GoReport is a cloud-based, electronic data capture and reporting software application used by surveyors, property investors, owners, operators and consultants in public and private sectors.
GoReport comprises of two main components: Mobile data collection and a web-based portal with real-time desk top publishing and reporting engine.


  • SmartReports Library of survey templates
  • Electronic data capture (paperless system)
  • Streamlined reports
  • Consolidated exports
  • Custom template creation
  • Condition Reports, PPM, Schedule of Condition, Snagging,
  • Dictation - Built in voice to text transcription
  • Easily Edit, annotate and organise photos
  • Diverse survey ranges for Housing, Project Management, Fire Safety
  • Education, Government, Historic Buildings, Health & Safety, Compliance


  • Unlimited report generation, anytime, anywhere
  • Designed and updated by industry experts
  • SmartPins -link information specific locations on images & plans
  • Integrates to Microsoft Word and Excel
  • Professional Services team
  • Customised phrases, text and handwriting recognition for rapid data entry
  • Pre-load standard response, eliminating error in reports
  • Cyber Essentials Certified, committed to guarding customers against cyber-attacks


£1,495 a licence a year

  • Education pricing available
  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at marian.connolly@goreport.com. Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

6 1 7 3 8 0 6 3 1 2 3 9 8 2 9


GoReport Marian Connolly
Telephone: +442896910018
Email: marian.connolly@goreport.com

Service scope

Software add-on or extension
Cloud deployment model
Public cloud
Service constraints
No constraints
System requirements
IOS device for application download

User support

Email or online ticketing support
Email or online ticketing
Support response times
24 hour response, weekends 72 hrs.
User can manage status and priority of support tickets
Phone support
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Onsite support
Yes, at extra cost
Support levels
Urgent calls:
Application issue affecting all users:
- Escalation: Immediately to engineers, Notification issued to management immediately and the CSC informed. Customer contacted within 4-24hrs
-No additional Cost

High calls:
Bugs and Glitches
- Response within 8hrs
- Escalation: Ticket raised and the CSM is notified. This ticket is placed as high priority with Technical Support Engineers and aimed to be resolved within 24hrs.
-No additional Cost

Normal calls:
A section of the template is not working correctly:
-Ticket raised to Technical Support Engineers, it will be added to workload and targeted for completion within 48hrs.
-No additional Cost

Low calls:
Support using the application or password resets etc:
- Response immediately via phone, within 24 hours via email.
- Escalation: If the customer has not had a response within the 24 hour period.
-No additional Cost

Request for Change:
Request for a change to the template:
-Acknowledged within 24hrs, complete within 7 days, dependent on priority. Cost is determined based on the change in scope and time to complete. The customer is advised of costs in advance and signs off on them.

Each customer will be assigned a CSC Customer Success Consultant, who will be dedicated to their support.
Support available to third parties

Onboarding and offboarding

Getting started
Webinar training, onsite training and recorded training material are available to customers.
Service documentation
Documentation formats
End-of-contract data extraction
Users are always advised to keep copies of the reports and to back them up before cancelling as these will then be archived afterwards. A customer who has cancelled can request a document which was uploaded by them to the web portal however there may be a fee for this.
End-of-contract process
Customers are auto-renewed subject to 60 day notice period outlined in Standard Terms & Conditions. Customer Care programme engages clients at regular intervals throughout year.

If the customer chooses not to renew a new contract will be issued.

If they choose not to renew and to cancel, the sales consultant will notify the finance team and the support team who will contact to finalise any outstanding balances and deactivate the account on the final day of the contract.

We do not charge a cancellation fee.

Using the service

Web browser interface
Supported browsers
Application to install
Compatible operating systems
Designed for use on mobile devices
Differences between the mobile and desktop service
On-site data capture is performed by our iOS application. Our web portal which is used for data review and publishing is designed to work equally well on mobile and desktop devices.
Service interface
Customisation available
Description of customisation

Customised reports are written from the ground-up


Independence of resources
All our web based services are hosted within a load balanced environment. As more users access the system additional servers are automatically started as required.


Service usage metrics


Supplier type
Not a reseller

Staff security

Staff security clearance
Staff screening not performed
Government security clearance
Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
Another external penetration testing organisation
Protecting data at rest
Physical access control, complying with another standard
Data sanitisation process
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
In-house destruction process

Data importing and exporting

Data export approach
User can publish completed reports using PDF. They can export their data as JPG, WAV, MP3, XLXS, CSV.
Data export formats
Data import formats

Data-in-transit protection

Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Guaranteed availability
The availability percentage of the Hosted Service other than for Planned Downtime, Unplanned Downtime outside of our control, and Planned Maintenance, shall be 99% availability during Peak Time; and 95% availability for all other periods.

We may use up to five (5) hours in any week, outside of Peak Times, for Planned Maintenance.
Approach to resilience
Our cloud based solution is built to constantly monitor our server based resources for their health status. If a server is considered unhealthy is it removed for the available pool and automatically replaced with a new healthy server.

Additional information is available on request.
Outage reporting
Our staff are altered to any issues our outages within our systems. When an assessment of the severity and likely downtime has been established customers will be informed via email alert.

Identity and authentication

User authentication needed
User authentication
Username or password
Access restrictions in management interfaces and support channels
All management and backend services are completely restricted allowing access only VPN or approved IP Address.
Access restriction testing frequency
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Access to user activity audit information
No audit information available
Access to supplier activity audit information
No audit information available
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications
Any other security certifications
Cyber Essentials

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance approach
Cyber Essentials
Information security policies and processes
GoReport follow defined information security policies and processes which are validated and audited by external accredited security professionals.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
GoReport follow a defined change management approach which allows easy management and visibility of all changes throughout the lifecycle of the software. Mature and defined processes are compiled as part of an internal integrated management system for assessment which follows the principles of ISO9001:2015 and ISO 27001:2013.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
GoReport uses scheduled managed updates to apply minor and patch updates to our servers during a weekly update window.  Updates are applied to a replica of the live system, once the update is complete and verified the live system is swapped out.

GoReport updates libraries during builds and also undertakes independent security and penetration testing.

Vulnerability management is dealt with in a number of different processes including, Operations Management and internal Development Guidelines within our organisations comprehensive Risk Management Strategy. Vulnerability testing is performed by an independent accredited third party.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
GoReport uses a number of different systems for monitoring applications and systems. As a user of AWS, many of these features are easily integrated and permit strong, secure and stable measures to be implemented simply. These measures include monitoring of applications and systems with:

* CloudWatch
* GuardDuty
* AWS Config

These measures are defined as part of ISP9 - Monitoring and evaluation.
Incident management type
Supplier-defined controls
Incident management approach
In order to manage incidents effectively, a defined process has been introduced which has been compiled as part of an internal integrated management system for assessment and certification which follows the principles of ISO9001:2015 and ISO27001:2013.

All incidents are logged within a ticket management system to provide clarity about resolution times, especially where SLA is concerned. All incidents logged feature a clear process for assessment of root cause, impact(especially on CIA factors) and learnings to prevent the incident from recurring. This is managed as part of process A.16 - incident management.

Secure development

Approach to secure software development best practice
Supplier-defined process

Public sector networks

Connection to public sector networks


£1,495 a licence a year
Discount for educational organisations
Free trial available
Description of free trial
We offer a two week trial period. All trials must be approved by GoReport.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at marian.connolly@goreport.com. Tell them what format you need. It will help if you say what assistive technology you use.