ABACO SpA

ABACO Agri

ABACO Agri is the Integrated Administration and Monitoring System (IAMS) for Governments to monitor agriculture, woodland, animal production, rural land-based activities and the environment. Monitoring happens by means of Artificial Intelligence (AI) in accordance with a prospective nascent Agricultural Policy, which aims to deliver public goods.

Features

  • Integrated Administration and Monitoring System (IAMS) for Agricultural Policy
  • APIs and Web Services for Open Standard interoperability
  • Monitoring by means of Artificial Intelligence (AI)
  • Public goods indicators
  • Custom GUIs for Back-office, Front-office and Land Managers
  • Livestock Information and Management System
  • Business and Location intelligence (BI/MI) and reporting
  • Business Rules Engine, Workflow Engine, Customisable processes and forms
  • Land Management and Land Parcel Identification System (LPIS) and QA
  • Geospatial Aid Application (GSAA)

Benefits

  • Unified model for economic, administrative and regulatory agricultural requisites
  • Compliant with EU and non-EU Regulations in Agriculture
  • Service tested and recognised by EU and non-EU Member States
  • Can be a blueprint for any prospective nascent Agricultural Policy
  • Reduce control costs by means of Artificial Intelligence
  • Reduce 'on the spot checks' (OTSC) visits via monitoring
  • Service is scalable, extensible, and secure
  • Offers full features across the cloud, desktops and mobile
  • Highly developed training available
  • Cost effective with functionality provided out of the box

Pricing

£12,000 to £20,000 an instance a month

Service documents

Framework

G-Cloud 12

Service ID

1 7 3 0 5 1 3 2 0 9 8 1 3 0 5

Contact

ABACO SpA Jacopo Milano
Telephone: 0118 315 1276
Email: bid@abacogroup.eu

Service scope

Software add-on or extension
No
Cloud deployment model
Private cloud
Service constraints
The service has no constraints.
System requirements
The system can be used through any major web browser

User support

Email or online ticketing support
Email or online ticketing
Support response times
From Monday to Friday, 9 to 5 (UK time): 4 hours. Outside working hours (including weekends): 4 hours (at extra cost).
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Yes, at extra cost
Support levels
ABACO provide technical support & maintenance (S&M) through a dedicated Help Desk. The Help Desk is coordinated by a technical account manager and staffed with experience personnel, including a team of cloud support engineers who ensure that diagnosis and resolution of configuration and database issues is performed in accordance with a standard Service Level Agreement (SLA). Customer’s priorities are divided in 4 categories (critical, high, medium, low). ABACO will log all incidents within 4 hours and diagnose issues according to the agreed priority level (critical: < 4 working hours; high: 4-8 working hours; medium: < 24 working hours; low: < 20 working days). These support levels are described in the Service Definition document. The standard S&M service cost is already included in the SaaS fee. The standard Service Level Agreement (SLA) can also be adjusted, based on customer’s specific requirements.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
On-Boarding is executed through tools for data loading and through ‘managers’ interfaces for system configuration.
The customer is normally responsible for project management, data cleansing, and verification, but ABACO can undertake these activities on-demand. ABACO also assist and guide the customer through the On-Boarding process where problematic upload of data exists.
The Standard On-Boarding process includes the following phases: preparation, Database alignment (initial data loading and alignment), System Settings.
At the end of the Standard On-Boarding process, the customer will be able to use the system.
Additional On-boarding services are also available on demand. These include discovery workshop, feasibility studies, training, and system customisations.
ABACO has a dedicated training center called ‘ABACO Academy’ which offers a pre-packaged series of training on our products. These courses are designed for different categories of attendees: Business Analysts, System Configurators, End Users and IT Technicians.
We can also plan for instructor-led remote training or, finally, by blending the above techniques.
ABACO has a web portal dedicated to manuals and documentation. It is possible to download didactic units, self-assessment tests, manuals and other useful material.
On-boarding activities are described in greater detail in the Service Definition document.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
  • Other
Other documentation formats
Wiki media
End-of-contract data extraction
Abaco will make the data available to the customer using industry standard formats (e.g. .CSV, .XLS, .SHP) subject to an agreed statement of work which payable fee will depend on the volume, complexity and format of data. After termination of the service, Abaco will anyway keep data available for additional 30 days after which consumer data will be destroyed as per security accredited level. Interim data extraction services, or other data formats, are available subject to an agreed statement of work which payable fee will depend on the volume, complexity and format of data. The system provides tools for user-friendly data extraction.
End-of-contract process
Off-boarding starts at contract end or when termination has been communicated by the customer. Off-Boarding activities are described in section 4 of Service Definition document. Any customer off-boarding responsibilities are normally agreed upfront, e.g. during the on-boarding phase. After project termination, Abaco will make data available to the customer using industry standard formats (e.g. .CSV, .XLS, .SHP) subject to an agreed statement of work, which payable fee may depend on the volume, complexity, and format of data. Data will be anyway accessible in the database at any time at no cost (database dump). After termination ABACO will keep data available for an agreed amount of days. On demand, ABACO will also draft a transition plan and support the client in any synchronisation activity to make sure that data is passed to other client’s systems. Finally, ABACO will use all reasonable endeavor to destroy data when the system is decommissioned. General exit provisions are described in our T&C in sections 15.3 and 15.4.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Solution is built using adaptive web design combined with responsive web design. The UI has only minor differences between the mobile and desktop service. The service may also include a free of charge augmented reality mobile app.
Service interface
Yes
Description of service interface
Customer access the service through a Graphical User Interface (GUI).
An RBAC permission model ensure that the only users with the assigned role can access parts of the functionalities.
Elements of the GUI include windows, pull-down menus, buttons, scroll bars and icons designed to create an optimised user experience in the performance of each service operation task.
Accessibility standards
None or don’t know
Description of accessibility
Every web page has a title describing its topic or purpose. Labels or instructions are provided where content requires input and are designed to ensure a consistent navigation experience across the service.
The service provides both textual and graphical information. Where graphical content is provided, a textual alternative is also provided. However, when geography-related services (e.g. maps) are provided, some functionality of the content is not operable through a keyboard, but a mouse is also required.
Where possible, searches can be performed without map interpretation or interaction and search results displayed on a map are also provided in textual sections.
Accessibility testing
None
API
Yes
What users can and can't do using the API
ABACO Agri supports communication through: Http and Https, Web services (RESTful or SOAP), APIs provided as an SDK (Software Development Kit), that must be explicitly requested, but as part of the service. The software provides web services interfaces to support interoperability within a SOA (Service Oriented Architecture). It offers APIs for developers of custom applications. GIS data can be served through standard OGC® services (WMS, WFS). These APIs mirrors all the functionalities provided by the software and allows the complete management of all the data used by the system. Full documentation of all the functionalities and capabilities available will be provided.
API documentation
Yes
API documentation formats
  • HTML
  • PDF
  • Other
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
Business workflows and rules are customisable to easily adapt to project requirements.
Configuration/customisation is performed through dedicated ‘manager’ interfaces so even inexperienced users could directly configure the software.
However, ABACO advises performing software configuration only after suitable training by ABACO Academy training professionals. Alternatively, ABACO can provide business analysis and software configuration.
For more information on customisation options please get in touch with the ABACO sales team: bid@abacogroup.eu.

Scaling

Independence of resources
Our Performance QA team covers critical performance testing types including ‘load testing’ to model system usage levels, which are exceeding expected thresholds. This is done by simulating multiple users accessing the service concurrently. Infrastructure provisioning is optimised against utilisation, thus reducing performance risks and scalability issues, but improving cost-effectiveness at the same time. ABACO work with top-level hosting services provides and can cater for a scalable approach depending on specific project needs.

Analytics

Service usage metrics
Yes
Metrics types
Several service usage metrics can be provided, e.g. 'active users'. Specific service usage metrics can be provided through database queries.
Reporting types
Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
European Economic Area (EEA)
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
Never
Protecting data at rest
Physical access control, complying with another standard
Data sanitisation process
Yes
Data sanitisation type
Explicit overwriting of storage before reallocation
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
ABACO Agri allows data export in the following formats: CSV, XLS or SHP (for spatial data). User can set export criteria, obtaining the corresponding file.
Data export formats
  • CSV
  • Other
Other data export formats
  • XLS
  • SHP
Data import formats
  • CSV
  • Other
Other data import formats
  • XLS
  • SHP

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
  • Other
Other protection between networks
Data are also protected by antivirus, antimalware, firewall and proxy.
Data protection within supplier network
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
  • Other
Other protection within supplier network
Data are also protected by antivirus, antimalware, firewall and proxy.

Availability and resilience

Guaranteed availability
ABACO warrants at least ninety-nine percent (99%) System Availability over any calendar month. Should
ABACO fail to achieve ninety-nine percent (99%) System Availability over a calendar month, Customer shall have the right to receive a
credit equal to two percent (10%) of its subscription fees for the Service for that month, for each one percent (5%) (or portion thereof) by
which ABACO fails to achieve such level, up to one hundred percent (100%) of the fees for such month. This is Customer’s sole and
exclusive remedy for any breach of this service level warranty; provided however, that should ABACO fail to achieve ninety-nine percent
(99%) System Availability in each of two (2) consecutive calendar months, Customer shall have the right to terminate the Order Form for
cause, in which case ABACO will refund to Customer any prepaid fees for the remainder of its subscription term after the date of
termination. Claims under this service level warranty must be made in good faith and by submitting a support case within ten (10)
business days after the end of the relevant period.
Approach to resilience
Available on request.
Outage reporting
Outages can be divided in three main categories: scheduled, planned, unplanned. ABACO will report outages through email alerts, which cadence depends from the outage category they belong to. Scheduled outages (routine interruptions which can be planned), e.g. routine maintenance or inspection of equipment are notified 1 month in advance. Planned outages (interruptions prearranged on relatively short notice) are notified 24 hours before the event. Unplanned outages are automatically notified as soon as an interruption occurs.

Identity and authentication

User authentication needed
Yes
User authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels
System access is controlled through formal procedures. Abaco employees and contractors can only access systems if an authorisation is granted.
Each application access must be approved by an authorised manager. The IT Service Department is then responsible for creating new user accounts following formal authorisation. Restrictions are agreed between the IT Service Department and the authorised manager.
Accounts and access privileges can be amended or removed at the request of an authorised manager, e.g. when an individual changes position or leaves.
Administrator accesses are known only by authorised personnel with the Abaco management mandate.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
Between 6 months and 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
Between 6 months and 12 months
How long system logs are stored for
Between 1 month and 6 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
RINA Services Spa
ISO/IEC 27001 accreditation date
20/06/2016
What the ISO/IEC 27001 doesn’t cover
Our IT infrastructure is fully covered by the certification without exclusions.
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
20/02/2020
CSA STAR certification level
Level 1: CSA STAR Self-Assessment
What the CSA STAR doesn’t cover
Our IT infrastructure is fully covered by the certification without exclusions.
PCI certification
No
Other security certifications
Yes
Any other security certifications
Cyber Essentials

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
Abaco follow international information security best practices and is certified ISO27001. The certification was achieved in 2016 after successful completion of a formal compliance audit performed by an independent and accredited certification body.
ISO27001 provides a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system (ISMS).
ABACO have implemented all ISO27001 controls and the system is traced and reported with procedure, instructions, risk analysis, incident reports, backup and recovery system… etc. aligned with the standard.
Abaco endorses the principles of the Code of Practice and have dedicated personnel to make sure ISO27001 policies are enforced.
We see the Information Security Policy a significant component to achieve full compliance.

Operational security

Configuration and change management standard
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach
Change logs are provided for each software update. All changes are traced and their history is maintained, thus ensuring full traceability. Development and Testing teams work on dedicated environments.
Data is backed up in a designated STORAGE area (SAN repository), in a specific confidential location, protected by an authorisation mechanism based on username and password.
The storage area is equipped with multiple levels of security/data redundancy and is replicated, through a software synchronisation mechanism, on two different physical servers (primary and secondary storage area). Each storage area is secured by a hardware synchronisation and equipped with a snapshot mechanism.
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
The Head of IT Service Department ensure that access rights and traffic control are correctly maintained on all Abaco networks. Access rights to networked applications must be controlled by project and service managers. Access to the systems is controlled on two levels: - Through firewall and proxy rules that constantly advise the IT department about potential threats. - Through domain groups and policies in Active Directory. Network traffic is monitored and logged for audit and control purposes on all servers. Status reports are produced monthly. Information security patches are guaranteed within 4 hours.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
Incidents related to information security concerning corporate IT systems are protected by a firewall that emails reports directly to the Head of IT Service Department. The Head of IT Service Department takes responsibility for severity assessment, incidents response and reporting. The security is restored in the 24 hours after the incident is reported.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
ABACO have a pre-defined process for managing incidents related to information security. Corporate IT systems are protected by a firewall that emails reports directly to the Head of IT Service Department. Incidents affecting employees PCs are reported directly by the staff to the Head of IT Service Department. The Head of IT Service Department takes responsibility for severity assessment, incidents response and reporting by analysing the causes of the incident, adopting a suitable treatment in respect of the occurrence detected, recording the occurrence in the specific form The Head of IT Service Department updates constantly the incident report.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
No

Pricing

Price
£12,000 to £20,000 an instance a month
Discount for educational organisations
No
Free trial available
No

Service documents