Billigence

ThoughtSpot

ThoughtSpot is a business intelligence platform that provides a search based business analytics for non-technical users with wide data connectivity, preparation, interactive analytics, natural language search, visualization, collaboration, security, and scalable performance, with deployment options ranging from on-premises to cloud.
ThoughtSpot can provide you with

Features

• AI-powered analytics platform
• user-friendly interface
• combine multiple sources/databases

Benefits

• Query data using natural language and obtain precise results.
• querying and analyzing data from various sources
• flexible and easy the create the overview you want

£0 a licence

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at michael.evans@billigence.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

214260969363807

Contact

Michael Evans
07951 391 823
michael.evans@billigence.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: ThoughtSpot supports connectivity to the following Cloud Datawarehouse technologies - Snowflake, SAP Hana, Microsoft Azure Synapse, Teradata AWS Redshift, Databricks, Google Biq Query, Oracle ADW, Oracle Exadata, Dremio,; ; Starburst provides a data fedaration capability, so for database technologies that ThoughtSpot does not currently directly connect to, it could be considered as an intermediate layer to connect through, to enable ThoughtSpot to work with such tecnologies.
• System requirements: Up to date internet browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 4 hours Mon - Fri 9am - 5pm; 24/7 service is available on request at an additional cost depending on size of environment
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 24 hours, 7 days a week
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: For more details, please refer to: ; https://docs.thoughtspot.com/cloud/latest/_attachments/ThoughtSpot-Accessibility-Conformance-Report-WCAG-Edition.pdf
• Onsite support: Yes, at extra cost
• Support levels: The ThoughtSpot Support team is committed to making you successful when deploying and using ThoughtSpot, regardless of your location. We provide 24x7 worldwide support to all our valued customers. ; ; For more information, please refer to: ; https://docs.thoughtspot.com/cloud/latest/support-handbook
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Although ThoughSpot is very intuitive, to get started and make sure the company benefits as quickly as possible we offer professional services to help you train your users and be able to utilize the best from ThoughtSpot. There are some user video available, however for quick and effective onboarding we recommend targeted training. ; ; Training is based on customer needs and always adjusted to level and length which is best for the people involved. Options are on-site or online training. Ongoing support with any bigger challenges. ; Training is available at extra cost.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: There is several ways of how to extract data from Thoughtspot - depending on what type of data or part of the service you want to extract. ; For Models (Dashboards & Visualizations):; ; Exporting Visualizations:Exporting individual visualizations or entire dashboards to various formats like PDF,CSV,or Excel.This provides a static representation of the data but doesn't capture the underlying model logic.; Limited Model Sharing:There are functionalities to share dashboards or visualizations with other users within your organization.However,this doesn't provide a way to extract the complete model for external use.; ; For Data:; Exporting Underlying Data: Exporting the underlying data used in visualizations to formats like CSV or Excel.This export might be limited to a specific view or timeframe depending on your access controls.; Data Alerts & Subscriptions: Possibility to set up data alerts or subscriptions that trigger automatic exports of relevant data when specific conditions are met.; Important Considerations:; ; Limited Model Extraction:ThoughtSpot is primarily designed for data exploration and visualization within its platform.This doesn't offer functionalities to directly extract and share the complete model logic behind dashboards.; Restrictions:There might be limitations on the amount of data you can export or the level of detail available depending on your user permissions and ThoughtSpot configurations
• End-of-contract process: There is no automated grace period granted, all required data must be extracted before the end of contract date. ; VM that ThoughtSpot is running on can effectively serve as end-of-contract process.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Different layout.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The Admin Console provides user with an intuitive, user-friendly interface to accomplish most of the necessary tasks for administering ThoughtSpot.; ; ThoughtSpot Admin Console lets admin users to manage users, groups, authentication, settings (SSL, support, customization), backups, storage, and monitor system activity (user, cluster, alerts) and upgrades. Admin can configure local authentication, integrate with SAML or LDAP, manage backups on NAS, and customize ThoughtSpot's look and feel.
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: Please refer to: https://docs.thoughtspot.com/cloud/latest/_attachments/ThoughtSpot-Accessibility-Conformance-Report-WCAG-Edition.pdf
• API: Yes
• What users can and can't do using the API: REST API: ; - get Liveboard and visualization data from the ThoughtSpot application; - embed data from visualizations and Liveboards in a webpage, portal, or application; - view metadata details for various types of ThoughtSpot objects; - construct a search query to get ThoughtSpot data; - manage ThoughtSpot user profiles and group privileges; - transfer ownership of objects from one user to another; - import, export, and validate scriptable files and automate deployments
• API documentation: Yes
• API documentation formats: HTML
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Customization options in two main areas: look and feel, and user experience to some extent.; ; Look and Feel Customization: You can brand ThoughtSpot to match your company's visual identity. This includes customizing elements like:; ; Logos; Fonts; Color palettes; Background colors; Footer text; Help Menu Customization: Administrators can tailor the Help menu for users within your organization. This allows you to include documentation specific to your company, like information about available data or internal support resources ; ; While ThoughtSpot doesn't offer extensive customization of the core functionality, there is an SDK (Software Development Kit) that allows for some customization of how ThoughtSpot integrates with your existing applications. This can involve:; ; Customizing interactivity between ThoughtSpot and your parent application.; White labeling to remove ThoughtSpot branding altogether.; Applying custom styles through CSS overrides.; These customizations primarily focus on presentation and user experience, rather than the core data analysis functionalities of ThoughtSpot.

Scaling

• Independence of resources: ThoughtSpot uses various strategies to minimize the impact of high user demand on individual users:; ; Resource Management: Allocates resources based on user needs, uses queues to manage queries fairly, and leverages auto-scaling in the cloud.; Query Optimization: Caches frequently accessed data and optimizes query execution for faster results.; Prioritization and Throttling: Prioritizes critical queries and might throttle excessive queries from individual users in extreme situations.; These strategies aim to provide a fair and consistent user experience for everyone. Monitoring and communication during peak usage can further enhance this goal.

Analytics

• Service usage metrics: Yes
• Metrics types: ThoughtSpot offers service metrics for monitoring platform health and user activity.; ; System Performance Metrics track uptime, query times, resource usage, refresh times, and concurrent user sessions to identify bottlenecks and optimize performance.; User Activity Metrics track logins, active users, dashboard views, search queries, and export activity to understand user behavior and content effectiveness.; You can access metrics through the management console, reports, or potentially APIs. Monitoring these metrics helps identify issues proactively, manage resources efficiently, and make data-driven decisions for ThoughtSpot optimization.; ; For more info, please refer to: ; https://docs.thoughtspot.com/software/6.2/intro-monitoring
• Reporting types:
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: ThoughtSpot

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Navigate to the Utilities page: Data > Utilities. In the Import/Export TML tile, select Export TML. In the Export interface, select the Liveboards, Answers, views, tables, and Worksheets that you would like to include in your zip file of related TML files
• Data export formats: Other
• Other data export formats: TML
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection between networks: All data flowing across the global network that interconnects ThoughtSpot data centers and regions is automatically encrypted before it leaves our secured facilities. AWS provides tools that let ThoughtSpot easily encrypt your data in transit and at rest to ensure that only authorized users can access it. Encryption keys are managed by AWS Key Management Service (KMS) or CloudHSM using FIPS 140-2 Level 3 validated HSMs.
• Data protection within supplier network: IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: SLA are backed by and depend on the chosen public cloud provider, all three major cloud providers (AWS, Azure, GCP) guarantee at least 99.99% monthly uptime percentage, with service credit for any SLAs that are missed. For example if uptime drops to 99.00% 10% credit will be applied.
• Approach to resilience: Resilience is backed and provided by the underlying public cloud infrastructure (topology of which you manage in-house). ThoughtSpot is available on all three major clouds -- AWS, GCP, Azure
• Outage reporting: Alerting can be set up within individual cloud provider's environment, for example on AWS you are able to define alerts through CloudWatch service, which can communicate outage in a any number of ways, including email, SMS, push etc depending on the cloud topology of your choice.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: LDAP/AD, SAML
• Access restrictions in management interfaces and support channels: ThoughtSpot secures access with roles. In the management console, assign roles like "view-only" or "administer configurations" to users based on their needs. Grant access to support channels through user authentication and limit user profiles to relevant information. Multi-factor authentication and regular access reviews further tighten security.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Aprio
• ISO/IEC 27001 accreditation date: 9/11/2013
• What the ISO/IEC 27001 doesn’t cover: Covering all essential aspects.
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 15/5/2022
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: Only parts which are not relevant for ThoughtSpot.
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • HIPAA
  • SOC 2
  • SOC3

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: Data Security for ThoughtSpot is very important and is both SOC and ISO 27001. There are processes in place to ensure security around data, processes and people.; Roles and responsibilities are defined, Monotoring in place, Damage and loss actions define as well as specific guidelines implemented.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: ThoughtSpot updates follow a staged approach:; ; Preparation:Get notified, back up your system, and review update details.Deployment:Ideally test the update in a staging environment first,then deploy to production.; Post-Update:Verify functionality,monitor for issues, communicate with users,and offer support.; This process helps minimize disruption and ensure a smooth update for your ThoughtSpot environment.; ; It is advised to consider following when implementing changes: ; -Downtime (ThoughSpot always tries to communicate ahead expected downtimes); -Customization (if there are any custom configurations or integrations those should be reviewed post update).; -Change management integration (don´t forget to involved internal change management process which your organisation have in place)
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: ThoughtSpot conducts quarterly security risk evaluations to assess threats to information assets, determine potential vulnerabilities, and provide remediation. Software patches are regularly deployed to customer instances to address known vulnerabilities.; ; Vendor vulnerability management process: ; When software vulnerabilities are revealed and addressed by a vendor patch, ThoughtSpot will obtain the patch from the applicable vendor and apply it within an appropriate time frame in accordance with ThoughtSpot’s then-current vulnerability management and security patch management standard operating procedure and only after it is tested and determined to be safe for installation in all production systems.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Cloud provides, where Thoughtspot service can run provide necessary assurance as they take responsibility for identifying potential compromises and alerting users on their discovery. Response for such incidents are managed by underlying provider´s team. ; ; There is possibility to integrate external tools for strengthening the security measures (eg. implementing Security Information and Event Management (SIEM) tools for centralized log collection and analysis from ThoughtSpot and other security sources). Also,you can leverage below ThoughtSpot sunctionalities: ; Leverage ThoughtSpot functionalities:; Enable audit logging to track activity,data access,and configuration changes.; Monitor performance metrics (uptime,query times,resource utilization).; Configure alerts for suspicious events (failed logins,errors,exceeding resource usage).
• Incident management type: Supplier-defined controls
• Incident management approach: ThoughtSpot does not have a built-in incident management system. You can create a process that leverages ThoughtSpot features (logs, access control) and integrates with external tools. This involves identifying incidents (user reports, monitoring), classifying them by severity, responding by isolating the issue and diagnosing the root cause, resolving it (fixing configurations or restoring backups), and reviewing lessons learned to improve future response. It would be good to consider integrating ticketing systems, monitoring tools, and communication platforms for better management.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity

  Fighting climate change

  We endeavour to do our best in fighting climate change and have made an active effort to switch our delivery to remote working vs onsite delivery where possible, thus reducing our travel & impact on the environment.

  Equal opportunity

  Being an equal opportunity employer cultivates a workplace where diversity is embraced and valued. It fosters inclusivity, ensuring all individuals have fair opportunities for employment and advancement regardless of race, gender, age, religion, or background. By prioritizing diversity and inclusion, organizations harness the full spectrum of human potential, driving innovation, creativity, and problem-solving. Embracing equality in employment not only reflects ethical responsibility but also enriches company culture, improves employee morale, and enhances productivity. Ultimately, as a social value, being an equal opportunity employer promotes fairness, equity, and respect, contributing to a more just and harmonious society.

Pricing

• Price: £0 a licence
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: There is 14 day trial which can used after registration. ; ; Trial version does not include all functionalities, however new functionalities are being enabled in free trial on ongoing basis. With the latest from April 2022 allows users to see Admin tab.
• Link to free trial: https://www.thoughtspot.com/trial

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at michael.evans@billigence.com. Tell them what format you need. It will help if you say what assistive technology you use.