JMW Systems Ltd

Inforoute (MaaS)

JMW Inforoute mobility as a service (MaaS) software including real time passenger information software, traffic signal priority systems, digital signage, VMS displays, onboard bus computers, car parking, vehicle counting, solar powered transport infrastructure and fuel management systems.


  • Bus and Coach Real Time Information
  • Secure Remote Access on web enabled devices
  • Real Time Analysis and Statutory Reporting including historical data
  • Manage and Maintain Display and VMS advertising
  • Live Tracking Predictions including departure and arrival predictions for Buses
  • Scheduled Bus, Coach and Rail timetable information
  • Dynamic Parking Spaces and Vehicle Counting
  • Traffic Signal Prority integration with UTCs
  • Distribution of information to digital signage and VMS messaging
  • Real Time Management of solar bus shelters


  • Produce and Publish Scheduled Real Time Information to any device
  • Back Office Reporting with Comprehensive Analytics System
  • Generate Transport Compliance Reports in Real Time
  • Help manage and reduce carbon footprint
  • Provide transport data to Smart Cities Platforms
  • Manage Transport Infrastructure in real time
  • Control Digital Signage and VMS displays
  • A single cloud based platorm for controlling MaaS
  • Generate Printed Timetable Information
  • Manage Maintain and Report on Depot fuel stocks


£4000 per licence

  • Free trial available

Service documents


G-Cloud 11

Service ID

3 9 0 8 1 9 7 7 4 2 7 2 9 0 4


JMW Systems Ltd

Chris Ryan


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints There are no known constraints
System requirements
  • Internet Access
  • Compatible Web Browser
  • Software Licence
  • Internet Enabaled Devices
  • Data input

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Response times are subject to each clients SLA with JMW
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.1 AAA
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Onsite support
Support levels JMW provide a support and service desk that can be contacted through email, phone and the electronic ticketing system linked through our hosted web-based software.

Engineers provide onsite support is provided throughout the UK.

Each customer has a dedicated account manager.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started JMW provide user manuals and training. End user training and service documentation is provided.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction JMW work with the customer to extract the data in an appropriate format subject to specification on notification of contract end.
End-of-contract process JMW agree to provide all relevant documentation and a single extract of the data as per agreed specification, removing all data from the servers and backup copies.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service The browser interface has been developed to provide user access to the system in a consistent and intuitive way following W3C standards.
Service interface No
What users can and can't do using the API JMW Inforoute API is available on request. 3rd Party users cannot use the information for commercial gain. JMW operates a fair use policy for information requests from via the api.
API documentation Yes
API documentation formats PDF
API sandbox or test environment No
Customisation available Yes
Description of customisation JMW Inforoute is a modular platform enabling users to add and remove services as required.

JMW can provide a managed service its administrators can specify input data types and can configure outputs to 3rd party systems and devices.


Independence of resources The JMW Inforoute system is resourced for the finite amount of users who are able to use the service.


Service usage metrics No


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest Physical access control, complying with another standard
Data sanitisation process No
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach JMW are required to export any data required by the customer.
Data export formats
  • CSV
  • Other
Other data export formats
  • Txt
  • Xls
Data import formats Other
Other data import formats
  • CIF
  • TransXchange

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability JMW SLA: Urgent faults will have an engineer on site within a two hour period, working to either resolve the urgent fault or to downgrade to a less urgent fault within six hours and providing a complete repair within 48 hours. Less Urgent faults would be repaired within 48 hours
Approach to resilience Information is available on request
Outage reporting Should an outage occur JMW will issue an email from the service desk detailing the cause of the problem and details of when the issue will be resolved.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
Access restrictions in management interfaces and support channels All users have a pre-agreed access to the web based system appropriate to their user level. Reports are available on the system to monitor individual usage.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 EY CertifyPoint
ISO/IEC 27001 accreditation date 20/11/17
What the ISO/IEC 27001 doesn’t cover JMW systems hardware and some 3rd party reverse engineering of physical devices.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security No
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes JMW are accredited to ISO 9001:2008 and ISO 14001:2004.

We are audited externally once a year and internally each quarter to ensure we follow our policies and procedures. As part of our employee induction all new staff are trained on these policies and procedures and an annual review is completed.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach JMW are accredited to ISO 9001:2008 and ISO 14001:2004, as part of this we are audited on our design and development process which is record on our various platforms including but not limited to JIRA and Confluence. Further information is available on request
Vulnerability management type Supplier-defined controls
Vulnerability management approach JMW assess threats on a case by case basis taking into account the type of threat, the level of threat and how it affects our software and hardware infrastructure. Patches are typically deployed on a time scale based on the level of threat. Known high vulnerabilities are patched within a few days and medium risk vulnerabilities within 10 days and low risk vulnerabilities within a month. Information on threats typically comes from AWS, software vendor notifications and security message boards.
Protective monitoring type Supplier-defined controls
Protective monitoring approach JMW regularly view detailed logs of access and attempted access. All access to servers is blocked, only allowing access to the website via the standard port. As part of our quality assurance JMW respond instantly and put a plan in place immediately based on the level of threat.
Incident management type Supplier-defined controls
Incident management approach JMW have pre-defined processes in place through agreed SLA's with third party suppliers. Users are able to report incidents through the web based ticketing system. JMW have a help desk available to assist any incidents. JMW provide incident reports through communicate with users via the ticketing system and also provide communication via email dependant on the incident.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £4000 per licence
Discount for educational organisations No
Free trial available Yes
Description of free trial Demo systems can be accessed via web enabled devices, user training, standard SIRI integration, Local Atco.cif file or TransXchange uploads.

Service documents

Return to top ↑