UpsideLMS Learning Management System

A full-featured and future-proofed SaaS LMS, UpsideLMS makes the
management of your organisation-wide, multi-department, geographically
dispersed Learning, Training and Performance Support interventions easy,
efficient and effective. Its iOS and Android mobile apps for Learning cover the whole nine yards of Mobile Learning too.


  • On demand learning system
  • Virtual Classroom
  • Instructor Lead Training
  • Blended Learning
  • Media distribution e.g. PDF, PowerPoint, video
  • MIS Reporting, surveys, polls and discussions
  • Collaborative and Social Learning with Communities
  • Multi-lingual and multi-time zones
  • eCommerce for selling courses
  • Comprehensive Assessment and Assignment tools


  • Asynchronous learning on a variety of devices online or offline
  • Allows learners participation in live learning events
  • Allows control of 'Face to Face' training
  • Mix and match differing types of training with central control
  • Controls document dissemination and proof of viewing
  • Reporting over an organisational hierarchy with interactions
  • Enables group learning situations interactively and informally
  • Controls learning over differing geographies and time zones
  • Allows for self training and curriculum selection
  • Interactive control over assignments and assessments

Service scope

Service scope
Software add-on or extension No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints Implemented on a variety of Clod Hosting environments or on client's own infrastructure.
System requirements For Client infrastructure implementations Apache Web Server

User support

User support
Email or online ticketing support Yes, at extra cost
Support response times 08:00 to 18:00 Monday to Friday (excluding weekends and UK Bank Holidays) response is 1.Critical - Response 1 hour, Restoration 4 hours 2.Urgent - Response 1 hour, Resolution 5 days 3.Non-Urgent - Response 4 hours, Resolution 20 days. Extended and 24x7 is also available with similar response times at extra cost
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Web chat
Web chat support availability 24 hours, 7 days a week
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Via the supplier website at www.upsidelms.com
Web chat accessibility testing Webchat fully tested in a live environment with a variety of users.
Onsite support Yes, at extra cost
Support levels 08:00 to 18:00 Monday to Friday (excluding weekends and UK Bank Holidays) response is 1.Critical - Response 1 hour, Restoration 4 hours 2.Urgent - Response 1 hour, Resolution 5 days 3.Non-Urgent - Response 4 hours, Resolution 20 days. Extended and 24x7 is also available with similar response times at extra cost
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Demonstration / Trial sites are available for clients. User documentation is available both online and offline in a variety of forms. Onsite training is available for the client.
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction Database downloads together with file downloads are available to extract user data into CSV data formats.
End-of-contract process The client would receive prior notification of the end of a contract period and could then either extend the contract or give formal notification to end the contract and extract their data.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Repurposing of data has been performed, throughout the product to take care of varying form factors and band widths. All features are available over a complete range of devices
Accessibility standards None or don’t know
Description of accessibility Via a web browser with URL, username and password.
The Super user can Manage clients in a multi-tenanted environment. For each domain they can do things like configure user login, configure branding and user registration forms.
The Admin user has control over E-learning courses, videos, assignments, surveys and reference materials; Curriculums, their management and assignment to learners; ILT maintenance, Assessment maintenance, resouces, certifications and categories
Accessibility testing Interface testing has been performed with users who are visually impaired.
What users can and can't do using the API Users can perform the following functions through the API
1. Manage user accounts
2. Manage the Catalogue, Curriculums and Content
3. Manage the Learner's Learning Plan
4. Assign 1/more curriculum's to 1/more learners
All of these are available through REST and SOAP architectures
API documentation Yes
API documentation formats
  • HTML
  • PDF
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Programmatically customisations can take place through the use of the API's.
Administrators can customise the look and feel through their access of the system.
Learners can customise their favourites and dashboard.


Independence of resources Hardware augmentation can take place in situations of extreme load.


Service usage metrics Yes
Metrics types Usage metrics can be obtained from UpsideLMS through the use of the Reporting system including Assessment analysis, usage functionalities, competency gaps, course and curriculum progress, document access, helpdesk issues, materials consumption,ILT session and webinar attendance, training requests, transcriptions, user details and virtual classroom events.
Reporting types Regular reports


Supplier type Reseller providing extra support
Organisation whose services are being resold UpsideLMS

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Clients would ask UpsideLMS to perform downloads of their data.
Data export formats
  • CSV
  • ODF
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability 99.95% guaranteed in SLA and Azure mechanism in place for service credits. 10% service credit if < 99.95% monthly up-time and 25% service credit if < 99% monthly up-time.
Approach to resilience Single VM for easier lift and shift. Data centre high availability 99.95%. Azure data centres are also protected from entire failures from fire, power failure, flood etc by availability zones with a 99.99% SLA. Region pairs enable protection from tornado, earthquake and other larger scale disasters.
Outage reporting Public dashboards and email alerts are available to report outages.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Access to management interfaces, and support channels, are restricted by username and password. They can also be restricted geographically as well as by IP.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes Azure security policies are in operation and monitor storage services for unexpected changes in behaviour. Azure security centre is used to prevent, detect and respond to threats. Monitoring end-to-end scenario-based network traffic is performed and Azure Network Watcher is used. The build and deployment of services is automated in a continuous deployment manner. Applications are checked for performance before launch or updates using load tests. The applications are built with DDoS in mind.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Individual component of the applications are tracked for performance and defects throughout their lifetime and rectified in a planned manner if any issues are discovered. All applications are security tested and load tested to ensure the highest performance and security considerations have been applied.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach Vulnerability management is exercised in the Azure environment through the use of network scanners and integrated vulnerability management through the use of Qualys cloud agents as part of the VM environment.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach Continuous Integration and Continuous Deployment assists in delivering faster, more reliably and with scale-able functionality. Azure Monitor is used to ensure risks are identified early in the development process. All applications undergo this process and logs are constantly scanned for issues. Potential issues are scheduled for fixes with priority dependant upon their severity. Development is subject to standard SLA's and fixed for clients accordingly.
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach Incidents are managed through a tracking system which clients have access to. They are acknowledged, assessed in terms of severity and criticality. Then our standard SLA is adhered to for service management and issues. Reporting continues throughout the life of an incident, as well as for issues identified by ourselves.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £1499 per instance per year
Discount for educational organisations No
Free trial available Yes
Description of free trial 14 day trial or longer can be arranged with fully functional system covering administrators, learners, instructors and all roles interacting with the system.
Link to free trial https://www.upsidelms.com/uk/free-trial/

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑