PRIMESYS LTD

Wasabi Cloud Storage

Wasabi Cloud Storage is simple, fast, and affordable cloud object storage with no ingress or egress fees. There are no archival or warm storage tiers to deal with, it’s just one tier of highly secure, low-latency, immutable storage that’s as fast or faster than the hyperscalers’ most expensive frequent-access tiers.

Features

• Zero Egress Fees
• Zero Ingress Fees
• Zero Transaction Fees
• Fixed Price per TB
• Predictable Costs
• Immutable storage - immutability built in
• S3 Compatible Object Storage
• Supports multiple nested accounts
• Single fast tier of storage, no archival
• Simple billing

Benefits

• Cost predictability - no unexpected bills
• Fast storage
• Immutability protects against ransomware
• Support multiple departments under one control account
• Multiple applications, such as backup, CCTV, Media
• Choose Datacentre location
• Replicate between Wasabi datacentres for added resilience

£5.99 a terabyte a month

• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ryan.smith@primesys.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

621378794720647

Contact

Ryan Smith
07866813062
ryan.smith@primesys.co.uk

Service scope

• Service constraints: None
• System requirements: S3 Object Storage

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Wasabi offers a support matrix depending on the severity of the incoming ticket. Severity 1 incidents will be responded to within 15 minutes. Severity 2 within 30 minutes, severity 3 within 4 hours and severity 4 within 10 business days. All severities have a sliding scale of resolution times.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: No
• Support levels: Wasabi offers Basic (free) & Premium (paid) support plans as shown below:; • Basic Support: Business day support via email only; • Premium Support hours = 7 x 24 x 365 via email & phone. Premium support is 7% of the purchase price for Reserved Capacity Storage customers.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Wasabi is a cloud storage IaaS, online help guides and tutorials are accessible by end customers as part of the onboarding process. ; PrimeSys also provide onboarding for new customers as part of a platform overview session. Detailed online help and tutorials are available through the Wasabi knowledgeable, which all new customers are provided access to. Additionally, Wasabi also works closely with its partner network and utilises in-region Wasabi Sales Engineers to provide more in depth training and enablement.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: At the end of a contract, stored data will be available for 30 days, with the ability to extend if necessary. This will enable the customer to either retrieve their data or renew their contract without service interruption. Users will usually extract their data via the same application they used to push data to Wasabi.
• End-of-contract process: Pursuant to section 1.5 "Your Content" of the Customer Agreement, " 'Your Content' means content that you or any Authorized User transfers to us for storage or hosting by the Wasabi Service in connection with your Customer Account. Your Content does not include your Customer Account information. You will ensure that Your Content does not violate any terms of this Agreement, the Documentation, or any applicable law. You are solely responsible for the development, content, operation, maintenance, and use of Your Content. You represent and warrant to us that: (a) you or your licensors own all right, title, and interest in and to Your Content and Feedback; (b) you have all rights in Your Content and Feedback necessary to grant the rights contemplated by this Agreement."; ; At the end of a contract, stored data will be available for 30 days, with the ability to extend if necessary. This will enable the customer to either retrieve their data or renew their contract without service interruption.

Using the service

• Web browser interface: Yes
• Using the web interface: The Wasabi platform is managed through a web interface. ; All actions associated with the platform can be performed from the web interface, such as creating, editing, deleting buckets, users, groups and policies, setting access roles and security profiles. ; Further information is available here: https://docs.wasabi.com/docs/wasabi-cloud-storage-console-1
• Web interface accessibility standard: None or don’t know
• How the web interface is accessible: Wasabi relies on accessibility features of the major web browsers.
• Web interface accessibility testing: None
• API: Yes
• What users can and can't do using the API: Wasabi provides 3 distinct APIs:; • Wasabi S3 API - Wasabi’s object storage service is built to be 100% bit-compatible with the Amazon Web Services’ Simple Storage Service (AWS S3) and Identity and Access Management (AWS IAM) APIs. https://docs.wasabi.com/docs/wasabi-api ; • Wasabi Account Control API - At a high level, WACA allows for the following functions:; o Create a new sub-account that is linked to the Wasabi Control Account; o Generate AWS key sets for sub-accounts; o Manage sub-account trial parameters, such as extending the sub-account trial period and change subaccount trial quotas; o Convert a sub-account trial period into a full (paying) account; o Query utilisation of sub-accounts both at the summary account level and bucket level; o Query invoices of sub-accounts; o Delete sub-accounts; o Manage account “profile” information, such as email address; https://docs.wasabi.com/docs/account-control-api ; • WACM Connect API - At a high level, the WACM Connect allows for the following functions:; o Query utilisation of sub-accounts at the account level and bucket level; o Query invoices of sub-accounts; o Query current utilisation of control accounts; o Filter the responses with a wide range of parameters; https://docs.wasabi.com/docs/wacm-connect-api
• API automation tools:
  • Ansible
  • Terraform
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• Command line interface: No

Scaling

• Scaling available: Yes
• Scaling type: Automatic
• Independence of resources: Wasabi connection manager allocates resources based on incoming connection requests, ensuring there is even distribution of capacity across all server and storage within the Datacentre. ; All customers are treaded equally and the above approach ensures that the infrastructure scales automatically and that performance is consistent.
• Usage notifications: Yes
• Usage reporting: Email

Analytics

• Infrastructure or application metrics: Yes
• Metrics types: Other
• Other metrics:
  • Storage Consumption (active & deleted)
  • API Calls
  • Utilisation
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports

Resellers

• Supplier type: Reseller (no extras)
• Organisation whose services are being resold: Wasabi

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
  • Hardware containing data is completely destroyed
• Equipment disposal approach: A third-party destruction service

Backup and recovery

• Backup and recovery: No

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

• Guaranteed availability: Wasabi will use commercially reasonable efforts to ensure the Wasabi Service is available in accordance with the Monthly Uptime Percentage. The “Monthly Uptime Percentage” is calculated by subtracting from 100%, the average of the Error Rates from each five-minute period in the monthly billing cycle. “Error Rate” means: (i) the total number of internal server errors returned by Wasabi as error status “Internal Error” or “Service Unavailable” divided by (ii) the total number of requests for the applicable request type during that five-minute period. We will calculate the Error Rate for basic services (read / write / delete) for each Wasabi region, from multiple external locations. Failure from more than two of these locations for three consecutive attempts one minute apart, constitutes an internal service error. ; Full SLA details, including service credit details, available at: https://wasabi.com/legal/sla/
• Approach to resilience: Wasabi provides 11 9's of data durability. The 'Data Durability' white paper and further additional information can be made available on request.
• Outage reporting: A realtime dashboard is available at: https://status.wasabi.com/ ; It is also possible to subscribe to email updates.

Identity and authentication

• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Wasabi facilitates the task of setting up security processes through MFA, SSO, Access keys and Password requirements in addition to users, groups, and policies, which the customer controls and manages through the web-based application. ; Please refer to the following for further information:https://docs.wasabi.com/v1/docs/en/configuring-the-single-sign-on-sso-feature?highlight=sso; https://docs.wasabi.com/docs/access-keys-1; https://docs.wasabi.com/docs/defining-user-password-settings?highlight=Password; https://docs.wasabi.com/docs/creating-a-user-account-and-access-key; https://docs.wasabi.com/docs/creating-a-virtual-multi-factor-authentication-mfa-device?highlight=MFA ; Additionally, for further information on Users, Groups, and Policies:; https://docs.wasabi.com/docs/groups-roles-and-users; https://docs.wasabi.com/docs/policies-1?highlight=Policies
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Devices users manage the service through:
  • Dedicated device on a segregated network (providers own provision)
  • Dedicated device on a government network (for example PSN)
  • Dedicated device over multiple services or networks
  • Any device but through a bastion host (a bastion host is a server that provides access to a private network from an external network such as the internet)
  • Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • HIPPA
  • CJIS
  • FERPA
  • TPN
  • SEC

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Wasabi undergoes the following Audits: HIPPA/HITECH Type 2 and CyberGRX; ; Wasabi is also in possession of the SOC 2 report and ISO 27001 Certificate for each Data Center Provider location.
• Information security policies and processes: Wasabi has a Chief Information Security Officer, Security Officer, and IT Security Officer. ; ; The following policy summaries can be provided on request: ; ; Access Control and Access Review.pdf; Compliance & Regulatory Audit Procedure.pdf; Risk Assessment.pdf; Security Assessment.pdf; Data Retention and Destruction.pdf

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Wasabi Operations department track the status, location, and configuration of service components throughout their lifetime. ; ; The following policy summaries can be provided on request:; ; Maintenance.pdf; Security.pdf; Software Development Lifecycle - SDLC.pdf; Service Notification.pdf
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Wasabi conducts weekly vulnerability scanning of all servers utlising Tenable.IO. For an update schedule and status page please use the following link:https://wasabi-support.zendesk.com/hc/en-us/articles/115001406711-How-do-I-find-out-when-Wasabi-performs-service-updates- ; Wasabi is a URL/Website based application, therefore patching occurs as needed and can be completed seamlessly without interruption of service. The following policy summaries can be provided on request: "Maintenance", "Service Notifications", and "Cybersecurity Incident Response"
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Wasabi utilises Carbon Black as its EDR/AV, which is continuously monitored and action is taken when there is an update. ; Furthermore, Wasabi has implemented a process whereby stakeholders are notified via, text, email or Slack in the event of unauthorised access. At which point action is taken to block said IP from unauthorised access.
• Incident management type: Supplier-defined controls
• Incident management approach: Wasabi's Cybersecurity Incident Response Policy defines roles, what constitutes a security incident, outlines incident response phases, discusses how information is passed to appropriate personnel, assessment of the incident, minimisation of damage, response strategy, documentation and preservation of data.; The policy summary 'Cybersecurity Incident Response' can be provided on request.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Separation between users

• Virtualisation technology used to keep applications and users sharing the same infrastructure apart: No

Energy efficiency

• Energy-efficient datacentres: Yes
• Description of energy efficient datacentres: Wasabi is colocated in Equinix facilities in Europe. ; Equinix is committed to leading the way regarding the EU Code of Conduct for Energy Efficient datacentres. More info can be found here: https://www.equinix.co.uk/data-centers/design/standards-compliance

Social Value

• Social Value:

  Social Value

  Fighting climate change

  Fighting climate change

  Wasabi is on a mission to store the world’s data, and to do so efficiently. It’s mission critical for customers and partners to develop a sustainable IT infrastructure, and we’re committed to this journey. ; ; Wasabi hot cloud storage has been architected for optimal power consumption and efficiency, maximising the amount of data that can be stored on a disk. Additionally, Wasabi makes extensive use of virtualisation and container technologies that allow them to operate many system functions across shared hardware elements rather than dedicated hardware for each function, which reduces the amount of power and space consuming hardware in the data centres. ; ; There is a carbon calculator available via the Wasabi website: https://wasabi.com/sustainability/

Pricing

• Price: £5.99 a terabyte a month
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: Fully functional 2TB trial available for a 30-day period
• Link to free trial: https://www.primesys.co.uk/wasabi

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ryan.smith@primesys.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.