Bray Leino Ltd

Next Generation Learning Management System (LMS)

The vLearning Platform takes all the features of a Learning Management System (LMS), such as lessons, assessments, reporting and schedules, and takes them to the next level by incorporating virtual classrooms, social
learning, video content and web resources.

This all-in-one tool delivers rich online learning activities in an engaging manner.


  • Single system that can host in-house and external learning resources
  • Easy learning design, template driven, requiring no technical authoring expertise
  • Supports modern learning modes - video, eLearning, virtual-classrooms, social learning
  • Engaging 3D-navigation for an intuitive, consumer-quality learning experience
  • Learning accessed on all devices, 24/7 via the web
  • Integration of web-conferencing to embed virtual classrooms/webinars into learning solutions
  • Self-directed learning using meta-data for access on-demand
  • Every learner interaction tracked for detailed reports and analytics
  • Motivate and incentivise learners with leaderboards, progress indicators and certificates
  • Manage users, interventions and different learning modes across disparate systems


  • ALL learning in one place, simple for learners and managers
  • Quickly and easily design modern learning experiences
  • Leverage existing resources, enrich the learner experience
  • Learners require no support and easily understand what to do
  • Learners have flexibility and convenience to learn anytime and anywhere
  • Save time and money, reduce risks, and improve productivity
  • Provides learners just-in-time performance support in the workplace
  • Better understanding and management of performance across ALL learning activities
  • Increase learner participation and improve engagement and performance levels
  • Improve productivity, remove risks, and achieve agile and continuous learning


£0.34 to £1.40 per user per month

Service documents

G-Cloud 9


Bray Leino Ltd

Bray Leino Ltd


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints Our service is delivered via a website, and as such every user needs access to a device capable of displaying modern HTML + javascript web content and sufficient bandwidth. In general, a connection greater than 1Mbps and a web browser newer than Internet Explorer 8 is necessary.
System requirements
  • Web browser: Chrome, Internet Explorer (8+), FireFox
  • Javascript must be enabled
  • Internet connection greater than 1Mbps recommended

User support

User support
Email or online ticketing support Yes, at extra cost
Support response times We respond to questions within two hours of receipt of the question. Email support is not available after 5pm on Fridays, until 8am on Mondays.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support Yes, at an extra cost
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible The web chat is accessible for hearing impaired people, however it is not accessible for visually impaired people because screen readers are not currently supported.
Web chat accessibility testing We have not previously been required to perform testing for assisting technology users. We would be willing to undertake this testing in the future if required.
Onsite support Yes, at extra cost
Support levels Our email/phone/webchat helpdesk provides support required by the end user such as logging in problems, content availability, technical difficulties (related to the platform and not internal IT issues but we can assist with diagnostics of initial presentation). All support is in English only between the hours of 8am - 5pm, Monday - Friday.

Our technical teams provide onsite support if required; details to be agreed with client.

The administration helpdesk is specifically for administrators of the platform; assisting with any technical or functional issues via email/phone. We also provide administration/content sponsor consultancy for administrators of the platform and an L&D design advice/guidance service.

We offer a design service for any creative elements for the platform, for example, course look and feel, home page design, carousel tiles etc.

We can provide a range of services to assist with content development - developing content from scratch, eLearning, video or vILT sessions.

We provide a technical account manager/project manager for each client working collaboratively with you to scope, design, build and implement your platform. They are your contact for anything that falls outside of helpdesk responsibilities - working to resolve any technical issues, any new feature development ideas to include in the future.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started The onboarding process includes an initial scoping meeting to determine all requirements, customisation and business rules. The platform can then be customised to brand guidelines, and we would set up the platform with the agreed look and functionality. Then, we migrate the user/training history from your current system, analyse existing content and map it to a new structure by department, job role, events, courses etc. We design and develop specific imagery for the home page tiles and carousel for course modules and upload all existing content. In addition to this we can provide an eCommerce function to enable course booking and the management of physical events. We can provide SSO configuration and finally we would proofread and test the platform before commencing user acceptance testing. At this stage we would provide vILT training and a user guide with FAQ.

The offboarding process focuses on the supply of data through a range of reports providing user/training history and provision of course content. This would be supplied to an agreed schedule after discussion with the client.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Users’ data is extracted via a number of reports when the contract ends. These reports include an all user/user group report, listing name, email address, location and department, if recorded, as well as listing the courses they have been allocated. In addition to this we have reports providing the training history for all delegates/delegate group listing all bookings from start to end of contract; evaluations report from start to end of contract. This data can also be broken down into per course data, quiz data, SCORM data etc. This data can be extracted by an administrator, or we can extract the data for the client.
End-of-contract process At the end of the contract we would consult with the client to understand the timescale etc. for the end of contract process. Included in the price of the contract will be standard reports providing the client data, if bespoke reports are needed this would be quoted on an as needed basis.

The standard reports include an all user/user group report, listing name, email address, location and department, if recorded, as well as listing the courses they have been allocated and the certifications acquired. In addition to this we have reports providing the full training history for all delegates/delegate group listing all bookings from start to end of contract. There are reports listing amalgamated SCORM scores, quiz and survey results, last month’s attendance for virtual or face to face sessions, proofs of learning. There are also reports of upcoming live sessions for ILT and vILT sessions in the next 30 days, year-to-date attendance detailing the attendance on virtual and face-to-face events for the year-to-date, and year-to-date time by user detailing the time spent in sessions over the year. We can also provide reports of delegates CPD, where that data has been entered by the user.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service There are no differences in functionality unless the user chooses to upload incompatible content, for example eLearning modules that use Flash.
Accessibility standards None or don’t know
Description of accessibility The interface is built using well structured HTML5 code meaning that navigation without a pointing device is supported, but not necessarily in an optimal order. Testing has not yet been completed so a full list of non-compliances is not available.
Accessibility testing The interface is built using well structured HTML5 code meaning that navigation without a pointing device is supported, but not necessarily in an optimal order. Testing has not yet been completed so a full list of non-compliances is not available.
Customisation available Yes
Description of customisation Users can customise the service by selecting an array of graphical elements, interface styles and email notifications through a number of browser-based editor screens. This customisation is accessible by administrators.


Independence of resources We monitor a number of key system metrics including end-user performance using Microsoft’s Application Insights product. And this data is used in capacity planning and scaling of systems is adjusted on the Microsoft Cloud accordingly.


Service usage metrics Yes
Metrics types System performance metrics are provided through a real-time dashboard. Participant activity metrics include details of accesses, content viewed, scores achieved, attendance, non-attendance, certifications achieved, sign-ins arranged according to course/event, user or globally.
Reporting types
  • Real-time dashboards
  • Reports on request


Supplier type Reseller providing extra features and support
Organisation whose services are being resold VLearning Solutions

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations European Economic Area (EEA)
User control over data storage and processing locations No
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest Physical access control, complying with CSA CCM v3.0
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Administrators can import user data subject to having the suitable permissions using a .CSV template to capture the correct data.

Again, subject to having the correct permissions the administrators can import content quickly and easily.

The reporting dashboard provides a range illustrations and quick export reports, these can be easily downloaded in .CSV or excel formats.
Data export formats CSV
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability The guaranteed level of availability of the customer’s next generation LMS (as measured by the internet service provider) is 99.5%, 24 hours per day, 7 days per week.

If in any calendar month, availability falls below 99.5%, the customer shall be entitled to an extension of the subscription term as set out below and an equivalent delay in paying the following year’s renewal fee (if applicable).

For each 1% or part thereof of non-availability of the customer’s next generation LMS in the calendar month in question, the customer shall be entitled to an extension of 3 days to the subscription term, subject to a maximum of 30 days.

Monthly Service Availability Extension of Subscription Term
99.49 - 98.5 3 days
98.49 - 97.5 6 days
97.49 - 96.5 9 days
96.49 - 95.5 12 days
95.49 - 94.5 15 days
94.49 - 93.5 18 days
93.49 - 92.5 21 days
92.49 - 91.5 24 days
91.49 - 90.5 27 days
90.49 - 89.5 30 days
Approach to resilience At the hardware and network level the Microsoft Cloud provides excellent resilience through adherence to industry best practices. Our service contains multiple levels of resilience including clusters of front and back-end services and a constantly maintained “standby” server set in a geographically dispersed datacentre. In the event of a catastrophic disaster destroying our primary location it would be possible to switch to the standby in a matter of hours.
Outage reporting We provide a public dashboard with live information of service availability and performance. In the event of an outage automated systems alert our staff who would liaise with the customers in order to communicate the status.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels A roles-based access control mechanism is implemented within the system with roles for each of the key actions (create, edit, update, delete) within each of the different administrative interfaces. These roles can only be managed by users with the highest level of privilege.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation No
Security governance approach We use Microsoft Azure 100% to provide our service which is compliant with ISO27001, FedRAMP, SOC1 and SOC2. Their security compliance framework includes test and audit phases, security analytics, risk management best practices, and security benchmark analysis.
Information security policies and processes No official standards applied, but own policies defined in the company handbook.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Hardware lifecycle is managed by the Microsoft Azure team as part of the Paas agreement in accordance with certified industry best practices.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach A dedicated Microsoft team monitors vulnerabilities and automatically applies patches and fixes any issues discovered from a hardware and network perspective.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach Protective monitoring is demonstrated in Microsoft Azure’s compliance with the ISO-27001 information security standard. In addition to our provider's ISO-27001 compliance, and their use of independent 3rd party penetration tests, Microsoft operate an assumed breach model and use active red-team penetration testing and vulnerability management as part of their Operational Security Assurance (OSA).
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach Our procedures wrap around the 5-step incident response process used by Microsoft Azure; Detect, Assess, Diagnose, Stabilise and Close. We layer additional monitoring (using both internal and 3rd party tools) on top of the Azure infrastructure. Our policy is to notify customers of impacting or potentially impacting issues as early as possible via direct communication and maintain a dialogue as information becomes available through to resolution. Once resolved we perform a post-mortem, which is also shared with the customer.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £0.34 to £1.40 per user per month
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑