EVP Group Ltd

Archidata Integrated Property Management

Delivering 8D BIM for estates and facilities operations.

A unique property management platform that standardises data and consolidates building management systems into one access point.

The only platform that converts existing 2D data to 3D.

Improve data accessibility. Increase interoperability.

Functions include: CDE, BIM, Projects, Compliance, Safety, Reporting, Sustainability, IOT.


  • Building Information Modelling (8D BIM for Operations)
  • Estates Operations Management, CAFM, Common Data Environment (CDE)
  • IOT Enabled Geospatial Platform, Indoor Mapping, Wayfinding, Contact Tracing
  • Integration of Existing Management Systems (BMS, IWMS, Finance)
  • Live Building Data, Graphic Dashboard Reporting, Interactive Floor Plans
  • Space & Equipment Management – Supports GS1 GLNs Asset Management
  • Energy & Compliance Mapping - Big Data Visualisation
  • Integrated Stock Condition Assessment PPM – Façade & Materials Management
  • Consolidated Project/Contract Management & Commissioning (NEC Contract Suite)
  • Unlimited Concurrent Users


  • Increase operational efficiency through integrated estates management
  • Modernise building data by automatically converting to BIM standard
  • Centralise access to all estates data through single interface
  • Streamline Project Management and improve collaboration
  • Real time compliance visualisation across estate
  • User flexibility with no licence charge per concurrent user(s)
  • Save money by reducing onsite hardware, software and technicians
  • Save money by rationalising separate software systems (BMS)
  • Conduct and manage Stock Condition and 6 Facet surveys
  • Improve Emergency Preparedness through online building plans and data


£10,200 an instance a year

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at andrew.murray@evpgroup.io. Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

6 1 1 6 4 0 9 1 1 7 6 8 2 2 0


EVP Group Ltd Andrew Murray
Telephone: 07745 409052
Email: andrew.murray@evpgroup.io

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Can also enhance:
Asset Management Systems
Helpdesk, PPM
Finance Systems
Smart Building Systems
Provides a location-based database for EDI within GS1
Room Booking
Preventative Maintenance
Security, Energy, Fire and Compliance
Emergency Preparedness
Survey, Inspection and Audit Applications
IOT, RFID & Barcode Management Systems

Examples: Microsoft Azure Maps, Maximo & Yardi
Cloud deployment model
Private cloud
Service constraints
Archidata has very few restrictions:

• Delivery of the Archidata cloud service is reliant on a good quality internet connection.
• Access to the Archidata web-based interface requires an internet-enabled device e.g. PC, mobile device, etc. (not included as part of the Archidata solution).
• Standard Support is limited to 09:00 – 17:00 Mon-Fri (excluding bank holidays). Additional support available by arrangement.
System requirements
  • Live Internet connection
  • Internet-enabled device
  • Modern web browser

User support

Email or online ticketing support
Email or online ticketing
Support response times
Standard support is available between 09:00-17:00 Mon-Fri (excluding Bank Holidays). We respond to calls within 30 minutes. We seek to resolve questions at the point they are raised. Questions that cannot be immediately resolved are logged and allocated for resolution via second or third line technical support. Response times are regularly reviewed as part of our internal quality procedures. Out of hours support (e.g. for weekends) is available on request, to similar response times.
User can manage status and priority of support tickets
Phone support
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
The web chat system we would use for clients has multiple features to help assistive technology users including co-browsing (allows an agent to view and control the visitor’s keyboard and mouse to assist them quickly), audio and video chat. These have been repeatedly tested by a QA team that regularly tests features and documents their findings in test reports. This includes features like the sizing of words, colours, contrast requirements, ability to tab across each element, etc – the kind of things that really help users with assistive technology.
Onsite support
Yes, at extra cost
Support levels
Our standard inclusive support package for includes:
· UK based telephone & web chat support Mon-Fri 09:00-17:00
· Web-based remote support (via common platforms Teamviewer, etc)
· Video-conferencing support (via common platforms – Google, Zoom, Skype, Teams, etc.)

Clients will be provided with an account manager who will be your initial contact for all queries or problems.

Out of hours technical support can be supplied as per your requirements. Costs will vary depending on cover required.
Support available to third parties

Onboarding and offboarding

Getting started
Our standard onboarding support will guide you through data migration and implementation, set up and roll out.

Training is available onsite or remotely depending on your requirements. A designated account manager will be available to you to address any issues, concerns or queries you may have.

Documentation is available for all modules, and support is available by phone, email and video-conference.

Your customised journey with us may include:

1. Requirements Analysis
2. Data Implementation
3. Onboarding Support
4. Systems Integration
5. Ongoing Support

When we begin to work together, we will want to know how your data is currently structured, what systems work and which could work better. Most importantly, we want to understand what your ambitions are, and what your short-term and long-term goals are. This will help us to create your bespoke implementation plan, and together we will prioritise what inefficiencies to address first.

We want our partnership to be an integral part of your Digital Transformation.

Further details and diagrams are available in our Service Description Document.
Service documentation
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Data stored on the Archidata platform always belongs to you. As such, all data will be provided digitally in native format with the relevant index database. Archidata provides a rich set of data export tools that you can use to transfer your data into an alternative system.

EVP has never had any client seek to offboard from the Archidata solution but, if you wish, we can convert your files from Archidata standard formats out to another format as a service available under G-Cloud Lot 3 services Archidata / BIM Cloud Support.

As an alternative off boarding option, we can discuss with you setting up a static website version of Archidata. Further import of data would no longer be possible, however access to existing data and visualisation could still be available. This could be useful for you while your users are adapting to your new solution. Systems integrations could not be guaranteed as these may require on-going maintenance/fees.

Any other specific off-boarding requirements will be agreed with you on commencement of the call-off contract.
End-of-contract process
The ability to import new data to the Archidata system will cease 60 days from contract termination date. This is to allow EVP to prepare data exports and provision any on-going web access, as per any agreed off-boarding requirements.

All data will be provided digitally in native format. The relevant index database can also be supplied.

As an alternative off boarding option, we can provide a static website version of Archidata (additional charges will apply). Further import of data would no longer be possible, however access to existing data and visualisation may still be available. Systems integrations cannot be guaranteed as these may require on-going maintenance/fees.

Using the service

Web browser interface
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Chrome
Application to install
Designed for use on mobile devices
Differences between the mobile and desktop service
The Archidata solution is accessible from mobile devices via a browser and does not require the purchase of any additional licensing. Archidata is not available as a native mobile app.
Service interface
Description of service interface
Archidata supports the following service interfaces:
- XML-RPC and AJAX with our main solution
- REST with our software
- SOAP with the custom module that communicates with Salesforce
Accessibility standards
None or don’t know
Description of accessibility
Archidata meets the following Functional Accessibility Requirements under EN 301 549:

9. Web -
9.1 - General (informative)
9.2. Web Content -
9.2.7 - Info & relationships
9.2.8 - Meaningful sequence
9.2.15 - Keyboard
9.2.18 - Pause, stop, hide
9.2.19 - Three flashes or below threshold
9.2.20 - Bypass blocks
9.2.21 - Page titled
9.2.23 - Link purpose (in context)
9.2.24 - Multiple ways
9.2.25 - Headings & labels
9.2.31 - Consistent navigation
9.2.32 - Consistent identification

Archidata is constantly being developed and new features can be used to help support accessibility. Please check for details.
Accessibility testing
Interface testing is carried out over a wide range of tools and users. This testing includes accessibility issues.
What users can and can't do using the API
The Archidata API is fully configurable to enable data interactions with third-party systems, including import and export. External data can be visualised in 3D, and validated against space, equipment, fixtures & zones. Common interactions include fire & security, asbestos, energy usage, maintenance and helpdesk. Easily connect BMS, Asset Management, Patient Management, and Financial systems.
Automatically create a validated Asbestos Register.
Archidata helps to satisfy the increasing requirements of GS1 by forming the core part of the local registry of GLNs.
API documentation
API documentation formats
API sandbox or test environment
Customisation available
Description of customisation
Archidata is a highly customisable solution, designed to adapt to the demands of ever-changing organisations. Examples of customisation include:

● Tiered user access/permissions
● Brand matched aesthetic (logo, colour scheme, etc.)
● Module installation and homepage tiles
● Search functionality (building, department, type, etc.)
● Level of detail (zones, floors, rooms, workstation, equipment, etc.)
● Reports to suit any function and combination of data sources
● Dashboard reporting and automated downloadable reports
● Notifications (type & frequency)
● CAD & 3D model structure, format and aesthetic (standardisation)
● Structure of archive, index and storage


Independence of resources
As part of our implementation planning, each client is allocated an agreed cloud resource based on an estimated maximum number of concurrent users, storage needs and performance requirement, including redundancy.

The service is automatically monitored to verify that agreed performance levels are maintained at all times.

Cloud flexibility and scalability help ensure Archidata can adapt to meet the needs of changing organisations.


Service usage metrics
Metrics types
Traffic monitoring - A database table records all ‘hits’ and captures the IP address of the user, login credentials and page requested among other information.

Upon request, this table can be used to generate reports for the Client. Archidata can also forward the application logs to the Client. A secure way to transfer these log files would have to be agreed.
Reporting types
  • Real-time dashboards
  • Regular reports
  • Reports on request


Supplier type
Reseller providing extra features and support
Organisation whose services are being resold
Archidata Inc. (Canada) see https://www.archidata.com

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
  • Other locations
User control over data storage and processing locations
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with CSA CCM v3.0
Data sanitisation process
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
Archidata is designed to give faster access to all building data. Rapid export functionality is therefore at the core of our solution.

Users can access and export their data in a variety of formats throughout the life of the contract. Archidata includes multiple data export functions to suit the requirements of a public sector estates team. Formats include: SDF, CSV, XML, JSON, IFC, DWG, ASCII, XLS and XLSX

Upon request, we can provide hard copies of data.

We can provide a static version of Archidata where your data can still be accessed with limited functions.
Data export formats
  • CSV
  • Other
Other data export formats
  • DWG
  • IFC
  • XLS
  • JPG
  • PDF
  • JSON
  • XML
  • Other export formats can be customised as required
Data import formats
  • CSV
  • Other
Other data import formats
  • DWG
  • DXF
  • IFC
  • RVT
  • DOCX
  • TXT
  • XLS
  • JPG
  • DAE
  • Any native format in which uploaded documents are stored

Data-in-transit protection

Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • Other
Other protection between networks
HTTPS and SFTP for data and file transmission.
Data protection within supplier network
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
We aim to maintain a minimum service level of 99.9%.

Archidata is available online at any time, except when servers are in maintenance. To minimize issues, maintenance is carried out during off-peak times (evenings and weekends).

Clients are notified in advance of any scheduled maintenance or software updates.

Over the last 12 months from the date of writing, the longest maintenance period was 45 minutes.

While availability is not 100% guaranteed, Archidata has historically maintained excellent availability.

We tailor the SLA and appropriate payments / refunds to requirements agreed with each client. Our SLA describes the levels of quality, availability and responsibility that our clients can expect from us. It will provide reassurance of our commitment to the ongoing delivery of an excellent level of service.
Approach to resilience
Archidata has a multi-layered approach to help ensure resilience.

• A full backup of the SQL database and the IIS folder is made daily and stored separately from the production server. This backup is kept for 30 days. A copy of the SQL database from the first day of each month is archived separately from the production server. This copy is kept for ten years. Upon request, a full copy of the entire system could be made annually and sent to the Client (additional costs apply).
• Archidata has developed a specific continuity plan in case of a pandemic. This document is available on request.
• In order to set up a crisis unit (following a major incident), a checklist is available in strategic places. This checklist will guide the employees in order to determine a coordinator, a containment plan, the actions to take, etc.
• Annual meetings are scheduled to revise protocols to set up a crisis unit and to improve the list of potential incidents.
• RTO and RPO times are dependent on backup frequency and server setup.
• Beyond our standard resilience levels, clients can request a customised resilience plan, which may incur additional cost.
Outage reporting
Archidata issues alerts to keep clients informed.

• Clients are notified at least 24 hours prior to any maintenance events.
• Servers are actively managed for availability and performance. If a possible threat is detected, Archidata would attempt a hot fix prior to notifying clients. In the event that the estimated fix may require longer maintenance, clients would be notified of any potential loss of availability.
• In the event of any subsequent, or unexpected outage, clients will be notified by email immediately. Status updates would be issued until the issue was resolved, within agreed RTO/RPO timescales.
• Historically, Archidata has never had cause to report an outage to a client, other than scheduled maintenance events.
• Notifications can be customised to client specifications (text, email, phone, API).

Identity and authentication

User authentication needed
User authentication
  • Username or password
  • Other
Other user authentication
Access requests are sent to an administrator who will ensure that the relevant authorisation has been granted by the management team prior to authenticating and granting access to the service.

Each user has clearly defined access parameters based on 3 levels of permissions: READ / EDIT / FULL. Most of the modules allow these actions to be set separately. There are 4 kinds of user:

• Administrator
• Primary Manager
• Manager
• External Consultant/Client

This hierarchy is fully customisable and a more detailed user diagram is available on request.
Access restrictions in management interfaces and support channels
Access requests are sent the data administrator who will ensure that the relevant authorisation has been granted by the management team prior to authenticating and granting access to the service.

Employees and administrators are fully trained in data handling specific to their role. Training and performance are overseen by our data administrator.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications
Any other security certifications
  • National Bank of Canada security audit (PASS)
  • City of Montreal security audit (PASS)
  • US Government GSA security audit (PASS)
  • Other security audits available by arrangement
  • EVP hopes to achieve ISO 27001 in 2021

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance approach
Our security standards meet the internal governance required for ongoing company registration and to meet data protection legislation. Archidata is currently being used by the US Government, Bank of Canada and City of Montreal, and has complied with all security standards and audits.
Information security policies and processes
We have a responsibility as a hosted service provider to securely manage our information assets, the information stored by our clients, as well as that provided by our own employees, and to protect that information from unauthorised disclosure, loss of integrity or availability.

We have our own Data Security policy that establishes our data management standards and outlines our governance and responsibilities that ensures the Confidentiality, Integrity, Accountability and Availability of our data is maintained. This serves the both needs of our business and our clients.

Our Data Security policy is applicable to all elements of our business, and relates to the administration, processing and hosting of any client held data.

Our Data Security policy is available on request which outlines:

1. Governance
2. Identity and access management
3. Infrastructure and application security
4. Data protection
5. Management of change, vulnerability and incidents

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Archidata releases an average of 10 patches per year for its solution (on average 2 relate to security). In addition, we apply monthly service packs on servers (firmware & software). The service pack contains a SQL script for changes to both the database and the directory structure that contains the solution replacement files.

Further details on tracking components and assessment for potential security impact are provided in the Vulnerability and Protective Monitoring answers below.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Archidata’s approach is tailored for our clients.

1. Regular security updates to our operating system and framework (.NET) carried out following publication from Microsoft and/or other software providers.
2. On receipt of a security breach notification, we apply relevant updates immediately.
3. Discovered security threats are handled on a case by case basis and their resolution is applied in the next hotfix or service pack according to issue severity. We track our patching process with active software (further details available).
4. We send notifications to keep customers informed of planned works. We test all patches before deployment to live environments.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Archidata monitors potential threats.

1. Archidata identifies potential compromises through a variety of means including SIEM, user reports and vulnerability scanning.
2. Any potential compromises and security events are assessed by our team and investigated to eliminate false positives.
3. Confirmed events are then treated as security incidents according to their assessed severity.
4. Response times are dependent on the detection route and complexity following triage analysis.
Incident management type
Supplier-defined controls
Incident management approach
Our internal incident management process establishes how we respond to reported incidents and faults, and outlines targeted response and resolution times, which are regularly reviewed. Clients can report incidents via phone or email. Incidents are classified as either minor or major. Following any major incident, client feedback and resolution outcomes are reviewed and a Major Incident Report is created and distributed via email.

We will take active measures in collaboration with the client to resolve any major incident. Internal annual meetings are scheduled to review the protocols in place to respond to both major and minor incidents.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks


£10,200 an instance a year
Discount for educational organisations
Free trial available
Description of free trial
We have a range of free online demonstrations available. A member of our team will guide you through each as a trial, highlighting the modules of interest.

Demonstrations are online via webchat, or onsite as part of a presentation.

Videos describing Archidata functionality are also available on the Archidata website.
Link to free trial
As stated above, free demo(s) are available as a trial. Contact us for details.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at andrew.murray@evpgroup.io. Tell them what format you need. It will help if you say what assistive technology you use.