IBI ROADMAP

Service scope

Software add-on or extension: No
Cloud deployment model: Public cloud

Private cloud
Service constraints: Any maintenance activities that might result in service degradation or unavailability will be undertaken outside of normal working hours. Buyers will be informed by email one week in advance of any planned maintenance or downtime.
System requirements: Client machines require modern web browsers

Client browser must be JavaScript enabled

User support

Email or online ticketing support: Email or online ticketing
Support response times: Questions submitted via e-mail or telephone will be responded to during weekday business hours (9am to 5pm). Critical faults raised will be responded to within 1 hour. Non-critical faults will be responded to within 1 working day. Response times do not included weekends.
User can manage status and priority of support tickets: Yes
Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
Phone support: Yes
Phone support availability: 9 to 5 (UK time), 7 days a week
Web chat support: No
Onsite support: Yes, at extra cost
Support levels: First level e-mail and telephone support is provided during office hours (9am to 5pm). Issues raised by customers are triaged by the first line support team and reported to the relevant support teams for resolution. A technical account manager oversees the customer arrangements, ensuring updates and communication on all support items.
Support available to third parties: Yes

Onboarding and offboarding

Getting started: Onsite training is provided as part of the onboarding process.
Service documentation: Yes
Documentation formats: PDF
End-of-contract data extraction: A copy of the full database export is provided at the end of the contract.
End-of-contract process: We provide the client with a digital copy of all their data and files.
All proprietary data residing on our servers will be deleted.

Using the service

Web browser interface: Yes
Supported browsers: Internet Explorer 11

Microsoft Edge

Firefox

Chrome

Safari
Application to install: Yes
Compatible operating systems: Android

IOS
Designed for use on mobile devices: Yes
Differences between the mobile and desktop service: The ROADMAP mobile app provides real-time auditing and data collection, including:
• Capture of geotagged content including timestamped photos
• Metadata generated and embedded in captured data, ensuring there is an audit trail
• Centralised authentication ensuring only those with permissions can access and submit reports
• Functionality to interface with the back-end database application
• Designed with large buttons, and minimal clicks for ease of use in the field
• Features online and offline reporting for resiliency to intermittent mobile communications
• Built from native mobile app technology, compatible with all modern iOS and Android devices (phones and tablets)
Service interface: Yes
User support accessibility: WCAG 2.1 AA or EN 301 549
Description of service interface: IBi ROADMAP is accessed through a responsive, browser-based interface. The mobile application is accessed via either a mobile phone or tablet device running either Android or iOS.
Accessibility standards: WCAG 2.1 AA or EN 301 549
Accessibility testing: Interface testing has been undertaken in-house.
API: Yes
What users can and can't do using the API: Users can request road closure information via the API.
API documentation: Yes
API documentation formats: HTML
API sandbox or test environment: Yes
Customisation available: Yes
Description of customisation: Customers can configure mapping data for local geographic area, configure reports, road closure permit validation check list, UI skin and logos.

Scaling

Independence of resources: The IBI RoadMap API spins up a new instance per request and each instance runs in its own application pool.

IIS handles the application pool management using available resources on the server. The server can be clustered so that it scales.

Analytics

Service usage metrics: No

Resellers

Supplier type: Not a reseller

Staff security

Staff security clearance: Other security clearance
Government security clearance: Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations: Yes
Data storage and processing locations: United Kingdom

European Economic Area (EEA)
User control over data storage and processing locations: Yes
Datacentre security standards: Supplier-defined controls
Penetration testing frequency: At least every 6 months
Penetration testing approach: In-house
Protecting data at rest: Physical access control, complying with CSA CCM v3.0
Data sanitisation process: Yes
Data sanitisation type: Explicit overwriting of storage before reallocation
Equipment disposal approach: In-house destruction process

Data importing and exporting

Data export approach: We will assist with any data export requirements that the users may have.
Data export formats: CSV
Data import formats: CSV

Data-in-transit protection

Data protection between buyer and supplier networks: TLS (version 1.2 or above)

Other
Other protection between networks: Secure role-based logins.
Data protection within supplier network: TLS (version 1.2 or above)

Other
Other protection within supplier network: Secure role-based logins.

Availability and resilience

Guaranteed availability: 99.9% up time is guaranteed during office hours. There is no standard SLA for the IBI RoadMap service, but one can be agreed with the Buyer if required.
Approach to resilience: RoadMap services run in the Cloud on Virtual Instances. Data centre suppliers used, such as Azure are committed to resilience and up-time via SLAs.
Outage reporting: Email alerts are used to report system outages.

Identity and authentication

User authentication needed: Yes
User authentication: Public key authentication (including by TLS client certificate)
Access restrictions in management interfaces and support channels: Secure role-based logins.
Access restriction testing frequency: At least every 6 months
Management access authentication: 2-factor authentication

Username or password

Audit information for users

Access to user activity audit information: Users contact the support team to get audit information
How long user audit data is stored for: At least 12 months
Access to supplier activity audit information: Users contact the support team to get audit information
How long supplier audit data is stored for: At least 12 months
How long system logs are stored for: At least 12 months

Standards and certifications

ISO/IEC 27001 certification: No
ISO 28000:2007 certification: No
CSA STAR certification: No
PCI certification: No
Cyber essentials: Yes
Cyber essentials plus: Yes
Other security certifications: Yes
Any other security certifications: Cyber Essentials Plus

Security governance

Named board-level person responsible for service security: Yes
Security governance certified: No
Security governance approach: IBI secures Personal Data as a Data Controller or Data Processor through a series of security measures that include physical security such as restricted areas or registration of visitors, technological security maintained by a dedicated information technology team, through the use of robust systems and reliable service providers, and organisational measures such as due diligence in transferring Personal Data to specific service providers for reasons of specific service delivery relating to such Personal Data.
Information security policies and processes: IBI has appointed its General Counsel (GC) as Data Protection Officer (DPO) to ensure compliance with data protection laws. As DPO, the GC reports directly to the CEO and monitors compliance with obligations in relation to data protection according to the processes IBI has adopted in compliance with these obligations. The Director of Information Technology (DIT) ensures implementation of the Data Security Policy while managers ensure compliance by employees. The CEO requires regular status reports on compliance and board members hold management responsible for compliance.

Operational security

Configuration and change management standard: Supplier-defined controls
Configuration and change management approach: Changes to components are tracked via a ticketing system. Only product owners can create the tickets and assign them to the development teams. Tickets can only be closed off after changes have undergone rigorous quality management checks in a dedicated test environment and have passed a series of functional and security checks within the staging environment.
Vulnerability management type: Supplier-defined controls
Vulnerability management approach: On a monthly basis a large cross section of device and daemon logs are processed in depth using both automated tools and extensive direct human analysis. Each of the major systems are tracked for upstream security notices using normal mechanisms. On top of this key staff monitor the general CVE security feeds for points of interest along with summaries from other contacts (e.g. Qualsys security roundup). Non-aggressive high level pen testing is performed twice annually and proactive security testing of new assets is a key stage of any deployment.
Protective monitoring type: Supplier-defined controls
Protective monitoring approach: Daily analysis of server (System, security etc.) and firewall logs is performed. Dedicated support personnel are trained to identify potential compromises and when these are identified they are thoroughly investigated. As a general principal a security in-depth policy is adopted where the seriousness of the security incidents is treated as critical until such time as it is proven otherwise.
Incident management type: Supplier-defined controls
Incident management approach: Daily system maintenance checks are carried out. Service availability monitored by a third party service and email and text alerts sent out when services are unresponsive. Incidents are reported by email or phone and recorded in our ticketing system. If requested monthly performance reports can be provided.

Secure development

Approach to secure software development best practice: Supplier-defined process

Public sector networks

Connection to public sector networks: No

Fighting climate change: Fighting climate change

ROADMAP promotes better management of road work activities and special events resulting in a reduction in traffic disruptions and congestion. This results in lowering our carbon footprint by both reducing travel times and by reducing road construction waste that can arise from rework ( for example: multiple excavation for utilities maintenance due to poor planning).
Covid-19 recovery: Covid-19 recovery

IBI Group are supporting a mixed return to office. Those employees affected by COVID-19 with regard to short and long term recoveries are being supported both physically and mentally. No one is being forced to come back to the office environment when they are settled in working from home, but those who prefer office work have the option to do so and work from home as well in a hybrid model.
Equal opportunity: Equal opportunity

IBI Group is committed to creating a culture where everyone has an equal opportunity to grow, develop, succeed and be their truest self. We hold each other accountable to create and contribute to an inclusive culture, which includes a focus on increasing gender representation and diversity across the entire organisation. In 2022 IBI launched the Diversity, Inclusion and Belonging (DIB) Scholarship which rewards students who self-identify as Black with a $5,000 scholarship at six partner universities across Canada and the United States. This scholarship is one of many IBI Group programs aimed at increasing internal gender representation and diversity and in turn fostering an environment where everyone is encouraged to be themselves and achieve a sense of belonging. IBI's Diversity Policy can be viewed here: https://www.ibigroup.com/wp-content/uploads/2021/03/2021.02.17-Diversity-Inclusion-Belonging-Policy-Approved.pdf
Wellbeing: Wellbeing

Less congestion leads to less stressful commute times increasing the wellbeing of commuters.

Pricing

Price: £48,500 an instance a year
Discount for educational organisations: No
Free trial available: No

Features

Benefits

Service documents

Framework

Service ID

Contact

Service scope

User support

Onboarding and offboarding

Using the service

Scaling

Analytics

Resellers

Staff security

Asset protection

Data importing and exporting

Data-in-transit protection

Availability and resilience

Identity and authentication

Audit information for users

Standards and certifications

Security governance

Operational security

Secure development

Public sector networks

Pricing

Service documents

Cookies on Digital Marketplace

IBI ROADMAP

Features

Benefits

Pricing

Service documents

Framework

Service ID

Contact

Service scope

User support

Onboarding and offboarding

Using the service

Scaling

Analytics

Resellers

Staff security

Asset protection

Data importing and exporting

Data-in-transit protection

Availability and resilience

Identity and authentication

Audit information for users

Standards and certifications

Security governance

Operational security

Secure development

Public sector networks

Social Value

Pricing

Service documents