Datopian (Viderum Ltd trading as)

DataHub Enterprise

Datahub Enterprise is a cloud-based platform that simplifies open data management for governments, non-profits, and businesses. It combines the flexibility of open source with enterprise-grade features, supporting robust data portals, comprehensive catalogues, and scalable data lakes. Trusted globally, it allows data teams to focus on insights rather than logistics.

Features

• Ready to go out-of-the-box: Deploy rapidly
• Customizable UI: Easily tailored to meet specific organizational needs
• Open Source: Modify and extend for customized data solutions
• Granular Permissions: Advanced user control enhances data security
• ETL Tool Integration: Streamline data extraction, transformation, and loading
• Data Integration APIs: Facilitate seamless inter-system data flows
• Versatile Storage Options: Optimize data retrieval and storage management
• Advanced Metadata Management: Organize extensive datasets effectively
• Scalable Data Lakes: Build lakes that grow with your needs
• Robust Data Frameworks: Establish structured systems for efficient data organization

Benefits

• Enhanced Decision-Making: Easily accessible data improves analytics and decisions
• Quick Data Discovery: Locate and utilize critical data swiftly
• Immediate Project Start: Deploy data projects quickly with ready infrastructure
• Scalable System Design: Expand data solutions as organizational needs grow
• Reduced Vendor Lock-in: Independence from proprietary systems through open-source
• Secure Data Sharing: Safely share data across organizational boundaries
• Guaranteed Data Compliance: Maintain data accuracy and regulatory adherence
• Creative Data Utilization: Foster innovation with flexible data tools
• Streamlined Operations: Optimize processes through efficient data management
• Focused Data Analysis: Concentrate on insights, minimize logistic distractions

£99 an instance a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at contact@datopian.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

212029097170823

Contact

Yoana Popova
+1 (341) 222-3743
contact@datopian.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: No
• System requirements:
  • Operating System
  • Modern Web Browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our support response times are tailored to the chosen support plan, ranging from 4 to 48 hours, depending on the package (Bronze, Silver, Gold, Platinum). Users can access support through various channels, including email, phone, online chat, and screen-share sessions. For round-the-clock assistance, our 24/7 support ensures consistent response times, addressing queries promptly on weekdays and weekends alike. This ensures users receive timely assistance regardless of the time or day of the week.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: We have conducted targeted testing of our web chat services with assistive technology users to ensure accessibility:; ; - Screen reader compatibility - we tested with visually impaired users employing screen readers like JAWS, NVDA, and VoiceOver;; - Keyboard-only navigation - sessions with users reliant on keyboard navigation helped refine access to all chat features using keyboard shortcuts alone;; - High contrast and readability: we adjusted our chat interface for users needing high contrast or larger text, testing these settings to improve visibility and readability under various conditions.
• Onsite support: Yes, at extra cost
• Support levels: Datahub Enterprise offers a tiered support structure designed to cater to various organizational needs and budgets. Support levels:; ; 1. Open Source Plan | Cost: Free | Community support via chat. Ideal for users comfortable with self-hosting and self-managing their data solutions, and who do not require dedicated technical support.; ; 2. Cloud Plan | Cost: $99 USD monthly | Includes 24/7 technical support and business hours data curator support. This plan is fully managed and hosted, providing role-based access control, unlimited datasets, groups, and organizations. Additional features such as custom domain and basic custom UI branding are included.; ; 3. Custom Plan | Cost: Custom pricing (contact for details) | Offers a dedicated support team that handles all technical issues and queries.; - Technical Account Manager or Cloud Support Engineer: Depending on the organization's size and needs, this plan can include either a technical account manager or a cloud support engineer to ensure optimal service delivery and personalized support.; - Service Level Agreements (SLA): Customizable SLAs to guarantee system performance and uptime according to specific organizational needs.; ; *Add-Ons: Additional support services can be integrated, such as data API, custom dashboards, data processing & ETL, and data curator services.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: At Datopian we have a well-established knowledge transfer strategy that provides the different user groups - both technical and non-technical - with the information, skills and knowledge they will need. Our knowledge transfer strategy combines technology, culture, measurement, and infrastructure. Main objectives of every project are not only to build sustainable platforms but also to ensure that the Buyers have sufficient training and support to begin and also to continue running the services efficiently once our engagement has concluded. The delivery method for transferring knowledge is a combination of video-based live workshops with Q&A sessions, hand-over documents, pre-recorded videos, online course materials, tutorials, and regular technical support. Knowledge transfer is linked with relational knowledge-based assets (tutorials, online chat rooms, FAQs, and so forth). Our training consists of a series of flexible, customisable modules suitable for a wide range of participants. Planning of sessions is done in close collaboration with the Buyer team to produce a bespoke programme of courses that will meet the needs of the Buyer. We collect all materials we create (or have created) in a content repository to ensure this knowledge is accessible to all, preserved, searchable and available to Buyer employees once our engagement has concluded.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: All terms are determined at the beginning of a contract on an individual basis, and will be agreed at the time of service commencement. Data extraction is done according to the customer's needs and depends on how the data will be used in the future. A DB dump can be provided, database tables can be retrieved as CSV / JSON files etc. It is important to note that after the expiration of the contract, there is a storage and archive periods in which users can retrieve / request their data.
• End-of-contract process: At contract termination, a structured protocol ensures clarity and continuity. The conclusion of contract costs and terms hinges on the nature of the service provided, with agreements typically solidified at service commencement. A handover meeting is standard practice to ensure a smooth transition of responsibilities. Given the open-sourced nature of CKAN, documentation is requisite. The contract price encompasses core services and essential support for operational continuity. However, specialized assistance or supplementary services beyond the standard agreement may incur additional charges.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Datahub Enterprise for mobile is designed for optimal responsiveness, adapting seamlessly to smaller screens and touch-based interactions. It provides a streamlined user interface, emphasizing core functionalities for efficient on-the-go data management. In contrast, the desktop version of Datahub Enterprise is characterized by its comprehensive interface, full functionality, and enhanced data analysis capabilities. The mobile app excels in user-friendly navigation and accessibility, making it ideal for quick data checks and updates, while the desktop version offers robust processing power and connectivity, suitable for extensive data manipulations and detailed analyses.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The interface of Datahub Enterprise is meticulously designed to be highly user-friendly, ensuring that both novice and experienced users can navigate its features with ease. The frontend of the service combines aesthetic appeal with practical functionality, providing a clean and intuitive layout that enhances user engagement and reduces the learning curve.; ; The interface is detailed and robust, offering advanced features and customizable options that are logically organized to facilitate easy access and efficient workflow management. Tools and settings are strategically positioned to support in-depth analysis and complex data management tasks.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: We conduct comprehensive web interface testing with assistive technology users to ensure accessibility and usability for individuals with diverse needs. Our testing protocols encompass screen readers, keyboard navigation, voice recognition software, and other assistive technologies commonly used by individuals with disabilities.
• API: Yes
• What users can and can't do using the API: Users have extensive capabilities when utilizing the API. While initial service setup is facilitated via request rather than directly through the API, once a dedicated environment is established, users gain full access to perform various operations. This includes tasks such as user management, dataset metadata and data management, organizational management, and more, all through the API. As our service is designed with an API-first approach, there are no limitations on API usage. The API offers users a seamless way to access machine-readable data without relying on the GUI. It enables users to execute OLAP-style data queries, conduct searches across data fields, and apply powerful metadata-based filtering and sorting functionalities.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
  • Other
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Datahub Enterprise allows significant customization both directly by users and by the service provider based on specific requirements. Users can personalize the interface, manage data settings, and configure access controls themselves. For more tailored needs, the supplier can customize the service extensively, including dedicated infrastructure, bespoke development, and integration with existing systems, ensuring that the platform meets the specific operational and security requirements of the buyer.

Scaling

• Independence of resources: To ensure independence of resources, we employ resource isolation, dynamic scaling, and load balancing testing. As hosting experts, we continuously monitor services and infrastructures, implementing automatic scaling to alleviate performance issues. Fair usage policies further prevent individual users from impacting others.

Analytics

• Service usage metrics: Yes
• Metrics types: Datahub Enterprise provides a wide range of customizable service metrics tailored to meet specific buyer needs. Key metrics include HTTP request and response statuses, which monitor web service performance, and the number of active instances to track scalability. Detailed user engagement statistics are available, such as website visits, usage statistics, download counts, and frequency of dataset access. Metrics also cover combinations of datasets accessed together, datasets lacking updates or a listed license, and new datasets published. Analytics extend to granular details such as the number of resources downloaded per dataset, and demographic insights like visitors by country, browser, and device.
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: To export their data from Datahub Enterprise, users should contact the support team. The team can guide them through the process or handle the export directly, ensuring that users receive their data in the desired format and securely, according to their specific needs. This approach helps maintain data integrity and compliance with data management standards.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats:
  • JSON
  • XML
  • GeoJSON
  • PDF
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • JSON
  • XML
  • GeoJSON
  • PDF

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We guarantee a high level of availability for our solution, hosted, maintained and supported within our Cloud infrastructure, featuring a robust high-availability setup adhering to best practices. Our default uptime SLA stands at an industry-leading 99.9%. Leveraging Google's infrastructure in the EU, renowned for its reliability, enhances our service's resilience. Having successfully hosted and maintained numerous Government Data Solutions (both open and internal) from around the world including US, UK, Denmark, Germany, Switzerland, Canada and many more underscores our expertise and track record in this domain. Specific terms and conditions are tailored to each client and established at the contract's onset, ensuring transparency and alignment with individual needs and expectations. In the rare event of not meeting these levels, users receive refunds or service credits as outlined in our SLAs, ensuring accountability and customer satisfaction. Continuous monitoring and proactive maintenance are integral to minimizing downtime and upholding our reliability standards.
• Approach to resilience: Available on request.
• Outage reporting: Datopian maintains close relationships with customers. In the event of an outage, we prioritize direct communication channels, contacting our clients promptly via phone and email. This ensures that our clients are informed promptly and accurately about any service disruptions. Users always receive email alerts regarding any service interruptions. We provide details about the issue, the expected times of the rectification, and any additional assistance they may need. This approach underscores our commitment to transparency and proactive communication with our valued clients.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Username or password
  • Other
• Other user authentication: Datahub Enterprise also employs a secure authentication method using one-time tokens for user access. This approach ensures that each login session is uniquely validated, enhancing security by minimizing the risk of unauthorized access. When users attempt to log in, they are issued a one-time token that is valid for a single session only. This token must be used promptly and expires immediately after the session ends or is otherwise invalidated, providing an effective layer of protection against potential security threats.
• Access restrictions in management interfaces and support channels: In Datahub Enterprise, access restrictions in management interfaces and support channels are meticulously controlled through IAM systems. This ensures that individual user permissions align precisely with organizational roles and responsibilities. We regularly review these permissions to adapt to any changes in roles or security policies. The role-based access control (RBAC) system we use allows for detailed customization of permissions based on specific role requirements, facilitating secure and efficient management of access rights. This setup not only secures sensitive data and operations but also streamlines the UX by providing access only to necessary resources, thus enhancing overall system integrity and compliance.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Our security governance strategy is agile and responsive to emerging threats. Led by our dedicated team, we continuously enhance defenses against evolving risks. The foundation of our security posture is reinforced by the collective knowledge of our open-source community, including prominent governments and enterprises worldwide. Regular code audits are conducted by various stakeholders, with findings promptly addressed by our tech core team, releasing security patches as needed. These patches are swiftly applied to all customer environments to ensure ongoing protection. We also conduct frequent penetration testing and comprehensive security audits to validate the effectiveness of our security measures.
• Information security policies and processes: We have baseline security requirements established for developed or acquired, organizationally-owned or managed, physical or virtual, applications and infrastructure system, and network components that comply with applicable legal, statutory, and regulatory compliance obligations. Deviations from standard baseline configurations must be authorized following change management policies and procedures prior to deployment, provisioning, or use. Compliance with security baseline requirements is reassessed annually unless an alternate frequency has been established and authorized based on business needs. We specifically train our employees regarding their specific roles and the information security controls they must fulfil. Employment agreements incorporate provisions and/or terms for adherence to established information governance and security policies and are signed by newly hired or on-boarded workforce personnel prior to granting workforce personnel user access to corporate facilities, resources, and assets. Access to, and use of, audit tools that interact with the organization's information systems are appropriately segmented and restricted to prevent compromise and misuse of log data. We restrict, log, and monitor access to our information security management systems (e.g., hypervisors, firewalls, vulnerability scanners, network sniffers, APIs, etc.) and we monitor and log privileged access (e.g., administrator level). More information, available on request.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Our approach exceeds government compliance standards, ensuring robust security for government services and citizens. Our agile security team anticipates and adapts to emerging threats, continuously enhancing safeguards. Development updates undergo thorough change request and review processes. We have documented configuration and change management policies, which have been implemented, maintained and assessed in accordance with the guidance from ISO27001. This ensures components are tracked throughout their lifecycle and changes are assessed for potential security impacts, providing peace of mind with our technology solutions.
• Vulnerability management type: Undisclosed
• Vulnerability management approach: Our vulnerability management process is robust, supported by established policies, procedures, and technical measures. With our solution backed by a large open-source community, including major governments and enterprises, we benefit from continuous code audits and prompt reporting of findings. The core tech team releases security patches on a regular basis and we make sure it is applied to all our customers in a timely manner. This proactive approach, combined with our commitment to transparency and collaboration, enables us to effectively assess potential threats and safeguard our services. More information, available on request.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: We employ cloud-specific monitoring tools to ensure continuous system oversight. Our engineering and system administration staff keep up to date on vendor announcements concerning compromises. We utilize SIEM best practices such as requirement, compliance, access control with alerts and reports on policy infringements and suspicious behaviour, perimeter defences, resource integrity, intrusion detection, malware defence, application defences, acceptable use etc. Weekly vulnerability scans help identify and address any flaws promptly. Any identified vulnerabilities, outdated software, or other flaws are submitted as work tasks, with high-priority tasks created for security incidents. We prioritize rapid incident response to mitigate risks effectively.
• Incident management type: Undisclosed
• Incident management approach: Our incident management processes are adaptable to user requirements. We establish an issue tracker using GitHub or GitLab, granting Buyer team members access to create and manage tickets in a private repository. Incidents can be reported via GitHub, GitLab, email, phone, or web chat. Upon receiving a report, we conduct an investigation to determine necessary actions, providing continual updates on the investigation's status. Once resolved, a final report is communicated via email. This approach ensures transparent and effective incident resolution.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  As a fully remote company, Datopian significantly reduces its carbon footprint by eliminating the need for commuting and maintaining physical offices. We exclusively utilize digital communication methods and advocate for contractors to rely on renewable energy sources for heating, further minimizing environmental impact. Our commitment extends beyond operational practices to include climate change CSR initiatives. Notably, our "State of Carbon" project, spearheaded by President Rufus Pollock, provides open access to carbon dioxide data through the world's first open API for climate change: The State of Carbon was built by the President of Datopian Rufus Pollock to chart carbon dioxide levels. The chart is powered by the world's first open API for climate change. This enables anyone to enhance NOAAs carbon dioxide data by building charts, sensor networks, and more. The code is open source on Github. Every day, NOAA scientists carefully measure the carbon dioxide in the atmosphere. This important data is public but hard to digest. The aim of the project is to empower everyone around the world to use it. ⠀ Additionally, our platform hosts a collection of datasets on climate change, empowering the public and scientific community to drive greater understanding and innovation: https://datahub.io/collections/climate-change. Our Life Itself Climate Inquiry project (https://climate.lifeitself.us) serves as a comprehensive resource for exploring the climate crisis, inspired by sustainable energy principles. This project started out as a personal investigation of our president Rufus Pollock into the climate crisis. The aim was to document and share a path through this topic. It is heavily inspired and influenced by David Mackay’s Sustainable Energy. Through these initiatives, Datopian actively contributes to fighting climate change and promoting environmental sustainability.

  Covid-19 recovery

  Datopian members have initiated open-source projects that help local communities to manage and recover from the impact of COVID-19. Datopian prides itself as an open-source company with a relentless pursuit of sharing and reusing data and working software. We are supporting and promoting open data beyond data catalogs. In regards to the COVID-19 crisis, we created a dynamic dashboard (https://covid19.datahub.io), built using react.js, which shows the total number of cumulative confirmed cases, new cases per day and deaths. One of the key features of this visualisation is that it allows you to select the country of your choice, to check on the latest covid-19 indicators. We also added a table that shows users a country summary and allows users to sort the data. At Datopian we know that there’s so much we can still do to contribute towards our open data ecosystem, that's why we continue to generously invest time and efforts in supporting humanity.

  Tackling economic inequality

  Datopian actively addresses the digital skills gap by offering support and training opportunities globally. By embracing remote work, we tap into talent from diverse backgrounds, including those who face barriers to employment and/or who are located in deprived areas. Our philosophy emphasizes discovering and nurturing untapped potential and "undiscovered talents", leading us to offer Apprentice programs and internships to individuals with the right attitude and a willingness to learn. These programs not only provide practical training but also support educational attainment, helping participants gain recognized qualifications. As part of our Apprentice program and our internships, Datopian provides a rigorous remote training regime which consists of a series of classrooms as well as self-development plans suitable even for junior people with no previous experience. The goal is to develop the apprentices into fully operational Datopian Engineers who can reliably and effectively deliver high-quality work for clients as part of a self-organizing team.

  Equal opportunity

  At Datopian, we are deeply committed to fostering an inclusive workplace culture where diversity is celebrated and everyone has equal access to opportunities for growth and advancement. We actively seek to reduce barriers to employment by providing support for individuals with disabilities. We prioritize diversity and inclusion in all aspects of our operations, from recruitment and hiring to professional development and advancement. Our recruitment practices prioritize merit and potential, welcoming candidates from diverse linguistic and cultural backgrounds. We offer training and development programs tailored to individual needs, ensuring that all team members have the resources and support necessary to succeed. Through ongoing initiatives and programs, we strive to foster a workplace culture that celebrates diversity and empowers every individual to reach their full potential.

  Wellbeing

  Promoting the wellbeing of our team members stands as a cornerstone of Datopian's organizational ethos. We prioritize fostering an environment where individuals thrive, both physically and mentally, enabling them to perform at their peak capacity. Our proactive approach to wellbeing encompasses various initiatives designed to support our diverse workforce. Central to our efforts is the Datopian Wellbeing Guide, a comprehensive resource offering tailored support and guidance. This includes access to country-specific services and cognitive health tips, ensuring individuals have the necessary tools to maintain their wellbeing. Moreover, our commitment extends to promoting inclusivity and challenging negative stereotypes, fostering a culture of respect and understanding among our global team. At Datopian, we recognize the importance of fostering harmonious relationships and resolving conflicts effectively. Our outlined conflict-resolution strategies empower team members to voice concerns and contribute to a positive work environment. This inclusive approach not only enhances wellbeing but also fosters a culture of collaboration and mutual respect. Furthermore, we prioritize community engagement through regular online events, ranging from cultural presentations to educational seminars. These initiatives serve to promote camaraderie and strengthen bonds within our organization, further enhancing overall wellbeing and employee satisfaction. Our commitment to employee wellbeing extends beyond traditional measures. We have implemented innovative initiatives, such as color-coded or numerical wellbeing assessments, where green signifies optimal wellbeing, yellow indicates a moderate state, and orange serves as a strong warning requiring immediate attention to prevent further decline. Red flags potential burnout. This approach empowers individuals to self-assess and communicate their wellbeing status transparently. HR diligently tracks these statuses and offers personalized support and assistance, recognizing the importance of the human aspect in fostering a healthy workplace culture.

Pricing

• Price: £99 an instance a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: The free version of Datahub Enterprise includes a comprehensive 14-day trial that offers full access to the software with all core features enabled. This trial is designed to allow potential users to fully explore the capabilities and functionalities of our platform.
• Link to free trial: https://cloud.portaljs.com/auth/signup

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at contact@datopian.com. Tell them what format you need. It will help if you say what assistive technology you use.