PDMS Limited (Professional Data Management Services Limited)

Sports Booker

Sports Booker is an online booking, payment, membership and club management system. The Sports Booker system is a fully integrated and easy to use on-line software solution to help you run your business, being immediately and infinitely scalable ensuring that the changing requirements. To find out more please contact PDMS

Features

  • Schedule Management, Bookings and Events
  • Registration and Membership Management
  • Online Payments and Direct Debits
  • Auto Member Check In and Access Control
  • Personal Trainer and Instructor Scheduling
  • Invoicing and Payment Tracking
  • Customer Management and Marketing
  • Management Reporting
  • Integrated Tills and EPOS

Benefits

  • Ability to update information, pay bills, and cancel bookings online
  • Fast online payments for customers
  • Immediately and infinitely scalable to requirements of customer
  • Enables business continuity
  • Tracability of bookings made by customers
  • Improves reporting capability for management

Pricing

£50 to £1000 per licence per month

Service documents

G-Cloud 9

295000776510027

PDMS Limited (Professional Data Management Services Limited)

Aimee Buchanan

+44 (0) 1624 664000

saasenquiries@pdms.com

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints Upgrades are planned at quarterly intervals, whilst every effort is made to minimise disruption there may be occasions where the service is unavailable. Notifications of updates are published in advance of the planned date.
System requirements There are no specific system requirements

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 09:00 to 17:30 Monday to Friday, excluding UK public holidays. (24/7 and public holidays can be agreed).
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Support availability 09:00 to 17:30 Monday to Friday, excluding UK public holidays. (24/7 and public holidays can be agreed). A response to a support request can be expected to be received within 4 (four) Working Hours of the support call being raised. A resolution, or work-around, can, in most cases, be expected to be received within 7.5 (seven and a half) Working Hours of the support call being raised. Further information is available within our Service Definition document.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Support can be offered via any of the following methods:- - Documentation (online) - Skype/ Webinar - Onsite training (additional cost)
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction At contract end the client if paying annually or monthly will have the option to download their customer data into a csv file and move to another solution.
End-of-contract process Customers can extract their own data, downloaded in XSL format. There is no additional charge for this service.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Chrome
  • Safari 9+
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Mobile service allows customers to register, manage their online account, make and pay for bookings.
The desktop service allows administrators or operators to set up classes, events or scheduling, membership management and payment management.
Accessibility standards None or don’t know
Description of accessibility N/A
Accessibility testing We have not done any specific testing.
API Yes
What users can and can't do using the API Sports Booker is an online real-time system that has a range of API's that can be used to pass and receive data from other applications such as tills, payment portals and other databases.
API documentation No
API sandbox or test environment No
Customisation available Yes
Description of customisation Add Logo - Choose pre defined colour scheme - Add document types - Customisation is normally undertaken by the users system administrator.

Scaling

Scaling
Independence of resources Sports Booker is a fully hosted cloud based product, designed as a cloud product from the ground-up. As such it is fully maintained, managed and supported by Sports Booker Limited. All Sports Booker licences are sold on the basis that throughout the year we schedule and release (Free of charge) updates, new functions and features to ensure our clients systems are future proofed.
The hosting of our system is undertaken by our hosting partner UKFast based in Manchester where we have high levels of redundancy built into our high capacity mirrored systems that sit behind redundant Cisco 5505 firewalls.

Analytics

Analytics
Service usage metrics Yes
Metrics types We provide various reports that will show the number of bookings, financial transactions, etc. We do not provide the volume of internet traffic (logins and page views).
Reporting types
  • Regular reports
  • Reports on request

Resellers

Resellers
Supplier type Reseller providing extra support
Organisation whose services are being resold Sports Booker

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Other
Other data at rest protection approach Secure IL4 certified Data centres Secure containers, racks or cages Physical access control Encryption of Physical media Safe destruction of physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Data can be exported as csv files from various reports.
Data export formats
  • CSV
  • Other
Other data export formats PDFs for invoices
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability Our Private Cloud runs on a bank of dedicated servers hosted in the UK, with a virtualisation layer running on top with Automatic failover of Virtual Machines if a node fails and a dual-switched network for fault tolerance. This enables us to guarantee 99.99% uptime.
Approach to resilience A 20 Gigabit-per-second fibre ring connecting the data centres, provides resiliency and diversity to minimise the impact of a single transit failure. All of the networking exchange hardware is housed in on-site dedicated cabinets. All routing equipment is best of breed CISCO. Multiple Tier 1 transit providers provide redundant links and equipment to avoid downtime, with Cisco certified UK networking teams onsite 24/7.
Our dedicated servers are secured by custom-built UltraFire™ High-Availability firewalls, configured in failover pairs. With 100% Power SLA and 99.95% Network Availability SLA for predictable reliability coupled with 24/7 Support at the Network Support Centre, the system offers excellent security.

Further information is available on request.
Outage reporting In the event of a planned outage, a notice is displayed on the system homepage and also via email to the system administrator.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Access (to management interfaces and support channels) is restricted by least privilege access using active directory accounts with strong username and password combinations. Access is restricted on both a need and time basis with the default being that support staff do not have access.
Access restriction testing frequency At least once a year
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Lloyd's Register Quality Assurance (LRQA)
ISO/IEC 27001 accreditation date 02/09/2016
What the ISO/IEC 27001 doesn’t cover Nothing - All areas of the business and our services are in scope.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation Yes
Security governance standards ISO/IEC 27001
Information security policies and processes As part of its ISMS, Sportsbooker and PDMS have the following policies and processes; Information Security Policy, Secure Development Process, Acceptable Use Policy, Change Control Policy, Data Classification and Handling Policy, Data Protection Policy, Business Continuity Policy and an Incident Management Process, all of which are governed, managed and audited through our ISO certifications. All policies are owned and regularly reviewed by the relevant departmental manager.

It is the responsibility of each departmental manager to ensure that all of their staff follow the information security policies and processes, however compliance is audited by the Quality and Standards Manager, with any issues identified reported to the relevant manager, for rectification.

Operationally, Information Security is jointly managed by the Chief Security Officer and the Quality and Standards Manager, both of whom report directly to the Managing Director, who has overall ownership at Board Level for Security, allowing issues that require immediate escalation to be reported to the Directors. Operational Issues that do not require immediate escalation are discussed at the monthly management meetings, where it is a standing issue. All issues discussed during these meetings that require escalation are reported upwards to Board of Directors for it to be discussed, where appropriate.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach These are either performed through the code tools, or through services utilised by our internal departments. Where a change is identified, the staff member proposing the change must document the reason for the change, any known implications including security impacts, and any proposed times for the change to occur. All changes are then reviewed prior to implementation by any relevant staff to ensure their awareness of the potential change. The potential change is then approved and the change can be made.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Our hosting providers UKFast host for the UK government, the ministry of defence, and other sensitive operations constantly appraise us of risks and update the hosting platform accordingly. UKFast is certified to ISO 27001 (Information Security Management) which verifies the robust security practices employed within our data centres and operations. The ISO 27001 standard provides peace of mind that UKFast maintains total integrity of your hosting solutions along with complete confidentiality and guaranteed network availability.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Our hosting providers UKFast host for the UK government, the ministry of defence, and other sensitive operations constantly appraise us of risks and update the hosting platform accordingly.

UKFast is certified to ISO 27001 (Information Security Management) which verifies the robust security practices employed within our data centres and operations. The ISO 27001 standard provides peace of mind that UKFast maintains total integrity of your hosting solutions along with complete confidentiality and guaranteed network availability.
Incident management type Supplier-defined controls
Incident management approach PDMS allow all staff the ability to report security incidents through a number of methods, including email, telephone, and system based forms. Ultimately all reported incidents are managed by the Chief Security Officer, who follows the Incident Management Process, which identifies how the incident should be managed, including when to provide updates to any customers that may be affected. Customer Incident Reports are normally provided in a written document.
All incidents are reviewed following their satisfactory conclusion, to determine what lessons can be learned, and to improve the process or prevent future occurrences.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No

Pricing

Pricing
Price £50 to £1000 per licence per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial A free trial period is available.

Telephone and email support as well as online documentation is provided during this period.
Link to free trial http://www.sports-booker.com/contact-us/

Documents

Documents
Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Terms and conditions document View uploaded document
Return to top ↑