Workplace Assessment via Mobile Devices - Myprogress

Myprogress is a market leading mobile assessment application with an in-built ePortfolio for assessing learner competencies and skills offline in challenging workplace settings. It enables learners and supporting staff to track live progress against competencies and for staff to provide rich, authentic feedback in the moment.


  • Easily define and manage user roles and groups
  • Create customisable forms and assessments with our authoring tool
  • Deploy to online app or mobile devices for offline completion
  • Build competency frameworks, standards or learning outcomes
  • Map assessments and track learner progress in real-time
  • Enable learner-driven and assessor-driven assessment with smart workflows
  • Provide multiple forms of feedback including audio, visual and speech-to-text
  • Secure email sign-off with signatures captured on the device
  • Record timesheets and activities
  • Integrates with LMS and placement management systems


  • Designed to capture assessment and feedback in all workplace settings
  • An easy user-friendly interface intuitive for learners and staff alike
  • Offline mobile capability removes any disruption to the assessment process
  • Enables assessors to provide authentic, quality feedback in the moment
  • Live progress trackers enable early intervention and improved learner support
  • Powerful reporting to support compliance and identify areas for improvement
  • Use assessments captured to support staff revalidation and CPD
  • In-built ePortfolio with reflection forms to build evidence of capability
  • Improve security and compliance with email sign-off on assessments
  • Cost savings with reduced paper, admin time and learner attrition


£7.00 to £27.00 per user per year

  • Education pricing available
  • Free trial available

Service documents


G-Cloud 11

Service ID

7 3 0 3 5 6 8 7 5 4 9 7 6 0 2



Rob Arntsen

01904 659465

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints None
System requirements Requires a web browser supporting HTML 5 functions

User support

User support
Email or online ticketing support Email or online ticketing
Support response times We aim to respond to support tickets within 8 hours Monday to Friday.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.1 AA or EN 301 549
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Base support is included within the standard pricing and include 27/4 online logging and management of support requests.

Standard support hours are (9:00 – 5.00 Monday to Friday).

Premium and custom support packages are also available on request.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started We provide a comprehensive range of implementation services that include on-site face-to-face training and workshops as well as online and email consultancy during the implementation. The scale and scope of these services is tailored to meet your specific needs and requirements and we would work with your implementation team(s) and define the best approach and options for you.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction Users can download their own assessments and forms in PDF format. In additional we can provide data extracts from the system in a given format.
End-of-contract process At the end of the contract access to the system will be removed for all users and we will schedule the deletion of all data and backups. This will typical be within 1 month.
If a data extract of the system is required then this can be a provided at an additional cost dependent on the format and level of data provided.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service The mobile service provides offline support for assessment and form completions.
Service interface No
What users can and can't do using the API The services supports and several secure RESTful APIs
API documentation Yes
API documentation formats Open API (also known as Swagger)
API sandbox or test environment Yes
Customisation available Yes
Description of customisation The application support branding and terminology customisation.


Independence of resources Our systems make use of a number of different approaches, including: resource usage monitoring and alerts, allowing us to quickly respond to performance issues, allocating additional resources as required; resource isolation, ensuring that for specific customers get dedicated resources; regional isolation, ensuring that for specific customers in each region get dedicated resources; and automatic scaling when requested, allowing the system to automatically allocate additional resources up to a specified limit at times of high load.


Service usage metrics Yes
Metrics types We provide metrics on the number of users and completed assessment / forms.
Reporting types Regular reports


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
Data sanitisation process No
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Users can export assessments and forms in PDF format.
Data export formats Other
Other data export formats PDF
Data import formats
  • CSV
  • ODF
  • Other
Other data import formats
  • Images
  • Documents
  • Spreadsheets
  • Videos

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability Standard availability is 99.9%.

Premium and custom support packages offer increased availability and can also include a refund provision.
Approach to resilience Available on request
Outage reporting Any system outages would be notified by email.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels User access is control by role level security and support functions are provided only to authorised users.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for Between 1 month and 6 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for Between 1 month and 6 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards Other
Other security governance standards Cyber Essentials
Information security policies and processes Adhere to the principles of Cyber Essentials and internally verified process and procedures.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All changes are managed through our change control team who follow a process of assessment, test and validation prior to the implementation of any production changes. Application changes will follow our product quality assurance process. All changes are documented and audited.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Our services are frequently scanned on a schedule using Azure Security Center, which provides detailed vulnerability and security information for all our cloud services. Recommendations raised from this, including system patches, are fixed on a timescale depending on the severity of the raised issue.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Our systems audit all major events, including authentication failures and successes, configuration changes and item removal. These logs are monitored as part of Azure Active Directory Identity Protection, and alerts raised by this are reviewed weekly, with critical issues requiring resolution in 2 days.
Incident management type Supplier-defined controls
Incident management approach Reported incidents are assessed by our IT Services Manager and a course of action determined based on issue severity.  We use Microsoft Azure Security Center to record and manged the resolution of non-application incidents and our Help Desk to record and manage the resolution of any application incidents.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £7.00 to £27.00 per user per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial The full service can be available for a limited time trial.

Service documents

Return to top ↑