Skip to main content

Help us improve the Digital Marketplace - send your feedback

  1. Digital Marketplace
  2. Lot 2: Cloud software
  3. Vaultspeed
Datavault

Vaultspeed

Using Vaultspeed a company can generate the loading processes and a Data Vault model based on source models and parameter setup on various target databases platforms.

Features

  • Data Warehouse Automation
  • Data Vault Automation
  • SaaS
  • No Code
  • ETL Automation

Benefits

  • Yes

Pricing

£3,599 to £10,999 a licence a month

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mark.otten@data-vault.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

8 2 5 8 1 4 9 2 2 7 7 5 8 5 8

Contact

Datavault Mark Otten
Telephone: 023 92 637171
Email: mark.otten@data-vault.com

Service scope

Software add-on or extension
No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Hybrid cloud
Service constraints
SaaS solution only runs on Azure to generate Automation Code, Code can be deployed on any Cloud Provider or onPrem.
System requirements
VM for local agent with 1 CPU, 2GB

User support

Email or online ticketing support
Email or online ticketing
Support response times
Within 24 hours (on business days)
User can manage status and priority of support tickets
No
Phone support
No
Web chat support
Yes, at an extra cost
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Dont know
Web chat accessibility testing
Dont know
Onsite support
Yes, at extra cost
Support levels
Standard support included in SaaS Solution: When an incident occurs or when you have questions related to your account, we’re there to help. Our service desk will respond to your support ticket within 24 hours (during business hours). Extra paid Premium support : enhanced response times – within 4 business hours – or enhanced support hours, up to 24/7 availability.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
In addition to the VaultSpeed SaaS service, VaultSpeed offers an Onboarding package (3 levels) that includes best practices, training, and guidance to streamline the onboarding process.
Service documentation
Yes
Documentation formats
HTML
End-of-contract data extraction
VaultSpeed generated Code is provided to the Communication Agent running on the customer Managed Infrastructure to deploy or publish the Code into GIT. Additionally, a user can download at any time the Code from the VaultSpeed console and export the VaultSpeed managed metadata.
End-of-contract process
VaultSpeed does not have a runtime; VaultSpeed generates native code that runs on the customer target platforms. At the end of the subscription, the customer still has the right to run the code, which requires no VaultSpeed component.
Once the contract is terminated, new code generation to support new use cases will not be permitted anymore. However, a customer can still run the previously generated code.
As stated before, the VaultSpeed GUI supports the download of code and export of metadata at any time; we would strongly encourage our customers stopping their contract to download these artifacts from the VaultSpeed SaaS.

Using the service

Web browser interface
Yes
Supported browsers
  • Firefox
  • Chrome
Application to install
Yes
Compatible operating systems
  • Linux or Unix
  • MacOS
  • Windows
Designed for use on mobile devices
No
Service interface
No
User support accessibility
None or don’t know
API
Yes
What users can and can't do using the API
Yes, all application functionalities are available through a REST API
API documentation
Yes
API documentation formats
Other
API sandbox or test environment
No
Customisation available
Yes
Description of customisation
In the context of customization, the VaultSpeed SaaS supports the definition of the default value of the parametrization settings to control the model and the type of Generated code. These default settings are inherited by any artifact created within the service.

Scaling

Independence of resources
Our Cloud Architecture fully embraces the capabilities provided by Cloud Elasticity to scale instantly to meet any demand and provide a seamless user experience.

Analytics

Service usage metrics
Yes
Metrics types
Yes, The VaultSpeed dashboard provides information about your subscription type and validity period. The VaultSpeed dashboard includes a graph showing how many of your available VaultSpeed Automation Units (VAUs) have already been consumed.

Resellers

Supplier type
Reseller providing extra support
Organisation whose services are being resold
VaultSpeed

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
European Economic Area (EEA)
User control over data storage and processing locations
No
Datacentre security standards
Supplier-defined controls
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Other
Other data at rest protection approach
Vaultspeed is deployed on Azure which implies that all data is persisted in the Azure storage layer. Azure Storage automatically encrypts all data when it is persisted into the cloud. Data in Azure Storage is encrypted and decrypted transparently using 256-bit AES encryption, one of the strongest block ciphers available, and is FIPS 140-2 compliant. The encryption keys are managed and protected by the Microsoft-managed keys module, the Microsoft KeyStore.
Yes, as stated: SSAE & ISAE
Data sanitisation process
No
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
The VaultSpeed GUI supports the download of code and export of metadata at any time
Data export formats
Other
Other data export formats
  • Natice Code
  • CSV
Data import formats
Other
Other data import formats
  • CSV
  • JSON
  • XML

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
To support our customers in using VaultSpeed in an enterprise environment, we have defined a service organization to cope with eventual incidents that can be reported. The incidents will be prioritized and treated according to the defined Service Levels (see details in the table in Column 6). This way we guarantee our quality of service.

The availability is measured based on VaultSpeed not being available (downtime) during office hours, except for planned downtime due to installations and backups.

The availability is measured on the basis of Vaultspeed that is unavailable (downtime) during the office hours, with the exception of planned downtime due to installations and backups.
Approach to resilience
In the context of Business Continuity and Disaster Recovery, Vaultspeed fully takes advantage of the cloud provider multi data centre strategies to conceive a high available architecture. Oracle Cloud and Microsoft Azure are typically organized in regions, availability domains, and fault domains. This design provides the fault tolerance and redundancy required to ensure a robust computing environment.
An availability domain is a specific grouping of resources within a region that has redundant power, (low latency) network, (redundant) storage, and compute. An availability domain is considered as a separate data centre, with all the separate resources of an independent data centre within a specific geographical region. In example the Oracle Cloud Infrastructure Frankfurt region is composed of 3 availability domains, meaning 3 data centres interconnected with a low latency redundant network to provide maximum fault tolerance.
Outage reporting
The Vaultspeed “Business Continuity Plan” Framework is based around the 4 phases: Prevent, Prepare, Respond and Repair. The “Prevent” phase is mainly addressed during the conception of Vaultspeed architecture, where the main hardening concepts were introduced and Security technical controls were chosen to protect the different layers of the architecture. The focus of the “Prepare” phase is the conception of a resilience architecture in order to establish a mitigation plan to protect the Vaultspeed components against risk and exposures from different angles & vulnerabilities. The aim of the “Respond” phase is to identify as quickly as possible which systems are impacted and identify the potential root cause and convey the necessary communication. The "Respond" phase will further streamline the resolution process by activating the adequate recovery plan based on the previous analysis and assess the resolution.
Vaultspeed fault-tolerance approach is conceived by having redundant environments for both the Vaultspeed Application server node and the PostgreSQL database server node within 1 High Availability Region. There are three environments for the Application Tier and two environments for the Databases Tier. The Cloud operations team handles the service reporting and notification when needed.

Identity and authentication

User authentication needed
Yes
User authentication
Other
Other user authentication
VaultSpeed support Username & Password, Identity federation with existing provider (for example Google apps) and Dedicated links (VPN)
The Authentication module of the VaultSpeed application is implemented using Oracle Identity Cloud Service (IDCS). Oracle IDCS supports Multi-factor authentication (MFA), MFA is a method of authentication that requires the use of more than one factor to verify a user’s identity.
MFA may include any of the following:
• Something that you know, like a password.
• Something that you have, like a device.
• Something that you are, like your fingerprint.
Access restrictions in management interfaces and support channels
The Authentication module of the Vaultspeed application is implemented using Oracle Identity Cloud Service (IDCS). The support of these standards enables VaultSpeed to federate identities and enable SSO out of the box. Oracle IDS acts as a Federation hub that can be used to allow secure access to the VaultSpeed Cloud Application by exchanging identity information securely. It reduces the need to manage unnecessary accounts in your enterprise directory and lowers the cost of integrations through support of industry federation standards. The management is conveyed with the VaultSpeed Service Portal.
Access restriction testing frequency
At least every 6 months
Management access authentication
Other
Description of management access authentication
Management Access is implemented through a Bastion Server. The Bastion host acts as a gateway for the cloud environment, all connections from the internet to cloud machines that need to be protected (such as databases) will have to pass through this server. Access to the bastion server is protected by MFA and a One time Password.

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
Between 1 month and 6 months
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
Between 1 month and 6 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
VaultSpeed
ISO/IEC 27001 accreditation date
Not available
What the ISO/IEC 27001 doesn’t cover
Not available
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Cyber essentials
No
Cyber essentials plus
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
VaultSpeed's security policy document is classified information.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
The Vaultspeed code and Architecture are constantly reviewed with a strict code-review process during the deployment in every development stage (Dev, ACC, Pre-Prod, and PROD). External subject experts are involved in the Vaultspeed architecture and code review process..Vaultspeed development follows the Scrum methodology and is inspired by the Open Web Application Security Project (OWASP).
Scrum is an Agile framework that consists of one to four-week sprints. It is designed to help small self-organized teams consistently deliver concrete product features or security capabilities.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
The controls include:
VaultSpeed Security architecture
Follow Up on the Vulnerability reports on the Vaultspeed component
The conception of the Vaultspeed architecture in MS Azure
User & Access Management
Setup of MFA & Bastion Servers
In the context of Detective controls, Vaultspeed takes advantage of the Monitoring frameworks provided by the Cloud Providers, which are monitored by our Cloud Security Operations team. MS Azure Security Center prioritizes alerts and the information required to investigate the problem, enabling us to quickly understand what resources were affected and conceive the appropriate action plan and alerts. Vaultspeed Recovery Time Objective of 4 hours.
Protective monitoring type
Undisclosed
Protective monitoring approach
Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.
In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.
Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared.
Incident management type
Supplier-defined controls
Incident management approach
Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.
In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.
Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks
No

Social Value

Fighting climate change

Fighting climate change

VaultSpeed is a cloud native SaaS solution that is deployed on today’s most scalable and secure IaaS and PaaS providers available in the market. This empowers VaultSpeed to use an, optimal pool of resources and inherits from these proven cloud solutions that meets the most demanding security, data protection, and compliance requirements.
Microsoft Azure, sees sustainability and humanity's response to climate change as one of the greatest challenges of our lifetime. Microsoft Azure is committed to put sustainable technologies at the heart of our innovation—to make sure they are adapting and growing along with the planet with the lowest environmental impact.
Covid-19 recovery

Covid-19 recovery

VaultSpeed’s management team meets continuously to assess and appropriately respond to the crisis as it evolves. No need to say, everyone’s health and welfare are a priority, as most VaultSpeed employees work from home. We are a SaaS native organization and have extensive online collaboration capabilities to help ensure business continuity. We’re working tirelessly to help everyone stay safe while at the same time continuing to serve our customers.
Tackling economic inequality

Tackling economic inequality

Social purpose is woven into VaultSpeed core believes. From creating new businesses and new employment opportunities, to improving education and training, VaultSpeed is committed to tackling economic inequality at root. Our overriding vision is to help lower the unequal distribution of income and opportunity between different groups in society.
Equal opportunity

Equal opportunity

We believe that innovation starts with inclusion and to create the future we need people with diverse backgrounds, perspectives, and abilities. That’s why we’re committed to creating a workplace where all kinds of people can do their best work. It’s when everyone’s voice is heard and valued that we’re inspired to go beyond what’s been done before.
Wellbeing

Wellbeing

The VaultSpeed Wellbeing programme is geared to encouraging vitality, a healthy quality of life, and a positive working environment in which people thrive.
‘My Wellbeing, My Life’ encompasses an array of initiatives, from physical and mental health, nutrition, and sleep programmes, to financial and legal support, stress management, and support during periods of home working.
Our priority is to be proactive, so employees can gain awareness, education, and support to successfully function at work and at home, free from factors which may negatively impact upon their health.

Pricing

Price
£3,599 to £10,999 a licence a month
Discount for educational organisations
Yes
Free trial available
Yes
Description of free trial
With an agreed and signed proposal, we can offer a 2 month trail at the beginning of a new contract, with a break clause.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mark.otten@data-vault.com. Tell them what format you need. It will help if you say what assistive technology you use.