Aspera GmbH

SmartCollect

Aspera SmartCollect is a powerful inventory tool that gathers all the data needed to calculate your software usage. It runs a complete discovery of every server and client device, and does both agent-based and agentless data collection.

Features

  • Get a complete overview of your Office 365 usage.
  • Make the right decisions using in-depth reports
  • Strengthen your negotiating position.
  • Work more simply and effectively.
  • Always available in the cloud.
  • Clear centralized view
  • Reduce, re-use, re-harvest — on your terms
  • Manage business costs
  • Manage your contracts.
  • Clean, intuitive interface.

Benefits

  • Cost overview
  • Increase your productivity

Pricing

£2 to £3 a server a year

  • Education pricing available
  • Free trial available

Service documents

Framework

G-Cloud 12

Service ID

5 9 8 0 9 0 2 4 4 9 8 4 4 7 5

Contact

Aspera GmbH

Steve Warbrick

+44 (7793) 3601 51

Steve.Warbrick@aspera.com

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Aspera SmartTrack
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints
Planed maintenace windows occur
System requirements
Fully cloud based

User support

Email or online ticketing support
Email or online ticketing
Support response times
Based on individual SLA
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), 7 days a week
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Aspera Native Chat tool
Web chat accessibility testing
Aspera offers 20 Years of Service
Onsite support
Yes, at extra cost
Support levels
Aspera proviedes 1st, 2nd and third level support
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Aspera offers a full Range of trainings and implementation services
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Data will be separated
End-of-contract process
All data is handed over to customer

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
Application to install
No
Designed for use on mobile devices
No
Service interface
Yes
Description of service interface
Web Based
Accessibility standards
None or don’t know
Description of accessibility
Via Browser
Accessibility testing
All interfaces are tested
API
No
Customisation available
Yes
Description of customisation
Customizations on request

Scaling

Independence of resources
Strickt role based security concept

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Staff screening not performed
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
European Economic Area (EEA)
User control over data storage and processing locations
Yes
Datacentre security standards
Supplier-defined controls
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a CHECK service provider
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
No
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
Export via SOAP, XML,
Data export formats
CSV
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
99,5%
Approach to resilience
Redundancy
Outage reporting
Email alerts

Identity and authentication

User authentication needed
Yes
User authentication
  • 2-factor authentication
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels
Srickt user Role based Access
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
TÜV Rheinland/Germany
ISO/IEC 27001 accreditation date
2020-02-17
What the ISO/IEC 27001 doesn’t cover
No exclusions
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
No
Security governance approach
Ongoing iso 27001 certification due oktober 2019
Information security policies and processes
BSI,

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Aspera internal Processes
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
As part of the development and delivery processes Aspera runs automated security tests (static code analysis): Each build is tested with technology from RIPSTECH (see: https://www.ripstech.com/product). Potential vulnerabilities are checked and classified as part of the continuous QA process. The RIPS tool covers the OWASP risks (see: https://www.ripstech.com/product/compliance/owasp-asvs). Fixes are instantly reported and provided as patches for the application.
Protective monitoring type
Undisclosed
Protective monitoring approach
Continous automated system and process monitoring
Incident management type
Undisclosed
Incident management approach
Aspera internal incident management process

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks
No

Pricing

Price
£2 to £3 a server a year
Discount for educational organisations
Yes
Free trial available
Yes
Description of free trial
Full Trail

Service documents

Return to top ↑