Bentley Systems (UK) Limited

OpenGround

OpenGround is a Geotechnical data collaboration platform enabling connected digital workflows throughout every stage of the ground investigation lifecycle

Features

• Centralised geotechnical data repository
• Project & Supply Chain Collaboration
• Connectivity with Modelling, Design & Analysis tools
• Support for common data transfer formats Inc. CSV, gINT, AGS
• Integrated GIS
• Field-based Data Capture
• Remote Access
• Cloud Deployed
• Integration with Microsoft PowerBI for dashboards
• Full REST API for interopability

Benefits

• Customisable log report output
• Centralise and standardise getoechnical Project data
• Streamline integration with third party applications
• Improve Collaboration across the supply chain
• Secure and scalable SLA-backed Cloud infrastructure
• Granular access control to getoechnical data
• Streamline field-based data capture workflows
• Enable the creation of subsurface digtial twins
• Improve access to getoechnical data across multiple teams and offices

£23,234 an instance a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@bentley.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

575005659071607

Contact

Andy Bowles
+44 7919 892183
gcloud@bentley.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Bentley and Third-Party applications can integrate with OpenGround using the REST API Inc:; - Leapfrog; - Excel / Power BI; - Analysis Tools (PLAXIS, GeoStudio); - Design Tools (OpenRoads, Civil 3D)
• Cloud deployment model: Public cloud
• Service constraints: Patching and maintenance windows are rountinely scheduled to ensure the security and reliability of the service. A notice will be provided and some service disruption may occur during these planned update periods.
• System requirements:
  • Cloud-connected desktop apps require Windows
  • Web-portal works with current versions of Edge/Firefox/Safari/Chrome

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: SLA Published on Bentley Website; https://www.bentley.com/en/legal
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: SLA Published on Bentley Website; https://www.bentley.com/en/legal
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: After the cloud service is initialised Bentley will engage with the users (stakeholders, representatives from various departments) to define an implementation plan and capture configuration details. Bentley can perform on-site or remote training sessions for each group/role. There are options to share videos and training material. In addition, there are online learning resources published in Bentley Communities and Learn Server
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Upon termination of your Subscription, Bentley will follow the process as published in the online SLA https://www.bentley.com/en/legal. If required, Bentley can provide Professional Services to assist in the migration of the data to a new service provider for an additional fee which will be determined based on the scope of requirements.
• End-of-contract process: Upon termination of your Subscription, Bentley will follow the process as published in the online SLA https://www.bentley.com/en/legal. If required, Bentley can provide Professional Services to assist in the migration of the data to a new service provider for an additional fee which will be determined based on the scope of requirements.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems:
  • Android
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile / Tablet app is delivered via Google Play Store only
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: No specific accessibility tunings built-in but uses what comes with the operating system the client system is using.
• Accessibility standards: None or don’t know
• Description of accessibility: No specific accessibility tunings built-in but uses what comes with the operating system the client system is using.
• Accessibility testing: No specific interface testing with users of assistive technology has been done.
• API: Yes
• What users can and can't do using the API: The REST API / .NET SDK provides access to all core system capabilities (Inc data READ / WRITE). RBAC and data filtering is enforced on the API.; API utilises Auth token-based authentication.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Fully customisable, data entry, report output and extendable data model.

Scaling

• Independence of resources: System supports single-tenant databases. All systems are monitored in real-time for performance and availability.

Analytics

• Service usage metrics: Yes
• Metrics types: Data Usage and Access Metrics
• Reporting types: Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: The system has multiple options to export data via common formats including CSV and AGS.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • AGS
  • GINT
  • Excel
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • AGS
  • GINT

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Bentley’s Availability Commitment: System Availability 99.9% (24x7). Bentley shall provide Subscriber remedies for any Bentley failure to meet the Availability Commitment during any single calendar month. Bentley shall make a good faith effort to understand the cause and make reasonable repairs to prevent the failure from occurring again. Upon any subsequent instance, in addition to the remedy set forth above, Bentley shall also provide a Service Credit to Subscriber against future amounts due from Subscriber for Hosting Fees.
• Approach to resilience: All services are deployed in a fully elastic and highly-available configuration across multiple availability zones.
• Outage reporting: Planned maintenance and unplanned incidents are published on a dedicated status page (which also provides a history of events and uptime) https://statuspage.openground.bentley.com/

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Access to management features within the user interface is controlled by permissions within the application.
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: Yes
• CSA STAR accreditation date: 16/05/2021
• CSA STAR certification level: Level 1: CSA STAR Self-Assessment
• What the CSA STAR doesn’t cover: Please reference the CAIQ document at: https://www.bentley.com/en/trust-center
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Ongoing development and support of OpenGround follows Bentley's best practices and procedures, but the specific application does not currently fall under the scope of Bentley's ISO compliance. OpenGround is pursuing SOC2 and FedRAMP - targeting compliance within a 12-month timeframe.
• Information security policies and processes: Information Security policies are designed utilising the ISO 27001:2013 framework. ; All Bentley colleagues are required to review and acknowledge Bentley's Information Security Policy upon hire and thereafter annually. The policies themselves are emailed out at least annually and reside permanently on Bentley's intranet site for quick retrieval.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Bentley has a formally documented release management process that includes controls for software quality and standards. Bentley performs code reviews and testing for all changes implemented into the production environment by release management. Bentley DevOps team provides product build and distribution services, including production build execution, continuous integration, release auditing, and validation prior to production release.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Bentley identifies, prioritises, tracks, and fixes defects through a common workflow. Once identified and diagnosed, a defect is managed in a centralised system used across the organisation.; Defects, whether discovered internally or externally, are managed together with planned enhancements, and prioritised on a product backlog. External defects (i.e., those identified by users) are tracked from discovery to the delivery of the fixed version and notification of each change in status can be communicated to the user.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Logging of service, user, file integrity monitoring, and network intrusion detection are logged and correlated to detect suspicious network behaviour. Bentley's Information Security Team is tasked with centrally storing and monitoring such logs. Response time depends on the severity of the compromise as detailed in the published SLA on https://www.bentley.com/en/legal.
• Incident management type: Supplier-defined controls
• Incident management approach: The Incident Management process covers all aspects of a potential incident from start to finish with defined procedures and colleague involvement. Common events are handled depending on severity, users have multiple methods of reporting and reports are provided as part of the incident management procedure.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Fighting climate change:

  Fighting climate change

  Bentley’s mission is to leverage our leading software and services to drive impact through the world’s infrastructure – advancing both the global economy and the environment for improved quality of life. As part of our Environmental, Social, & Governance (“ESG”) strategy, we are committed to managing our business in a way that enhances the environmental impacts of our products and mitigates environmental risks from our operations. Our Environmental Policy details our commitments to Environmental Responsibility and the ways in which we expect our colleagues to act to drive progress on our ESG strategy. Bentley expects all colleagues, visitors, vendors, and suppliers to follow the below ; practices in order to drive progress on Bentley’s ESG strategy. Bentley's Environmental Policy is here: https://prod-bentleycdn.azureedge.net/-/media/files/documents/miscellaneous/environmental_policy.pdf?la=en&modified=20211021075240
• Covid-19 recovery:

  Covid-19 recovery

  When the world locked down to combat the COVID-19 virus, we took immediate action to ensure our colleagues had the equipment and resources they needed to work from home, which also enabled success for our users. Our global task force provided continuous communication, education, and support services to our colleagues. Their well-being fueled our response plan, and we created learning resources to support them throughout the pandemic. These resources included guides and practices for managers to lead virtually with empathy, tips for maintaining team collaboration, and resources and support for colleagues to maintain a healthy work-life balance.; As the pandemic continues, and work flexibility is seen as the key to success for the business and our colleagues’ wellbeing, we’ve introduced the Infrastructure Empowered Workforce Plan (IEWP). The IEWP is built on a solid foundation of trust. Colleagues are empowered to make responsible and effective choices on the right balance between working from the office and remotely. This plan does not require colleagues to come into the office at any specific frequency. Rather, it provides colleagues the flexibility to make these choices with their manager and within their teams to achieve business success and maintain a high level of productivity and engagement.
• Tackling economic inequality:

  Tackling economic inequality

  As a global company with colleagues of different cultures, backgrounds, and perspectives based in more than 40 countries worldwide, our diversity is what makes us successful. We have developed strategies and programs focused on increasing diversity and equity, as well as fostering a culture of inclusion and wellbeing in the workplace. These initiatives include building a pipeline of diverse candidates by recruiting at and partnering with Historically Black Colleges and Universities. ; We also partner with educational and professional organisations to provide internships, scholarships, grants, and projects that support groups underrepresented in technology. ; Bentley has active and engaged colleague resource groups within the Inclusion, Diversity, and Equity Alliance (IDEA) that have allowed colleagues, during this pandemic, to join their peers from all regions and departments with the goals of building community and fostering diversity and inclusion. IDEA currently has four focus groups open to all global colleagues: OpenPride, OpenAbilities, People of Color in the U.S., and Women at Bentley. IDEA has been a platform for education and a place to securely have difficult discussions about racism, discrimination, and bias through book clubs, panel discussion, speakers, and global awareness events. Members of executive management are key sponsors of each focus group and have been instrumental as sounding boards and in providing access to resources and the executive team.; We have implemented robust training with topics focused on respect in the workplace, identifying and overcoming bias, and anti-discrimination. We have held interactive sessions with our executives, emerging leaders, and talent acquisition in fostering diversity, equity, and inclusion and eliminating unconscious bias, and have implemented training for hiring managers to ensure fairness in the interview process.; You can find additional information, including our commitment to anti-slavery on our ESG website: https://www.bentley.com/en/esg/data-center.
• Equal opportunity:

  Equal opportunity

  Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, colour, sex, sexual orientation, gender identity, disability, protected veteran status, religion, national origin, age, or any other protected characteristic. This commitment extends to all aspects of employment, including, but not limited to, hiring, placement, promotion, compensation, and training. EEO is the Law and EEO is the Law Supplement documents provide additional information about your rights as an applicant under the law.
• Wellbeing:

  Wellbeing

  As a company, it is our goal to ensure our colleagues know they are supported and valued as the first order of business.; Therefore, our Talent Management strategy puts colleagues at the centre of the workplace at Bentley. We focus on enriching colleague experience and creating memorable, meaningful, and purposeful connections. We invest in developing an impactful experience that reflects the company’s mission and values. We build practices and programs that deliver on engagement, recognition, communication, and development while rewarding colleagues through our robust total rewards package.

Pricing

• Price: £23,234 an instance a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: A test environment can be provided to test the main software features and IT connectivity - This environment uses disposable data. ; Alternatively, Bentley can provide a chargeable Pilot solution using user data which is run against agreed success criteria for 30-90 days.
• Link to free trial: Access to the test environment will be setup to meet the requirements of each user.

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at gcloud@bentley.com. Tell them what format you need. It will help if you say what assistive technology you use.