LabWare Ltd

LabWare Laboratory Information Management System

LabWare’s Enterprise Laboratory Management Platform is a unique and proven suite of product capabilities that encompass LIMS, ELN and LES method execution solution.

LabWare is a global LIMS and ELN company, supplying a wide range of industries such as pharmaceutical, environmental, food and beverage, clinical, forensic and chemical analysis.

Features

• Comprehensive Sample Tracking
• Visual Workflow Manager
• Instrument Management
• Comprehensive Audit trail/history
• Stocks and Reagent management
• Instrument Real time Data collection
• Integrated Electronic Laboratory Notebook
• SOP/Document management
• 21 CRF part 11 Compliant

Benefits

• Positive Sample tracking and tracability
• Single point of truth for all Laboratort data and Information
• Reduced costs and improved efficiency
• Improved transparency to lab work status
• Flexibility to accommodate new Lab processes
• Improved quality and compliance

£2600 per licence

• Education pricing available

Service documents

• Pricing document (pdf)
• Service definition document (pdf)
• Terms and conditions (pdf)

Framework

G-Cloud 11

Service ID

474810883852888

Contact

LabWare Ltd

Graham Langrish

0161 927 5600

langrish@labware.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Private cloud
  • Hybrid cloud
• Service constraints: There are no specific constraints to the LabWare Service
• System requirements: Supported Browsers only... i.e Chrom, Firefox, IE/Edge,

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: LabWare provides comprehensive LabWare LIMS technical product support services via a technical support helpdesk. Dedicated Support services are provided from our UK office as well as from our European and world-wide offices permitting “follow the sun” support around the world. ; The Support Desk operates during standard business hours on normal working days, and identical best practices are followed at each of the regional support locations. In addition, LabWare offers extensive on-line support services that allow 24-hour instantaneous access to LabWare’s knowledge bases.; Severity 1 - 2 hours max; Severity 2 - 4 hours max; Severity 3 - 24 hours
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: None or don’t know
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: 24/7 cloud support engineer.....; Product Support @ £2900 per annum; Provides Technical Support
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: LabWare is a full services organisation and will provide a variety of user training to a specific customers requirements.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: LabWare will provide the customers/users their data by extraction of the data/information from the database.
• End-of-contract process: LabWare will provide the customer data at the end of the contract at a reasonable cost at the relevant time.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: LabWare mobile application is desiged specifically for mobile devices, that includes supports for iOS and Andriod.
• Service interface: No
• API: Yes
• What users can and can't do using the API: LabWare provides access to a scripting language called LIMS Basic that can be used to automate processes, support interfaces, and publish Web services.
• API documentation: Yes
• API documentation formats:
  • HTML
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: LabWare is a configurable off the shelf application. Configuration can occur at the server level, API level and master data level.; All levels are privilege controlled.

Scaling

• Independence of resources: LabWare has well defined server sizing guidelines, and any system managed by LabWare are provided to that standard.

Analytics

• Service usage metrics: Yes
• Metrics types: Metrics to be configured using LabWare technical services
• Reporting types:
  • API access
  • Real-time dashboards
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • European Economic Area (EEA)
  • EU-US Privacy Shield agreement locations
• User control over data storage and processing locations: Yes
• Datacentre security standards: Supplier-defined controls
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with another standard
• Data sanitisation process: Yes
• Data sanitisation type: Explicit overwriting of storage before reallocation
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: User can Export data from the LabWare application using CVS file, Excel file, Crystal Reports formats.
• Data export formats:
  • CSV
  • ODF
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Excel
  • AnIML - (Analytical Instrument Markup Language)

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network: Other
• Other protection within supplier network: Internal Firewall and subnetting.

Availability and resilience

• Guaranteed availability: LabWare guarantee 24/7 availability of the Servers, 99.5% ; Availability of the application is dependent on the access provided to the customer.
• Approach to resilience: The service provides hot standby redundant servers for single point failures.
• Outage reporting: LabWare has a private dashboard in its NOC centre. ; LabWare provides the customer with email alerts.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: Security requirements are customer defined.
• Access restrictions in management interfaces and support channels: Functional and Groups security within the application, which can be customer defind.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Description of management access authentication: Customer definable configuration.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: SOC-2
• Information security policies and processes: We have implemented a formal information security program including applicable policies and procedures. The program has been audited and we are SOC-2 compliant.; ; We have deployed a formal change management process, quarterly review sessions and an information security audit procedure.; Organization:; CEO has the following managers as direct reports:; Regional Manager, Operations/ISMS/Privacy Manager, CISO/Security Manager, Cloud Technology Manager, QA Manager

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Fix Me....!!!!
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Threats are identified by our SOC team utilizing best-of-breed SIEM software which includes vulnerability scanning within built in threat intelligence feeds. Scanning runs each weekend. Any critical vulnerabilities identified will require approval from change advisory board. Other non-critical vulnerabilities are addressed within the normal maintenance schedule which is typically on a monthly basis .
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Security Operations Center (SOC) and Network Operations Center (NOC) continuously monitor infrastructure using various security tools and SIEM suite.The SOC addresses alarms based on the severity of the alarm that is determined by the SIEM solution and custom correlation rules that have been inserted. Alarms are investigated according to an SLA schedule with high severity alarms requiring investigation and alerting within 1 hour.; ; When a potential compromise is identified the Incident Management procedure is executed and action takes place in proportion to the level of severity.
• Incident management type: Supplier-defined controls
• Incident management approach: LabWare provides a comprehensive maintenance and support service to ensure that you obtain the most benefit from your investment. The flexible suite of services enables you to access our support systems and experts quickly and conveniently, according to your needs.; User are able to report incidents via email, telephone or the dedicated LabWare Support web site.; LabWare provides feed back to user incidents via several mechanisms including emails and web postings.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Pricing

• Price: £2600 per licence
• Discount for educational organisations: Yes
• Free trial available: No

Service documents

• Pricing document (pdf)
• Service definition document (pdf)
• Terms and conditions (pdf)