Datavault

Vaultspeed

Using Vaultspeed a company can generate the loading processes and a Data Vault model based on source models and parameter setup on various target databases platforms.

Features

• Data Warehouse Automation
• Data Vault Automation
• SaaS
• No Code
• ETL Automation

Benefits

• Yes

£3,599 to £10,999 a licence a month

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at samantha.cole@data-vault.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

898242941945302

Contact

Samatha Cole
023 92 637171
samantha.cole@data-vault.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: SaaS solution only runs on Azure to generate Automation Code, Code can be deployed on any Cloud Provider or onPrem.
• System requirements: VM for local agent with 1 CPU, 2GB

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Within 24 hours (on business days)
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: Yes, at an extra cost
• Web chat support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support accessibility standard: None or don’t know
• How the web chat support is accessible: Dont know
• Web chat accessibility testing: Dont know
• Onsite support: Yes, at extra cost
• Support levels: Standard support included in SaaS Solution: When an incident occurs or when you have questions related to your account, we’re there to help. Our service desk will respond to your support ticket within 24 hours (during business hours). Extra paid Premium support : enhanced response times – within 4 business hours – or enhanced support hours, up to 24/7 availability.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: In addition to the VaultSpeed SaaS service, VaultSpeed offers an Onboarding package (3 levels) that includes best practices, training, and guidance to streamline the onboarding process.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: VaultSpeed generated Code is provided to the Communication Agent running on the customer Managed Infrastructure to deploy or publish the Code into GIT. Additionally, a user can download at any time the Code from the VaultSpeed console and export the VaultSpeed managed metadata.
• End-of-contract process: VaultSpeed does not have a runtime; VaultSpeed generates native code that runs on the customer target platforms. At the end of the subscription, the customer still has the right to run the code, which requires no VaultSpeed component.; Once the contract is terminated, new code generation to support new use cases will not be permitted anymore. However, a customer can still run the previously generated code.; As stated before, the VaultSpeed GUI supports the download of code and export of metadata at any time; we would strongly encourage our customers stopping their contract to download these artifacts from the VaultSpeed SaaS.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Firefox
  • Chrome
• Application to install: Yes
• Compatible operating systems:
  • Linux or Unix
  • MacOS
  • Windows
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: Yes
• What users can and can't do using the API: Yes, all application functionalities are available through a REST API
• API documentation: Yes
• API documentation formats: Other
• API sandbox or test environment: No
• Customisation available: Yes
• Description of customisation: In the context of customization, the VaultSpeed SaaS supports the definition of the default value of the parametrization settings to control the model and the type of Generated code. These default settings are inherited by any artifact created within the service.

Scaling

• Independence of resources: Our Cloud Architecture fully embraces the capabilities provided by Cloud Elasticity to scale instantly to meet any demand and provide a seamless user experience.

Analytics

• Service usage metrics: Yes
• Metrics types: Yes, The VaultSpeed dashboard provides information about your subscription type and validity period. The VaultSpeed dashboard includes a graph showing how many of your available VaultSpeed Automation Units (VAUs) have already been consumed.

Resellers

• Supplier type: Reseller providing extra support
• Organisation whose services are being resold: VaultSpeed

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Other
• Other data at rest protection approach: Vaultspeed is deployed on Azure which implies that all data is persisted in the Azure storage layer. Azure Storage automatically encrypts all data when it is persisted into the cloud. Data in Azure Storage is encrypted and decrypted transparently using 256-bit AES encryption, one of the strongest block ciphers available, and is FIPS 140-2 compliant. The encryption keys are managed and protected by the Microsoft-managed keys module, the Microsoft KeyStore.; Yes, as stated: SSAE & ISAE
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: The VaultSpeed GUI supports the download of code and export of metadata at any time
• Data export formats: Other
• Other data export formats:
  • Natice Code
  • CSV
• Data import formats: Other
• Other data import formats:
  • CSV
  • JSON
  • XML

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: To support our customers in using VaultSpeed in an enterprise environment, we have defined a service organization to cope with eventual incidents that can be reported. The incidents will be prioritized and treated according to the defined Service Levels (see details in the table in Column 6). This way we guarantee our quality of service.; ; The availability is measured based on VaultSpeed not being available (downtime) during office hours, except for planned downtime due to installations and backups.; ; The availability is measured on the basis of Vaultspeed that is unavailable (downtime) during the office hours, with the exception of planned downtime due to installations and backups.
• Approach to resilience: In the context of Business Continuity and Disaster Recovery, Vaultspeed fully takes advantage of the cloud provider multi data centre strategies to conceive a high available architecture. Oracle Cloud and Microsoft Azure are typically organized in regions, availability domains, and fault domains. This design provides the fault tolerance and redundancy required to ensure a robust computing environment.; An availability domain is a specific grouping of resources within a region that has redundant power, (low latency) network, (redundant) storage, and compute. An availability domain is considered as a separate data centre, with all the separate resources of an independent data centre within a specific geographical region. In example the Oracle Cloud Infrastructure Frankfurt region is composed of 3 availability domains, meaning 3 data centres interconnected with a low latency redundant network to provide maximum fault tolerance.
• Outage reporting: The Vaultspeed “Business Continuity Plan” Framework is based around the 4 phases: Prevent, Prepare, Respond and Repair. The “Prevent” phase is mainly addressed during the conception of Vaultspeed architecture, where the main hardening concepts were introduced and Security technical controls were chosen to protect the different layers of the architecture. The focus of the “Prepare” phase is the conception of a resilience architecture in order to establish a mitigation plan to protect the Vaultspeed components against risk and exposures from different angles & vulnerabilities. The aim of the “Respond” phase is to identify as quickly as possible which systems are impacted and identify the potential root cause and convey the necessary communication. The "Respond" phase will further streamline the resolution process by activating the adequate recovery plan based on the previous analysis and assess the resolution.; Vaultspeed fault-tolerance approach is conceived by having redundant environments for both the Vaultspeed Application server node and the PostgreSQL database server node within 1 High Availability Region. There are three environments for the Application Tier and two environments for the Databases Tier. The Cloud operations team handles the service reporting and notification when needed.

Identity and authentication

• User authentication needed: Yes
• User authentication: Other
• Other user authentication: VaultSpeed support Username & Password, Identity federation with existing provider (for example Google apps) and Dedicated links (VPN); The Authentication module of the VaultSpeed application is implemented using Oracle Identity Cloud Service (IDCS). Oracle IDCS supports Multi-factor authentication (MFA), MFA is a method of authentication that requires the use of more than one factor to verify a user’s identity.; MFA may include any of the following:; • Something that you know, like a password.; • Something that you have, like a device.; • Something that you are, like your fingerprint.
• Access restrictions in management interfaces and support channels: The Authentication module of the Vaultspeed application is implemented using Oracle Identity Cloud Service (IDCS). The support of these standards enables VaultSpeed to federate identities and enable SSO out of the box. Oracle IDS acts as a Federation hub that can be used to allow secure access to the VaultSpeed Cloud Application by exchanging identity information securely. It reduces the need to manage unnecessary accounts in your enterprise directory and lowers the cost of integrations through support of industry federation standards. The management is conveyed with the VaultSpeed Service Portal.
• Access restriction testing frequency: At least every 6 months
• Management access authentication: Other
• Description of management access authentication: Management Access is implemented through a Bastion Server. The Bastion host acts as a gateway for the cloud environment, all connections from the internet to cloud machines that need to be protected (such as databases) will have to pass through this server. Access to the bastion server is protected by MFA and a One time Password.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: VaultSpeed
• ISO/IEC 27001 accreditation date: Not available
• What the ISO/IEC 27001 doesn’t cover: Not available
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: No
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: VaultSpeed's security policy document is classified information.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: The Vaultspeed code and Architecture are constantly reviewed with a strict code-review process during the deployment in every development stage (Dev, ACC, Pre-Prod, and PROD). External subject experts are involved in the Vaultspeed architecture and code review process..Vaultspeed development follows the Scrum methodology and is inspired by the Open Web Application Security Project (OWASP). ; Scrum is an Agile framework that consists of one to four-week sprints. It is designed to help small self-organized teams consistently deliver concrete product features or security capabilities.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: The controls include:; VaultSpeed Security architecture; Follow Up on the Vulnerability reports on the Vaultspeed component; The conception of the Vaultspeed architecture in MS Azure; User & Access Management; Setup of MFA & Bastion Servers; In the context of Detective controls, Vaultspeed takes advantage of the Monitoring frameworks provided by the Cloud Providers, which are monitored by our Cloud Security Operations team. MS Azure Security Center prioritizes alerts and the information required to investigate the problem, enabling us to quickly understand what resources were affected and conceive the appropriate action plan and alerts. Vaultspeed Recovery Time Objective of 4 hours.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.; In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.; Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared.
• Incident management type: Supplier-defined controls
• Incident management approach: Vaultspeed evaluates and responds to events that create suspicion of unauthorized access. Vaultspeed ’s Information Security Incident Reporting and Response Policy defines requirements for reporting and responding to incidents. Upon discovery of an incident, Root-cause analysis is performed to identify opportunities for reasonable measures which improve security posture and defense in depth.; In the event that Vaultspeed determines that a security incident has occurred, Vaultspeed promptly notifies any impacted customers or other third parties in accordance with its contractual and regulatory responsibilities.; Information about malicious attempts or suspected incidents is Vaultspeed Confidential and is not externally shared.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Datavault supports the move to de-carbonise the economy and is committed to achieving Net Zero by 2050. We have a Carbon Reduction Plan completed in accordance with PPN 06/21 and associated guidance. This commitment is signed off by our CEO and is published on our website. We encourage our employees to cycle to work. We have fitted a cycle rack at our offices and employees have access to the cycle to work scheme. We further encourage the use public transport instead of driving and when driving to carshare whenever possible. We have implemented hybrid working enabling our employees and contractors to work from home. Our entire IT infrastructure, apart from desktop PCs/laptops is hosted in the cloud. Our desk booking system to ensure limited office capacity is used optimally while providing the opportunity to work flexibility in hygienic working conditions. We have no plastic coffee cups and plastic bottles in the office all are reusable China. We focus on using local suppliers where appropriate to minimise the environmental impact. The use of paper and printing is limited with staff being encouraged to think before printing anything. Increasingly documents are being signed and kept electronically where possible. We believe our initiatives, even small ones, are supporting to fight against climate change.; We have made reasonable adjustments to working hours for team members to support their use of public transport, therefore reducing car emissions. We have employed staff in the US in order to manage client engagements there, reducing requirements for team members to travel to the USA. Overnight accommodation is made available to staff who may travel very long journeys to reduce the number of commutes.; We have a cloud first strategy aimed at using innovative technologies improve productivity, allow our business to scale easily and minimise our carbon footprint.

  Covid-19 recovery

  Datavault recognises its responsibility to support people and communities to manage and recover from the impacts of COVID-19, both directly through work for clients and through interactions with the wider community.; Initiatives include:; - Using local suppliers where possible to support the local economy.; - Supporting staff requiring time off to have flu or COVID-19 vaccinations. ; - Continued use of hand sanitiser, signage and cleaning products.; - Flexible working and encouraging staff that are not well to stay away from the office.; - Support hybrid working through a defined model that allows staff the benefits of both home-based and office-based working, while meeting client needs. ; - Lockdowns have affected different people in different ways, it is only normal for some staff to feel uncertain and apprehensive about going back to the workplace. The company has tasked managers with ensuring that practical support is given to the return to normal working models.; Our benefits package has a wealth of health and well being services, including life support and bereavement assistance.

  Tackling economic inequality

  Datavault is committed to tackling economic inequality by offering job opportunities to young people from a range of backgrounds. The company is headquartered in a borough, Havant, ranked within the most deprived 25% of local authorities in England in terms of the education, skills and training indicator. Our commitment to helping to tackling economic inequality from the root level comes from supporting education and skills locally. ; We have created new roles for apprentices, fresh graduates and re-trainers, to diversify our talent pool and support growth in the local economy. Datavault is committed to help our staff to develop their skills. We will also seek to create corporate social value in recruiting staff with a view to developing their skills. Activities facilitating training and skills development include:; - Supporting or sponsoring relevant formal education (through financial contribution and/or study leave); - Graduate recruitment and development; - Providing internships and placements for students in higher education; - Supporting or sponsoring product or industry specific training and certifications; - Data Vault 2.0 certification for all technical employees within two years of starting; - Internal training platform with dedicated content author, currently over 45 classes developed for use by staff.; In 2022 we introduced Level 3 and 4 apprenticeship programmes to help and to support our drive to tackle economic inequality by providing opportunities particularly for the next generation and improving skills. ; We are cognitive of ensuring Diversity and Inclusion issues in our employment and recruitment practises. This includes skills-based assessments, structured interviews, transparent promotions to senior positions by ensuring roles, with full job descriptions are advertised internally.

  Equal opportunity

  Datavault is committed to help our staff to develop their skills. We will also seek to create corporate social value in recruiting staff with a view to developing their skills. Activities facilitating training and skills development include:; Supporting or sponsoring relevant formal education (through financial contribution and/or study leave); Graduate recruitment and development; Providing internships and placements for students in higher education; Supporting or sponsoring product or industry specific training ; Data Vault 2.0 certification for all technical employees within two years of starting; Internal training platform with dedicated content author, currently over 45 classes developed for use by staff and evolving; Product training, for example, on Erwin Data Intelligence, Data Modeller, dbt and Snowflake; We have demonstrated our commitment through the following activities:; Sponsorship of an Open University degree in business and computing; Sponsorship of a professional HR qualification ; 8-week placements for students under the Sepnet programme ; Employing graduates for their first job; Member of a university employers’ liaison group ; Guest lecturing on a university MBA course; Two apprenticeships in digital marketing; One software development apprenticeship; Wherever we seek suppliers that align with our social value and equal opportunities policies, their supply chain partners also need to reflect these values and maintain appropriate cyber security standards.; All new technical appointments engage in our ‘Datavault bootcamp’ which is designed to equip new staff with the necessary skills, knowledge, and confidence to seamlessly integrate into our project teams. Mentoring is in place to support the transition from academia to a business environment. ; We implement a fair recruitment strategy for external and internal posts and have thorough interview processes that are transparent.; We attend university open days as employer representatives and engage in careers fairs in order to provide opportunities for all university students to understand about careers in the our industry.

  Wellbeing

  Datavault recognises that our strength comes from our people whether they be staff, associates or subcontractors. We want staff to stay with us for the long term and believe that they will stay if we take good care of them and offer training and development opportunities. Therefore, we always seek to support them and be sensitive to their broader family lives. Also: ; We help them to enhance their knowledge and career/professional development with training and support to get certifications.; Team leaders have been trained to be aware of and sensitive to mental health, diversity and inclusion issues.; We hold daily stand-up meetings for core teams to share knowledge and experiences, solve problems. ; We hold podcasts and monthly hackathons as strategies to encourage engagement across the company in learning activities to build knowledge and collaboration.; Our line managers regularly hold “keeping-in-touch” hold meetings with their team members allowing them to ask for support, not only with work-related issues but also their personal issues.; Staff are encouraged to participate in community volunteering or charity projects (examples include being a school governor and guest lecturing at a university).; We support home-working with office equipment if needed to ensure ergonomically sound working environments.; We have hybrid and flexible working to account for varied staff circumstances.; Mental health is taken seriously, and staff are encouraged to consider the mental health of colleagues and are provided with mental health learning resources. ; Employees have access to a range of health and wellbeing options that include an employee assistance programme, a free counselling service provided by fully qualified professionals. ; Our HR system allows the rewarding of “Thanks”, which is open to all employees and is a standing agenda item on company days. Company seeks to celebrate work anniversaries, exam results, certifications etc.

Pricing

• Price: £3,599 to £10,999 a licence a month
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: With an agreed and signed proposal, we can offer a 2 month trail at the beginning of a new contract, with a break clause.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at samantha.cole@data-vault.com. Tell them what format you need. It will help if you say what assistive technology you use.