Glasscubes Workgroup - Official
Glasscubes simplifies collaboration by connecting internal and external group members in a secure online workspace. Powerful document management and file sharing - task and project management - collaboration and communication. Widely adopted throughout UK public sector. Easy deployment, user-friendly with no training required. Low cost, flexible monthly term. ISO27001 accredited.
- Dedicated support, configuration and migration assistance. Option to white label.
- Secure file storage, centrally store, share and easily search files.
- Document management, control user access, document versions, content approval.
- Task management, centrally co-ordinate tasks, manage workload, deliver results.
- Manage projects, status and progress reporting, task dependencies with Gantt.
- Extranet portals, collaborate with customers, partners and external team members.
- Social intranet, threaded discussions, 'Like' content, email notifications.
- Mobility, access your content on the go from any device.
- Simple user management, access control and activity audit.
- Better value for money than solutions from Huddle or Kahootz.
- Simplify team collaboration.
- Easier way to share files, manage tasks and communicate together.
- Quick to set up, easy to use and obtain adoption.
- Securely access content from anywhere on any device 24/7.
- Quickly find content with a powerful 'Search' and reduce email.
- Avoid document versioning chaos, ensure everyone references the same content.
- Keep everyone on the same page and projects on track.
- Engage team members, share news, encourage feedback and participation.
- Collaborate faster, smarter and with less effort.
- Improves knowledge transfer, facilitates decision making and drives innovation.
£1.47 to £10.00 per user per month
- Education pricing available
- Pricing document
- Skills Framework for the Information Age rate card
- Service definition document
- Terms and conditions
|Software add-on or extension||No|
|Cloud deployment model||Public cloud|
|Service constraints||No service constraints to advise|
|Email or online ticketing support||Email or online ticketing|
|Support response times||
Immediate Response Monday-Friday 09.00-1730
No out of hours weekend support
|User can manage status and priority of support tickets||No|
|Phone support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support||Web chat|
|Web chat support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support accessibility standard||None or don’t know|
|How the web chat support is accessible||In app text based chat.|
|Web chat accessibility testing||None carried out.|
|Support levels||We offer users an on boarding tutorial, a searchable knowledge base of 'how to' guides, online chat and telephone support. User and technical support is available during UK business hours (Monday to Friday 09.00-17.30), with a 24 hour online ticketing portal available outside of these hours. Each support enquiry is logged and responded to as quickly as possible and in line with the service levels as follows: Urgent (90 minutes) - critical functions of your site/application are unavailable. There is significant business impact. You cannot reasonably circumvent or workaround; High (90 minutes) - critical functions of your site/application are noticeably impaired. There is significant business impact. You cannot reasonably circumvent or workaround; Normal (3 hours) - non-critical functions of your site/application are experiencing errors or abnormalities exist. You can work around or circumvent the problem. You may also have a time sensitive development question; Low (3 hours) - you have a general development or usage question, or would like to log a feature request. All support is included as part of the subscription to Glasscubes.|
|Support available to third parties||Yes|
Onboarding and offboarding
We pride ourselves on how easy and intuitive Glasscubes is to use. We have a refreshing approach towards support – it’s simple; call us. New users particularly like the facility to just call and ask for help. For those who prefer to communicate electronically, our online support chat can be accessed directly from your account.
In addition to our customer support, new users are provided with an in-application, on boarding tutorial and have access to a comprehensive library of help topics. Simplicity is at the heart of everything we do.
If further assistance is required to on board the service, then online training can be arranged by your dedicated account manager.
|End-of-contract data extraction||The platform has a built in back up tool that allows administrators to download all of the account's folders, files and whiteboards on demand.|
We require 30 days written notice to terminate an agreement. Folders, files and whiteboards can be exported prior to closing an account. When an account is closed, all data that it contains will be deleted permanently and cannot be recovered.
Our Customer Services Team is on hand to support both the on boarding and off boarding process. There is no charge associated with data extraction
Using the service
|Web browser interface||Yes|
|Application to install||No|
|Designed for use on mobile devices||Yes|
|Differences between the mobile and desktop service||Glasscubes offers native mobile applications for iOS and Android phones. The mobile applications provide all of the core capabilities of the Glasscubes service presented in a mobile friendly interface. There will be some features that are included within the Desktop version that not available when accessing the service using the mobile applications.|
|What users can and can't do using the API||Our API can be used to access and change any information that the user creates or stores on Glasscubes; for posts, files, tasks, search and other items. Users must already have a Glasscubes account to use the API. We provide access to our API by registering your application and giving you a client_id and a client_secret authentication pair. These can then be used to call the Auth endpoint to get a access-token for registered Glasscubes users. You are then able to call all of the endpoints on the users behalf, using the token belongs to that user. Users can make changes through the API by calling the API via HTTPS. There are no limitations to how users can set up or make changes through the API.|
|API documentation formats||Open API (also known as Swagger)|
|API sandbox or test environment||Yes|
|Description of customisation||
Glasscubes is a versatile collaboration platform that can be easily customised to support a variety of different use cases. Account administrators can easily switch functionality on or off to simplify the user experience and tailor the service to address particular requirements.
We understand the importance of promoting your brand and realise that it should be reflected in everything you do. It’s easy to customise your account, workspaces and communications to promote yourself, rather than us. In addition to this, your account can be totally white labelled, creating added value by promoting Glasscubes as an extension of your organisation's own technology.
|Independence of resources||Glasscubes has monitoring tools managing the load on our servers. Glasscubes runs within an architecture that can easily be scaled, which means servers can cater for any high demand in traffic or usage.|
|Service usage metrics||Yes|
|Metrics types||All user activity is audited and recorded. The information is presented in a searchable report that can be produced on demand directly from your account.|
|Reporting types||Regular reports|
|Supplier type||Not a reseller|
|Staff security clearance||Other security clearance|
|Government security clearance||None|
|Knowledge of data storage and processing locations||Yes|
|Data storage and processing locations||United Kingdom|
|User control over data storage and processing locations||No|
|Datacentre security standards||Managed by a third party|
|Penetration testing frequency||At least once a year|
|Penetration testing approach||Another external penetration testing organisation|
|Protecting data at rest||Physical access control, complying with another standard|
|Data sanitisation process||Yes|
|Data sanitisation type||Deleted data can’t be directly accessed|
|Equipment disposal approach||Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001|
Data importing and exporting
|Data export approach||Folders, files and whiteboards can be exported prior to closing an account. We include an export tool within the platform so that content can be extracted on demand.|
|Data export formats||
|Other data export formats||Folders and Files|
|Data import formats||CSV|
|Data protection between buyer and supplier networks||TLS (version 1.2 or above)|
|Data protection within supplier network||TLS (version 1.2 or above)|
Availability and resilience
|Guaranteed availability||We aim for a 99.98% service availability up time and measure/report against this over a rolling quarterly period. Service Availability reports can be provided upon request.|
|Approach to resilience||Glasscubes leverage ZFS to provide hourly file system snapshots of our servers, which we keep for 24 hours. Should a file be accidentally lost or a software installation go wrong we can restore files or rollback the server state to the last snapshot, which may be just minutes old. Further, we have 30 days’ worth of backups held off site at a secondary UK data centre location.|
|Outage reporting||In the event of an outage, customers would be notified via email alerts.|
Identity and authentication
|User authentication needed||Yes|
|User authentication||Username or password|
|Access restrictions in management interfaces and support channels||All requests of this nature are made in writing via email and authenticated by a valid email address matching the registered users details on the account.|
|Access restriction testing frequency||At least once a year|
|Management access authentication||
Audit information for users
|Access to user activity audit information||Users have access to real-time audit information|
|How long user audit data is stored for||User-defined|
|Access to supplier activity audit information||Users have access to real-time audit information|
|How long supplier audit data is stored for||User-defined|
|How long system logs are stored for||User-defined|
Standards and certifications
|ISO/IEC 27001 certification||Yes|
|Who accredited the ISO/IEC 27001||UKAS|
|ISO/IEC 27001 accreditation date||23/09/2015|
|What the ISO/IEC 27001 doesn’t cover||Everything to do with providing the services is covered within our ISO/IEC 27001 certification.|
|ISO 28000:2007 certification||No|
|CSA STAR certification||No|
|Who accredited the PCI DSS certification||Security Metrics|
|PCI DSS accreditation date||27/02/2017|
|What the PCI DSS doesn’t cover||Glasscubes operates within a merchant band that fits our profile. There are other levels that fall outside of our criteria. Further information regarding our PCI Compliance can we provided upon request.|
|Other security certifications||Yes|
|Any other security certifications||IASME Cyber Essentials|
|Named board-level person responsible for service security||Yes|
|Security governance certified||Yes|
|Security governance standards||ISO/IEC 27001|
|Information security policies and processes||
Glasscubes operates within the ISO27001 Certification framework, which include the following policies: ISMS Policy, ICT Security Policy, Mobile Phone & Devices Policy, Acceptable Use Policy, Access Control Policy, Asset Management Policy, Information Backup and Restore Policy, Internet and Email Acceptable Use Policy, Operational Management, Records Management Policy, Secure Email Policy, Security Incident Management Policy and Supplier Security Policy. The ISO management system is implemented using a number of defined procedures which include: Planning & Review, Information Control, Problems & Improvements, Training & Development, Supplier & Contractor Control,
Operational Control. Regular auditing our the ISO management system procedures are then carried out to test the process against the system. Quarterly reporting and management reviews are in place to ensure that we are not only adhering to but are continually developing our policies and procedures to satisfy the ISO27001 standard.
|Configuration and change management standard||Supplier-defined controls|
|Configuration and change management approach||The change control process forms part of our ISO Control Procedures. A process is in place to control changes to all critical company information resources (such as hardware, software, system documentation and operating procedures). The change control process follows the following phases: Logged Change Requests; Identification, prioritisation and initiation of change; Proper authorisation of change; Requirements analysis; Inter-dependency and compliance analysis; Impact Assessment; Change approach; Change testing; User acceptance testing; Implementation and release planning; Documentation; Change monitoring; Defined responsibilities and authorities of all users and IT personnel.|
|Vulnerability management type||Supplier-defined controls|
|Vulnerability management approach||Glasscubes employs specialist tools that provide regular vulnerability scans over the network. Having access to regular real time information enables us to make proactive, informed decisions about how we can mitigate our risk, which allows us to react quickly to identifiable issues should they occur.|
|Protective monitoring type||Undisclosed|
|Protective monitoring approach||
Glasscubes employs a variety of methods that are associated with protective monitoring. We identify potential compromises by employing
a number of prevention controls and detection controls. Any compromises discovered will be responded to in line with the ISO Information Security Incident Management policy. Incident response starts as soon as we get notified by a staff member, a client or an external source. The notification is given no later than 72 hours after having become aware of it. If notification is not made within 72 hours we must provide a “reasoned justification” for the delay in line with GDPR.
|Incident management type||Supplier-defined controls|
|Incident management approach||Incident management is aligned with the service desk, which is the single point of contact for all users communicating unplanned issues. When the service is disrupted, it is essential to restore the service to normal operation as quickly as possible. Service desk personnel identified as level 1 support, will follow the following activities and process: Incident identification; Incident logging; Incident categorization; Incident prioritization; Initial diagnosis; Escalation, as necessary, to level 2 support; Incident resolution; Incident closure; Communication with the user community throughout the life of the incident.|
|Approach to secure software development best practice||Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)|
Public sector networks
|Connection to public sector networks||No|
|Price||£1.47 to £10.00 per user per month|
|Discount for educational organisations||Yes|
|Free trial available||Yes|
|Description of free trial||Glasscubes offers a full featured, 30-day free trial.|
|Link to free trial||https://signup.glasscubes.com/go|