Podaris

Podaris

Podaris is a cloud-based real-time collaboration platform for transport planning, engineering, analysis, & stakeholder engagement. An easy and intuitive web application that can be used by experts and non-experts alike to create multi-modal transport and development scenarios in minutes, and use powerful analytical tools to understand costs and benefits.

Features

• Multi-modal transport planning (buses, trams, trains, cycling, DRT, and more)
• Integrated stakeholder engagement
• Real-time collaboration
• Scheduled service and journey planning
• Advanced geospatial and demographic analysis of datasets
• Demand modelling and scenario analysis
• Mode-choice modelling to understand behaviour change and mode shift
• Automated georeferencing of raster imagery for custom map backgrounds
• Plugins and integrations with industry standard software (e.g. Spreadsheets, GIS)
• Rapid parametric engineering tools

Benefits

• Supports remote working and interdisciplinary collaboration
• Revolutionises early-stage transport planning
• Collaborative planning, engineering, and stakeholder engagement platform
• Rapidly create transport and development scenarios, using powerful analytical tools
• Easy and intuitive - for experts and non-experts alike
• Perfect for planning a bus route or modifying existing services
• Analyse transport interventions as part of the wider multi-modal context
• Engaging with internal or external stakeholders about transport scenarios
• A cost and time-effective web-based solution requiring no installation
• Ideal for local authorities, regional transport bodies, and property developers

£1,000 a user a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@podaris.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

177855849921295

Contact

GCloud Sales
+447360494796
sales@podaris.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Spreadsheets (Excel, Google Sheets), GIS Software (ArcGIS, QGIS, Carto, MapBox), Modelling packages, Bus Open Data Service (BODS), Others such as CAD on-request
• Cloud deployment model: Public cloud
• Service constraints: No
• System requirements:
  • Modern Browser
  • Internet Access

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Questions are answered in under two hours for most tickets. However, support levels are dependent on the service level purchased.; ; We offer guaranteed same-day response times between 09:00 - 17:00 UTC as part of various packages.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: No
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Podaris features in-app web chat which allows users to search the knowledge base and open tickets directly. Through this, they can communicate with support staff to resolve issues quickly.; ; We include text-based representations to aide accessibility, and ensure correct usage of semantic mark-up.
• Web chat accessibility testing: None.
• Onsite support: Yes, at extra cost
• Support levels: All subscriptions include basic technical support, which includes email and web-chat based tickets.; ; Optional enhanced support packages are available which include an account manager and are sold as part of credit-based packages that offer a certain number of support hours (with weekly caps). It covers on-request screen sharing/tutorials, lightweight feature development, transport advisory for projects created in Podaris, code review for integrating with the API, and custom conversion of files or data.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: As part of the on-boarding process, customers are provided with a range of getting started documentation (HTML or PDF), tutorials, and online video-conference based training, and for an additional fee, onsite training.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: The customer is responsible for extracting all data prior to the contract end.; ; Our support team can archive and export all customer data on request at any time.
• End-of-contract process: At the end of the contract, the customer access to the service is revoked. All customer data is archived for 90-days before being destroyed.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Podaris:Plan is a powerful tool for transportation planning which is best used through a desktop web-browser.; ; Podaris:Engage provides stakeholder engagement functionality accessible through both desktop or mobile services, and has been optimised to be responsive for a range of device types.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The Podaris API can be used to access projects on the Podaris platform, to build plugins, or custom integrations.; ; It is available through an HTTP-based JSON service, that users are required to authenticate with using personal, revocable, access tokens.
• API documentation: Yes
• API documentation formats:
  • HTML
  • ODF
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Account owners are able to customise the appearance and branding of their Podaris instance, and standard options will be provided as part of the on-boarding process.; ; Additionally, there are a number of configuration options relating to organisation-wide authentication preferences avaible, such as the ability to restrict logins to SSO-based methods and disable passwords. These can be configured by accounts owners.

Scaling

• Independence of resources: Instances of the Podaris platform are hosted as single-tenant instances, where the customers data and compute resources are isolated and scaled independently to other customers.; ; All services and resources scale dynamically depending on load, and are accessed through cloud-based load balancers.; ; We frequently conduct load stress tests of the Podaris platform.

Analytics

• Service usage metrics: Yes
• Metrics types: Availability, response times, application logs include usage, platform status.; ; On request, per-user metrics are also available in a variety of formats.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Users can export all of their data from the Podaris platform at any time through the web interface in a range of formats.; ; Including, but not limited to, JSON, GeoJSON, Shapefiles, CSV, PNG, JPEG, PDF, KML and GPX.; ; The same data can also be extracted through the HTTP-based API.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • JSON
  • Shapefile
  • GTFS
  • KML
  • GeoJSON
  • GPX
  • KML
  • JPEG
  • PNG
  • TransXchange
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • JSON
  • GeoJSON
  • Shapefiles
  • GPX
  • KML
  • JPEG
  • PNG
  • GTFS
  • TransXChange

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Podaris will provide a minimum of 99% uptime per month for all components of the plaform. Greater guaranteed availability levels can be agreed as part of any hosted service agreement, along with customer defined maintenance windows.; ; All third party hosting services utilised by Podaris provide uptime standards are greater than or equal to those assured by Podaris.
• Approach to resilience: Through the use of multiple servers in multiple regions, Podaris can automatically failover in order to provide a resilient service.; ; More information available on request.
• Outage reporting: We monitor all aspects of our service and raise alerts via an internal alerting system.; ; In the event of an incident, details are reported through our public dashboard, and email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: Authentication options can be configured and customised by account owners.; ; Certain parts of the platform can be made publically available to users without requiring authentication. For instance, public stakeholder engagements.
• Access restrictions in management interfaces and support channels: Access to managment interfaces is restricted to relevant individuals via our corporate IAM control system. We have comprehensive logging, including security events, for all relevant services. Logs are retained for six months and reviewed periodically. Logs are stored in a central dedicated logging service.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: We are aware of ISO 27001:2013 standards and have implemented practices that are broadly congruent with it. We are CyberEssentials certified.
• Information security policies and processes: Our system is developed using Secured by Design principles and is broadly congruent with ISO 27001:2013.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We have processes in place to ensure that configuration updates are deployed consistently across the entire fleet. Our processes are comprehensive, so it's very unlikely that any systems will be overlooked during important configuration changes, and through automated rollout monitoring changes are monitored and can be rolled-back automatically.; ; Through a declartive change management system, changes can be planned and tested before being widely rolled out. Customer instances are isolated from changes rolled out to other customers.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: We ensure up to date patching is applied to both the OS and the application.; ; We use an industry standard tool for confirming known vulnerabilities are identified and addressed.; ; All new software builds are statically analysed using industry standard tools.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: All parts of the Podaris platform are sat behind an industry-standard web-application firewall to protect the service from known threats. Industry-standard tools are used to monitor the service and dependant functions such as email servers. Additionally, we monitor for unauthorised access, unexpected behaviour, certain attack signatures, and other indicators of a security incident.; ; Detected threats or abnormalities raise alerts with the on-call team, whom triage and react to the threat appropriately.
• Incident management type: Supplier-defined controls
• Incident management approach: Alerts are routed to the appropriate on-call team depending on their type. The team will triage the alert, and have the ability to escalate issues. Where possible mitigation measures are put in place immediately.; ; Customers have the ability to open tickets with a range of severities. Incident and outages are available through email or via the service dashboard.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  The best way cities can decarbonise transport is by adopting new low/zero-emission technologies, and by collaboratively planning between different entities to ensure mutually optimal outcomes. For example: reducing parking could increase transit ridership, and better transit operations could reduce parking -- but this can only happen in a planned fashion when property developers and transit agencies can coordinate their plans. By making this easy to do, we can greatly accelerate such outcomes.
• Covid-19 recovery:

  Covid-19 recovery

  The pandemic has necessitated rapid interventions in the provision of transport services and the street space to enhance social distancing. When these interventions are poorly designed or badly implemented they can have significant adverse impacts, and can erode trust with key stakeholders and citizens as a whole. Podaris is an easy-to-use platform which helps you plan rapid interventions in public transport services and allocation of street space, with better collaboration between organisations, more accurate understanding of the costs and benefits of the interventions, and more transparent communication with affected stakeholders.
• Tackling economic inequality:

  Tackling economic inequality

  Accurate transportation planning, incorporating collaborative user needs helps address inequities as well as mitigating vulnerabilities in existing and planned transportation networks
• Equal opportunity:

  Equal opportunity

  Diversity is a core value at Podaris. It's what our products are based on: providing a platform that makes it easier to include the expertise and opinions of a more diverse set of stakeholders.

Pricing

• Price: £1,000 a user a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: A limited version of Podaris is available under an evaluation license. All projects and data created is made public, and certain functionality, such as demand and service planning is not available. Please contact us to arrange a demonstration of specific functionality.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@podaris.com. Tell them what format you need. It will help if you say what assistive technology you use.