Pramati Technologies Europe Ltd


WaveMaker RAD Studio
Provides state of the art visual Rapid App Development platform to build beautiful modern web and mobile applications
WaveMaker apps are built on Open Standards like HTML5, Angular JS , Spring, Java and Hibernate
WaveMaker generated apps can be deployed to data centers, private or public clouds


  • Visual Application Development with Drag and Drop
  • API Integration for Data Consumption
  • Collaborative App Development
  • Application Authentication and Role Based Access Control
  • Responsive Web and Mobile Application Development
  • Micro Services API Publishing
  • Application Lifecycle Release Management
  • Custom Themes
  • Web Application Security
  • Data Model Designer


  • responsive app design for web and mobile
  • rapid application development
  • data driven application development
  • 1-click app deployment to multiple clouds
  • hybrid mobile application development
  • data driven application development
  • Open standards based app
  • Collaborative application development


£3000 to £3500 per licence per year

Service documents

G-Cloud 10


Pramati Technologies Europe Ltd

Anand Jammi


Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to It can connect to other services such as REST,SOAP APIs, java services and web services
Cloud deployment model Hybrid cloud
Service constraints Service is upgraded every quarter and there is a very short downtime for less than an hour during that time
System requirements 16GB RAM, 1-00GB Disk Space, 2 CPU

User support

User support
Email or online ticketing support Email or online ticketing
Support response times The support response time can vary on the weekends.
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support Web chat
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Using the chat interface on the SaaS platform
Web chat accessibility testing .
Onsite support Yes, at extra cost
Support levels Tier 2, 3 and 4 based on agreed upon SLA's.
Premium support - 15% of License Cost
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started The SaaS platform has an online first time user experience in place which has extensive videos and documentation to help the user get started.
Service documentation Yes
Documentation formats HTML
End-of-contract data extraction Users can export their projects as a WAR or Zip file at any point while engaged with the platform.
End-of-contract process Platform license - USD 45,000 per year (for 10 developers)
Each additional developer would be USD 4,000 per user in batches of 5.
> 10 developers pricing can be discussed as bulk price.
Premium support - 15% annually

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install Yes
Compatible operating systems
  • MacOS
  • Windows
Designed for use on mobile devices No
Accessibility standards WCAG 2.0 AA or EN 301 549
Accessibility testing WaveMaker platform allows end users to develop their own responsive web and hybrid mobile applications using our platform in a Rapid and iterative fashion. The platform supports assistive technologies, however the end user would need to configure and enhance the application to his needs.
What users can and can't do using the API WaveMaker platform generates API's and each aspect of the API can be controlled by the end user. All application functionality can be controlled via API's.
WaveMaker enforces micro-services architecture across the platform and end users need to leverage the architecture for their apps.
API documentation Yes
API documentation formats Open API (also known as Swagger)
API sandbox or test environment Yes
Customisation available Yes
Description of customisation WaveMaker is a Rapid Application Delivery platform. End users can customize each aspect of the platform to their needs. WaveMaker provides a WYSIWIG editor to documentation/training to enable users to perform customization.


Independence of resources Service is hosted on AWS public cloud platform. WaveMaker service has scalable and high performance architecture built on top of Docker Container based architecture that supports user growth and demand without affecting users already using the service


Service usage metrics Yes
Metrics types Number of users, Number of Applications, Number of Applications Deployed, Number of Containers, Current Service Version
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations EU-US Privacy Shield agreement locations
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest Other
Other data at rest protection approach Access control
Data sanitisation process No
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Data Export feature is part of the service that allows user data to be exported as Excel, Database Export as well as via APIs
Data export formats CSV
Data import formats CSV

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Legacy SSL and TLS (under version 1.2)
Data protection within supplier network Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability Support Policy is provided here,
Approach to resilience Service Level Agreements are here
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels WaveMaker Platform can be setup as a fully secure container on SSL. Additionally WaveMaker can integrate with HTTPS services either as REST ful interfaces or as Web Service interfaces.

WaveMaker fully supports integration with AD. WaveMaker support using AD for both Authentication as well as Authorization. Also SSO can be integrated with AD. SAML is also supported.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information You control when users can access audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information You control when users can access audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 TUV
ISO/IEC 27001 accreditation date 11/4/2018
What the ISO/IEC 27001 doesn’t cover None
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification Yes
Who accredited the PCI DSS certification Trustwave
PCI DSS accreditation date 27/09/2017
What the PCI DSS doesn’t cover PCI DSS Self Assessment Questionnaire (SAQ) based certification is covered. WaveMaker doesn't electronically store or transmit credit card information, but 3rd party integration with Recurly/TSYS is done to handle payments. Recurly is a PCI-DSS validated 3rd party service provider, and a customer directly interacts with this service from his browser for performing any card transactions.
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards
  • ISO/IEC 27001
  • Other
Other security governance standards HIPAA
Information security policies and processes ISO Standards and we have a security structure in place to ensure stringent security practices

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach We have an elaborate change management process to track each component across its lifetime. In fact we have a rapid release management pipeline with continuous integration to ensure agility.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Our platform is constantly checked for vulnerabilities and all known issues are constantly fixed within reasonable timeframes. We issue hot patches very frequently for all known issues. Additionally, since our platform is used to develop applications we also advise our end customers for manual workarounds where applicable as part of the support.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Platform level compromises are constantly reviewed and fixed with each incremental (minor -2 weeks and major quarterly) releases.
Application level compromises will need to be handled by platform users, while we provide architectural support.
Incident management type Supplier-defined controls
Incident management approach We provide a central portal where platform users can report incidents. For common events we provide email notifications to the platform users.
Mitigation strategies in terms of manual workaround or platform fixes such as hot-fix or next available release information are appropriately dessiminated.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks Yes
Connected networks Other


Price £3000 to £3500 per licence per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial 30 day free trial of the platform with chat support .
Link to free trial


Pricing document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑