GATHER INSIGHTS LIMITED

Gather

A digital Record Management System (RMS) creating powerful data-led insights and structured commercial analysis to unlock productivity opportunities.

Market leading software in the capture and commercial analysis of site data in the UK construction industry. Real-time reporting and detailed analytics, turning Shift Records into powerful data-led insights for commercial assurance.

Features

• Market leading software, supported by ISO9001 accreditation.
• Pre-populate 64% of data before arriving on site.
• Complete a detailed Shift Record in just 3 minutes.
• Geotagged and timestamped media uploads to ensure transparency of compliance.
• Fully supported 24/7 knowledge-base and dedicated support team.
• Integrate site data with your project management software including CEMAR.
• Bespoke dashboards provide powerful data-led insights supporting commercial assurance.
• Automate calculation of fatigue metrics, including Network Rail NR/L2/OHS/003 compliance.
• Real-time detailed metrics on compliance, resource, close calls, asset information.
• Cloud-based site reporting software, fully aligned with RMM.

Benefits

• Structured site data capture for commercial management and assurance.
• Understand the who, what, why, where and when of projects.
• Cultivate best practise and make accelerated, effective project decisions.
• Real-time data visibility boosts collaboration between site and office teams.
• Utilise historical data to augment decision making for future planning.
• On average clients achieve minimum 10x ROI.
• Identify overspend and intervene sooner to turn risks to opportunities.
• Daily summary reports provide project summary and highlight outstanding actions.
• Ensure 100% of work is substantiated, 100% of the time.
• Simple to use and quick to deploy, fully supported onboarding.

£500 a licence a month

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at william.doyle@gatherinsights.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

250831346049155

Contact

William Doyle
+44 (0)161 694 8684
william.doyle@gatherinsights.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: Tenancy is public cloud by default unless private cloud is negotiated into contract.; ; Planned maintenance; ; Mobile and tablet versions of the Sitediary app require at least Android version 7 or at least iOS version 10.; ; The Gather web platform is fully available through use of a modern web browser and requires no specialist software or requirements deemed unconventional in a typical office IT environment.; ; Gather does not support IE or non-chromium versions of Microsoft Edge.
• System requirements:
  • Modern web browser (Chromium based or Mozilla Firefox)
  • Devices running iOS 10+/Android 7+ (for site users)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Between 0830 and 1730 on business days we aim to respond to 90% of tickets within 20 minutes and 100% of tickets within 1 hour.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: Web chat
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: WCAG 2.1 AA or EN 301 549
• Web chat accessibility testing: We haven't undertaken web chat testing however we integrate Zendesk into our platform which is a market leading support system.
• Onsite support: Onsite support
• Support levels: We provide an integrated help and support service and 24/7 accessible knowledge base. We also provide a dedicated Account Manager for on site support, User training and customer success. Support of all levels and types is included within our subscription charges. Specific user training is priced separately as either online or classroom training depending on the client requirements.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide a fully supported onboarding playbook delivered through a shared customer success portal hosted in Planhat. This is supplemented by onsite and online training along with a 24/7 accessible knowledge base with getting started guides, videos and FAQ's. We also provide a dedicated Account Manager to support customer success at every stage of the process.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: At any time during the subscription period we allow for Users with appropriate permission rights to download all data. At the end of a subscription agreement we would support this download. Users are also able to download all reports and records in various formats at any time during the subscription period.
• End-of-contract process: The Gather platform is provided as off the shelf Software as a Service so at the end of the contract if the subscription is no longer required we would support download of all data which Users are able to complete within the system and then access to the platform would be restricted.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile app primarily for data input, no access to planning and reporting through the native mobile and tablet app.; ; Access to reports available on mobile/tablet through web browser.; ; Full suite of services available through the desktop application.
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Gather offers a RESTful API allowing users to ; ; - Create and update Project and Workspace attributes to be used in Shift Records.; - Export data in JSON/CSV format via preconfigured reporting solutions.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Customisations provided by Gather as part of set-up are: Branding; Standard input labels; Additional data capture options; Reporting Solutions & data export; Power BI dashboards; Project/Workspace setup; API access.; ; Users are able to customise: User Profile; Workspace Attribute; Project Attributes; Project Users; Project Supervisors; ; Other non-standard customisations on enterprise contracts will be considered/quoted for separately.

Scaling

• Independence of resources: Gather is actively monitored, optimised, and scaled appropriately for the number of users, their activity and the demand placed on services. We use NewRelic's Apdex score as a metric to determine user satisfaction of the application's performance. AWS provides us with scalable infrastructure on-demand.

Analytics

• Service usage metrics: Yes
• Metrics types: - User adoption; - Feature adoption (use of specific service); - Compliance reports (on/off track); - User audit logs
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Users may export their data at any time in various formats including .pdf and .csv. We also provide unique secure links for integration with other platforms which preserves security and integrity for accessing client data.
• Data export formats:
  • CSV
  • ODF
  • Other
• Other data export formats: JSON
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Our detailed SLA's are included in our standard terms and conditions with a target of availability 24/7/365 except for limited maintenance windows. Critical issue resolution is within 4 hours.
• Approach to resilience: Information available on request
• Outage reporting: Outages reported via https://gatherinsights.statuspage.io/, email and SMS reports on availability are available through subscription

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Account permissions are managed through a combination of typical user account roles and an account level granular permission system. Gather is a managed service, customers are able to customise who has access to what services. As this is a managed service only Gather have direct access to management interfaces, "key contacts" are able to request changes through our customer support portal.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • Username or password
  • Other
• Description of management access authentication: IP restricted access

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: Annual CREST Accredited Penetration Test Certification

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We have an integrated management system certified to ISO9001 which includes our information security processes. All suppliers that hold client data are certified to ISO27001 or SOC2 and we are Cyber Essentials Plus certified.
• Information security policies and processes: Policies and processes follow ISO 27001 and Cyber Essentials Plus (certified). Security process quality maintained and managed through QMS (ISO 9001 certified).

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Customer configuration changes processed through customer support portal and via account managers. Internal staff trained to use peer and key contact approval and subject to GDPR.; ; Service component change tracked and managed through internal (third party) project management tools. Vulnerability assessments carried out by internal peer review, third party automated assessment tools, and at least annually through external pentesting.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Business level threats to services managed through risk register, reviewed quarterly.; Internal IT vulnerability assessment and patch management managed through auto-updates. ; Service threats managed by engineering team. Information obtained through third party vulnerability scans of codebase and infrastructure. New threats classified and mitigated with the ability to deploy patches within hours depending on severity.
• Protective monitoring type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Protective monitoring approach: Service access monitored through third party Web Application Firewall (WAF) and Runtime Application Self-Protection (RASP). Additional Playbooks used to identify and block bad actors. Compromises classified and managed through incident management process (more information available on request).; Incident response is tiered based on impact, with shortest response time within 2 business hours.
• Incident management type: Supplier-defined controls
• Incident management approach: Incident that are identified are classified as MAJOR/MINOR.; Incident Commander and Communication Officers prioritise response effort through impact and urgency assessment graph.; Predefined/Playbook examples are included within Gather's incident resolution policy, covering downtime, data breach, and third party failure, with templated responses for stages of investigation.; Users are able to report incidents through our support desk or via email/telephone.; Incident reports are provided via Zendesk, Statuspage and/or customer account managers to key contacts.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  The Gather platform is dedicated to supporting increased productivity in the construction sector. Through unlocking these productivity opportunities we will deliver infrastructure projects using fewer resources and therefore with a smaller carbon footprint. This will have a significant and benefical impact in the fight against climate change.

Pricing

• Price: £500 a licence a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Depending on the potential opportunity and longevity of the proposed subscription agreement we are able to consider subscription free periods.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at william.doyle@gatherinsights.com. Tell them what format you need. It will help if you say what assistive technology you use.