TRL Limited

iMAAP Cloud: Crash Data Analysis & Road Safety Management Solution

iMAAP from TRL is the most widely used cloud solution for road crash data analysis, evaluation and road safety management system across the world. Designed for police forces, local authorities and highway authorities, iMAAP helps road safety professionals reduce the number and severity of crashes and casualties.

Features

• The most widely adopted off-the-shelf road safety management solution globally
• Produced by UK’s Transport Research Laboratory (TRL) Road Safety Experts
• Identify problems based on in-depth analyses of crash/collision data
• Establish measurable, realistic road safety goals based on identified problems
• Established track record of global implementations for improving road safety
• Flexible, user-configurable crash data forms compatible with CRASH/NICHE formats
• Supports multiple, map providers to render Geospatial(GIS) data
• Comprehensive, advanced road safety analysis capabilities based on road-safety research
• High-performance, secure web-application fully supported by roadsafety/software team.
• Responsive web application which works on all popular mobile devices/smartphones/tablets/browsers

Benefits

• Identify problems based on in-depth analyses of crash data
• Establish safety goals to implement road safety countermeasures
• Assist with the formulation of strategy, target setting/performance monitoring
• Comprehensive spatial analysis and the identification of hazardous locations(blackspots/hotspots)
• Designed/developed by road safety experts based on roadsafety research.
• Helps clients to produce practical, real world, road safety benefits
• Links to iRAP and road asset management systems
• Provide stakeholders with reliable access to quality data/reporting
• Simple, web-based solution accessible to browsers and mobile devices
• Produce analysis, insights for economic benefits of remediation works

£22,000 an instance a year

• Education pricing available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at skamal@trl.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

153513765770516

Contact

Subu Kamal
01344 379743
skamal@trl.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: IMAAP is subject to planned maintenance schedules administered by TRL which will be informed in at least one week in advance.
• System requirements:
  • IE11+, Firefox, Chrome, Safari, or Opera web browser
  • Standard internet browsers

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: As per the Service Level Agreement detailed in our Terms and conditions our Support Team's working hours will be from 0900 hours UK Time to 1600 hours UK Time from Monday to Friday. Saturday and Sunday will not be considered as working days, along with the annual public holidays.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: All support queries are routed through the support team and are dealt with at the appropriate escalation levels starting with First Line Support > Support Team > Product Managers > Director Level staff.; ; Support related costs are included in the price regardless of which level the issues are being handled at.; ; Each client is assigned a project manager for the implementation stage, up until user acceptance testing is completed. ; ; Thereafter, the project is assigned to the services support team.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: A combination of on-site and online training is provided for iMAAP onboarding. Training documentation is provided and a dynamic searchable user guide is available from within the application.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: At the end of the contract and including at any time during the contract, authorized users are able to export data in standard formats.
• End-of-contract process: Users will be intimated through designated emails that their contract is coming to an end one month before the contract expiry date. Designated users will be advised to carry out an export and copy all data that has been generated during the contract. At the end of the contract date, all user logins will be deactivated. Costs may apply if the client requires data to be provided in unsupported formats.

Using the service

• Web browser interface: No
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: User interface will be automatically optimized for mobile devices since iMAAP is a responsive web application. In some user interfaces, the amount of data displayed will be optimized for best viewing in mobile devices.
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: No

Scaling

• Independence of resources: IMAAP is hosted on Amazon Web Services (AWS). When there is a demand, when the application automatically scales with the auto-scaling features offered by AWS. ; The scaling is determined based on CPU usage, memory usage, network throughput and other key parameters that could affect the application performance.

Analytics

• Service usage metrics: Yes
• Metrics types: System usage, Browser usage, Feature Usage, date and time based usage, device type, device usage, user based metrics.; These are provided through Usage Statistics Module within iMAAP for authorized users.
• Reporting types:
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Encryption of all physical media
  • Other
• Other data at rest protection approach: IMAAP is hosted in AWS. AWS ensures the industry standard data at rest compliance for its services. Application data and assets are strongly encrypted and stored at any point of time.
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: There is an export module in the iMAAP software which helps users to export data any time to CSV and standard formats.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • Excel
  • PDF
  • Text
• Data import formats:
  • CSV
  • Other
• Other data import formats: Excel

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: For scheduled maintenance, we shall inform the client at least 2 weeks in advance for a maintenance downtime of one hour.; ; The service is normally available 24x7. The service is intended to be available except during scheduled and unscheduled maintenance windows.
• Approach to resilience: Application is hosted in multiple AWS zones in the UK. Further information available on request.
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: IMAAP follows a role-based authentication and authorization to manage its resources.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: NQA Certification Limited, LU5 5ZX
• ISO/IEC 27001 accreditation date: 10/05/2018
• What the ISO/IEC 27001 doesn’t cover: No exclusions in the TRL statement of applicability.; Below are covered:; The provision of research, consultancy, expert advice, project management services and software development in connection with transport; the environment; sustainability; natural resources and waste management in accordance with the Statement of Applicability dated 18/05/2017
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications:
  • ISO 27001
  • Cyber Essentials

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: TRL is committed to maintaining and continually improving an Information Security Management System (ISMS) that satisfies applicable requirements and is certified to the international standard ISO/IEC 27001:2013. ; ; The objectives of the ISMS policy are to establish and maintain the security and confidentiality of information systems, applications & networks owned or held by TRL within which:; · Members of staff are aware of their roles, responsibilities and accountability and fully comply with the relevant legislation;; · Information assets under the control are adequately protected against unauthorised access;; · Information assets and supporting business processes, systems and applications, will be protected by implementing appropriate controls to preserve their confidentiality, integrity and availability;; · Risks to information assets will be actively identified and assessed to identify controls that reduce risks to an acceptable level;; · Confidentiality of information is protected;; · Third parties with access to information assets under the control of TRL will be assessed to ensure they meet the necessary information security requirements;; · Business continuity plans are in place and will be tested periodically;; · Actual or suspected information security breaches are identified, analysed and investigated;; · Information security objectives are monitored and reviewed annually at the Management Review Meeting

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Configuration management of source and documents is done by Git processes. Change management process subscribes to ISO standards.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Conduct regular vulnerability checks, penetration tests and audits. Patches are deployed as hot fixes as soon as possible as a response to any vulnerability detected.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Provocatively observe for unusual network traffic using AWS tools. Constantly monitor audit logs and access logs for suspicious activities. Adequate measures as suggested by in-house security experts will be taken based on the nature of compromise. All incidents will be dealt immediately.
• Incident management type: Supplier-defined controls
• Incident management approach: Predefined processes and procedures for InfoSec events and incidents. ; The event or security incident is recorded, investigated and corrective / improvement actions are identified including the root cause. ; Infosec incidents, events and weaknesses are reported via the helpdesk, in person to the IT, Compliance or the Senior Management team. ; Any actual or suspected incident is promptly reported within 24 hours providing key details. ; All incidents requires an in depth investigation to establish the facts and to determine what went wrong and how to prevent the issue reoccurring. An Internal Investigation Form is completed and issued to the CEO and FD.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  We help our customers to address concerns such as carbon reduction, air quality, resource management, noise reduction and climate change adaptation. The TRL team has the experience to translate government objectives and messages into meaningful, achievable solutions for the real world.; ; Making connections between industry and government; ; We often act as a broker to promote new government measures, increasing the chances of a sustained impact, when the public sector needs specialist support to engage with industry organisations. From the other viewpoint, we work to advise the government on industry’s real worldviews and experiences. We offer independent, unbiased consultancy services and innovative ideas.; ; Balanced and independent policy research; ; Our customers value our insights from independent policy research into sustainable transport. Our work spans all modes, covering movement of people and goods and the impact on efficiency, economy and sustainability.; ; From strategy and research to implementation; ; At TRL we offer support at every stage of the sustainable development process. Our experience includes advising on strategies for the future – maximising efficiency, economy, safety and sustainability. We research and recommend ways to reduce fuel consumption, support low emission vehicles, and reduce the environmental and social impacts of constructing, maintaining and operating transport infrastructure.; ; Infrastructure and technology expertise; ; We have deep and specialised knowledge of a wealth of established, current and future approaches and technologies. We understand the challenges and benefits of future fuel, vehicle and infrastructure technology and can recommend mitigating strategies, such as low emission and clean air zones or low carbon materials.; Our sustainability work is wide-ranging, with expertise in cycle and pedestrian friendly environments, Bus Rapid Transit (BRT) systems, urban interchanges, air quality and emissions measurement, freight management, construction materials and techniques, recycling and reuse of materials and life cycle analysis.

  Covid-19 recovery

  As a fully hybrid organization, we were well-equipped to adapt to the challenges posed by the COVID-19 pandemic. Our robust digital infrastructure and remote work capabilities enabled many of our projects to continue seamlessly during the height of the crisis.; ; Throughout the pandemic, we remained steadfast in our commitment to supporting our clients and stakeholders. Our hybrid model allowed us to maintain a high level of productivity while prioritizing the health and safety of our employees. We leveraged virtual collaboration tools, online training platforms, and secure remote access to ensure continuity of service delivery.; ; Additionally, we proactively implemented measures to support our workforce during these unprecedented times. This included providing mental health resources, flexible work arrangements, and ongoing communication to foster a sense of community and well-being among our team members.; ; As we navigated the challenges of the pandemic, we also seized opportunities to innovate and adapt our offerings to meet evolving market demands. Our cross-functional teams worked tirelessly to develop new solutions and services tailored to the unique needs of our clients during the recovery phase.

  Tackling economic inequality

  TRL and our partners are committed to tackling inequality in the workforce so that our work for you reflects the needs of everyone, not only select groups. We will embed this in our approach to this ; framework and how we lead the consortium. We have chosen partners we have worked with before to ensure that we are confident in how they are tackling inequality.; ; • TRL is a UK ‘A-rated’ sponsor for work visas, allowing us to employ diverse candidates from around the world.; • We offer all our roles on a flexible basis, whether that is location, part-time, flexible and condensed hours to meet the needs of working parents and carers. This means we can provide ; a resilient and flexible team regardless of life circumstances. This approach allowed the majority of our projects to continue without interruption through the COVID-19 pandemic.; ; • We are a corporate member of Women in Transport (WiT) and through our involvement we aim to actively support gender diversity across the Transport sector by championing the work of; TRL’s female consultants. An example is WiT industry event at one of our locations in January 2023. We are actively diversifying our board and executive team, bringing in three new female directors in the last 12 months.; • TRL are an accredited Living Wage Employer ensuring our staff and those of our contractors providing services are paid the Real Living Wage. This includes consortium partners on this framework. We externally benchmark pay to ensure we pay a competitive rate for all our roles, we also monitor equal pay & pay gaps internally and report this to the wider company.

  Equal opportunity

  Our mission of accessible transport for everyone is mirrored in how we recruit our staff. We are a Disability Confident recognised organisation and encourage applicants from all backgrounds by ; advertising our roles on a wide range of platforms including the “DWP find a job”. TRL is committed to continuing to close the disability employment gap, 6% of our employee base is disabled which is 1.5% above the Infrastructure Industry 2022 average.; We believe that by continuously working to increase representation of disabled people our team can provide greater organisational understanding of the barriers and challenges for disabled transport ; users, which is vital to deliver wider social value through this framework. As a consortium of consultants and researchers we aim to provide wider social value through the positive influence and vision that our projects provide, this includes addressing the disability employment gap. An example is TRL’s recent members of the innovation community at our smart mobility Living lab Location on the topic of remote operation of vehicles which where it was ; discussed having the potential to open construction and freight jobs to a wider range of people and increase the number of disabled people in many industries from agriculture to mining.; Our consortium includes the Research institute for Disabled Consumers (RiDC) to provide a deliberate focus on the importance of disabled voices in decision making and research, and in attracting more disabled people to the transport industry. Through our combined offering we will strengthen the social value our work on this framework can provide to both disabled employees within our consortium and disabled transport users more widely.

  Wellbeing

  TRL is a knowledge-based business and our staff are at the heart of what we do, this means their physical and mental wellbeing is central to our mission.; ; Our consortium has been bought together on a principle of openness and transparency, which we believe allows us to deliver greater social value as a whole and better support health and wellbeing ; conversations which rely on an open and collaborative environment.; This transparency is embedded in how TRL is run, we have an elected ACAS trained ‘staff council’ who meet monthly with the CEO and HR director to discuss staff morale, wellbeing and inclusion. ; The head of our Employee council sits on the company board as a non-executive director. This means that staff wellbeing is visible at all levels of our organisation, and the staff have an independent champion at board level.; Actions we are taking to improve health and wellbeing:; • In response to the current cost of living crisis we are providing personal financial wellbeing advice to all our staff. ; • We provide a company paid healthcare Cash plan which allows our staff to claim for routine dental treatment, spectacles, prescription charges, physio and other complementary therapies.; • We have committed to training up to 12 Mental Health First Aiders in the next 3 months to better support our teams and managers.; • All our staff have access to a professional Employee Assistance Programme which offers confidential support for physical & mental health, emotional wellbeing, legal and financial advice, bereavement counselling etc. ; • Our staff have access to a GP via the telephone 24/7 and access on-line during working hours 7 days a week.; • We have access to professional occupational health support for all our staff.

Pricing

• Price: £22,000 an instance a year
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at skamal@trl.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.