TNP

CloudConnect Public WiFi

TNP CloudConnect is a user-friendly, high-quality, free to use wireless service that gives public & visitors access to the internet. The solution is a secure, high-capacity system that utilises existing infrastructure rather than overlaying additional wireless equipment and is compatible with all device types such as smartphones, tablets and PCs.

Features

  • User registration based on social-media authentication or text message
  • Multiple, customisable landing pages/portals
  • Responsive interface for mobile devices
  • Requires user identification, acceptance of AUP and provides audit log
  • Web traffic is filtered to avoid unsuitable content
  • Bulk traffic such as bit torrent can be limited
  • Overall traffic rate limits and per-user limits can be configured

Benefits

  • Utilises existing WiFi infrastructure, avoiding overlay
  • Provides digital engagement without support overhead
  • Compliance & management handled by TNP
  • Light-touch data utilisation, no marketing opt-ins

Pricing

£3,050 to £14,050 an instance a year

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@tnp.net.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

9 3 9 9 5 6 7 7 2 3 1 1 6 0 6

Contact

TNP Chris Wade
Telephone: 08456800659
Email: tenders@tnp.net.uk

Service scope

Service constraints
None
System requirements
None

User support

Email or online ticketing support
Email or online ticketing
Support response times
Email & online ticketing is available as part of the core SLA, tickets will be triaged and have an initial response within 1 hour with overall resolution being achieved in-line with the priority of the ticket from 4 hours for a P1 to 5 days for a non-service-affecting query.
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Onsite support
Support levels
TNP proactively monitor the following services across the CloudConnect infrastructure 24/7;

* Core network
* Portal Servers
* Filtering & security
* Connectivity & Availability

Core Infrastructure Service Levels:
P1 Major – 6hrs
P2 Medium – 12hrs
P3 Low – 5 days

Customer Infrastructure is additionally monitored on a 24/7 basis with the following service levels
* Severity 1 & 2 – End of Next Working Day
* Severity 3 – Five Working Days
* Severity 4 (Indicative Only) – One Month
Support available to third parties
Yes

Onboarding and offboarding

Getting started
As part of the commissioning process, an onsite installation is undertaken. As part of this, handover training is given
Service documentation
Yes
Documentation formats
PDF
End-of-contract data extraction
Data belongs to the customer and will be extracted as part of the exit process.
End-of-contract process
At the end of the contract, TNP and the customer shall arrange for the decommission & return of the CPE equipment, any data shall be extracted and returned to the customer prior to deletion.

Using the service

Web browser interface
Yes
Using the web interface
A management web interface is available to make changes to web-filtering policies, manually register devices and access management reports.
Web interface accessibility standard
WCAG 2.1 AAA
Web interface accessibility testing
None
API
No
Command line interface
No

Scaling

Scaling available
No
Independence of resources
Each customer instance of CloudConnect is logically isolated from each other, each customer(s) chosen tier of concurrent users is configured to ensure fair allocation of underlying resources and per customer/user rate limits can be applied if required
Usage notifications
Yes
Usage reporting
  • Email
  • Other

Analytics

Infrastructure or application metrics
Yes
Metrics types
  • Network
  • Other
Other metrics
User registration analytics
Reporting types
  • Real-time dashboards
  • Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
No
Datacentre security standards
Supplier-defined controls
Penetration testing frequency
At least once a year
Penetration testing approach
In-house
Protecting data at rest
Physical access control, complying with another standard
Data sanitisation process
Yes
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
No

Data-in-transit protection

Data protection between buyer and supplier networks
IPsec or TLS VPN gateway
Data protection within supplier network
IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
O Network Availability of 99.5%
o Service Desk Availability of 99%
Approach to resilience
CloudConnect is designed with full resilience across all aspects of the Core network. This includes the datacentres providing the core CloudConnect infrastructure as well as both internal & external network connectivity
Outage reporting
Any service outage will be detected, coordinated and mitigated by the TNP Network Operations Centre. The TNP NOC will coordinate with customers as to service availability.

Identity and authentication

User authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google apps)
  • Username or password
Access restrictions in management interfaces and support channels
Access to management interfaces is only available though a VPN
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password
Devices users manage the service through
Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
BSI
ISO/IEC 27001 accreditation date
24/02/2020
What the ISO/IEC 27001 doesn’t cover
Nothing
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
Yes
Any other security certifications
CyberEssentials

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
TNP delivers services in line with a framework that has been assessed to ISO27001:2013

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Configuration & change control fall into TNPs quality management system which is accredited to ISO9001
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
As part of the TNP information security management system, accredited to ISO27001, vulnerabilities are managed, this includes vulnerability scanning/detection, identification & remediation all managed by the TNP NOC.

TNP also take information feeds from a variety of sources including NCSC and the general knowledge of best practices informed by their NOC to provide an up-to-date managed security posture.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
TNPs proactive logging and monitoring process(s) conform broadly to GPG13.

Regular checks and monitoring is made of the infrastructure and appropriate action taken coordinated by the TNP NOC
Incident management type
Supplier-defined controls
Incident management approach
The TNP NOC acts as a single point of management for any incident involving other parties and sections within TNP as necessary.

Customer can report incidents by contacting the TNP NOC via email, phone or web portal

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart
Yes
Who implements virtualisation
Supplier
Virtualisation technologies used
KVM hypervisor
How shared infrastructure is kept separate
Each CloudConnect instance is deployed in logically separate containers and network segments

Energy efficiency

Energy-efficient datacentres
Yes
Description of energy efficient datacentres
TNP hosts services in datacentres provided by Equinix & Telehouse, both of which adhere to the EU Code of Conduct

Pricing

Price
£3,050 to £14,050 an instance a year
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at tenders@tnp.net.uk. Tell them what format you need. It will help if you say what assistive technology you use.