FM180 Limited

One Eighty Limited

One Eighty Group is the leading BIM4FM consultancy in the UK. Our digital services include the delivery of 3D BIM models and BIM Level 2 data (via COBie) into Facilities Management software such as CAFM/CMMS/IWMS and Workplace applications. We take data past handover into the whole life-cycle of built assets.


  • Use of 3D BIM model for accessing asset information
  • Using BIM asset information to create whole life PPM regime
  • Document library to link relevant information directly to assets
  • Live reporting on all aspects of system functionality and processes
  • Provide GIS linking to all sites
  • Provide Budget / Actual cost trend analysis for all works
  • Intergral Energy Management function
  • Other functionality includes


  • Deliver greater operational efficiencies against all aspects of Facilities Management
  • Deliver cost savings derived from efficiencies
  • Cast iron digital work paths for audit process


£5,000.00 a licence a year

  • Education pricing available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

2 9 3 0 0 3 4 3 0 8 2 2 3 3 3


FM180 Limited Steve Owen
Telephone: 03306600180

Service scope

Software add-on or extension
Cloud deployment model
Public cloud
Service constraints
System requirements
Access to the internet through a web browser

User support

Email or online ticketing support
Email or online ticketing
Support response times
All response is dependent on contract determined priorities
User can manage status and priority of support tickets
Online ticketing support accessibility
None or don’t know
Phone support
Phone support availability
24 hours, 7 days a week
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
Web chat accessibility testing
FM180 hosts a live support portal that all users have access to.
Onsite support
Onsite support
Support levels
On site support ranges from account manager to technical engineers dependent on contract type
Support available to third parties

Onboarding and offboarding

Getting started
FM180 provide all training in the mobilisation period to ensure confident use of the system by customers. Training can be provided onsite or online and can be continually provided as required
Service documentation
Documentation formats
  • HTML
  • ODF
  • PDF
  • Other
Other documentation formats
  • Word
  • Video
End-of-contract data extraction
Full data extraction is provided as part of contractual services. Data ownership is always client based.
End-of-contract process
At the end of the contract a customers access to the system is turned off and data returned as per contract requirements.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
Application to install
Designed for use on mobile devices
Differences between the mobile and desktop service
The mobile service is available as an application for IOS and Android allowing users to report faults and engineers to conduct work, linking directly to the desktop facility
Service interface
Description of service interface
Web browser or mobile application interface to the cloud
Accessibility standards
None or don’t know
Description of accessibility
Accessibility testing
Current users
What users can and can't do using the API
There are a number of API's currently available allowing access to other software types including financial, energy and BMS. Other API's available as development continues.
API documentation
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
API sandbox or test environment
Customisation available
Description of customisation
System functionality can be customised to meet individual customer needs. System development beyond the normal 'road map' development programme is available at extra cost.


Independence of resources
Scaleability, Hosted platform load balancing in a Tier 3 plus data environment, hosted in the UK


Service usage metrics
Metrics types
Live Dashboards / reports on system data
Reporting types
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type
Not a reseller

Staff security

Staff security clearance
Staff screening not performed
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least every 6 months
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with CSA CCM v3.0
Data sanitisation process
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
In-house destruction process

Data importing and exporting

Data export approach
Excel, PDF, Word. CSV, SQL or Full SQL export, dependent on requirements
Data export formats
  • CSV
  • ODF
Data import formats
  • CSV
  • ODF
  • Other
Other data import formats
  • IFC
  • DWG
  • All video formats
  • Excel
  • Image
  • Word
  • PDF

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network
Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
FM180 aim for 100% service availability through use of a Tier 3 data centre in Manchester with automatic Fail Over at a secondary site in London.
Approach to resilience
Details of data centre available on request
Outage reporting
Email alerts

Identity and authentication

User authentication needed
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels
Access is controlled by User role settings
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
How long system logs are stored for

Standards and certifications

ISO/IEC 27001 certification
Who accredited the ISO/IEC 27001
ISO/IEC 27001 accreditation date
13 Nov 2018
What the ISO/IEC 27001 doesn’t cover
FM consultancy
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance standards
ISO/IEC 27001
Information security policies and processes
ISO 9001 Reporting structure, current GDPR, ISO 27001 via hosted service provider and development teams.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Initial project implementation includes Change control process, Life cycle monitoring of service is provided including technical support. All development is fully specified and assessed prior to sign off by the client.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
On going penetration testing, SSL testing, Cloud Flare and regular patching by development team.
Protective monitoring type
Protective monitoring approach
Constant monitoring of services and database maintenance, leading to immediate response to any potential compromise or incident.
Incident management type
Supplier-defined controls
Incident management approach
Technical support allows categorisation of incident types with appropriate priority assigned to each incident. User reporting via email, web, mobile applications or phone. Reports are provided via automated notification rules.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks


£5,000.00 a licence a year
Discount for educational organisations
Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.