HR and Payroll Solutions; Fully managed HR and Payroll Services
Cloud based, fully managed, CIPP accredited HR and Payroll solutions. Managing full employee lifecycle including new starters, issuing of contracts, management of changes to employment and personal details, statutory leave processes, pay reviews, leaver and retirement processes. Fully compliant with all statutory regulations supported by CIPP and CIPD qualified team.
- Cloud based, fully managed, integrated HR and Payroll solution
- Comprehensive Manager and Employee self-service capability
- Real time reporting suite
- Full statuatory compliant systems and processes
- HMRC accredited systems available
- BACS bureau acredited service
- 3rd Party payments including HMRC, Salary sacrifice, pensions
- Auto enrolment
- Absence and leave management
- Mulitple contract and assignment support
- Online Manager self service; submit information anytime, anywhere
- ISO27001 accredited organisation
- Online submission, tracking of work, communications and information
- Online employee self service accessible anytime, anywhere
- Supported by knowledgable and accredited HR and Payroll team
- Extensive HR and Payroll experience supporting 250+ customers
- Support for the entire employee life-cycle
- Link and liaise with 3rd parties e.g. HMRC
£2.33 per person per month
- Education pricing available
7 6 5 8 8 1 9 3 6 3 2 0 4 3 7
Cantium Business Solutions
|Software add-on or extension||No|
|Cloud deployment model||Private cloud|
|Service constraints||No constraints identified|
|Email or online ticketing support||Email or online ticketing|
|Support response times||
5 working days for standard queries via our online self service portal.
We also provide instant live chat for quicker responses.
Weekends are not included in workdays response time.
|User can manage status and priority of support tickets||No|
|Phone support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support||Web chat|
|Web chat support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support accessibility standard||None or don’t know|
|How the web chat support is accessible||
Webchat is accessible via an online client embedded in our website. Existing customer need to log into their dedicated user area and can access the webchat feature via a dedicated link.
This opens a new window within their browser and instigates a live webchat with the next available operative. Messaging is text based and supports the transfer of files and information via the secure channel.
A full audit of the live chat history and transcript is available to the user in their dedicated user area for future reference.
|Web chat accessibility testing||Webchat testing with assistive technology users has not been undertaken to date.|
We provide a standard service support level for all customers that includes access to a dedicated HR and Payroll helpdesk, fully accredited payroll control team and experienced systems development team.
Our solution is fully hosted and maintained with any system queries/issues being handled through our helpdesk as their single, integrated point of contact.
We provide our services on a flat rate of £6.63 per employee per month plus an annual administration fee of £1750.
We have dedicated support teams for the payroll systems we utilise such as iTrent and Oracle. Access to these is provided via our HR and Payroll service desk.
|Support available to third parties||No|
Onboarding and offboarding
Dedicated onboarding team who will produce a project plan highlighting the tasks and timeframes from data gathering to implementation
Onboarding Officer will arrange a project initiation meeting, completing a client checklist from which they will produce a project plan that is specific for each client and takes into consideration any anomalies which could impact the delivery timeframes, amending the project plan accordingly.
The project plan will be maintained by the Onboarding Officer and will be reviewed weekly.
Training and support on both the online customer portal and reporting system to enable our stakeholders to feel confident and self-sufficient in the navigation and functionality of the system.
Cantium will provide you with a standard template for easy data collection and migration
We will undertake to upload this template and will then validate and check once the upload has been completed.
We will work closely with you to resolve any identified discrepancies through the provision of a validation report that covers information relating to individuals and your organization.
Quality assurance and testing forms part of our onboarding project plan and will include, but is not limited to:
• System testing of payroll set up
• Operational user acceptance testing
|Other documentation formats||
|End-of-contract data extraction||
This is provided in an agreed format at the end of the contract through our established off boarding process.
The data is usually provided in excel format as standard although other formats may be available upon request.
Following notification of cancellation we will engage with the customer to confirm the termination date and agree timeframes for supplying the customers information to them.
We operate a standard process which includes a pre-defined set of data reports containing HR and Payroll recording information in excel format.
If additional/bespoke reporting requirements are requested this would be costed on a POA basis and provided as required.
Using the service
|Web browser interface||Yes|
|Application to install||No|
|Designed for use on mobile devices||No|
|Independence of resources||
We operate robust contingency and workforce plans to ensure peak demand is covered.
Customer usage and staff time is recorded and analysed to ensure effective workforce planning is undertaken in advance.
Our workforce is multi-skilled and trained to provide support where required at peak times to enable us to meet customer demand.
|Service usage metrics||No|
|Supplier type||Reseller providing extra support|
|Organisation whose services are being resold||Midland iTrent HR and Payroll system|
|Staff security clearance||Staff screening not performed|
|Government security clearance||Up to Baseline Personnel Security Standard (BPSS)|
|Knowledge of data storage and processing locations||Yes|
|Data storage and processing locations||United Kingdom|
|User control over data storage and processing locations||No|
|Datacentre security standards||Managed by a third party|
|Penetration testing frequency||At least once a year|
|Penetration testing approach||‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider|
|Protecting data at rest||
|Other data at rest protection approach||
We do not encrypt customer information at rest as standard although this can be offered as a separate service if required using Oracle TDE methodology. This will use AES encryption.
We also use becrypt disk protect to encrypt all employee disks including laptops and USB drives.
|Data sanitisation process||No|
|Equipment disposal approach||A third-party destruction service|
Data importing and exporting
|Data export approach||
Users can export their data via a standard reporting suite accessible via the manager self service portal.
Reports are previewed via the browser before being downloadable in excel format.
Custom/bespoke reports can be created to customer specification however these would incur additional development costs.
|Data export formats||CSV|
|Data import formats||CSV|
|Data protection between buyer and supplier networks||TLS (version 1.2 or above)|
|Data protection within supplier network||TLS (version 1.2 or above)|
Availability and resilience
20 working days to process work for payroll (if submitted by processing deadline)
Email/Online enquiries resolved within 5 working days
Telephone enquiries within 3 working days
|Approach to resilience||Available on request|
Identity and authentication
|User authentication needed||Yes|
|User authentication||Username or password|
|Access restrictions in management interfaces and support channels||
Access is password protected with dedicated usernames and passwords issued to key personnel only.
Users can only reset access via the support helpdesk where additional information is required before access is provided.
Cantium's systems are password protected and accessible only via our secure network or via 2 factor authentication into a secure VPN when working outside of our network.
|Access restriction testing frequency||At least every 6 months|
|Management access authentication||Username or password|
Audit information for users
|Access to user activity audit information||Users have access to real-time audit information|
|How long user audit data is stored for||At least 12 months|
|Access to supplier activity audit information||Users contact the support team to get audit information|
|How long supplier audit data is stored for||At least 12 months|
|How long system logs are stored for||At least 12 months|
Standards and certifications
|ISO/IEC 27001 certification||Yes|
|Who accredited the ISO/IEC 27001||British Assessment Bureau|
|ISO/IEC 27001 accreditation date||06/02/2019|
|What the ISO/IEC 27001 doesn’t cover||N/A|
|ISO 28000:2007 certification||No|
|CSA STAR certification||No|
|Other security certifications||Yes|
|Any other security certifications||Cyber Security Essentials|
|Named board-level person responsible for service security||Yes|
|Security governance certified||Yes|
|Security governance standards||ISO/IEC 27001|
|Information security policies and processes||This is available on request|
|Configuration and change management standard||Supplier-defined controls|
|Configuration and change management approach||We follow an ITIL framework best practice approach in regards to configuration and change management. We are ISO27001 accredited and our procedures meet all the requirements needed to fulfil this obligation.|
|Vulnerability management type||Supplier-defined controls|
|Vulnerability management approach||
Infrastructure within the datacentres are regularly scanned using QuallysGuard. Authenticated scans on servers are performed to identify vulnerabilities and required patches.
The infrastructure running the services is patched as required in the quarterly maintenance windows. Systems are regularly scanned by Qualys suite to ensure all devices are at the required patch levels
Annual CREST penetration test of the software, hosted service and corporate network.
|Protective monitoring type||Undisclosed|
|Protective monitoring approach||
We have a dedicated Network Security team who work in collaboration with our 3rd party hosting provider to monitor infrastructure in our networks.
Our processes meet all of the requirements needed to fulfill our obligations for ISO27001 accreditation and are based on ITIL best practice.
|Incident management type||Supplier-defined controls|
|Incident management approach||This is based on ITIL best practice and adheres to all of the requirements needed to meet ISO27001 accreditation.|
|Approach to secure software development best practice||Conforms to a recognised standard, but self-assessed|
Public sector networks
|Connection to public sector networks||No|
|Price||£2.33 per person per month|
|Discount for educational organisations||Yes|
|Free trial available||No|