Alchera Technologies

Alpha Data Tool

Smart-City & Mobility real-time data platform to create and enhance data feeds. Alpha enables creating open access API's to historical and real-time data sources, enhancing them with data fusion and predictive analytics. Useful for large scale business-critical or operations-critical real-time data applications including public-private sector data exchange and/or data monetisation.


  • Sensor agnostic real-time data ingestion from multiple sources.
  • Open API documented using Swagger.
  • User management with access control.
  • Privacy by design with real-time data access auditing.
  • Bring-your-own-model capability to add custom analyses.
  • Sensor fusion data enhancement.
  • Predictive analytics on time series.
  • Build Ingest-Analyse-Distribute data pipelines.
  • Implement data monetisation


  • No need to maintain custom data infrastructure.
  • Future-proof your data collection, analysis and distribution processes.
  • Provide robust and high quality data feeds to your users.
  • Centralise management of data sources.
  • Integrate and manage your existing ETL processes.
  • Benefits councils, regional transport authorities, and fleet operators.
  • Benefit from data revenue business models


£1000 to £85000 per unit per month

  • Education pricing available
  • Free trial available

Service documents


G-Cloud 11

Service ID

4 1 7 0 3 1 6 7 2 7 8 7 2 7 1


Alchera Technologies

Anna Jordan


Service scope

Service scope
Software add-on or extension No
Cloud deployment model
  • Public cloud
  • Private cloud
Service constraints No
System requirements
  • Users to use supported browsers on client machine
  • Broadband network connection

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Response times are during supported hours Mon-Fri, 9am to 5pm.

1hr for High Priority incidents (ie, total service outage)

4hr for Medium Priority incidents (ie, degradation of service affecting all users)

12 hr for Low Priority incidents (ie, degradation of service for a single user)
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Support is provided as standard 9am to 5pm UK working hours as part of the base platform fee.

Higher support levels can be purchased as additional service if required. Each customer is assigned a cloud support engineer.
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started We provide in-person onsite training as well as on-boarding user and administrator documentation.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction Users can dump the data to CSV files.
End-of-contract process Access is disabled and data is deleted after 6 months or on request. Data export is available after the end of the contract at a pro-rata cost.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
Application to install No
Designed for use on mobile devices No
Service interface Yes
Description of service interface Users can list, add, modify data feeds, data pipelines, and users.

Users can monitor the status of the platform and of the data collection, analysis, and distribution pipelines.
Accessibility standards None or don’t know
Description of accessibility Where possible we follow the accessibility guidelines. We offer the accessibility capabilities of the browser in which our application runs, e.g magnification, contrast and audio descriptors of text (but only if supported by the host browser).
Accessibility testing We have currently not performed any accessibility testing with assistive technology users. As an equal opportunities company, we committed to equality and diversity in the workplace and would be willing to work with affected potential users to improve accessibility should the situation arise.
What users can and can't do using the API Users can list, add, modify data feeds, data pipelines, and users.

Users can query data.
API documentation Yes
API documentation formats Open API (also known as Swagger)
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Customisation can be agreed with the Supplier.


Independence of resources Users can opt into a dedicated infrastructure solution which is not shared with other users.


Service usage metrics Yes
Metrics types Data points throughput
API data usage
Historical dataset size
HTTP request and response status
Reporting types
  • API access
  • Real-time dashboards


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest Scale, obfuscating techniques, or data storage sharding
Data sanitisation process No
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Data can be exported as CSV dumps or via API calls.
Data export formats
  • CSV
  • Other
Other data export formats
  • JSON
  • Datex II
Data import formats
  • CSV
  • Other
Other data import formats
  • JSON
  • XML
  • GTFS

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability During any contractual engagement the availability SLA is agreed with the end-user and is appropriate for their usage requirements. Our level of service is also dependent on services offered by others, such as the infrastructure provider.
Approach to resilience Architecture available on request.
Outage reporting Status page and email alerts.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels Using user authentication and authorization.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for Between 6 months and 12 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Our VP of Engineering is responsible for the security of our service, using Secure by Design principles. They are responsible for maintaining the security policies and reporting on threats, issues, and risks through our corporate risk management approach - which includes monthly reporting to our management board.
Information security policies and processes At an individual level, access to production systems are tightly controlled and monitored through a combination of internal processes and infrastructure provider control systems. Security decisions are taken by our architectural design forum, and breaches are managed through our internal incident management process and reported up through the VP of Engineering to board level as necessary.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Software and configuration changes are versioned and deployments are recorded for internal auditing. Manual and automated QA processes are in place before release of any changes to production environments.
Vulnerability management type Supplier-defined controls
Vulnerability management approach All packages in-use are checked against the most recent security releases in the appropriate channels and vulnerabilities are patched according to the effective risk based on their public severity score (e.g. CVSS) and their potential impact on the service.

We actively monitor security forums and sources for new threats as well as performing regular penetration testing on our service.

Infrastructure security is delegated to infrastructure providers.

Due to our agile (Scrum based) approach to software development patches to our software can be produced, tested and released very quickly.
Protective monitoring type Supplier-defined controls
Protective monitoring approach We proactively monitor our platform and system logs and will act on suspicious activity to further investigate in more detail.
Incident management type Supplier-defined controls
Incident management approach Our service management processes are based on ITIL best practice. Users can report incidents by calling our support phone number or sending email to our support address. Incident reports are provided as part of our standard incident management process.

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Public sector networks

Public sector networks
Connection to public sector networks No


Price £1000 to £85000 per unit per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Basic HOMESTEAD license for a limited time period or 30 days.

Service documents

Return to top ↑