Pluralsight provides on-demand digital learning solutions focused on technology. It helps companies and professionals gain new skills at the point of need, master technologies and stay ahead of the competition. It works in partnership with organisations to understand their technology learning goals and to become their leading technology learning partner.
- Technology Content from Leading Industry Authors
- Significant Breadth and Depth of Technology Related Content
- On-demand, Remote Access
- Full Reporting Functionality
- Skills Assessments
- Curated and Tailored Learning Paths
- Offline Viewing
- Course Discussions
- more complete information in supplier's service definition document
- Up-to-date technology related content
- Learn anywhere at anytime
- Usage Reports
- Address Learner and Organisational techology skills gaps
- Paths that recommend your learning journey based on your goals
- Learning can be tailored to your technology stacks and environments
- Download content to watch on your commute or offline
- APIs to enable integration for reporting and consistency
£326 per licence per year
- Education pricing available
- Free trial available
|Software add-on or extension||No|
|Cloud deployment model||Public cloud|
Any planned maintenance or downtime is notified in real time.
We do not support the following operating systems or devices:
Linux (we have limited support on Linux),
|Email or online ticketing support||Email or online ticketing|
|Support response times||
a ticket will be generated and acknowledged
|User can manage status and priority of support tickets||No|
|Phone support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support||No|
Support is provided by our dedicated customer support team. Levels of service depend on the type of implementation. Standard support covers everything the learner / plan manager needs to ask regarding access, technical issues, etc.
More detailed information on request.
|Support available to third parties||Yes|
Onboarding and offboarding
Pluralsight hosts a weekly virtual on-boarding webinar open to anyone who has a license subscription.
There is also the option for your allocated Customer Success Manager, Account Director, or Solutions Architect to provide this service as a closed 'webinar' or in some instances on-site for you.
We also have learner 'how to' videos available within the platform which are simple and easy to use.
Our online knowledgebase also contains information to assist the learner.
More detailed information on request
|End-of-contract data extraction||
There is the option to download learner data from within the Plan Managers admin dashboard.
Learners can also download their individual learning history and transcripts from their account history profile page.
Learners can download their personal notes held within the platform.
More detailed information on request
|End-of-contract process||Subscriptions provided under a call-off agreement, and all access to content provided on the Pluralsight platform based on such subscriptions, terminate simultaneously with contract termination.|
Using the service
|Web browser interface||Yes|
|Application to install||No|
|Designed for use on mobile devices||Yes|
|Differences between the mobile and desktop service||
We offer the following options:
Amazon Fire TV,
streaming through airplay and chromecast, and
Offline Desktop (Windows 10 & Mac and PC)
All mobile options allow downloading of content (up to 30 modules) and learning is synchronised back with the learners account when reconnected to the network either by WiFi or other means
|Accessibility standards||WCAG 2.0 AA or EN 301 549|
The authenticated application conforms to Level AA Success Criteria in its entirety except for two sub-headings:
1.4.3 Contrast (Minimum): The visual presentation of text and images of text has a contrast ratio of at least 4.5:1, except for the following: (Level AA)
Contrast ratios are met a majority of the time but it is known that some buttons are below AA criteria and are actively being addressed with designers to identify a satisfactory color ratio. In most cases, if it fails to meet Level AA, it still meets Level A criteria.
2.4.1 Bypass Blocks: A mechanism is available to bypass blocks of content that are repeated on multiple Web pages. (Level A)
This is being addressed and will be resolved by end of 2017.
We have a 3rd party accessibility auditor that reviews our application on a quarterly basis to help us stay in compliance.
|What users can and can't do using the API||
Application Plan Managers (admins) can manage the group plan reporting API and the License Management API.
Full documentation, instructions and examples are found within the Application Plan Managers admin dashboard.
Limitations are bound by security tokens, of which the Application Plan Manager has access to via the admin dashboard.
|API documentation formats||
|API sandbox or test environment||No|
|Independence of resources||Pluralsight is developed in a bounded context, micro-service type architecture. This means that inter-dependencies, like shared databases and other architecture scaling issues, do not exist and this nearly eliminates downtime and planned outages. Pluralsight also supports an average of 250k active users and conducts regularly stress testing. Pluralsight supports some of the largest firms in the world where tens of thousands of users are actively logged in at a time. Pluralsight contracts with the some of the most scalable base architecture providers in the world including AWS (hosting), Verizon (CDN), and Cassandra database technologies.|
|Service usage metrics||Yes|
Metrics are provided in the Plan Managers dashboard via data visualisations and download options, including but not limited to:
Overall Usage (30 days, 90 days, 12 months),
User Data - (name, start, team, hours, unique courses, last login),
Content Data - (Course, duration,hours viewed, average completion),
Usage - (Total users, total hours, average hours per user, unique courses),
Skills Measure (annonymised data across plan - avg skills per topic studied)
|Supplier type||Not a reseller|
|Staff security clearance||Other security clearance|
|Government security clearance||None|
|Knowledge of data storage and processing locations||Yes|
|Data storage and processing locations||EU-US Privacy Shield agreement locations|
|User control over data storage and processing locations||No|
|Datacentre security standards||Managed by a third party|
|Penetration testing frequency||At least once a year|
|Penetration testing approach||Another external penetration testing organisation|
|Protecting data at rest||
|Other data at rest protection approach||We store and encrypt passwords with a hash.|
|Data sanitisation process||Yes|
|Data sanitisation type||
|Equipment disposal approach||In-house destruction process|
Data importing and exporting
|Data export approach||
Learners can export their data via their account profile page on their learner dashboard.
Platform administrators can download data from the reports page in the administration dashboard.
|Data export formats||
|Other data export formats||
|Data import formats||CSV|
|Data protection between buyer and supplier networks||
|Other protection between networks||All PII is passed over https, data is not encrypted at rest with the exception of passwords which are stored with a hash.|
|Data protection within supplier network||Other|
|Other protection within supplier network||All PII is passed over https, data is not encrypted at rest with the exception of passwords which are stored with a hash.|
Availability and resilience
|Guaranteed availability||Pluralsight offers 98% uptime as an SLA and additional access time for interruptions in availability that collectively result in less than 98% availability during any single month.|
|Approach to resilience||To maximize resilience and scalability , Pluralsight uses AWS for all its hosting. More information on AWS policies can be found here: https://aws.amazon.com/compliance/|
|Outage reporting||Website banners and dedicated support website.|
Identity and authentication
|User authentication needed||Yes|
|Other user authentication||We offer SAML 2.0 SSO (Single Sign On) integration, both IdP and SP with PingFederate. We also are pre-loaded in the top IdP catalogues OneLogin, Azure and Okta.|
|Access restrictions in management interfaces and support channels||
Individuals have unique logon IDs and Passwords. An access control system shall identify each user and prevent unauthorised users from entering or using information resources. All login IDs are audited at least twice yearly and all inactive logon IDs are revoked. HR notifies the security officer on departure of all employees. Users who desire access to company systems or networks must have completed Pluralsight on-boarding practice and have access specifically requested by their manager.
More indepth information available on request
|Access restriction testing frequency||At least every 6 months|
|Management access authentication||
Audit information for users
|Access to user activity audit information||Users have access to real-time audit information|
|How long user audit data is stored for||At least 12 months|
|Access to supplier activity audit information||Users contact the support team to get audit information|
|How long supplier audit data is stored for||At least 12 months|
|How long system logs are stored for||At least 12 months|
Standards and certifications
|ISO/IEC 27001 certification||No|
|ISO 28000:2007 certification||No|
|CSA STAR certification||No|
|Who accredited the PCI DSS certification||Trustwave|
|PCI DSS accreditation date||02/05/2016|
|What the PCI DSS doesn’t cover||.|
|Other security accreditations||No|
|Named board-level person responsible for service security||No|
|Security governance accreditation||No|
|Security governance approach||
Pluralsight focuses heavily on Software and Information security and takes cues from the ISO/IEC 27001:2005 specification wherever possible.
Our third party hosting partners, AWS, are aligned to the G-Cloud framework and the UK Cloud Cyber Security Principles
|Information security policies and processes||Pluralsight's Security Policy is available upon request.|
|Configuration and change management standard||Supplier-defined controls|
|Configuration and change management approach||
1. IT/Ops staff or other designated Company employee who is updating, implementing, re-configuring, or otherwise changing the system shall carefully log all changes made to the system. Change logging should be automated in any case where it is possible.
2. The employee implementing the change will ensure that all necessary data backups are performed prior to the change.
3. The employee implementing the change shall also be familiar with the rollback process in the event that the change causes an adverse effect within the system and needs to be removed.
Full policy available on request
|Vulnerability management type||Supplier-defined controls|
|Vulnerability management approach||
Identify and document
Determine probability and criticality
Identify and document key vulnerabilities
Develop and document implementation strategy
Implement and evaluate effectiveness
Patches daily or on a as needed basis
Penetration testing annually
Monthly vulnerability scans
|Protective monitoring type||Supplier-defined controls|
|Protective monitoring approach||
It is the responsibility of each company employee or contractor to report perceived security incidents on a continuous basis. Reports of security incidents shall be escalated as quickly as possible. Each incident will be analysed to determine if changes in the existing security structure are necessary. All reported incidents are logged and the remedial action indicated. Security beaches shall be promptly investigated. If criminal action is suspected, the Privacy Officer shall contact the appropriate law enforcement and investigative authorities immediately.
In-depth information available on request
|Incident management type||Supplier-defined controls|
|Incident management approach||
Policy with pre-defined processes for common events
Incidents reported by email, phone, ticket
Notification should occur immediately upon discovery
Notification to individuals / customers affected will occur as soon as possible following
Incidents are logged, reported and recommendations made where appropriate
Full details available on request
|Approach to secure software development best practice||Conforms to a recognised standard, but self-assessed|
Public sector networks
|Connection to public sector networks||No|
|Price||£326 per licence per year|
|Discount for educational organisations||Yes|
|Free trial available||Yes|
|Description of free trial||Structured Pilots provide unlimited full access to Pluralsight Platform for 30 days use|
|Pricing document||View uploaded document|
|Skills Framework for the Information Age rate card||View uploaded document|
|Service definition document||View uploaded document|
|Terms and conditions document||View uploaded document|