Alchera Technologies

Alpha Pinch Point Analysis Tool

Real-time, smart-city geospatial data platform to analyse county-wide traffic junctions to find 'pinch points' causing unnecessary delays - particularly for bus and other public transport assets. Alpha Pinch Point Analysis enables open access to real-time and historical data feeds from existing and future open and third-party sources such as BODS.

Features

• Sensor agnostic real-time data ingestion from multiple sources.
• Open API documented using Swagger.
• User management with access control.
• Privacy by design with real-time data access auditing.
• Bring-your-own-model capability to add custom analyses.
• Sensor fusion data enhancement.
• Predictive analytics on time series.
• Build Ingest-Analyse-Distribute data pipelines.
• Implement data monetisation
• Tuned for CAVs, smart-cameras, CCTV feeds, drones

Benefits

• No need to maintain custom data infrastructure.
• Future-proof your data collection, analysis and distribution processes.
• Provide robust and high quality data feeds to your users.
• Centralise management of data sources.
• Integrate and manage your existing ETL processes.
• Benefits councils, regional transport authorities, and fleet operators.
• Benefit from data revenue business models
• Analyse and monetise video assets
• Future proof for connected & autonomous vehicle (CAV) rollout

£1,000 to £85,000 a unit a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@alcheratechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

848002322602505

Contact

Anna Jordan
07851228046
sales@alcheratechnologies.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: No
• System requirements:
  • Users to use supported browsers on client machine
  • Broadband network connection

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response times are during supported hours Mon-Fri, 9am to 5pm.; ; 1hr for High Priority incidents (ie, total service outage); ; 4hr for Medium Priority incidents (ie, degradation of service affecting all users); ; 12 hr for Low Priority incidents (ie, degradation of service for a single user)
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Support is provided as standard 9am to 5pm UK working hours as part of the base platform fee.; ; Higher support levels can be purchased as additional service if required. Each customer is assigned a cloud support engineer.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: We provide in-person onsite training as well as on-boarding user and administrator documentation.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: Users can dump the data to CSV files.
• End-of-contract process: Access is disabled and data is deleted after 6 months or on request. Data export is available after the end of the contract at a pro-rata cost.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Users can list, add, modify data feeds, data pipelines, and users.; ; Users can monitor the status of the platform and of the data collection, analysis, and distribution pipelines.
• Accessibility standards: None or don’t know
• Description of accessibility: Where possible we follow the accessibility guidelines. We offer the accessibility capabilities of the browser in which our application runs, e.g magnification, contrast and audio descriptors of text (but only if supported by the host browser).
• Accessibility testing: We have currently not performed any accessibility testing with assistive technology users. As an equal opportunities company, we committed to equality and diversity in the workplace and would be willing to work with affected potential users to improve accessibility should the situation arise.
• API: Yes
• What users can and can't do using the API: Users can list, add, modify data feeds, data pipelines, and users.; ; Users can query data.
• API documentation: Yes
• API documentation formats: Open API (also known as Swagger)
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: Customisation can be agreed with the Supplier.

Scaling

• Independence of resources: Users can opt into a dedicated infrastructure solution which is not shared with other users.

Analytics

• Service usage metrics: Yes
• Metrics types: Data points throughput; API data usage; Historical dataset size; HTTP request and response status
• Reporting types:
  • API access
  • Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data can be exported as CSV dumps or via API calls.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • JSON
  • Datex II
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • JSON
  • XML
  • GTFS

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: During any contractual engagement the availability SLA is agreed with the end-user and is appropriate for their usage requirements. Our level of service is also dependent on services offered by others, such as the infrastructure provider.
• Approach to resilience: Architecture available on request.
• Outage reporting: Status page and email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Using user authentication and authorization.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 6 months and 12 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Our VP of Engineering is responsible for the security of our service, using Secure by Design principles. They are responsible for maintaining the security policies and reporting on threats, issues, and risks through our corporate risk management approach - which includes monthly reporting to our management board.
• Information security policies and processes: At an individual level, access to production systems are tightly controlled and monitored through a combination of internal processes and infrastructure provider control systems. Security decisions are taken by our architectural design forum, and breaches are managed through our internal incident management process and reported up through the VP of Engineering to board level as necessary.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Software and configuration changes are versioned and deployments are recorded for internal auditing. Manual and automated QA processes are in place before release of any changes to production environments.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: All packages in-use are checked against the most recent security releases in the appropriate channels and vulnerabilities are patched according to the effective risk based on their public severity score (e.g. CVSS) and their potential impact on the service.; ; We actively monitor security forums and sources for new threats as well as performing regular penetration testing on our service.; ; Infrastructure security is delegated to infrastructure providers.; ; Due to our agile (Scrum based) approach to software development patches to our software can be produced, tested and released very quickly.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We proactively monitor our platform and system logs and will act on suspicious activity to further investigate in more detail.
• Incident management type: Supplier-defined controls
• Incident management approach: Our service management processes are based on ITIL best practice. Users can report incidents by calling our support phone number or sending email to our support address. Incident reports are provided as part of our standard incident management process.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Equal opportunity:

  Equal opportunity

  Alchera is an Equal Opportunity Employer

Pricing

• Price: £1,000 to £85,000 a unit a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Basic HOMESTEAD license for a limited time period or 30 days.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at sales@alcheratechnologies.com. Tell them what format you need. It will help if you say what assistive technology you use.