GRAPH AWARE LIMITED

GraphAware Hume

Hume provides a single view of intelligence enabling analysts to quickly identify links and patterns of interest in the vast amounts of information they have access to. On a single canvas, analysts quickly find connections between entities, understand geographical and temporal context, and perform advanced network analysis.

Features

• Create a single view of intelligence
• Geospatial and temporal analysis
• Powerful graph analysis
• Automate common tasks and leverage alerts
• Graph Data Science
• Collaboration

Benefits

• All your structured and unstructured data on one Knowledge Graph
• Analyse the where&when in criminal activities and networks, identify trends
• Analyse links among people-objects-locations-events with powerful Graph Data Science
• Reveal patterns-of-interest (e.g. patterns-of-life, flow-of-funds), be alerted on new occurences
• Graph based unstructured data processing for better entity recognition&resolution
• Easy&visual collaboration and knowledge sharing among your intelligence teams.

£150,000 a licence a year

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at michal@graphaware.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

772006305239648

Contact

Michal Bachman
+447714300401
michal@graphaware.com

Service scope

• Software add-on or extension: Yes, but can also be used as a standalone service
• What software services is the service an extension to: Neo4j
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: Two (2) licences are required: Hume + Neo4j.
• System requirements:
  • CPU cores: vendor-defined based on expected knowledge graph size
  • RAM: vendor-defined based on expected knowledge graph size
  • Storage: vendor-defined based on expected knowledge graph size
  • PostgreSQL
  • Linux (preferably CentOS)
  • Neo4j Enterprise or Aura Licence

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Standard support: up to 4 hours - 4 business days, depending on severity.; Premium support: up to 1 hour - 4 business days, depending on severity.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 24 hours, 7 days a week
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Premium support: by default included in the yearly licence fee.; Standard support: 15% discount from the yearly licence fee.; No dedicated person assigned to an account.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: We provide professional services including:; - deployment; - configurations; - tailored user trainings (online/onsite); User documentation (online) is also available.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: All data is stored in Neo4j and PostgreSQL databases and hosted on the buyer's infrastructure, data can be exported with backups done by the buyer's technical team.
• End-of-contract process: The service will stop working at the end of the contract. Client will be warned before contract end to see if they want to extend the service. If Client purchases a contract extension, we update our system to reflect the extended contract end date. If not, Client will be locked out of service at the contract end time.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: The API service needs to be explicitly enabled. The API can be accessed with API keys that can be generated in the software or via Single-Sign On JWT tokens.; Functionalities of what can or cannot be done with the API is dependent on the privileges assigned to the API keys themselves.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: No

Scaling

• Independence of resources: The application is deployed as a set of microservices. Each microservice can be scaled independently. Depending on the devops capacities of the buyer, auto-scaling practices can be implemented based on activity and load.

Analytics

• Service usage metrics: Yes
• Metrics types: Prometheus metrics are available and can be scraped from the services. ; The following is a non-exhaustive list of metrics available : ; - uptime; - memory and cpu utilisation; - search request times; - action request times; - number of failed operations
• Reporting types:
  • API access
  • Reports on request

Resellers

• Supplier type: Reseller providing extra features and support
• Organisation whose services are being resold: Neo4j, Senzing

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: Other locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: We do not host the application on our premises, the buyer has to install the application in their location of choice and follow the security standards of their own organization.
• Data sanitisation process: No
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: By default, only identifiers can be exported from the software as excel or csv files. Customisable exports can be created in order to export data in CSV or Excel format.; ; Full and incremental database backups can be exported and imported by technical people.
• Data export formats: CSV
• Data import formats:
  • CSV
  • Other
• Other data import formats: Json

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection between networks: The software has to be installed on the buyer's network, GraphAware doesn't host applications for buyers.; The ticked protections are the measures that can be configured on the software by the buyer.
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
• Other protection within supplier network: The software has to be installed on the buyer's network, therefore this question does not apply to GraphAware Hume as it is not hosted by the seller.

Availability and resilience

• Guaranteed availability: The software is not hosted by the seller. It is up to the buyer to meet their own SLA when installing the software. The deployment model of the software allows for high availability.
• Approach to resilience: The software is not hosted by the seller, it is up to the buyer to meet their resilience needs when deploying the software.
• Outage reporting: The software is not hosted by the seller, therefore this question does not apply.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: All the management interfaces and the whole application are protected with role based access control. Management access privileges need to be explicitly granted to users and any changes to the role based access control are logged in the audit logs.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: No audit information available
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Internally developed ISMS.
• Information security policies and processes: Internally developed ISMS.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: The software is not hosted by the seller, therefore this question does not apply.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerability management is handled as part of the development process with continuous and scheduled pipelines. We follow the OWASP guide to vulnerability management.; Critical vulnerability patches are deployed as soon as a remediation is available and made available for the buyer to download.; All the OWASP sources are used as well as the Spring Security notifications.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: The software is not hosted by the seller, therefore this question does not apply.
• Incident management type: Supplier-defined controls
• Incident management approach: The software is not hosted by the seller, therefore this question does not apply.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Equal opportunity
  • Wellbeing

  Equal opportunity

  GraphAware is steadfast in its commitment to fostering an inclusive environment where every individual is afforded the same opportunities for professional growth and success. Our dedication to equality is not merely a principle; it is the bedrock upon which our organization stands and we have designed our company's core values as well in a way that they support equal opportunities.; ; In alignment with governmental mandates and societal imperatives, we prioritize the implementation of equal opportunity rights throughout our hiring practices. We recognize and embrace the inherent value that diversity brings to our workforce, and as such, we diligently ensure that all individuals, regardless of background or circumstance, are given fair consideration in our recruitment processes. We as well do multiple hiring rounds to reflect multiple opinions and enhance fairness. Hiring is governed by our People Experience (PX) department.; ; Central to our mission is the active reduction of the disability employment gap. We recognize the untapped potential and valuable contributions that individuals with disabilities bring to the table. By providing meaningful employment opportunities and fostering an inclusive workplace culture, we aim to dismantle barriers and empower these individuals to thrive in their professional pursuits.

  Wellbeing

  In adherence to our core values,GraphAware prioritizes the well-being of our employees as a fundamental principle. We recognize that fostering a culture of health and happiness is paramount to sustaining a productive and engaged workforce. Our commitment to personal growth and professional development is reflected in our comprehensive programs and initiatives designed to empower employees to reach their full potential. With a strong emphasis on internal communication, including a meticulously crafted communication strategy, we ensure that information flows freely, promoting transparency, trust, and collaboration throughout the organization.; ; Moreover, we understand the importance of providing a flexible working environment that accommodates the diverse needs of our team members, whether they prefer remote work or office-based arrangements, and allowing flexibility in scheduling to promote work-life balance. Additionally, we believe in offering fair compensation and benefits as a means of valuing the contributions of our employees and ensuring their overall well-being.; ; Through these concerted efforts, GraphAware remains dedicated to fostering an environment where our employees can thrive both personally and professionally, contributing to the sustained success of our organization.

Pricing

• Price: £150,000 a licence a year
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Full functionality for a mutually agreed limited time period.
• Link to free trial: https://graphaware.com/contact/humedemo/

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at michal@graphaware.com. Tell them what format you need. It will help if you say what assistive technology you use.