Cantium Business Solutions

HR and Payroll Solutions; Fully managed HR and Payroll Services

Cloud based, fully managed, CIPP accredited HR and Payroll solutions. Managing full employee lifecycle including new starters, issuing of contracts, management of changes to employment and personal details, statutory leave processes, pay reviews, leaver and retirement processes. Fully compliant with all statutory regulations supported by CIPP and CIPD qualified team.


  • Cloud based, fully managed, integrated HR and Payroll solution
  • Comprehensive Manager and Employee self-service capability
  • Real time reporting suite
  • Full statuatory compliant systems and processes
  • HMRC accredited systems available
  • BACS bureau acredited service
  • 3rd Party payments including HMRC, Salary sacrifice, pensions
  • Auto enrolment
  • Absence and leave management
  • Mulitple contract and assignment support


  • Online Manager self service; submit information anytime, anywhere
  • ISO27001 accredited organisation
  • Online submission, tracking of work, communications and information
  • Online employee self service accessible anytime, anywhere
  • Supported by knowledgable and accredited HR and Payroll team
  • Extensive HR and Payroll experience supporting 250+ customers
  • Support for the entire employee life-cycle
  • Link and liaise with 3rd parties e.g. HMRC


£2.33 per person per month

  • Education pricing available

Service documents


G-Cloud 11

Service ID

7 6 5 8 8 1 9 3 6 3 2 0 4 3 7


Cantium Business Solutions

Bids Cantium


Service scope

Software add-on or extension
Cloud deployment model
Private cloud
Service constraints
No constraints identified
System requirements

User support

Email or online ticketing support
Email or online ticketing
Support response times
5 working days for standard queries via our online self service portal.
We also provide instant live chat for quicker responses.
Weekends are not included in workdays response time.
User can manage status and priority of support tickets
Phone support
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Webchat is accessible via an online client embedded in our website. Existing customer need to log into their dedicated user area and can access the webchat feature via a dedicated link.

This opens a new window within their browser and instigates a live webchat with the next available operative. Messaging is text based and supports the transfer of files and information via the secure channel.

A full audit of the live chat history and transcript is available to the user in their dedicated user area for future reference.
Web chat accessibility testing
Webchat testing with assistive technology users has not been undertaken to date.
Onsite support
Support levels
We provide a standard service support level for all customers that includes access to a dedicated HR and Payroll helpdesk, fully accredited payroll control team and experienced systems development team.

Our solution is fully hosted and maintained with any system queries/issues being handled through our helpdesk as their single, integrated point of contact.

We provide our services on a flat rate of £6.63 per employee per month plus an annual administration fee of £1750.

We have dedicated support teams for the payroll systems we utilise such as iTrent and Oracle. Access to these is provided via our HR and Payroll service desk.
Support available to third parties

Onboarding and offboarding

Getting started
Dedicated onboarding team who will produce a project plan highlighting the tasks and timeframes from data gathering to implementation

Onboarding Officer will arrange a project initiation meeting, completing a client checklist from which they will produce a project plan that is specific for each client and takes into consideration any anomalies which could impact the delivery timeframes, amending the project plan accordingly.

The project plan will be maintained by the Onboarding Officer and will be reviewed weekly.

Training and support on both the online customer portal and reporting system to enable our stakeholders to feel confident and self-sufficient in the navigation and functionality of the system.

Cantium will provide you with a standard template for easy data collection and migration

We will undertake to upload this template and will then validate and check once the upload has been completed.

We will work closely with you to resolve any identified discrepancies through the provision of a validation report that covers information relating to individuals and your organization.

Quality assurance and testing forms part of our onboarding project plan and will include, but is not limited to:
• System testing of payroll set up
• Operational user acceptance testing
Service documentation
Documentation formats
  • PDF
  • Other
Other documentation formats
  • Word
  • Hard copy
End-of-contract data extraction
This is provided in an agreed format at the end of the contract through our established off boarding process.

The data is usually provided in excel format as standard although other formats may be available upon request.
End-of-contract process
Following notification of cancellation we will engage with the customer to confirm the termination date and agree timeframes for supplying the customers information to them.

We operate a standard process which includes a pre-defined set of data reports containing HR and Payroll recording information in excel format.

If additional/bespoke reporting requirements are requested this would be costed on a POA basis and provided as required.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
Designed for use on mobile devices
Service interface
Customisation available


Independence of resources
We operate robust contingency and workforce plans to ensure peak demand is covered.

Customer usage and staff time is recorded and analysed to ensure effective workforce planning is undertaken in advance.

Our workforce is multi-skilled and trained to provide support where required at peak times to enable us to meet customer demand.


Service usage metrics


Supplier type
Reseller providing extra support
Organisation whose services are being resold
Midland iTrent HR and Payroll system

Staff security

Staff security clearance
Staff screening not performed
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with another standard
  • Other
Other data at rest protection approach
We do not encrypt customer information at rest as standard although this can be offered as a separate service if required using Oracle TDE methodology. This will use AES encryption.
We also use becrypt disk protect to encrypt all employee disks including laptops and USB drives.
Data sanitisation process
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
Users can export their data via a standard reporting suite accessible via the manager self service portal.

Reports are previewed via the browser before being downloadable in excel format.

Custom/bespoke reports can be created to customer specification however these would incur additional development costs.
Data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
20 working days to process work for payroll (if submitted by processing deadline)

Email/Online enquiries resolved within 5 working days

Telephone enquiries within 3 working days
Approach to resilience
Available on request
Outage reporting
Email alerts
Website notification
social media
telephone message

Identity and authentication

User authentication needed
User authentication
Username or password
Access restrictions in management interfaces and support channels
Access is password protected with dedicated usernames and passwords issued to key personnel only.

Users can only reset access via the support helpdesk where additional information is required before access is provided.

Cantium's systems are password protected and accessible only via our secure network or via 2 factor authentication into a secure VPN when working outside of our network.
Access restriction testing frequency
At least every 6 months
Management access authentication
Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Who accredited the ISO/IEC 27001
British Assessment Bureau
ISO/IEC 27001 accreditation date
What the ISO/IEC 27001 doesn’t cover
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications
Any other security certifications
Cyber Security Essentials

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance standards
ISO/IEC 27001
Information security policies and processes
This is available on request

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
We follow an ITIL framework best practice approach in regards to configuration and change management. We are ISO27001 accredited and our procedures meet all the requirements needed to fulfil this obligation.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Infrastructure within the datacentres are regularly scanned using QuallysGuard. Authenticated scans on servers are performed to identify vulnerabilities and required patches.

The infrastructure running the services is patched as required in the quarterly maintenance windows. Systems are regularly scanned by Qualys suite to ensure all devices are at the required patch levels
Annual CREST penetration test of the software, hosted service and corporate network.
Protective monitoring type
Protective monitoring approach
We have a dedicated Network Security team who work in collaboration with our 3rd party hosting provider to monitor infrastructure in our networks.

Our processes meet all of the requirements needed to fulfill our obligations for ISO27001 accreditation and are based on ITIL best practice.
Incident management type
Supplier-defined controls
Incident management approach
This is based on ITIL best practice and adheres to all of the requirements needed to meet ISO27001 accreditation.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks


£2.33 per person per month
Discount for educational organisations
Free trial available

Service documents

Return to top ↑