Lumesse Ltd

Lumesse Learning Gateway

Lumesse Learning Gateway is a powerful, cloud-based learning management system for organisations of all sizes. It provides a flexible and comprehensive system for delivering and managing sophisticated learning programmes. Lumesse Learning Gateway is delivered as a SaaS (Software-as-a-Service) solution configurable to your exact needs with rapid implementation.


  • Reliably delivers e-learning
  • Manages Instructor Led Training (ILT - Classroom training)
  • Creates and delivers tests and evaluations
  • Enhances blended learning programmes by linking activities and resources together
  • Delivers content in an engaging way
  • Easy maintenance of content
  • Customer configured branding and portal development option
  • Mature and powerful user management
  • Measures, tracks and reports on training delivery
  • Advanced reporting and configurable reporting templates


  • Available in over 20 languages
  • Learning with compelling, fully self-service-configurable portal interfaces
  • Deliver focused activities to specific groups or teams
  • Easily administer learning under constant change
  • Gain real-time visibility into learning progress in the organisation
  • Distribution of content according to role and role type
  • Creation of multiple curriculums
  • Multiple brands supported
  • No programming knowledge required
  • Integration with many HR systems


£0.20 per licence per month

Service documents

G-Cloud 10


Lumesse Ltd

G-Cloud Enquiries


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints Customer support is provided by the Uk team from 8 - 6 pm. You can purchase Follow the sun support - ie you are support 24 hours a day by a global support network.
System requirements
  • Users need access to Internet
  • Support XHTML (virtually all browsers support this)
  • Allow pop-ups in browser from Learning Gateway
  • Java Script is enabled in browser
  • Cookies accepted by browser
  • Windows XP with Service Pack 2/3 or any newer version
  • Mac OS 10.6 or any newer version of Mac OS

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Our response times are outlined in our SLA; Service unavailable response time is within an hour irrespective of when this has occured. Critical issue response time is 2 hours. Major issue SLA response time is a 24hours. Minor issue SLA response time is 48 hours.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels There was one level of support and there are no costs involved since this is part of the service we offer. The support team consists of cloud support engibeers.
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started During the implementation one of the key parts is to train the administrators that will manage and maintain the solution. A dedicated Lumesse consultant will provide training onsite. Handouts, training material and user documentation will be shared among the users.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
  • Other
Other documentation formats
  • Powerpoint
  • Word
  • Excel
End-of-contract data extraction Users are allowed to extract data until the last day of the contract. If any data needs to be extracted after the end date of the contract Lumesse can deliver this data (up to 4 weeks after end date of contract).
End-of-contract process Once notice has been provided, in accordance with the contractual terms, the Account Manager will notify Operations that the client is due to terminate. On the date of the contract termination the solution will be switched off and is not accessible anymore for any users.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Firefox
  • Chrome
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service The mobile version is focused on users "on the go". Users can access directly a catalogue with mobile optimized e-learning content and play from their mobile device.
The desktop version has an enhanced portal feature that contains dedicated workspaces for different type of audiences for all types of training content and resources.
Accessibility standards None or don’t know
Description of accessibility The solution has the ability to resize text up to 200%
Accessibility testing N/a
What users can and can't do using the API Lumesse provides an interface for customers to store, update and retrieve data from the Learning Gateway. This interface can be used to integrate Learning Gateway data with the clients’ own systems (Typically integrations are with HRIS providers such as Workday, Oracle, SAP and Fairsale).

Lumesse has chosen to use web services for this purpose since this is an open standard that can be implemented in any system, regardless of the underlying technology. Typically this is used to create and maintain Users and Organisational hierarchies as well as the export of learner records.
API documentation Yes
API documentation formats PDF
API sandbox or test environment Yes
Customisation available No


Independence of resources Growing organisations often face unique data management & protection requirements. Learning Gateway is provided by Lumesse, one of the largest providers of integrated Talent Management software in Europe, with the same enterprise security expertise, so that you can be sure that your data is secure, no matter how many users you need.


Service usage metrics Yes
Metrics types Learning Gateway has a suite of pre-built reports which can be exported into various popular formats as well as shared with other Learning Gateway users in the organisation.
The reports also offer configurable filters and column selection through the user interface to tailor the report to more specific needs. Customised reports can then be saved to enable quick access for subsequent reporting.
Reporting data can also be filtered by a manager so that they can identify action they may need to take in relation to their sub-ordinates learning, for example mandatory deadlines that are at risk of being missed.
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations European Economic Area (EEA)
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach The solution provides the ability the export data into reports. The reports can be exported into Excel, PDF and OpenOffice.
Data can also be exported via web services.
Data export formats
  • CSV
  • ODF
  • Other
Other data export formats
  • PDF
  • XLXS
  • SOAP
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability Our SLA offers availability via the internet of 99.8% measured monthly.
The following service credits shall apply if the Availability of the Solution is less than 99.8 %:
between 99.7 and 99.8 % : 3%
between 97 and 99.69 % : 6%
between 96 and 96.99 % : 9%
between 95 and 95.99 % : 12%
less than 95 % : 15%
less than 90 % : 40%

Service credits are expressed as a percentage of the monthly Subscription Fee.
Approach to resilience All Learning Gateway hosting infrastructure is deployed across multiple AWS Availability Zones within the AWS Region both to allow rapid restoration of service in the event of a total AWS site loss and to minimise the service impact of site failure.
Outage reporting An E-mail is sent out to all emergency contacts. An alert would be posted on our customer services portal and all Account Managers would be informed so that we can call clients.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Learning Gateway has a number of user profiles which relates to the the type of data a user can access within the tool. Customised user profiles with different permission levels to data can be created by customer admins.
Access to the support portal is restricted to individuals who have received Lumesse training and have a customer portal account.
Access restriction testing frequency At least once a year
Management access authentication
  • Username or password
  • Other

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Lloyd's Register Quality Assurance Ltd
ISO/IEC 27001 accreditation date 25/05/2016
What the ISO/IEC 27001 doesn’t cover -
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Lumesse has implemented a control framework based upon market standards as ISO27001/2, CobIT, ITIT. The effective of this control framework is audited by LRQA and PwC and evidenced in the form of the ISO 27001 certificate. We have Information and Data Security Manager who works with all departments to ensure the framework is robustly adhered to.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach All changes are tested prior to implementation by the internal QC team. This consists of several tests :

Regression – delivered product does not negatively impact the current system
Compatibility with supported browsers
Performance maintains SLA criteria
User friendly interface
Security issue free.
The results are analysed and all testing stages are validated against acceptance criteria . This process is continuously enhanced by applying the improvement actions and lessons learned during the tests of each release. This continuous improvement is embedded in the Lumesse software lifecycle process.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach Lumesse do continuous risk assessments throughout the years. Information is gathered from different sources. Controls are implemented to address there. Internal team do regular vulnerability assessments. An independent penetration test is done on an annual basis. Patches can be deployed within 24 hours if deemed absolutely necessary. Typically after each release there is a maintenance release and patches for bug-fixing.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach We pro-actively monitor external suspicious activity via various means;
--Software Security Alerts – Lumesse monitors hacker communities and all standard security mailing lists from industry authorities . Once identified, the software security threats enter into a rigorous evaluation process to determine the reaction strategy. The Hosting Team update process evaluates and deploys patches if needed on application or operating systems.

-Network Traffic Monitoring
-Port scanning
-External penetration tests
-Platform tests are done half yearly and whenever significant changes are executed at the Data Centre
Intrusion Detection – Lumesse uses two levels :
-Checkpoint IPS on network level -
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach User can report incidents via our Customer Portal 24/7, or via telephone 8 am - 6pm in their local time zone. A case will be raised on our portal and client provided regular updates, both via the portal and the telephone. If there is a common incident affecting a number of clients this will be highlighted on the login page of the portal. There are predefined respond times to different levels of incident outlined in the SLA. Major Incident Reports will be distributed once a major incident has been resolved.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £0.20 per licence per month
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑