On Demand Technology Learning Platform

Pluralsight provides on-demand digital learning solutions focused on technology. It helps companies and professionals gain new skills at the point of need, master technologies and stay ahead of the competition. It works in partnership with organisations to understand their technology learning goals and to become their leading technology learning partner.


  • Technology Content from Leading Industry Authors
  • Significant Breadth and Depth of Technology Related Content
  • On-demand, Remote Access
  • Full Analytics and Reporting Functionality
  • Skills Assessments
  • Curated and Tailored Learning Paths
  • Offline Viewing
  • Channels
  • Course Discussions
  • more complete information in supplier's service definition document


  • Up-to-date technology related content
  • Learn anywhere at anytime
  • Analytics and reporting to provide insight into usage
  • Address Learner and Organisational techology skills gaps
  • Paths that recommend your learning journey based on your goals
  • Learning can be tailored to your technology stacks and objectives
  • Download content to watch on your commute or offline
  • APIs to enable integration for reporting and consistency
  • Quantify the impact of learning on your business


£320 to £350 per licence per year

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 10



Chris Harradence

+44 07989950171

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints Any planned maintenance or downtime is notified in real time.

We do not support the following operating systems or devices:
Linux (we have limited support on Linux),
System requirements
  • Windows 7+
  • Mac (OS X 10.11+)
  • IOS (10.0+) for mobile download
  • Android (4.1+) for mobile download
  • Amazon Fire (Android 4.1+) for casting
  • Chromecast (From the Android & iOS apps) for casting
  • Apple TV (4th Gen running tvOS 10+) for casting
  • Roku (2+, includes Roku Stick) for casting
  • Internet Explorer 11, Microsoft Edge
  • Most recent versions of Firefox, Chrome, and Safari

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Email:
available 24/7
a ticket will be generated and acknowledged
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support No
Support levels Support is provided by our dedicated customer support team. Levels of service depend on the type of implementation. Standard support covers everything the learner / plan manager needs to ask regarding access, technical issues, etc.

More detailed information on request.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Pluralsight hosts a weekly virtual on-boarding webinar open to anyone who has a license subscription.

There is also the option for your allocated Customer Success Manager, Account Director, or Solutions Architect to provide this service as a closed 'webinar' or in some instances on-site for you.

We also have learner 'how to' videos available within the platform which are simple and easy to use.

Our online knowledgebase also contains information to assist the learner.

More detailed information on request
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction There is the option to download learner data from within the Plan Managers admin dashboard.

Learners can also download their individual learning history and transcripts from their account history profile page.

Learners can download their personal notes held within the platform.

More detailed information on request.
End-of-contract process Subscriptions provided under a call-off agreement, and all access to content provided on the Pluralsight platform based on such subscriptions, terminate simultaneously with contract termination.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service We offer the following options:
Amazon Fire TV,
streaming through airplay and chromecast, and
Offline Desktop (Windows 10 & Mac and PC)

All mobile options allow downloading of content (up to 30 modules) and learning is synchronised back with the learners account when reconnected to the network either by WiFi or other means
Accessibility standards WCAG 2.0 AA or EN 301 549
Accessibility testing The authenticated application conforms to Level AA Success Criteria in its entirety except for two sub-headings:

1.4.3 Contrast (Minimum): The visual presentation of text and images of text has a contrast ratio of at least 4.5:1, except for the following: (Level AA)
Contrast ratios are met a majority of the time but it is known that some buttons are below AA criteria and are actively being addressed with designers to identify a satisfactory color ratio. In most cases, if it fails to meet Level AA, it still meets Level A criteria.

2.4.1 Bypass Blocks: A mechanism is available to bypass blocks of content that are repeated on multiple Web pages. (Level A)
This is being addressed and will be resolved by end of 2017.

We have a 3rd party accessibility auditor that reviews our application on a quarterly basis to help us stay in compliance.

Pluralsight is working with Accessibility champions within Governmental departments to enhance accessibility of the platform.
What users can and can't do using the API Application Plan Managers (admins) can manage the group plan reporting API and the License Management API.

Full documentation, instructions and examples are found within the Application Plan Managers admin dashboard.

Limitations are bound by security tokens, of which the Application Plan Manager has access to via the admin dashboard.
API documentation Yes
API documentation formats
  • HTML
  • PDF
API sandbox or test environment No
Customisation available No


Independence of resources Pluralsight is developed in a bounded context, micro-service type architecture. This means that inter-dependencies, like shared databases and other architecture scaling issues, do not exist and this nearly eliminates downtime and planned outages. Pluralsight also supports an average of 250k active users and conducts regularly stress testing. Pluralsight supports some of the largest firms in the world where tens of thousands of users are actively logged in at a time. Pluralsight contracts with the some of the most scalable base architecture providers in the world including AWS (hosting), Verizon (CDN), and Cassandra database technologies.


Service usage metrics Yes
Metrics types Metrics are provided in the Plan Managers dashboard via data visualisations and download options, including but not limited to:

Overall Usage (30 days, 90 days, 12 months),
User Data - (name, start, team, hours, unique courses, last login),
Content Data - (Course, duration,hours viewed, average completion),
Usage - (Total users, total hours, average hours per user, unique courses),
Skills Measure (aggregated and individual skill proficiency across plan)
Channel Data (aggregated and individual data on progress, Channel members)
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations EU-US Privacy Shield agreement locations
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Other
Other data at rest protection approach We store and encrypt passwords with a hash.
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach Learners can export their data via their account profile page on their learner dashboard.

Platform administrators can download data from the reports page in the administration dashboard.
Data export formats
  • CSV
  • Other
Other data export formats
  • Enterprise plan only: .txt
  • Enterprise plan only: POST/PUT to APIs
  • Enterprise plan only: email distros
  • Enterprise plan only: placing flat files on FTP/SFTPs
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • Other
Other protection between networks All PII is passed over https, data is not encrypted at rest with the exception of passwords which are stored with a hash.
Data protection within supplier network Other
Other protection within supplier network All PII is passed over https, data is not encrypted at rest with the exception of passwords which are stored with a hash.

Availability and resilience

Availability and resilience
Guaranteed availability Pluralsight offers 98% uptime as an SLA and additional access time for interruptions in availability that collectively result in less than 98% availability during any single month.
Approach to resilience To maximize resilience and scalability , Pluralsight uses AWS for all its hosting. More information on AWS policies can be found here:
Outage reporting Website banners and dedicated support website.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
Other user authentication We offer SAML 2.0 SSO (Single Sign On) integration, both IdP and SP with PingFederate. We also are pre-loaded in the top IdP catalogues OneLogin, Azure and Okta.
Access restrictions in management interfaces and support channels Individuals have unique logon IDs and Passwords. An access control system shall identify each user and prevent unauthorised users from entering or using information resources. All login IDs are audited at least twice yearly and all inactive logon IDs are revoked. HR notifies the security officer on departure of all employees. Users who desire access to company systems or networks must have completed Pluralsight on-boarding practice and have access specifically requested by their manager.

More indepth information available on request
Access restriction testing frequency At least every 6 months
Management access authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification Yes
Who accredited the PCI DSS certification Trustwave
PCI DSS accreditation date 02/05/2016
What the PCI DSS doesn’t cover .
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Pluralsight focuses heavily on Software and Information security and takes cues from the ISO/IEC 27001:2005 specification wherever possible.

Our third party hosting partners, AWS, are aligned to the G-Cloud framework and the UK Cloud Cyber Security Principles
Information security policies and processes Pluralsight's Security Policy is available upon request.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach 1. IT/Ops staff or other designated Company employee who is updating, implementing, re-configuring, or otherwise changing the system shall carefully log all changes made to the system. Change logging should be automated in any case where it is possible.

2. The employee implementing the change will ensure that all necessary data backups are performed prior to the change.

3. The employee implementing the change shall also be familiar with the rollback process in the event that the change causes an adverse effect within the system and needs to be removed.

Full policy available on request
Vulnerability management type Supplier-defined controls
Vulnerability management approach Identify and document
Determine probability and criticality
Identify and document key vulnerabilities
Develop and document implementation strategy
Implement and evaluate effectiveness
Patches daily or on a as needed basis
Penetration testing annually
Monthly vulnerability scans
Daily monitoring
Protective monitoring type Supplier-defined controls
Protective monitoring approach It is the responsibility of each company employee or contractor to report perceived security incidents on a continuous basis. Reports of security incidents shall be escalated as quickly as possible. Each incident will be analysed to determine if changes in the existing security structure are necessary. All reported incidents are logged and the remedial action indicated. Security beaches shall be promptly investigated. If criminal action is suspected, the Privacy Officer shall contact the appropriate law enforcement and investigative authorities immediately.

In-depth information available on request
Incident management type Supplier-defined controls
Incident management approach Policy with pre-defined processes for common events
Incidents reported by email, phone, ticket
Notification should occur immediately upon discovery
Notification to individuals / customers affected will occur as soon as possible following
Incidents are logged, reported and recommendations made where appropriate

Full details available on request

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £320 to £350 per licence per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Structured Pilots provide unlimited full access to Pluralsight Platform for 30 days use


Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑