Tenacious Fox Ltd

Asset Information Management System (AIMS)

Tooling to allow you to track and report upon physical (i.e. furniture, equipment etc) as well as the virtual (i.e. software, domain names, etc) assets your organisation holds.

Optionally import entitlement information from Tier 1 vendors to cross check and report on noncompliance.


  • Tracking of assets held by organisation
  • Realtime reporting of under (and over) utilisation
  • Optimisation of purchasing


  • Reduction in reactive expenditure on assets
  • Improved utilisation of assets already held
  • Identification of cost effective upgrades on licensing
  • Eliminate the risk of software audits


£0.000 per instance per month

Service documents

G-Cloud 10


Tenacious Fox Ltd

Andy Neillans

0131 460 4101


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints Base product requires manual data entry.
Connectors to import from Microsoft SCCM, VMware Airwatch MDM, Microsoft Intune MDM and SolarWinds Orion available.
System requirements Internet access

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Maximum 48 hrs 7-days a week; however P1 calls less than 4 hrs.
User can manage status and priority of support tickets No
Phone support No
Web chat support No
Onsite support Yes, at extra cost
Support levels Service desk offering self service support requests 9 - 5 7-days a week.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Online user documentation and email based onboarding assistance.
Service documentation Yes
Documentation formats HTML
End-of-contract data extraction Support call request
End-of-contract process Controlled closure of the service, including data retention until delivered to customer followed by destruction.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Fully responsive user interface offering all features on mobile.
Accessibility standards WCAG 2.0 A
Accessibility testing Tested with Microsoft Accessibility Tooling; SiteScan
Customisation available No


Independence of resources Hosted on Microsoft Azure, allowing virtually unlimited scaling depending on realtime usage.


Service usage metrics Yes
Metrics types Number of assets catalogued, total cost and utilisation where available.
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency Never
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach Support call request
Data export formats CSV
Data import formats Other
Other data import formats Not applicable

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability 99% Uptime SLA; automatic credits immediately following any outage in a rolling 30 day period that means non-conformance.
Approach to resilience Hosted on Microsoft Azure in a distributed scalable architecture.
Outage reporting Email Alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels Enforced two factor authentication and Azure Active Directory with full authorisation checks completed at time of action.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for Between 1 month and 6 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for Between 6 months and 12 months
How long system logs are stored for Between 6 months and 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification Yes
Who accredited the PCI DSS certification AIB Merchant Services
PCI DSS accreditation date 8/8/2016
What the PCI DSS doesn’t cover Service platform
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Internal iSMS policy
Information security policies and processes Internal iSMS policy; director level ownership and involvement

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Change control process with director level approval for all changes to environment.
Vulnerability management type Undisclosed
Vulnerability management approach Automated vulnerability scans on critical infrastructure and services. Integrated vulnerability identification on third party components used during construction of services.
Protective monitoring type Undisclosed
Protective monitoring approach Microsoft Advanced Threat Monitoring deployed across our network, coupled with Sophos Next Generation firewalls logging data into a SIEM database. Immediate alerting to senior staff for immediate followup.
Incident management type Undisclosed
Incident management approach Documented policy around incident management and escalation including key contacts.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £0.000 per instance per month
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑