APIconnect
Alphalake APIconnect provides a gateway between systems used across healthcare and modern drag-and-drop process workflow builders. We have converted healthcare APIs into No-Code “Connectors,” allowing stakeholders to easily design process workflows using any automation and integration platform that supports the Alphalake APIconnect technology, joining up processes and improving information flow.
Features
- Low code / no code API integration
- User can connect two systems from extensive pre-built connector library
- Integrates with Cerner, Epic, AllScripts, Oracle, ServiceNow and Okta
- Connectors being built continually with NHS App integration released shortly
- Ready-made healthcare specific back office workflows
- Connecters use the FHIR data standard wherever possible
- Can set data flow frequency
- Chat-based bot-building platform for building UX-centric integrations and workflows
- Designed around templated workflows for ease of use
- Option to add UX support or other support
Benefits
- Accelerate innovation in health and care through more connected solutions
- Bespoke API development not required
- Reduce dependency on RPA screen recording and RPA maintenance costs
- Improved efficiency due to reduced administration and double handling
- Ensure interoperability by connecting multiple healthcare systems
- Improved patient and healthcare worker satisfaction by reducing errors
- Support Citizen Integrators as well as IT Developers
- Reduces app switching to save time and reduce administration
- Greater reuse of existing system investments
- Scales on demand to meet the requirements of the business
Pricing
£15,000 a licence
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 13
Service ID
6 0 6 1 5 5 8 4 6 1 9 5 5 7 5
Contact
Alphalake Ai
Zane Nursajahova
Telephone: +44 20 3289 0014
Email: hi@alphalake.ai
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
-
Alphabot-for-Teams - AI chatbot and digital assistant run through Microsoft Teams
APIConnect - connects two systems using templated workflows
APIAutomate - client wants an automated workflow using 2+ workflows with an option for bespoke work to build APIs or create RPA connectivity
BOTAutomate - automates a process within one system - Cloud deployment model
-
- Public cloud
- Private cloud
- Community cloud
- Hybrid cloud
- Service constraints
- Minimum hardware requirements are: 8 GB of RAM 250 MB of disk space 800 Mhz 64-bit CPU (Intel/AMD)
- System requirements
-
- Workato Workspace Licence
- Workato 1 recipe activation licence
- Health Provider Admin to switch on Pro Workflow License
- Chosen EPR (Cerner, Epic, EMIS etc.)
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
-
Our Service desk operates virtually and globally, so if calling during hours when more than one region is online, a customer’s call/chat/email is routed to the first, most skills-relevant member of the team. This routing happens globally, so you get a global, blended support service. This helps to ensure our teamwork in a tight-knit fashion and that customers receive the best service possible, regardless of the customer’s or operative’s location.
24x7 365 day support - User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- None or don’t know
- Phone support
- Yes
- Phone support availability
- 24 hours, 7 days a week
- Web chat support
- Web chat
- Web chat support availability
- 24 hours, 7 days a week
- Web chat support accessibility standard
- None or don’t know
- How the web chat support is accessible
- Via the Alphalake website
- Web chat accessibility testing
- None so far
- Onsite support
- Yes, at extra cost
- Support levels
-
Active Engineering provides the rapid response to a situation requiring an element of physical assistance by technical engineers on the client site. Alphalake can provision appropriately skilled technically competent engineers to provide active assistance to the Customer's Service Requests or projects. A non exhaustive list of Active Engineering activities that may be undertaken by Alphalake include;
Input console commands at the server or device command level
Racking infrastructure equipment such as servers or switches
Performing cable patching activities
Assistance in technical diagnosis/triage for end-users
Replacement of hot-swap components
3rd party assistance
Desktop, Applications, MSFT Windows NT-ID and password assistance
Servicedesk agents for ITSM service - Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
-
Alphalake Ai has a team of Customer Success Managers who work with customers to ensure that the project is a success. For every project within a partnership, a “Project Squad” is formed across the three disciplines of Development, Infrastructure and Customer Success. The squad are brought together via a dedicated Solution Architect/Owner who receive inputs from our Clinical Specialist as and when required. Our customers also have access to our Clinical Team as deemed necessary to provide UX and process advice or underwrite clinical safety.
Our Service Delivery encompasses requirement understanding, process design and success criteria at a Customer Success and Project Management level whilst best practises in Infrastructure, Data Security and Software Development Life Cycle (SDLC) methodology, tooling and documentation are followed throughout by our system architects and development team. Brought together, this enables us to scope, guide and support the smooth delivery of a customer’s project needs from requirement gathering through to staging, testing and production.
There are also online learning resources available. - Service documentation
- No
- End-of-contract data extraction
- Open standard exporting of Data can be provided at Contract end using tooling capability.
- End-of-contract process
- At the end of contract, Alphalake Ai can extract raw conversation logs from Alphabot-for-Teams if required for analytics or future planning.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Internet Explorer 11
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- Linux or Unix
- MacOS
- Windows
- Windows Phone
- Designed for use on mobile devices
- No
- Service interface
- No
- User support accessibility
- None or don’t know
- API
- Yes
- What users can and can't do using the API
- There isn’t an API for the service as such, as APIconnect is a platform to facilitate easier connectivity using APIs and then to automate common workflows using pre-templated options. Users can choose any two systems to connect, select the appropriate workflow (or work with Alphalake to customise to their needs) and set the data flow frequency.
- API documentation
- No
- API sandbox or test environment
- Yes
- Customisation available
- Yes
- Description of customisation
- Alphalake Ai can customise the following to suit your organisation; building APIs for healthcare platforms that don’t have a pre-existing API, building workflows to automate data flow between systems, integrate RPA connectivity alongside API connectors.
Scaling
- Independence of resources
- The service is built using cloud platforms, allowing it to scale based on user requirements. Each platform supporting APIconnect has a minimum uptime of 99.95%.
Analytics
- Service usage metrics
- Yes
- Metrics types
- There is a real-time usage metrics tab which gives partners an aggregated, overall view of all customers, connections, and recipes used across all customer accounts, enabling you to get an overview of the health of the product. Use the dashboards to monitor your customer accounts by seeing stats and metrics that tell you their usage of the product as well as giving you insights into the apps and integrations they most often use.
- Reporting types
- Real-time dashboards
Resellers
- Supplier type
- Reseller providing extra features and support
- Organisation whose services are being resold
- Workato + UiPath
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Developed Vetting (DV)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- European Economic Area (EEA)
- User control over data storage and processing locations
- Yes
- Datacentre security standards
- Complies with a recognised standard (for example CSA CCM version 3.0)
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Physical access control, complying with CSA CCM v3.0
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001
Data importing and exporting
- Data export approach
-
Alphalake can assist with data export, however APIconnect does not store user data within it’s system. It acts as a conduit to move data one system to another. While running through this process, either Azure or AWS’s temporary storage functionality is used with encryption enabled at the host.
APIconnect does retain usage and specific recipe data which is used to power the dashboard, display custom reports, repeat jobs and troubleshoot errors. The retention periods range from 30-90 days depending on your workspace type and whether you have purchased specific add-ons. After this time, this data is automatically and permanently deleted. - Data export formats
- CSV
- Data import formats
- Other
- Other data import formats
- N/A. APIconnect acts as a conduit for data between systems
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
-
- TLS (version 1.2 or above)
- Other
- Other protection within supplier network
- All data is encrypted at rest and in transit. At rest, all data is encrypted with a global key managed by our cloud providers. These keys are rotated at least annually. In addition, the data is encrypted with secondary, customer-specific keys whose lifetimes are tied to the configured retention period for the data.
Availability and resilience
- Guaranteed availability
-
Our products use data centres with a minimum of 99.95% reliability.
Our Service desk operates virtually and globally, so if calling during hours when more than one region is online, a customer’s call/chat/email is routed to the first, most skills-relevant member of the team. This routing happens globally, so you get a global, blended support service. This helps to ensure our team work in a tight knit fashion and that customers receive the best service possible, regardless of customer’s or operative’s location.
Our global service capability follows our ‘KREE’ model; Knowledge-relevant, Efficient, And Effective. Buyers can access the following service deliverables:
Provision to register service tickets through call, email, chat and webforms.
Regular update and resolution details shared with the requester.
Adhering to agreed SLA and delivering on Turnaround TIme (TAT).
Highlight any deviations or critical Incidents to all stakeholders.
Quarterly Service Reviews with Customer Success Manager and ServiceHub Manager.
All Devices listed in the agreed asset list are covered by a Service Level Agreement (SLA) response time of 8 hours onsite (at any of the site addresses listed in same sheet) and covering parts and labour with best endeavour to provide a fix within this time. - Approach to resilience
- APIconnect runs on the customers' infrastructure/cloud. It leverages Workato, which offers 99.95% reliability.
- Outage reporting
- In addition to the publicly available service status pages from Workato and Microsoft, we have infrastructure and application monitoring tools in-built to ensure outages are reported, so timely and remedial measures can be put in place. A standard outage email is auto-triggered/sent to all identified stakeholders and outage managers at the clients' end. Based on the requirement, data backup can be created.
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Username or password
- Access restrictions in management interfaces and support channels
- Clients are able to set roles and responsibilities to grant the appropriate access to different members of their teams
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Identity federation with existing provider (for example Google Apps)
- Username or password
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- At least 12 months
- How long system logs are stored for
- At least 12 months
Standards and certifications
- ISO/IEC 27001 certification
- No
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- No
- Other security certifications
- No
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
-
ISO 27001 compliant policies and processes are in place, training is provided to new employees and compliance is measured quarterly via an internal audit function.
All reported information security breaches/incidents are managed via the Alphalake ServiceHub team and reported to the Leadership Team for thorough investigation.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- We have an established configuration and change management approach in line with our service management process which would be included in a support contract. All production environment changes are reviewed, tested and approved.
- Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
Our internal hosting policies define that the solution and hosted environment are tested for vulnerabilities regularly with a view to elminate threats, vulnerabilities and exploitation techniques. Penetration tests are conducted by an independent organisation to verify security.
Results of the tests are resolved by making a development change or making configuration changes to the hosted platform. In either case, the fixes are made based on priority according to the nature of the software and hosting methods. - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- In this shared responsibility model, each SaaS vendor (Workato and Microsoft) are responsible for their respective platforms with the customer being responsible for the security/event logging within their Office365/Teams tenant.
- Incident management type
- Supplier-defined controls
- Incident management approach
-
Customers can log an incident 24x7 via email/phone or webchat. These incidents are triaged by Alphalake's ServiceHub team and allocated to the necessary resolver group for resolution.
Incident reports are made available to the customer at agreed intervals (monthly/quarterly).
Secure development
- Approach to secure software development best practice
- Conforms to a recognised standard, but self-assessed
Public sector networks
- Connection to public sector networks
- No
Social Value
- Fighting climate change
-
Fighting climate change
Alphalake is committed to fighting climate change, with the following initiatives underpinning the work that we do:
- Digital tool to allow online approvals, reducing the use of paper
- Use of existing devices to minimise electronic waste
- Alphalake Ai is partnering with Project SeaGrass to donate a portion of every project's revenue towards the restoration of seagrass beds, which will improve water quality but will also benefit important fishery species - Covid-19 recovery
-
Covid-19 recovery
The healthcare industry is struggling with stress, poor interoperability, badly planned user experience and excess administrative work. The strain of COVID-19 has only made these issues worse. Alphabot-for-Teams was developed to improve the user experience for clinicians, saving them valuable time and reducing stress. - Tackling economic inequality
-
Tackling economic inequality
Providing apprenticeship schemes across the UK and successfully ran the Kick Start Scheme to enable those on Universal Credit an opportunity to build a career for themselves in digital health and technology. Two members of team have successfully been given full time work following the Kick Start Scheme.
In India, we run an opportunity programme to help people who have not attended the the top universities, such as IIT and those who did not attend university, to gain access to a career in Alphalake.
Work from anywhere makes a career in Alphalake more accessible in remote regions.
We are launching an ESOP programme to distribute Alphalake wealth creation fairly and evenly across the entire employee base, offering all those in the business to generate wealth beyond their salaries i.e. not having founders and directors to hoard wealth. - Equal opportunity
-
Equal opportunity
Alphalake's commitment to fairness, and fair working practices, include the measures taken to help eliminate and prevent unfair treatment in our workplace.
We operate a Equal opportunity policy that encompasses the following:
Age
Disability
Gender reassignment
Marriage and civil partnership
Pregnancy and maternity
Race
Religion or belief
Sex, and
Sexual orientation. - Wellbeing
-
Wellbeing
For the healthcare workers, the improved user experience, reduced administration and time saved will reduce stress and improve wellbeing.
Additionally, quick and easy access to healthcare information will contribute to improved patient outcomes.
Pricing
- Price
- £15,000 a licence
- Discount for educational organisations
- No
- Free trial available
- Yes
- Description of free trial
- Our Pilot programme is easy to apply for and free to all Healthcare Providers. For a limited time only we are also building free Data Connectors for Healthcare System Vendors that are looking to improve interoperability. Working together, we are ushering in a new era of hyper-connected and semi-automated healthcare.