Pinro Technologies Ltd

Docurate - Online invoicing and contact management

Our cloud based platform Docurate allow organisations to create, share, sign and store documents from a single place.Manage all of your customer details and invoices from an elegant dashboard. User can access Docurate anywhere. Data is safe, secure and encrypted.


  • Create and send customer invoice in seconds
  • Share invoices via email, download a PDF copy.
  • Contact and document management from elegant dashboard.
  • Realtime notification when customer view and accept the invoice
  • Find documents at lightning fast speed
  • Use social media account to register and sign in
  • All of your data is safe, secure and encrypted.
  • Access from anywhere


  • Save time on paper work
  • Increase efficiencies in document management
  • Manage contacts from a single place
  • Use dashboard to manage documents
  • Create and send invoices in seconds and real time notification
  • Find your documents quickly
  • Never loose important invoices
  • Get notification when your customer open an invoice


£50 per user per month

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 10


Pinro Technologies Ltd

Imran Khan


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints We regularly update the software so there might be few planned maintenance but customer will be informed before hand.
System requirements
  • Desktop web browsers
  • Mobile browsers

User support

User support
Email or online ticketing support Email or online ticketing
Support response times We respense to any support email within 24 hours
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support No
Support levels We will provide email support for any technial issues in the service. A support ticket will be raised for issue and we will get back to the user as soon as possible.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Online user documentation and on demand online user training.
Service documentation Yes
Documentation formats HTML
End-of-contract data extraction User can download a CSV to extract their at the end of the contract term.
End-of-contract process There will be no additional cost at the end of the contract term. User can renew the contract or end the service after the contract period.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service The mobile version of the app will be optimised for mobile screen so that user can get better experience when using in mobile.
Accessibility standards WCAG 2.0 AAA
Accessibility testing We tested the app with colour blind users.
What users can and can't do using the API Athough the application is completely API based, we do not open the API for the users.
API documentation Yes
API documentation formats PDF
API sandbox or test environment No
Customisation available No


Independence of resources Our service is hosted in elastic cloud servers where the capacity will be instantly expanded based on the demand and it will not affect any other users. Moreover we designed our system considering the scalability.


Service usage metrics No


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach User will download a CSV file.
Data export formats CSV
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
Data protection within supplier network Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability We are guanteed 99.98% availability of the service. User will be refunded for any downtime in the service.
Approach to resilience Available on request
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels User can only access to the service using registered username and password. We check each user agaist their username and password.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information No audit information available
Access to supplier activity audit information No audit information available
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach We have a dedication personnel who oversee and make sure as follow correct securty procedures. Moreover if our client have any question, he will be our point of contact.
Information security policies and processes Information should be classified according to an appropriate level of confidentiality, integrity and availability and in accordance with relevant legislative, regulatory and contractual requirements Staff with particular responsibilities for information. Breaches of this policy must be reported

Pinro has a responsibility to abide by and adhere to all current UK and EU legislation as well as a variety of regulatory and contractual requirements.

It is crucial that all users of the system adhere to the Information Security Policy and its supporting policies as well as the Information Classification Standards.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach By assuring that all proposed changes are evaluated for their benefits and risks, and that all impacts are considered.
By prioritizing changes so that limited resources are allocated to those changes that produce the greatest benefit based on the business need.
By requiring that all changes are thoroughly tested and that each deployment includes a back-out plan to restore the state of the environment in the event that the deployment fails.
By ensuring that the configuration management system is updated to reflect the effect of any changes.
Vulnerability management type Undisclosed
Vulnerability management approach We perform a regular test on our service and vulnerability management process consists of five phases:
 Preparation
 Vulnerability scan
 Define remediating actions
 Implement remediating actions
 Rescan

We are comitted to deploy a patch as soon as possible. Generally it can take upto 24 hours.

We monitor all the security websites for any potential threats and test our services for them.
Protective monitoring type Supplier-defined controls
Protective monitoring approach We scan our system for any potential threats and as soon as you find any fault and valunerability we take action. Moreover we make sure our service is rebust against any potential threats.
Incident management type Undisclosed
Incident management approach We regularly follow our pre-defined security checks. User can inform us any incedent using a easy to use email service. After investigating any incident we prepare an incident report.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £50 per user per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Full access.

Service documents

pdf document: Pricing document pdf document: Terms and conditions
Service documents
Return to top ↑