HM Government G-Cloud 13 Supplier

24/7 Critical Information Custom Mobile & Tablet App Creation Software

Create custom mobile apps using ReadyKey’s no code platform to share documentation, PDFs and Word documents offline and in multiple languages. Add powerful features like QR code scanning, custom forms and much more. Simplify processes by integrating with existing systems (Sharepoint, Microsoft Teams etc.) to provide always up-to-date, paperless information.

Features:
Benefits:
Pricing:

£8,500 a unit a year

Framework:

G-Cloud 13

Service ID:

6 1 1 2 0 0 2 7 2 3 6 5 2 8 6611200272365286

Contact:

ReadyKey
Shannon Jhanji
Telephone: +44 20 8068 4318
Email: shannon@readykey.com

Service Scope

Software add-on or extension
No
Cloud deployment model
Private cloud
Service constraints
No.
System requirements
Customers require an Apple developer account (£79 per year)

User Support

Email or online ticketing support
Email or online ticketing
Support response times
Maximum 30 minutes reply time, Monday - Friday 8 AM - 2 AM.
Maximum 30 minutes reply time, Weekends 1 PM - 10 PM
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
None
Onsite support
NoSupport levels
We provide clients with a dedicated account manager upon onboarding who will help devise game-changing mobile strategies. With email response times of less than 30 minutes during business hours and support chat response times in under 20 seconds, our gold-medal winning and globally-recognised customer satisfaction stats leave the industry standard in the dust. Users can also access a searchable library of support articles and documentation as well as support via the phone
Support available to third parties
Yes

Onboarding and Offboarding

Getting started
We provide clients with a dedicated account manager upon onboarding who will help devise game-changing mobile strategies. With email response times of less than 30 minutes during business hours and support chat response times in under 20 seconds, our gold-medal winning and globally-recognised customer satisfaction stats leave the industry standard in the dust. Users can also access a searchable library of support articles and documentation. Additional training is available at an additional cost.
Service documentation
Yes

Documentation formats:

End-of-contract data extractionAll data is stored in the Guidebook CMS and accessible after subscription expiration, unless the client requests a data deletion.End-of-contract processAt the end of a subscription the app will be removed from stores and deactivated for all end users. Admins will still be able to access content, metrics, and other data - but will not be able to make any changes to the app. There are no additional or hidden costs at the end of a subscription.

Using the Service

Web browser interface
Yes

Supported browsers:

Application to install
Yes
Compatible operating systems

Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
ReadyKey, powered by Guidebook, is a mobile-first tool, but the majority of our core features are available on desktop too.
Service interface
Yes
User support accessibility
WCAG 2.1 AA or EN 301 549
Description of service interfaceUsers can download and view all of the content of a Guide on their mobile device, or access the information on the web with a browser.
Accessibility standards
WCAG 2.1 AA or EN 301 549
Accessibility testing
We have a long list of tests that must be passed for each release, including things like: unplugging the mouse, turning off css, using high contrast mode, verifying captions exist, etc.
API
Yes
What users can and can't do using the API
Our open-API allows clients to upload content to the majority of features in our platform, and to export a range of metrics and form results. Please see our documentation detailing our open-API functionality in-depth: https://developer.guidebook.com/#introductionAPI documentation
Yes
API documentation formats
Open API (also known as Swagger)
API sandbox or test environment
Yes
Customization available
Yes
Description of customisation
Admins can customise the layout, branding and content of their mobile apps. App end users can build custom schedules or ‘to-do lists’ if those features are enabled by admins.

Scaling

Independence of resources
ReadyKey uses the auto-scaling functionality provided by Amazon Web Services.

Analytics

Service usage metrics
Yes
Metrics types
A range of metrics are available to help clients understand general app usage, as well as individual behaviour (GDPR consent is required for the latter). For further information about the metrics we provide, please see the following support articles:https://support.guidebook.com/hc/en-us/articles/204864394https://support.guidebook.com/hc/en-us/articleWe shs/115010308168
Reporting types:

Resellers

Supplier type
Not a reseller

Staff Security

Staff security clearance
Other security clearance
Government security clearance
None

Asset Protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
Other locations
User control over data storage and processing locations
No
Data centre security standardsComplies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a yearPenetration testing approach
Another external penetration testing organisation
Protecting data at rest:

Data sanitisation process
Yes
Data sanitisation type:

Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data Importing and Exporting

Data export approach
We allow users to export data they have uploaded. Any data related to app user activity is only gathered if they opt in to sharing it, read more about ReadyKey & GDPR: https://support.guidebook.com/hc/en-us/articles/360004520294
Data export formats:

Other data import formats:

Data-In-Transit Protection

Data protection between buyer and supplier networks:

Data protection within supplier network:

Availability and Resilience

Guaranteed availability
ReadyKey has a 99.99% Uptime.
Approach to resilienceAvailable on request.
Outage reporting
We report any service outages or disruptions with an email alert and on our social media platforms.

Identity and Authentication

User authentication needed
No
Access restrictions in management interfaces and support channels
Users must be authenticated to access management interface and support channels.
Access restriction testing frequency
At least once a yearManagement access authentication:

Audit Information for Users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for at least 12 months
Access to supplier activity audit informationUsers have access to real-time audit informationHow long supplier audit data is stored for at least 12 months
How long system logs are stored for at least 12 months

Standards and Certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
No
Cyber essentials plus
No
Other security certifications
No

Security Governance

Named board-level person responsible for service security
Yes
Security governance certified
No
Security governance approach
Guidebook follows the ISO/IEC 27001 standard, but is not officially certified.
Information security policies and processes

ReadyKey has an official Information Security Policy that can be made available upon request.
The senior management team is responsible for fostering a culture of security awareness across the organization. The VP of Engineering has ultimate responsibility for the management of all security risks within ReadyKey. The VP of Engineering has final say on whether certain risks are mitigated, corrected, accepted, or transferred.

ReadyKey’s ISO is responsible for developing and implementing the ​ReadyKey Information Security Management System​. The ISO is the primary contact for information security-related issues, concerns, and guidance and informs the VP of Engineering of any security matters.

Project Managers are responsible for ensuring an appropriate level of information security for their projects. Project Managers will work with the Information Security Office to manage security risks.

Operational Security

Configuration and change management standard conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach
ReadyKey follows Compliance: ISO27002 - 5.1.1, NIST - CM-1.

A Change Control Standard can be made available upon request. Vulnerability management type conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402 vulnerability management approach.
ReadyKey employs active defense countermeasures such as: vulnerability scanning, regular penetration tests, intrusion detection and host vulnerability monitoring, and an active vulnerability disclosure program (bug bounty).
Protective monitoring type conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach a Vulnerability Management Policy can be made available upon request.
All devices are hardened, daily vulnerability scanning, a formalized plan for remediating vulnerabilities is in place.
A plan for remediation of vulnerabilities should be created, prioritized by severity, subject to approval
o Critical – Within 24 Hourso High – Within 72 Hourso Medium – Not Applicableo Low – Not ApplicableIncident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
An Incident Response Procedure document can be made available upon request.
ReadyKey has pre-defined processes for common events. Incidents can be reported via email or via chat.

Secure Development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public Sector Networks

Connection to public sector networks
No

Social Value

Fighting climate change
Fighting climate change
ReadyKey/Guidebook has always strived to be as green as possible. In addition to creating a mobile solution to improve communication, dissemination of information, and efficiency for organizations, we’ve also focused on:

Moving forward, for every guide purchased, a portion of the funds will go towards planting trees — with the goal of offsetting carbon emissions and investing in the planet. We’ve partnered with One Tree Planted (https://onetreeplanted.org/), a non-profit organization that supports companies who want to help the environment by planting trees to restore forests, create habitat for biodiversity, and make a positive social impact around the world. An announcement of this initiative can be found here: https://guidebook.com/mobile-guides/guidebook-gives-back-with-newest-green-initiative/
In addition, we help companies to go paperless, reduce waste, and improve efficiencies.
Covid-19 recovery
Covid-19 recovery
ReadyKey/Guidebook supports contactless information delivery, QR code scanning to access critical information, and supports training and onboarding.
Wellbeing
Wellbeing
Many organisations use ReadyKey’s technology to engage employees, students and members with access to the information they need - when they need it most.
Our apps have been proven to increase engagement, retention and awareness. The majority of people turn to their mobile device when they need support, and we help organisations ensure that they’re ready when that happens.

Pricing

Price
£8,500 a unit a year
Discount for educational organisations
No
Free trial available
No