined that it has been exploited

incidents will be communicated through email

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks
No

Pricing

Price
£100 to £200 a unit a month
Discount for educational organisations
No
Free trial available
Yes
Description of free trial
Limited demo for a limited period. One month trial

Service documents