bibliotheca Limited


open+ uses remote interfaces to allow Library Services to determine schedules for staffed, staffless and closed libraries. In staffless mode, open+ controls a range of equipment in the library including door access, barriers, main lights, self-service kiosks, cameras and security alarms. Access control systems utilise existing library membership cards


  • Controls Access
  • Monitors Activity,
  • Manages Devices,
  • Broadcast Messages
  • Schedule opening times


  • No reliance on staff to open and close the library,
  • Events are recorded together with video footage
  • PCs and kiosks are automatically started and shutdown
  • voice messages are broadcast to communicate with Library users
  • Flexible opening hours to suit the public not staff availability


£10000 to £25000 per unit

Service documents

G-Cloud 10


bibliotheca Limited

Lindsay Coupland

0161 498 1140

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints The open+ solution designed for patrons and not staff access control.
System requirements
  • Internet Access: 1 mbit
  • Windows 7 or newer to run
  • Administration software: .Net 4.6 Processor 1 GHz or faster
  • Administration software: RAM Min: 1GB (32-bit) or 2 GB (64-bit)
  • Administration software: Harddisk: 500MB
  • Administration software: GPU: DirectX 9 or newer
  • Administration software:Screen: 1366 x 768 (preferred) 800x600 (min)
  • Electronic door locks
  • Network with PoE support for cameras

User support

User support
Email or online ticketing support Yes, at extra cost
Support response times Email ticketing only
We target that we will contact the customer, supply a call reference number and progress the case within 1 hour
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), 7 days a week
Web chat support No
Onsite support Yes, at extra cost
Support levels Option A : We target will attend site on the next business day Monday to Friday when an onsite visit is required by a field engineer for hardware issues.

Option B: Next day onsite field engineer attendance 7 days per week for hardware issues. 20% addition cost to standard support contract option A

Option C: 4 hour response time for onsite field engineer attendance Monday to Friday for hardware issues. 20% addition cost to standard support contract option A

We provide a specialist open+ engineer for on site visits and a dedicated customer Account Manager for all other issues
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started The service involves on-site hardware and software installation. The system is always provided as a turn-key solution.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Customers will be offered a copy of data with personal and/or statistic information (not settings). All other data will be deleted from the server.
End-of-contract process At the end of a contract,all customer data will be deleted from the server. This service is included as part of the contract cost.

Using the service

Using the service
Web browser interface No
Application to install Yes
Compatible operating systems Windows
Designed for use on mobile devices No
Accessibility standards None or don’t know
Description of accessibility The Administration Program is only for Library Staff. Within the application they can administrate all settings and see logfiles + surveillance recordings
Accessibility testing Patron facing interfaces are optimised. The Entry Panel is designed to be easy to use. Bar-code scanner (if used) is scanning from the button making it easy to reach from a wheel chair. Pin-pad bright colors and tactile.
Pin-pad comply with this:
which is used by Nordic countries guidelines.
Customisation available No


Independence of resources The open+ solution is easy to scale since the load is very flat. Most users generate very little traffic.


Service usage metrics Yes
Metrics types The administration system also allows a statistical insight into the branches number of visitors based on number, gender, age and time of day. The statistics is illustrated by data and graphs in a given period, which may be spread over days, weeks, months or years.
Reporting types
  • Real-time dashboards
  • Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least every 6 months
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Data can be exported from the administration program
Data export formats CSV
Data import formats Other
Other data import formats No data import

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Other
Other protection between networks We only allow outgoing traffic from Library Controller to Open Library Server. Connection is TLS encrypted.
Data protection within supplier network Other
Other protection within supplier network SSL encryption

Availability and resilience

Availability and resilience
Guaranteed availability The solution is available 24/7 and we work to extended support and maintenance hours for which SLA's which are available on request. There are no refunds based on availability of the solution
Approach to resilience This information is available on request
Outage reporting Open+ system failures will be managed via the support and maintenance agreement to the agreed Service Level Agreements.
Any network failures would be recorded in the open+ log files

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Username or password
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Industry Best practice
Information security policies and processes Internal based policies

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Bibliotheca has a change control review process as well as a commercial Software Configuration Management and Operations ticketing workflow system to govern all changes to our service
Vulnerability management type Supplier-defined controls
Vulnerability management approach Bibliotheca actively scans its service assets for vulnerabilities on a regular basis. Depending on the rated severity of a potential vulnerability bibliotheca responds accordingly and follows its change control process to eliminate or quarantine the vulnerability
Protective monitoring type Supplier-defined controls
Protective monitoring approach Bibliotheca actively scans its service assets for compromises on a regular basis. bibliotheca responds accordingly and follows its change control process to eliminate or quarantine the potential compromise.
Incident management type Supplier-defined controls
Incident management approach In the event of an operational security incident that impacts our customers/users accounts or information, bibliotheca will notify the impacted users and provide them a report of the impact and any additional steps to follow

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks Yes
Connected networks Public Services Network (PSN)


Price £10000 to £25000 per unit
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑