IMImobile Europe Ltd

Envoy Post - Digital & Hybridmail

An offsite, secure print and mail solution is essential to allow customers to focus on core business.
With Healthcare Communications HybridMail there’s no need to spend time printing and stuffing envelopes. Use our direct print2mail solution for printing, fulfilment and postage. Full auditing of all mail passing through our system.

Features

  • Streamline your outbound mail processes
  • Secure connection to print-production site with immediate cost savings.
  • Track mail items through to RoyalMail for final mile delivery
  • Agile and scalable to allow for unforecasted, high volume mailings
  • No hidden costs, prices include; print, fulfilment, consumables and postage
  • quicker and cheaper mail production and postage

Benefits

  • Track mail items through to RoyalMail for final mile delivery
  • Agile and scalable to allow for unforecasted high-volume mailings
  • No hidden costs, prices include; print, fulfilment, consumables and postage
  • Flexible service with no minimum volumes
  • Save time and space with printing/fulfilment equipment
  • Environmentally friendly.

Pricing

£0.40 a unit

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@imimobile.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

8 4 1 3 2 9 9 4 4 2 1 4 2 2 0

Contact

IMImobile Europe Ltd Simon Gaut
Telephone: 08432 163500
Email: publicsector@imimobile.com

Service scope

Software add-on or extension
No
Cloud deployment model
Private cloud
Service constraints
N/A
System requirements
Non Required

User support

Email or online ticketing support
Email or online ticketing
Support response times
Support response times email tickets are acknowledged and receipted immediately 24/7 and assigned to a member of the support team. Responses times are inline with our standard SLA.
Technical support immediately available during office hours Monday to Friday (08:30 - 17:30) receipting and assigned service available outside of office hours
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
No
Onsite support
Onsite support
Support levels
We provided our NHS clients with 24/7 telephone and email support provided by our Support Desk. Training and onsite project support can be provided if and when required.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Onsite, remote and online training available within the service provision. User Documentation also available to download from the system.
Service documentation
Yes
Documentation formats
  • PDF
  • Other
Other documentation formats
  • Online Tutorials/Tour guides
  • Video
  • PDF
  • Word
  • Excel
  • Powerpoint
End-of-contract data extraction
Standard operating practice is that all data is downloaded from the system and returned to the client via HSCN connection to a local server within the Trust within 30 days of the contract end date. Users can also manually download all data from the web interface.
End-of-contract process
All data is returned to the client, with all user accounts disabled within an agreed period following contract end date. All data is systematically deleted from HC systems.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
All functionality is still available, with lay out different to support device variance.
Service interface
Yes
Description of service interface
A local application is installed within the Trust network to receive, encrypt and transfer data securely to the hosted platform.
Accessibility standards
None or don’t know
Description of accessibility
All public facing web tools are supported through the use of Browsealoud technologies, enabling translation, reading tools and audio
Accessibility testing
Accessibility testing
Services deployed in over 100 NHS Trusts.
API
Yes
What users can and can't do using the API
They can connect to the service.
API documentation
Yes
API documentation formats
PDF
API sandbox or test environment
No
Customisation available
Yes
Description of customisation
In line with data held and client specified requirements.
Hierarchy, templates, survey formats and modes of communication. Service configuration and engagement based upon demographic rules. All provided as a managed service. Changes will be made via the Service Desk

Scaling

Independence of resources
We invest in the platform to ensure capacity is sufficient for demand.

Analytics

Service usage metrics
Yes
Metrics types
Real-time reporting available via a secure web dashboard. Details all Inbound/Outbound communication activity and digital interactions. Supported by a monthly statement of account detailing billable units
Reporting types
  • Real-time dashboards
  • Regular reports

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Yes
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
No
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
Excel and CSV currently.
Users can either access for manual downloads via the dashboard, or via scheduled downloads via the Data Transport Server application
Data export formats
  • CSV
  • Other
Other data export formats
Excel
Data import formats
  • CSV
  • Other
Other data import formats
  • REST API
  • Fhir
  • Excel
  • HL7

Data-in-transit protection

Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
SLA's are 99.9% up time , no refunds are available.
Approach to resilience
Available upon request.
Outage reporting
Email and SMS alerts to key workers.

Identity and authentication

User authentication needed
Yes
User authentication
Username or password
Access restrictions in management interfaces and support channels
User accounts are configured separately for management and support purposes.
Access restriction testing frequency
At least once a year
Management access authentication
Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
No audit information available
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
CQS
ISO/IEC 27001 accreditation date
01/04/2020
What the ISO/IEC 27001 doesn’t cover
It is a standard ISO 27001 accreditation.
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
Yes
Any other security certifications
  • Data Security and Protection Toolkit
  • NHS Cyber Essentials

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
  • ISO/IEC 27001
  • Other
Other security governance standards
NHS Cyber Essentials
Data Security and Protection Toolkit
Information security policies and processes
We have worked to ISO 27001 standards since accreditation in 2001 and relevant NHS Information Governance Toolkit ( Data Security and Protection Toolkit) requirements and NHS Cyber Essentials

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Changes are implemented only after review and authorisation from relevant team members. Assessment is made for security and performance impacts.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Potential threats are alerted through numerous sources including infrastructure suppliers, hardware and software supplier updates, NHS Digital CareCERT and other available media. Patches are deployed in a timely manner after internal review.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
The platform is monitored using automated measures and alerts are configured for intrusion detection. Incident responses are dealt with in-line with service SLA's.
Incident management type
Supplier-defined controls
Incident management approach
Incidents can be logged using our service desk by users. Incident reports are held internally and are provided to customers upon request.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
Yes
Connected networks
  • NHS Network (N3)
  • Health and Social Care Network (HSCN)

Pricing

Price
£0.40 a unit
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at publicsector@imimobile.com. Tell them what format you need. It will help if you say what assistive technology you use.