The AssetHub Ltd

AssetHUB Asset Marketplace

AssetHUB is the leading wholesale asset marketplace platform. It's a "shop window" for Local and National governments and fixed/mobile Infrastructure Providers to find then access suitable assets to facilitate faster cost-effective deployment of connectivity. It’s easy to use, automates the entire process, avoids extra headcount, and provides auditable records.

Features

• Proven easy-to-use cloud-hosted web portal for publishing asset availability
• Aligned to the DCMS/DSIT Digital Infrastructure Toolkit
• Import/display asset data from multiple sources in one place
• Display assets along with supporting/contextual data to provide insight
• Search/filter assets using a range of asset selection criteria
• Enquire about asset availability and track response in the platform
• Allocated Technical Account Manager to build a collaborative long-term relationship
• Upload relevant additional information directly to asset records
• Complete enquiry quote order contract workflow for asset re-use
• Centralised repository for standardised/agreed contract documentation

Benefits

• Facilitates frictionless acquisition of public assets by MNOs and others
• Facilitates the efficient roll out of improved connectivity
• Enables LAs/other public sector asset owners to monetise assets
• All assets available for rental presented in a single platform
• Enhanced in collaboration with LA/Network Infrastructure Providers
• Reduces timescales for facilitating access to public sector assets
• Increases exposure of assets to potential buyers/leasers
• Captures all relevant communication/documentation in a single place
• Greater choice for the buyer/leaser when searching for assets
• Efficient communication across all contributors in asset value chain

£0 to £0 a user a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@hubbubgroup.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

553294088370286

Contact

Rob Leenderts
07932101089
gcloud@hubbubgroup.net

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: 2 factor authentication is mandatory and users will of course need a suitable device and access to the public internet.; ; Any planned maintenance will be signposted via the log-in screen.
• System requirements:
  • Suitable internet connected device
  • An AssetHUB issued username and password
  • 2 factor authentication support

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Our in-house UK based support team are available to provide support to licensed users of the AssetHUB platform Monday to Friday 0900-1700 excluding public holidays. Support requests are acknowledged on receipt and we aim to provide users with estimated service restoration timelines within 5 hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We will allocate a named support manager for each support ticket. The same level of support is provided to all user organisations. Support requests can be submitted 24 hours a day 7 days a week and support requests will be acknowledged during working hours (Monday to Friday 0900-1700). All requests for support are prioritised P1 through P4 (P1 more urgent, P4 less urgent). P1 target response time is within 8 working hours, P2, within 12 working hours, P3, within 24 working hours, P4, within 2 working days. We will communicate expected resolution timescales once an assessment has been completed. Support is included at no additional cost to user organisations.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: On receipt of an order for the AssetHUB Asset Marketplace Platform we will work collaboratively with the user organisation to agree the deployment plan and approach including the agreement of appropriate milestones, timescales and acceptance criteria.; Training is typically delivered remotely but we can attend site to deliver in person training by arrangement (at additional cost to be agreed but based on our quoted SFIA pricing for G-Cloud 14).; User documentation is provided which is accessible through the AssetHUB platform. Any further questions/queries can be raised via the support service included at no additional cost to the user organisation.; Each user organisation is allocated a named Technical Account Manager (TAM) at the time an order is placed who will be responsible for understanding the detail of the user requirements, agreeing the mobilisation and deployment plan and completing acceptance processes post delivery. The TAM will also be responsible for the ongoing customer relationship post “go live”? We also require the customer to provide us with relevant information regarding authorised users and admins of the portal as part of this process.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: On request the user will be provided with any data they may request taking account of any specific requirements detailed in the relevant order form. Any data supplied by the user to the platform can be deleted upon request.
• End-of-contract process: At the end of the contract the user organisation (customer) will have the option to renew on new terms either via G-Cloud or by utilising some alternative procurement vehicle.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The biggest difference is that a mobile device typically has a much smaller screen and so it may be harder to complete some activities.
• Service interface: Yes
• User support accessibility: WCAG 2.1 A
• Description of service interface: The AssetHUB user interface is a HTML5 based web application.
• Accessibility standards: WCAG 2.1 A
• Accessibility testing: Testing was successfully completed during the DCMS DCIA project in 2023.
• API: No
• Customisation available: Yes
• Description of customisation: The user organisation can agree with us a range of options in terms of customisation that will apply to all users licensed for that customer organisation or user group. This will include which assets any given user has access to and which potential customers owned assets are visible to. Users do not have "admin" access - this is managed by AssetHUB in cooperation with the user organisation. The detail of this is agreed as part of the on-boarding process.

Scaling

• Independence of resources: The architecture/code has been designed/developed over many years to optimise performance. We carry out a risk assessment during onboarding and work closely with customers to understand their needs including an assessment of the impact on performance likely resulting from any "oversize" datasets. AssetHUB is hosted in the Google Cloud Platform in the UK and offers an almost infinite ability to scale on-demand. We monitor server performance and can add processing power/storage/memory almost instantly. Our service is multi-tenanted - this reduces impact on other users (and improves security) as no-one typically gets to see all the data.

Analytics

• Service usage metrics: Yes
• Metrics types: We can provide a range of data relating to usage of the platform by agreement with the user organisation. Details of this to be explored/agreed prior to the placement of an order.
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest:
  • Physical access control, complying with CSA CCM v3.0
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users are prohibited from exporting data directly from the AssetHUB platform for data security reasons. However, the allocated Technical Account Manager can arrange for requested data sets to be made available to the user organisation by agreement where there is a reason to do so.
• Data export formats:
  • CSV
  • ODF
• Data import formats:
  • CSV
  • ODF
  • Other
• Other data import formats:
  • Shape (shp)
  • KML/KMZ
  • DWG
  • MapInfo (tab)
  • Autocad
  • GeoJSON

Data-in-transit protection

• Data protection between buyer and supplier networks: Other
• Other protection between networks: The AssetHUB Asset Marketplace portal is hosted in Google Cloud and therefore benefits from the various protective measures deployed by Google.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Other
• Other protection within supplier network: The AssetHUB Asset Marketplace portal is hosted in Google Cloud and therefore benefits from the various protective measures deployed by Google.

Availability and resilience

• Guaranteed availability: The AssetHUB Asset Marketplace portal is not a mission critical system and as such availability is not guaranteed. However, over the last 3 years we have an average availability of >=99.9%. As availability is not guaranteed no refunds are available.
• Approach to resilience: The AssetHUB Asset Marketplace is hosted in the Google Cloud Platform which is of course designed to be resilient. We operate a sandbox environment to fully test any updates/bug fixes to ensure the "live version" is protected. Further information is available on request.
• Outage reporting: Registered users will be notified by email when an outage occurs. Additionally, planned outages are displayed on the log-in screen and are scheduled out of hours where possible.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
• Access restrictions in management interfaces and support channels: Only AssetHUB staff have access to the Management platform for the AssetHUB service. Our staff are required to enter both a username and password to log on and also need to complete multifactor authentication each time they log in.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Our approach to security is designed to meet ISO/IEC 27001 and we intend to investigate compliance over the next 12 months.
• Information security policies and processes: Our approach to information security is in line with ISO27001and Cyber Security Essentials. We are establishing an ISO27001 certified Information Security Management System (ISMS) and governance framework which we plan to have in place in the next 12 months. The framework is regularly updated and specifies named officers responsible.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: There are appropriate configuration and change management processes. procedures and controls in place for the software development team to ensure any and all changes are assessed for potential security impact. Any proposed updates to the core software code are only implemented once appropriate authorisation is granted. Our change management processes and controls are designed to meet ISO27001. Further information is available on request.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: There are appropriate vulnerability management and threat assessment processes. procedures and controls in place for the software development team to ensure any required actions are carried out promptly as and when required. Our approach to vulnerability management and threat assessment are designed to meet ISO27001. Further information is available on request. Additionally, we utilise the vulnerability monitoring capabilities within the Google Cloud Platform.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: There are appropriate protective monitoring processes. procedures and controls in place for the software development team to ensure appropriate monitoring takes place. Our approach to protective monitoring is designed to meet ISO27001. Further information is available on request. Additionally, we utilise the protective monitoring capabilities within the Google Cloud Platform. A real-time monitoring tool alerts us to any potential compromises and these are dealt with as P1 issues in accordance with our incident management process (and thus addressed as quickly as possible).
• Incident management type: Supplier-defined controls
• Incident management approach: There are appropriate Incident Management processes. procedures and controls in place. Our approach is designed to meet ISO27001. Further information is available on request. Users report incidents by email. Internally staff use a ticket management system to record and manage incidents. As part of our incident management workflow process users are notified accordingly at regular internals depending on the severity of the incident and when the status of an incident changes.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality

  Fighting climate change

  We fully understand and respect the impact climate change will have on the future of our planet and we are committed to developing and adhering to appropriate policies and business practices to demonstrate this commitment. We are exploring what more we could do to ensure we are trading responsibly in the future. We are committed to achieve net zero status as an organisation as quickly as possible and at least in line with any current and future legislation as it applies.; ; Beyond what we can do as a business it’s important to recognise how the AssetHUB platform can make a significant different to those organisations using the platform. The monitoring and automatic adjustment of power usage for example using sensor technology relies on reliable available connectivity. This requires infrastructure and the AssetHUB platform is key in helping those organisations deploying this wireless infrastructure to do so effectively and at the lowest possible cost.; ; In addition, Covid 19 has accelerated the opportunities for home working and home study and by supporting the deployment of wireless infrastructure we are enabling faster, better more available and resilient connectivity to facilitate this and ensure, should another pandemic occur that people are able to work and study from home even in more remote parts of the UK.; ; It is also worth mentioning that by avoiding harmful emissions by reducing the number of commuting miles driven by the population improved connectivity is a significant enabler for emissions reduction.

  Tackling economic inequality

  We are committed to tackling workplace inequality including in terms of pay, conditions, working hours and flexible working practices. We continuously look for opportunities to recruit and develop entry level applicants and provide suitable training for them.; However, as an SME the impact we can have on the “bigger issue” is small by comparison to the impact high quality reliable connectivity can have. There is a correlation between areas of deprivation and access to reliable high quality connectivity. Additionally, we see real issues with the digital divide in very rural areas with older populations where residents potentially wont have the skills, affordability or high quality connectivity available to them. In addition, increasing pressures on local authorities to digitally transfer services is hampered by poor or no connectivity in the rural areas in to which they are required to deliver these services.; It is therefore we believe essential that the benefits of the service we are providing to the delivery of connectivity to communities in rural areas in particular and the impact this can have on the digital divide, low economic growth and economic deprivation should be considered.

Pricing

• Price: £0 to £0 a user a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@hubbubgroup.net. Tell them what format you need. It will help if you say what assistive technology you use.