METASPHERE LIMITED

MAP ART -Machine Learning Data Platform for SuDS, Waste Water, Environment, Gas and Clean Water

Using Machine learning or AI analytics you can predict when the next spillages, floods, and flow levels will be breached. Giving you enough time to go ahead before an event and avoid spillages, flows, and overflows.

Features

• Real time rainfall and water level Integration
• Forecast rainfall and water level Integration
• Historic rainfall and water level Integration
• Monitoring and Reporting for using real-time, forecast and historic rainfall
• Partial Blockage detection location based
• Artificial Intelligent Alerts location based
• Dashboard display of rainfall, flood incident in real time
• Detailed API lets users integrate Cloud Service into their application
• Machine Learning to predict floods, blockages
• Predicting flows in Sewers, CSO and Pump station

Benefits

• Receive Intelligent Alerts for Floods, Blockages and Flows
• Calculate return periods for Flooding events for reporting purposes
• Machine learn why some areas floods and others don't
• Early blockage detection to avoid spillages. AvoidFines & ExtraSpillageCost
• User friendly dashboard for monitoring and reporting
• Machine learn how rainfall effects your assets and predict
• River catchment machine learning

£14 to £65 a unit a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at palzor.lama@metasphere.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

243656791883080

Contact

Palzor Lama
+44 (0)1737 846100
palzor.lama@metasphere.co.uk

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: MAP ART is built using an analytical tool that calculates for delivering high-speed, high-volume analytics
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: No specific constraints
• System requirements:
  • Requires standard web browser to view dashboard
  • Requires email-id for Alarm alerts for BlockageDetection or Spillages
  • The standard importer requires a specific format of data
  • Custom importers built for any non-standard format of data
  • RequiresEmail-id for AlarmAlert for SpillagesOfCurrent/forecast RainfallAlerts for polygon or point

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Depending on the priority selected. High-priority tickets are 2 hours, Medium priority - 8 hours and Low-priority 16 hours
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Initial support will be via the Support Ticket which behind the scenes will have our Support Engineers and will be allocated to our Cloud Support Engineer. Product meetings and arrangements will be via the Technical Account Manager. For services already sold the support will have no extra cost but for any other level of support cost will be provided depending on the level of work involved.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: We have a live demonstration of the MAP ART dashboard and some MAP ART tutorial videos; http://www.meniscus.co.uk/meniscus-demonstrations/map-rain-demonstrations/ We can provide online; training on a day-rate or pro-rate basis. An initial training webinar is included within the standard support; package. There is a MAP ART user manual.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: There is no data to extract as this service relies upon presenting a subset of a global rainfall dataset and; aggregating this to user-specified points or polygons. The rainfall for these points and polygons can be; extracted using a CSV download in the MAP ART dashboard.
• End-of-contract process: The contract terminates. We stop providing any data or alerts for this customer and remove any; customer login details from our system.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The cloud software has a proven and easy-to-use dashboard front end that lets users visualize and download combined Wastewater & Rainfall data; and other related datasets. The users can access the backend browser-based configuration; dashboard for MAP ART. This provides access to the core calculations but this is only available as a read-only; interface though authorised local administrators can make changes to the e-mailing and alerting; functionality. This allows them to change the limits at which alerts are generated and the users that will; receive the alerts.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: No interfacing testing has been carried out till date
• API: Yes
• What users can and can't do using the API: The cloud software API is very comprehensive 1. Can access every graph and display of data or information; presented in the MAP Rain dashboard. The dashboard has examples of every API call 2. Can create and; configure new geometries in MAP Rain (i.e. a polygon) and upload them into MAP Rain 3. The API can be; Read Only when used to display and access data from the MAP servers. Or, it can have write access,; for local administrators only, giving the customer control over certain elements of the services 4. With; write access, can change the alert limits for any alerts that are configured in MAP Rain 5. With write access,; can modify the e-mailing properties that control to whom the alerts are sent to.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: Can decide on the area to be covered. Can add new Points of Interest - to receive flooding alerts. Can add; new Polygons of Interest - to receive flooding alerts. Can change the alert limits for any Point. Can change; the alert limits for any Polygon. All of the above can be changed from the MAP ART dashboard or by; importing configuration files via the dashboard only local administrators, set up for each company, can; make these changes

Scaling

• Independence of resources: We have a 'reasonable use' clause in our Terms and Conditions that ensures API access does not adversely; affect performance. This is a major risk. We have a set of internal metrics used to monitor and track the; number and duration of outstanding calculations that are waiting to be completed. This triggers internal; action in the event these alarms are triggered.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Can export using a CSV export process on the main MAP ART dashboard Can use the MAP ART API to; extract data using an API key
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • JSON
  • XML
• Data import formats:
  • CSV
  • Other
• Other data import formats: KML

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We do not guarantee levels as the service is not considered mission-critical. We will use reasonable; endeavors to maintain the availability of the services. Our standard terms and conditions allow for either; party to terminate the agreement if there is a material breach of the terms and conditions.
• Approach to resilience: We take significant steps to ensure that the service is resilient and have invested significant resources,; both time and money, to ensure this is the case. More information is available on request.
• Outage reporting: We monitor the outages of our cloud service via e-mail alerts and the MAP ART dashboard. In the event of a significant; service outage, the customers are notified directly by e-mail. This is all set out in our Cyber Security Policy.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Access to management information is limited to relevant persons by way of granting/denying access; rights at the operating system level. This is managed by the Enterprise Architect reporting to the Managing; Director. Access to support channels is again granted as required. The core Meniscus Analytics Platform; also has a detailed control access hierarchy enabling access to be managed at a very detailed level.
• Access restriction testing frequency: At least once a year
• Management access authentication: Username or password

Audit information for users

• Access to user activity audit information: You control when users can access audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: You control when users can access audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 11 January 2024
• What the ISO/IEC 27001 doesn’t cover: Cyber security is not covered by this standard. We use different certificate for cyber security
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We do not have extrenal certification but we have drawn up our Cyber Security Policy and Cyber Incident; Response Plan in line with the National Cyber Security Centre guidance for implementing cloud security; principles.
• Information security policies and processes: Our Information Security Policy is drawn up in line with the National Cyber Security Centre guidance for; implementing cloud security principles We complete the Cyber Essentials assessment every year The; Enterprise Achitect is responsible for all IS security and he reports directly to the Managing Director/Chief Engineer

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: We have a formal Change Control Policy : a. Specification of the change i. Reason for the Change ii. Detail; the changes required iii. Detail the possibility of failure iv. Update Category 1. Minor update: Low risk minor; change 2. Standard change: Standard change planned in advance 3. Emergency change: Change that must; be executed rapidly. Requires approval by Managing Director b. Specification of the rollback plan c.; Confirmation that the software/hardware meets the specification d. Identification of the customers; impacted e. Contact customers to inform them of temporary loss of service due to a planned update.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: This is all detailed in our Cloud Security Policy that is prepared in line with the model and controls in the; National Cyber Security Centre guidance for implementing cloud security principles. Available on request.; Patches are applied based on Microsoft Tech Severity Notifications and the associated risks Applied; dependent on level of risk. Critical are applied within 2 working days Use MalwareBytes Cloud on critical; servers and monitor password failures with e-mail notification on failure.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Use MalwareBytes Cloud on critical servers Monitor, log and alert all password failure attempts. All; response times are detailed in our Cyber Incident Response Plan that is available on request. Includes 1.; Details risk level assessment 2. Type of Incident and level of risk including how to detect and how to react; Timescales differ according to the level of risk
• Incident management type: Supplier-defined controls
• Incident management approach: The business has a formal Incident Response Plan laid out in accordance with the National Cyber Security; guidelines. The plan identifies a number of levels of risk. Each one characterised and the relevant response; associated to it. The plan also sets out a number of examples of each level of risk and details how to detect; the risk and an explanation of the problem. The plan also includes the list of people that need to take; actions and finally the actions that muct be taken to report the consequence of an incident for each level.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  With the Cloud Service, we can also provide our Remote monitoring devices ( zero-emission standard) which will be used in the Wastewater or similar areas to collect data and inform end users of potential spillages, blockages, and the risk of high levels of untreated waste in the water. Using the data and measures to be put in place, enables the Users and the government to fight climate change being caused due to Sewer overflows and blockages.

Pricing

• Price: £14 to £65 a unit a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at palzor.lama@metasphere.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.