Zoocha Limited

Drupal Cloud Intranet

Zoochas Drupal Cloud Intranet leverages the power of Drupal to provide organisations with the ability to collaborate with virtual team anywhere, on any device. the Drupal Cloud Intranet, is built using the Drupal and Open Atrium to unlock a collaborative experience for your team.

Features

  • Open source content management system
  • Responsive design for mobile optimisation
  • Configurable content types
  • Multi lingual configuration
  • Supports latest accessibility best practice
  • Secure framework
  • Auto scaling infrastructure for high performance

Benefits

  • Manage you content from anywhere
  • Optimise your user experience for all devices
  • Customise your site by tailoring the content types
  • Publish content in multiple languages
  • Ensure you site is accessible to all users
  • Keep your data secure
  • Maintain performance through peaks

Pricing

£1000 to £4000 per instance per month

  • Excluding VAT
  • Education pricing available
  • Minimum contract period: Year
  • Trial option available

Service documents

G-Cloud 8

684321876766331

Zoocha Limited

William Huggins

441992256700

gcloud@zoocha.com

Support

Support
Name Content
Support service type
  • Service desk
  • Email
  • Phone
Support accessible to any third-party suppliers Yes
Support availability 24/7
Standard support response times 1 hour
Incident escalation process available Yes

Open standards

Open standards
Name Content
Open standards supported and documented Yes

Onboarding and offboarding

Onboarding and offboarding
Name Content
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Name Content
Real-time management information available Yes

Cloud features

Cloud features
Name Content
Elastic cloud approach supported Yes
Guaranteed resources defined Yes
Persistent storage supported Yes

Provisioning

Provisioning
Name Content
Self-service provisioning supported No
Service provisioning time Minimum of 5 days depending on level of customisation required
Service deprovisioning time 1 day

Open source

Open source
Name Content
Open-source software used and supported Yes

Code libraries

Code libraries
Name Content
Languages your code libraries are written in
  • PHP
  • Javascript
  • HTML5
  • CSS

API access

API access
Name Content
API access available and supported Yes
API type Most types of API are supported including RESTful

Networks and connectivity

Networks and connectivity
Name Content
Networks the service is directly connected to Internet

Access

Access
Name Content
Supported web browsers
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported No
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Certifications

Certifications
Name Content
Vendor certification(s)
  • Cyber Essentials Plus
  • Acquia Certified Developer
  • ITILv3
  • Google Partner
  • Drupal Association Organisation Member

Identity standards

Identity standards
Name Content
Identity standards your service uses
  • SAML
  • OAuth

Data storage

Data storage
Name Content
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location Yes
Datacentre tier TIA-942 Tier 3
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Name Content
Data protection between user device and service Legacy SSL or TLS (HTTPS or VPN), assured by independent testing of implementation

Asset protection and resilience

Asset protection and resilience
Name Content
Datacentre location
  • EU
  • Other countries with data protection treaties
Assured by contractual commitment
Data management location
  • EU
  • Other countries with data protection treaties
Assured by contractual commitment
Legal jurisdiction of service provider UK, assured by contractual commitment
Datacentre protection Yes, assured by contractual commitment
Data-at-rest protection Other encryption, assured by independent testing of implementation
Secure data deletion Other secure erasure process, assured by independent testing of implementation
Service availability 99.99, assured by contractual commitment

Separation between consumers

Separation between consumers
Name Content
Cloud deployment model Public cloud, assured by independent validation of assertion
Type of consumer No other consumer, assured by contractual commitment
Services separation Yes, assured by independent testing of implementation
Services management separation Yes, assured by independent testing of implementation

Governance

Governance
Name Content
Governance framework Yes

Configuration and change management

Configuration and change management
Name Content
Change impact assessment Yes

Vulnerability management

Vulnerability management
Name Content
Vulnerability assessment Yes
Vulnerability monitoring Yes
Vulnerability mitigation prioritisation Yes
Vulnerability tracking Yes
Vulnerability mitigation timescales Yes

Event monitoring

Event monitoring
Name Content
Event monitoring Yes

Incident management

Incident management
Name Content
Incident management processes Yes
Consumer reporting of security incidents Yes
Security incident definition published Yes

Personnel security

Personnel security
Name Content
Personnel security checks Employment checks

Secure development

Secure development
Name Content
Secure development Yes
Secure design, coding, testing and deployment Yes
Software configuration management Yes

Supply-chain security

Supply-chain security
Name Content
Visibility of data shared with third-party suppliers Yes
Third-party supplier security requirements Yes
Third-party supplier risk assessment Yes
Third-party supplier compliance monitoring Yes

Authentication of consumers

Authentication of consumers
Name Content
User authentication and access management Yes, assured by independent testing of implementation
User access control through support channels Yes, assured by independent testing of implementation

Separation and access control within management interfaces

Separation and access control within management interfaces
Name Content
User access control within management interfaces Yes, assured by independent testing of implementation
Administrator permissions Yes, assured by independent testing of implementation

Identity and authentication

Identity and authentication
Name Content
Identity and authentication controls
  • Username and two-factor authentication
  • Username and TLS client certificate
  • Authentication federation
  • Limited access over dedicated link, enterprise or community network
  • Username and password
  • Username and strong password/passphrase enforcement
Assured by CESG-assured components

Secure service administration

Secure service administration
Name Content
Service management model Direct service management

Audit information provision to consumers

Audit information provision to consumers
Name Content
Audit information provided Data made available

Secure use of the service by the customer

Secure use of the service by the customer
Name Content
Device access method
  • Corporate/enterprise devices
  • Partner devices
  • Unknown devices
Assured by independent validation of assertion
Training Yes
Return to top ↑