Talend UK Ltd

Talend Cloud Data Catalog

Talend Cloud Data Catalog is a Cloud Service that discovers, profiles, organises and documents metadata from any data source, making it searchable. Talend Cloud Data Catalog includes team-based data curation and data lineage tracking tools and includes the following features: Design & Productivity Tools, Crawlers & Connectors, Management & Monitoring

Features

• Faceted search, data sampling, semantic discovery, categorising and auto-profiling
• Data relationship discovery and certification
• Automatically crawls and profiles data and metadata
• Build and Maintain a Business glossary
• Metadata documentation and end-to-end data lineage
• Uses machine learning and smart semantics to automatically discover data
• Harvesting of Data from SAP, Tableau, Qlik, Talend, many others
• Metadata Search and Analysis
• Identifies Lineage and Semantic Flow
• Identifies which data is being used in Reports and analytics

Benefits

• Identifies and Analyses all data used in the organisation
• Full audit tracing and review process
• All newly ingested data is automatically added to the Catalog
• Approval workflows for business glossary authoring
• Creates log of business, technical and operational metadata
• Dashboards to drive up user adoption / enhance user experience
• Role based access to support data governance / data security
• Uses Machine learning to reduce manual effort
• Speeds up the creation of data pipelines / jobs
• A single unified platform to simplify user experience

£13,500 a user

• Education pricing available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at prollason@talend.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

198063797167961

Contact

Paul Rollason
07779 080853
prollason@talend.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Hybrid cloud
• Service constraints: No
• System requirements:
  • Most Talend services are accessible via web browser except Studio
  • Studio is an Eclipse-based IDE for data engineers

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: SLA is based on level of Support, and it is published on our website at https://www.talend.com/technical-support/support-statements/
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Web chat can be initiated from within our Web Services
• Web chat accessibility testing: We rely on our web chat vendor for all testing of their service, no aditional testing done by Talend
• Onsite support: No
• Support levels: Level 1: Non-technical problems, Level 2: Standard Technical issues, Level3: Advanced/Bug issues
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Extensive online product training/enablement, solution accelerators, packaged Professional Services support e.g. QuickStarts for New subscriptions and for specific services (such as Data Catalog).
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: No customer data is persisted within Talend services by default. Users can determine whether to store their data in their preferred cloud, on premises or on the Talend Cloud.
• End-of-contract process: Notification of pending service termination appears in all user interfaces / experiences. Customer 'data' (job meta data and job binaries) are deleted 30 days after contract termination. ; Users can use all available tooling and support to extract their data while the contract is in place - these costs are covered within the subscription fee. Costs for assisting (Consulting) at the end of a contract would be chargeable.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Talend employs intuitive, graphical and highly productive persona-based interfaces to the various services offered. Most service interfaces are persona-aligned, intuitive, web based experiences.
• Accessibility standards: None or don’t know
• Description of accessibility: WCAG 2.0 A (partial).; Most Talend services are accessible via web browser except Studio, the Eclipse-based IDE for data engineers
• Accessibility testing: Talend generally relies on the assistive technologies available within supported web browsers.
• API: Yes
• What users can and can't do using the API: Comprehensive REST API to drive the entire range of Talend services programmatically.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: By configuring and combining services to deliver solutions for specific use cases e.g. data ingestion, cloud migration, enabling analytics, etc.; Users would customise using Studio to build drag and drop data pipelines / jobs. System components such as reports and dashboards can be customised.; Users with appropriate permissions can customise

Scaling

• Independence of resources: Talend Cloud provides a fully isolated, multi-tenant service to help ensure demand from other users don't not impact a customer's service

Analytics

• Service usage metrics: Yes
• Metrics types: The type and cadence of provision of metrics is dependent on level of Support, you would work with your DSE as part of the Talend Success Package
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: Less than once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: "Customer data and metadata stored on Talend infrastructure is always encrypted in transit with TLS 1.2 and at rest with minimum AES-256. A unique data encryption key (DEK) is used to encrypt tenant specific information"; Talend relies on third-party key management services such as AWS KMS and HashiCorp Vault to manage the encryption key lifecycle, including key rotation. Talend relies on trusted certificate services such as AWS Certificate Manager or Let’s Encrypt to provision, manage, and deploy SSL/TLS certificates.
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: No customer data is persisted within Talend services by default - so users would have access to their data from whichever storage medium they have selected.
• Data export formats:
  • CSV
  • Other
• Other data export formats: Excel, XML, JSON, Avro
• Data import formats:
  • CSV
  • Other
• Other data import formats: Excel, XML, JSON, Avro

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: "Talend, across its cloud applications, collects only the customer information needed to provide its services or to manage customer accounts. All personally identifiable information that we collect (such as name, country, and email address) is protected with encryption at rest via AES-256 and in transit via HTTPS TLS 1.2."; Provision or additional VPC security through support for AWS PrivateLink and Azure Private Link services.

Availability and resilience

• Guaranteed availability: 99.9% system availability level for Talend Cloud services; 99.5% system availability level for Talend Cloud Data Catalog; See https://talend-legal doc.s3.amazonaws.com/Service+Level+Agreement+for+Talend+Cloud+Services+(v2021.04.01)+(English).pdf
• Approach to resilience: Talend Cloud services leverage and inherit the resilience characteristics of the underlying AWS or Azure services upon which it is built.
• Outage reporting: Yes. ; See https://trust.talend.com/ for more details.

Identity and authentication

• User authentication needed: Yes
• User authentication: 2-factor authentication
• Access restrictions in management interfaces and support channels: Perimeter security includes the following:; • Route 53 private hosted zone (Azure DNS) – server IP addresses are unknown to the outside world - user connects through the DNS manager.; • VPC firewalls – Servers and storage are deployed within VPC, and all VPCs are protected by “Security Group” policy firewall.; • Bastion Hosts - Servers are the only part of the VPC with outside (internet) access. Only SSH connections allowed.; • AWS Shield (Azure DDoS) – DDoS protection; • Web Application Firewall (WAF) ; • Network-based IDS and IPS ; • AWS CloudWatch (Azure Monitor) ; • AWS KMS (Azure-HashiCorp KMS)
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: MSECB
• ISO/IEC 27001 accreditation date: 05/05/2021
• What the ISO/IEC 27001 doesn’t cover: "The scope of our ISO certification covers the following:; Business Processes: R&D; IT; Information Security Products: Talend Data Fabric (AWS); Talend Data Fabric (Azure); Stitch, in accordance with the Statement of Applicability (SoA), Ver. 1.0; Business Processes: R&D; IT; Information Security Products: Talend Data Fabric (AWS); Talend Data Fabric (Azure); Stitch, in accordance with the Statement of Applicability (SoA), Ver. 1.0; Please check the link for more info: https://www.iafcertsearch.org/certification/b35ec021-c150-5ff8-a970-d8df0082f53f"
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 25/03/2022
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: Our On-Prem products (not offered on this framework) are excluded from our certification
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • SOC 2 Type 2, HIPAA, GDPR, ISO/IEC 27701:2019
  • Cyber Essentials Plus Accreditation expected June 2022

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards:
  • ISO/IEC 27001
  • Other
• Other security governance standards: CSA; Talend leverages an Information Classification & Data Handling Policy, as verified in the SOC2 report. Technical and organizational measures are applied in the frame of the latest GDPR provisions as per the European Directive.; See https://cloudsecurityalliance.org/star/registry/talend-inc/
• Information security policies and processes: Talend leverages an Information Classification & Data Handling Policy, as verified in the SOC2 report. Technical and organizational measures are applied in the frame of the latest GDPR provisions as per the European Directive.

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Talend's Change Management Policy ensures all procedures are followed during the release process and that contingencies are in place. Each release moves through the lower Cloud environments before being released to Production. Segregation of duties is maintained for testing and approval by the Site Reliability Engineering (SRE) team. Change Management processes are audited annually by SOC 2 auditors.
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: Vulnerability Tests are performed periodically by a 3rd party specialist and internally by Talend IT staff to identify threats.; Talend manages the installation of operating system and supporting software, also the deployment of necessary security patches and operating system services packs. ; All critical systems are patched to the most recently released, appropriate software patches to protect against exploitation and compromise of sensitive data by malicious individuals and malicious software. Talend subscribes to security bulletins to identify the most recent software patch versions and newly identified vulnerabilities to remediate production servers that are out of compliance and requiring updates. "
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Security services from third-party vendors to protect Talend Cloud Data Fabric:; - External scanning tools to ensure that systems and containers are hardened, configured, and patched .; - NIST Cybersecurity Framework as part of its global security strategy.; - Built-in segmentation capabilities of AWS Security groups and Microsoft Azure - restrict inter-resource communication.; - All code is tested before promotion to production (DEV, QA, Staging).; Perimeter security includes :; • Anti-DDoS protection; • Web Application Firewall; • Network-based intrusion detection system and intrusion prevention system (IPS); • Security information and event management system (SIEM); • Cloud Security Posture Management (CSPM)
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Security incident response plan, and roles & responsibilities for security incidents are defined as required by SOC 2 Type II. ; Security incidents and other service impacting incidents are reported on http://trust.talend.com. Incidents are managed following Incident Response and Escalation Management Policy. Upon identified availability incident causing non-availability of Talend Cloud, Talend will investigate the problem and will then report on trust.talend.com. Separately, impacted customers are contacted once the service is restored. Incidents requiring legal action or intervention are communicated to the appropriate authorities. Talend tracks, monitors and aggregates all customer activity and host platform activity for forensics analysis.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  1. Talend provide SaaS software hosted by AWS who have a published carbon reduction plan - https://sustainability.aboutamazon.co.uk/uk_ppn_2021.pdf; 2. By using Talend SaaS organisations can reduce their power usage / emissions associated with a traditional data centre, such as heating, lighting, air conditioning. Additionally savings would be recognised in the physical shipping of computer hardware (servers / associated hardware).; 3. Talend Software can be used by organisations to manage their data relevant to fighting climate change - making trusted data available for decision making and policy setting.; 4. Talend can be used to physically reduce the amount of data (duplication / un-used, etc) thereby reducing the amount of storage required / reducing the number of physical servers being operated by Cloud Storage providers.

Pricing

• Price: £13,500 a user
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at prollason@talend.com. Tell them what format you need. It will help if you say what assistive technology you use.