Talend Data Fabric
Talend Data Fabric offers a single, unified platform for rapid delivery of data integration and data governance solutions that simplify all aspects of working with data within a modern data architecture. The platform integrates, cleans, enhances, governs, and delivers targeted datasets for analytics and other business outcomes.
Features
- No-low code approach to building enterprise grade integration solutions
- Comprehensive (2000+) component palette to simplify and accelerate integration projects
- Intrinsic data quality profiling and data remediation capabilities
- Embedded instrumentation for continuous dataset measurement and observability metrics
- Native support for Data Mesh / Data Product architecture concepts
- Architecture flexibility - build once, run anywhere (including Spark)
- Support for ETL, ELT, API, batch and streaming integration patterns
- Hybrid deployment and hybrid cloud vendor support (AWS, Azure, GCP)
- Comprehensive support for leading cloud data platforms (Snowflake, Databricks, etc.)
- Lineage insights on where data came from/how it's used
Benefits
- Recognised by Forrester as a leader in Data Fabric
- A single, integrated solution for all data platforms & applications
- Ease compliance with data privacy regulations such as GDPR
- Data Quality profiling, cleans and masks data in real time
- Intuitive persona based experiences foster organisation wide collaboration
- Native 'Trust Score' - immediate, explainable, actionable assessment of confidence
- Protects sensitive data such as Personally Identifiable Information (PII)
- Independent platform - No vendor or platform 'lock in'
- Ensures organisational data integrity, compliance and governance
- Build a trusted data foundation for Generative AI
Pricing
£12,000 a user a year
- Education pricing available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
4 3 3 6 4 1 0 7 0 8 8 4 3 6 6
Contact
Qlik
Nick Ward
Telephone: 07557267116
Email: nick.ward@qlik.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Hybrid cloud
- Service constraints
- No
- System requirements
-
- Most Talend services are accessible via web browser except Studio
- Studio is an Eclipse-based IDE for data engineers
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- SLA is based on level of Support, and it is published on our website at https://www.talend.com/technical-support/support-statements/
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- Web chat
- Web chat support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Web chat can be initiated from within our cloud platform
- Web chat accessibility testing
- We rely on our web chat vendor for all testing of their service, no aditional testing done by Talend
- Onsite support
- Yes, at extra cost
- Support levels
- Level 1: Non-technical problems, Level 2: Standard Technical issues, Level3: Advanced/Bug issues
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- Extensive online product training/enablement, solution accelerators, packaged Professional Services support e.g. QuickStarts for New subscriptions and for specific services (such as Data Catalog).
- Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
- No customer data is persisted within Talend services by default. Users can determine whether to store their data in their preferred cloud, on premises or on the Talend Cloud.
- End-of-contract process
-
Notification of pending service termination appears in all user interfaces / experiences. Customer 'data' (job meta data and job binaries) are deleted 30 days after contract termination.
Users can use all available tooling and support to extract their data while the contract is in place - these costs are covered within the subscription fee. Costs for assisting (Consulting) at the end of a contract would be chargeable.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- No
- Designed for use on mobile devices
- No
- Service interface
- Yes
- User support accessibility
- None or don’t know
- Description of service interface
- Talend employs intuitive, graphical and highly productive persona-based interfaces to the various services offered. Most service interfaces are persona-aligned, intuitive, web based experiences.
- Accessibility standards
- None or don’t know
- Description of accessibility
-
WCAG 2.0 A (partial).
Most Talend services are accessible via web browser except Studio, the Eclipse-based IDE for data engineers - Accessibility testing
- Talend generally relies on the assistive technologies available within supported web browsers.
- API
- Yes
- What users can and can't do using the API
- Comprehensive REST API to drive the entire range of Talend services programmatically.
- API documentation
- Yes
- API documentation formats
- Open API (also known as Swagger)
- API sandbox or test environment
- Yes
- Customisation available
- Yes
- Description of customisation
-
By configuring and combining services to deliver solutions for specific use cases e.g. data ingestion, cloud migration, enabling analytics, etc.
Users would customise using Studio to build drag and drop data pipelines / jobs. System components such as reports and dashboards can be customised.
Users with appropriate permissions can customise
Scaling
- Independence of resources
- Talend Cloud provides a fully isolated, multi-tenant service to help ensure demand from other users don't not impact a customer's service
Analytics
- Service usage metrics
- Yes
- Metrics types
- The type and cadence of provision of metrics is dependent on level of Support, you would work with your DSE as part of the Talend Success Package
- Reporting types
- Reports on request
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Staff screening not performed
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- Less than once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Other
- Other data at rest protection approach
-
"Customer data and metadata stored on Talend infrastructure is always encrypted in transit with TLS 1.2 and at rest with minimum AES-256. A unique data encryption key (DEK) is used to encrypt tenant specific information"
Talend relies on third-party key management services such as AWS KMS and HashiCorp Vault to manage the encryption key lifecycle, including key rotation. Talend relies on trusted certificate services such as AWS Certificate Manager or Let’s Encrypt to provision, manage, and deploy SSL/TLS certificates. - Data sanitisation process
- Yes
- Data sanitisation type
- Explicit overwriting of storage before reallocation
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
- No customer data is persisted within Talend services by default - so users would have access to their data from whichever storage medium they have selected.
- Data export formats
-
- CSV
- Other
- Other data export formats
-
- Excel
- XML
- JSON
- Avro
- Data import formats
-
- CSV
- Other
- Other data import formats
-
- Excel
- XML
- JSON
- Avro
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
- Other
- Other protection within supplier network
-
"Talend, across its cloud applications, collects only the customer information needed to provide its services or to manage customer accounts. All personally identifiable information that we collect (such as name, country, and email address) is protected with encryption at rest via AES-256 and in transit via HTTPS TLS 1.2."
Provision or additional VPC security through support for AWS PrivateLink and Azure Private Link services.
Availability and resilience
- Guaranteed availability
-
99.9% system availability level for Talend Cloud services
99.5% system availability level for Talend Cloud Data Catalog
See https://talend-legal doc.s3.amazonaws.com/Service+Level+Agreement+for+Talend+Cloud+Services+(v2021.04.01)+(English).pdf - Approach to resilience
- Talend Cloud services leverage and inherit the resilience characteristics of the underlying AWS or Azure services upon which it is built.
- Outage reporting
-
Yes.
See https://trust.talend.com/ for more details.
Identity and authentication
- User authentication needed
- Yes
- User authentication
- 2-factor authentication
- Access restrictions in management interfaces and support channels
-
Perimeter security includes the following:
• Route 53 private hosted zone (Azure DNS) – server IP addresses are unknown to the outside world - user connects through the DNS manager.
• VPC firewalls – Servers and storage are deployed within VPC, and all VPCs are protected by “Security Group” policy firewall.
• Bastion Hosts - Servers are the only part of the VPC with outside (internet) access. Only SSH connections allowed.
• AWS Shield (Azure DDoS) – DDoS protection
• Web Application Firewall (WAF)
• Network-based IDS and IPS
• AWS CloudWatch (Azure Monitor)
• AWS KMS (Azure-HashiCorp KMS) - Access restriction testing frequency
- At least once a year
- Management access authentication
- 2-factor authentication
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- At least 12 months
- Access to supplier activity audit information
- Users contact the support team to get audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- MSECB
- ISO/IEC 27001 accreditation date
- 05/05/2021
- What the ISO/IEC 27001 doesn’t cover
-
"The scope of our ISO certification covers the following:
Business Processes: R&D; IT; Information Security Products: Talend Data Fabric (AWS); Talend Data Fabric (Azure); Stitch, in accordance with the Statement of Applicability (SoA), Ver. 1.0
Business Processes: R&D; IT; Information Security Products: Talend Data Fabric (AWS); Talend Data Fabric (Azure); Stitch, in accordance with the Statement of Applicability (SoA), Ver. 1.0
Please check the link for more info: https://www.iafcertsearch.org/certification/b35ec021-c150-5ff8-a970-d8df0082f53f" - ISO 28000:2007 certification
- No
- CSA STAR certification
- Yes
- CSA STAR accreditation date
- 25/03/2022
- CSA STAR certification level
- Level 1: CSA STAR Self-Assessment
- What the CSA STAR doesn’t cover
- Our On-Prem products (not offered on this framework) are excluded from our certification
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- Yes
- Any other security certifications
-
- SOC 2 Type 2, HIPAA, GDPR, ISO/IEC 27701:2019
- Cyber Essentials Plus Accreditation expected June 2022
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
-
- ISO/IEC 27001
- Other
- Other security governance standards
-
CSA
Talend leverages an Information Classification & Data Handling Policy, as verified in the SOC2 report. Technical and organizational measures are applied in the frame of the latest GDPR provisions as per the European Directive.
See https://cloudsecurityalliance.org/star/registry/talend-inc/ - Information security policies and processes
- Talend leverages an Information Classification & Data Handling Policy, as verified in the SOC2 report. Technical and organizational measures are applied in the frame of the latest GDPR provisions as per the European Directive.
Operational security
- Configuration and change management standard
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Configuration and change management approach
- Talend's Change Management Policy ensures all procedures are followed during the release process and that contingencies are in place. Each release moves through the lower Cloud environments before being released to Production. Segregation of duties is maintained for testing and approval by the Site Reliability Engineering (SRE) team. Change Management processes are audited annually by SOC 2 auditors.
- Vulnerability management type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Vulnerability management approach
-
Vulnerability Tests are performed periodically by a 3rd party specialist and internally by Talend IT staff to identify threats.
Talend manages the installation of operating system and supporting software, also the deployment of necessary security patches and operating system services packs.
All critical systems are patched to the most recently released, appropriate software patches to protect against exploitation and compromise of sensitive data by malicious individuals and malicious software. Talend subscribes to security bulletins to identify the most recent software patch versions and newly identified vulnerabilities to remediate production servers that are out of compliance and requiring updates. " - Protective monitoring type
- Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
- Protective monitoring approach
-
Security services from third-party vendors to protect Talend Cloud Data Fabric:
- External scanning tools to ensure that systems and containers are hardened, configured, and patched .
- NIST Cybersecurity Framework as part of its global security strategy.
- Built-in segmentation capabilities of AWS Security groups and Microsoft Azure - restrict inter-resource communication.
- All code is tested before promotion to production (DEV, QA, Staging).
Perimeter security includes :
• Anti-DDoS protection
• Web Application Firewall
• Network-based intrusion detection system and intrusion prevention system (IPS)
• Security information and event management system (SIEM)
• Cloud Security Posture Management (CSPM) - Incident management type
- Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
- Incident management approach
-
Security incident response plan, and roles & responsibilities for security incidents are defined as required by SOC 2 Type II.
Security incidents and other service impacting incidents are reported on http://trust.talend.com. Incidents are managed following Incident Response and Escalation Management Policy. Upon identified availability incident causing non-availability of Talend Cloud, Talend will investigate the problem and will then report on trust.talend.com. Separately, impacted customers are contacted once the service is restored. Incidents requiring legal action or intervention are communicated to the appropriate authorities. Talend tracks, monitors and aggregates all customer activity and host platform activity for forensics analysis.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
Fighting climate changeFighting climate change
1. Talend provide SaaS software hosted by AWS who have a published carbon reduction plan - https://sustainability.aboutamazon.co.uk/uk_ppn_2021.pdf
2. By using Talend SaaS organisations can reduce their power usage / emissions associated with a traditional data centre, such as heating, lighting, air conditioning. Additionally savings would be recognised in the physical shipping of computer hardware (servers / associated hardware).
3. Talend Software can be used by organisations to manage their data relevant to fighting climate change - making trusted data available for decision making and policy setting.
4. Talend can be used to physically reduce the amount of data (duplication / un-used, etc) thereby reducing the amount of storage required / reducing the number of physical servers being operated by Cloud Storage providers.
Pricing
- Price
- £12,000 a user a year
- Discount for educational organisations
- Yes
- Free trial available
- No