ABACO SpA

SITI4farmer

SITI4farmer is the Agricultural Knowledge Information System allowing end-to-end traceability, quality control and monitoring of the Agri-food chain.
It combines available data sources (satellite, drones, sensors ... etc.) and eases knowledge exchange amongst farming-based organisations, technical experts, research institutions, and government to support decisions by means of Artificial Intelligence.

Features

  • Indicators for farm performance measurement
  • Monitoring via Artificial Intelligence (AI)
  • Agricultural Knowledge Information System
  • Graphical crop plan and Subsidy payment simulation
  • Decision Support System (DSS) for agricultural practices
  • Crop and plant protection management
  • Agrometeorological Indexes
  • Augmented reality mobile app to track activities on-the-field
  • Interoperability with precision farming sensors
  • Online GIS interface to navigate the most recent land data

Benefits

  • Deliver better targeted local policies based on local data
  • Environment protection & sustainable farming
  • Improved productivity (producing more using less inputs) & efficient resource
  • Crop and plant desease prevention and management
  • Flood risk assessment & disaster recovery management
  • Mobile working through an augmented reality app
  • Reduce 'on the spot checks' (OTSC) costs
  • Enable digital collaborative working within the gri-food sector
  • Strengthen the agri-food sector
  • 'Farm to fork' traceability

Pricing

£12000 to £20000 per instance per month

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 11

495900267560230

ABACO SpA

Jacopo Milano

0118 315 1276

bid@abacogroup.eu

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints The service has no constraints.
System requirements The system can be used through any major web browser

User support

User support
Email or online ticketing support Email or online ticketing
Support response times From Monday to Friday, 9 to 5 (UK time): 4 hours. Outside working hours (including weekends): 4 hours (at extra cost).
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels ABACO provide technical support & maintenance (S&M) through a dedicated Help Desk. The Help Desk is coordinated by a technical account manager and staffed with experience personnel, including a team of cloud support engineers who ensure that diagnosis and resolution of configuration and database issues is performed in accordance with a standard Service Level Agreement (SLA). Customer’s priorities are divided in 4 categories (critical, high, medium, low). ABACO will log all incidents within 4 hours and diagnose issues according to the agreed priority level (critical: < 4 working hours; high: 4-8 working hours; medium: < 24 working hours; low: < 20 working days). These support levels are described in the Terms and Conditions document (T&C). The standard S&M service cost is already included in the SaaS fee. The standard Service Level Agreement (SLA) can also be adjusted, based on customer’s specific requirements.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started On-Boarding is executed through tools for data loading and through ‘managers’ interfaces for system configuration.
The customer is normally responsible for project management, data cleansing, and verification, but ABACO can undertake these activities on-demand. ABACO also assist and guide the customer through the On-Boarding process where problematic upload of data exists.
The Standard On-Boarding process includes the following phases: preparation, Database alignment (initial data loading and alignment), System Settings.
At the end of the Standard On-Boarding process, the customer will be able to use the system.
Additional On-boarding services are also available on demand. These include discovery workshop, feasibility studies, training, and system customisations.
ABACO has a dedicated training center called ‘ABACO Academy’ which offers a pre-packaged series of training on our products. These courses are designed for different categories of attendees: Business Analysts, System Configurators, End Users and IT Technicians.
We can also plan for instructor-led remote training or, finally, by blending the above techniques.
ABACO has a web portal dedicated to manuals and documentation. It is possible to download didactic units, self-assessment tests, manuals and other useful material.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction Abaco will make the data available to the customer using industry standard formats (e.g. .CSV, .XLS, .SHP) subject to an agreed statement of work which payable fee will depend on the volume, complexity and format of data. After termination of the service, Abaco will anyway keep data available for additional 30 days after which consumer data will be destroyed as per security accredited level. Interim data extraction services, or other data formats, are available subject to an agreed statement of work which payable fee will depend on the volume, complexity and format of data. The system provides tools for user-friendly data extraction.
End-of-contract process Off-boarding starts at contract end or when termination has been communicated by the customer. Any customer off-boarding responsibilities are normally agreed upfront, e.g. during the on-boarding phase. After project termination, Abaco will make data available to the customer using industry standard formats (e.g. .CSV, .XLS, .SHP) subject to an agreed statement of work, which payable fee may depend on the volume, complexity, and format of data. Data will be anyway accessible in the database at any time at no cost (database dump). After termination ABACO will keep data available for an agreed amount of days. On demand, ABACO will also draft a transition plan and support the client in any synchronisation activity to make sure that data is passed to other client’s systems. Finally, ABACO will use all reasonable endeavor to destroy data when the system is decommissioned. General exit provisions are described in our T&C in sections 15.3 and 15.4.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Solution is built using adaptive web design combined with responsive web design. The UI has only minor differences between the mobile and desktop service. The service may also include a free of charge augmented reality mobile app.
Service interface Yes
Description of service interface Customer access the service through a Graphical User Interface (GUI).
An RBAC permission model ensure that the only users with the assigned role can access parts of the functionalities.
Elements of the GUI include windows, pull-down menus, buttons, scroll bars and icons designed to create an optimised user experience in the performance of each service operation task.
Accessibility standards None or don’t know
Description of accessibility Every web page has a title describing its topic or purpose. Labels or instructions are provided where content requires input and are designed to ensure a consistent navigation experience across the service.
The service provides both textual and graphical information. Where graphical content is provided, a textual alternative is also provided. However, when geography-related services (e.g. maps) are provided, some functionality of the content is not operable through a keyboard, but a mouse is also required.
Where possible, searches can be performed without map interpretation or interaction and search results displayed on a map are also provided in textual sections.
Accessibility testing None
API Yes
What users can and can't do using the API SITI4farmer supports communication through: Http and Https, Web services (RESTful or SOAP), APIs provided as an SDK (Software Development Kit), that must be explicitly requested, but as part of the service. The software provides web services interfaces to support interoperability within a SOA (Service Oriented Architecture). It offers APIs for developers of custom applications. GIS data can be served through standard OGC® services (WMS, WFS). These APIs mirrors all the functionalities provided by the software and allows the complete management of all the data used by the system. Full documentation of all the functionalities and capabilities available will be provided.
API documentation Yes
API documentation formats
  • HTML
  • PDF
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Our software is extremely configurable. To give an idea also business workflows and rules are customisable to easily adapt to project requirements. For more information on customisation options please get in touch with the ABACO sales team: bid@abacogroup.eu.
Configuration/customisation is performed through dedicated ‘manager’ interfaces so even inexperienced users could directly configure the software.
However, ABACO advises performing software configuration only after suitable training by ABACO Academy training professionals. Alternatively, ABACO can provide business analysis and software configuration.

Scaling

Scaling
Independence of resources Our Performance QA team covers critical performance testing types including ‘load testing’ to model system usage levels, which are exceeding expected thresholds. This is done by simulating multiple users accessing the service concurrently.
Infrastructure provisioning is optimised against utilisation, thus reducing performance risks and scalability issues, but improving cost-effectiveness at the same time.
ABACO work with top-level hosting services provides and can cater for a scalable approach depending on specific project needs.

Analytics

Analytics
Service usage metrics Yes
Metrics types Several service usage metrics can be provided, e.g. 'active users'. Specific service usage metrics can be provided through database queries.
Reporting types Reports on request

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency Never
Protecting data at rest Physical access control, complying with another standard
Data sanitisation process Yes
Data sanitisation type Deleted data can’t be directly accessed
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach SITI4farmer allows data export in the following formats: CSV, XLS or SHP (for spatial data). User can set export criteria, obtaining the corresponding file.
Data export formats
  • CSV
  • Other
Other data export formats
  • MS Excel
  • GEOJSON
Data import formats
  • CSV
  • Other
Other data import formats
  • XLS
  • SHP

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
  • Other
Other protection between networks Data are also protected by antivirus, antimalware, firewall and proxy
Data protection within supplier network
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
  • Other
Other protection within supplier network Data are also protected by antivirus, antimalware, firewall and proxy.

Availability and resilience

Availability and resilience
Guaranteed availability ABACO warrants at least ninety-nine percent (99%) System Availability over any calendar month. Should ABACO fail to achieve ninety-nine percent (99%) System Availability over a calendar month, Customer shall have the right to receive a credit equal to two percent (10%) of its subscription fees for the Service for that month, for each one percent (5%) (or portion thereof) by which ABACO fails to achieve such level, up to one hundred percent (100%) of the fees for such month. This is Customer’s sole and exclusive remedy for any breach of this service level warranty; provided however, that should ABACO fail to achieve ninety-nine percent (99%) System Availability in each of two (2) consecutive calendar months, Customer shall have the right to terminate the Order Form for cause, in which case ABACO will refund to Customer any prepaid fees for the remainder of its subscription term after the date of termination. Claims under this service level warranty must be made in good faith and by submitting a support case within ten (10) business days after the end of the relevant period.
Approach to resilience Available on request.
Outage reporting Outages can be divided in three main categories: scheduled, planned, unplanned. ABACO will report outages through email alerts, which cadence depends from the outage category they belong to. Scheduled outages (routine interruptions which can be planned), e.g. routine maintenance or inspection of equipment are notified 1 month in advance. Planned outages (interruptions prearranged on relatively short notice) are notified 24 hours before the event. Unplanned outages are automatically notified as soon as an interruption occurs.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels System access is controlled through formal procedures. Abaco employees and contractors can only access systems if an authorisation is granted.
Each application access must be approved by an authorised manager. The IT Service Department is then responsible for creating new user accounts following formal authorisation. Restrictions are agreed between the IT Service Department and the authorised manager.
Accounts and access privileges can be amended or removed at the request of an authorised manager, e.g. when an individual changes position or leaves.
Administrator accesses are known only by authorised personnel with the Abaco management mandate.
Access restriction testing frequency At least every 6 months
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for Between 6 months and 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for Between 6 months and 12 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 RINA Services Spa
ISO/IEC 27001 accreditation date 20/06/2016
What the ISO/IEC 27001 doesn’t cover Our IT infrastructure is fully covered by the certification without exclusions.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications Yes
Any other security certifications Cyber Essentials

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Abaco follow international information security best practices and is certified ISO27001. The certification was achieved in 2016 after successful completion of a formal compliance audit performed by an independent and accredited certification body.
ISO27001 provides a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system (ISMS).
ABACO have implemented all ISO27001 controls and the system is traced and reported with procedure, instructions, risk analysis, incident reports, backup and recovery system… etc. aligned with the standard.
Abaco endorses the principles of the Code of Practice and have dedicated personnel to make sure ISO27001 policies are enforced.
We see the Information Security Policy a significant component to achieve full compliance.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Change logs are provided for each software update. All changes are traced and their history is maintained, thus ensuring full traceability. Development and Testing teams work on dedicated environments.
Data is backed up in a designated STORAGE area (SAN repository), in a specific confidential location, protected by an authorisation mechanism based on username and password.
The storage area is equipped with multiple levels of security/data redundancy and is replicated, through a software synchronisation mechanism, on two different physical servers (primary and secondary storage area). Each storage area is secured by a hardware synchronisation and equipped with a snapshot mechanism.
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach The Head of IT Service Department ensure that access rights and traffic control are correctly maintained on all Abaco networks. Access rights to networked applications must be controlled by project and service managers. Access to the systems is controlled on two levels: - Through firewall and proxy rules that constantly advise the IT department about potential threats. - Through domain groups and policies in Active Directory. Network traffic is monitored and logged for audit and control purposes on all servers. Status reports are produced monthly. Information security patches are guaranteed within 4 hours.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach Incidents related to information security concerning corporate IT systems are protected by a firewall that emails reports directly to the Head of IT Service Department. The Head of IT Service Department takes responsibility for severity assessment, incidents response and reporting. The security is restored in the 24 hours after the incident is reported.
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach ABACO have a pre-defined process for managing incidents related to information security. Corporate IT systems are protected by a firewall that emails reports directly to the Head of IT Service Department. Incidents affecting employees PCs are reported directly by the staff to the Head of IT Service Department. The Head of IT Service Department takes responsibility for severity assessment, incidents response and reporting by analysing the causes of the incident, adopting a suitable treatment in respect of the occurrence detected, recording the occurrence in the specific form The Head of IT Service Department updates constantly the incident report.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No

Pricing

Pricing
Price £12000 to £20000 per instance per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Users can navigate high-quality land and meteorological data at no cost and without time limit.
Premium features are available paying the subscription fee.

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑