Viderum CKAN Developer Platform

Your customised CKAN-based data portal securely deployed on our infrastructure. We allow national, regional and local governments and institutions to operate an easy-to-use open data platform that is quickly set up and easy to maintain. The Viderum CKAN Platform offers multiple extensions with bespoke customisation and responsive developer support.


  • PaaS version of the world's leading open data platform, CKAN
  • Both staging and production instances
  • Easy deployment via Docker, Deis and Github
  • Code reviews by CKAN experts
  • Maximum protection and availability
  • No operational experience required
  • Simple and comprehensive data management solution
  • Open-source. No restrictive lock-in
  • Scalable and robust CKAN infrastructure
  • Daily snapshots with backup retention of 30 days


  • Deployment of your customised CKAN-based data portal
  • Hosting, monitoring and production support by CKAN experts
  • Focus on maintaining your data portal ...
  • ... while we take care of the hosting
  • We take care of pushing your code to production ...
  • ... and offer the possibility of reverts
  • Stay independent - avoid vendor lock-in


£399 per instance per month

Service documents

G-Cloud 9



Sebastian Moleski

020 3318 6056

Service scope

Service scope
Service constraints No constraints
System requirements All platforms supported

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 2-24 hours. Weekend support available.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Elementary Support - Included in CKAN Cloud - Monday to Friday 9-5, 24 hour maximum response time

Basic Support - £ 480/month - Monday to Friday 9-5, 8 hour maximum response time

Standard Support - £1,034/month - Monday to Sunday, 24 hours, 4 hour maximum response time

Expert Support - £1,994/month - Monday to Sunday, 24 hours, 2 hour maximum response time
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Training sessions are provided onsite at an additional cost, online and user documentation is available online and upon request.
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction Customers are able to access and transfer data at any time. A database-dump can be created and all files transferred once a contract is concluded. CKAN Cloud is built on open source code. This means that - unlike proprietary solutions – you are free to move your data to your own hosting at any time, not confined to any lock-ins. Should you choose to migrate we will provide an export of all your data.
End-of-contract process Should a customer decide to discontinue services following the conclusion of a contract, all data is transferred to the customer. A portal migration can be provided upon request at additional cost.

Using the service

Using the service
Web browser interface Yes
Using the web interface Users have access to online CKAN data management portal.
Users can perform various admin functions
Web interface accessibility standard None or don’t know
How the web interface is accessible CKAN open data portals are publicly accessible web-based interfaces mainly used by public administrations that make it easier to access re-usable information. Administration functionality is provided to portal administrators.
Web interface accessibility testing -
What users can and can't do using the API Users can do everything through the CKAN API that is available through the Web UI. CKAN’s Action API is a powerful, RPC-style API that exposes all of CKAN’s core features to API clients. All of a CKAN website’s core functionality (everything you can do with the web interface and more) can be used by external code that calls the CKAN API.
API automation tools Ansible
API documentation Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
  • Other
Command line interface No


Scaling available Yes
Scaling type Automatic
Independence of resources We are utilising modern cloud orchestration technologies and the Kubernetes platform coupled with automated scaling and load balancing to ensure utmost performance for everyone.
Usage notifications Yes
Usage reporting Email


Infrastructure or application metrics Yes
Metrics types HTTP request and response status
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Backup and recovery

Backup and recovery
Backup and recovery Yes
What’s backed up
  • Database
  • Portal
  • Files
Backup controls Automatic backup retention of 30 days. Recovery times in case of failure are within 1 hour
Datacentre setup Multiple datacentres with disaster recovery
Scheduling backups Supplier controls the whole backup schedule
Backup recovery Users contact the support team

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability CKAN is developed in accordance with best practices for building secure web applications and regularly subject to penetration testing as part of government deployments. Our cloud infrastructure meets stringent security standards and all solutions are monitored and SSL encrypted. Our infrastructure providers Microsoft Azure and AWS guarantee both at least 99.9% availability. Should a failure occur, restore times are within 1 hour through daily snapshots with backup retention of 30 days.
Approach to resilience Information is available upon request.
Outage reporting Customer receives email alerts

Identity and authentication

Identity and authentication
User authentication Username or password
Access restrictions in management interfaces and support channels Following access control management of platform
Access restriction testing frequency At least every 6 months
Management access authentication Username or password
Devices users manage the service through Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information No audit information available
Access to supplier activity audit information No audit information available
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Define information policies with customer based on location. Follow up and report to customers information security officer.

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Follow our CCM process. Each component separately managed and tracked to our change management configuration tools.
Vulnerability management type Supplier-defined controls
Vulnerability management approach We assess potential threats based on vulnerability information based on customer reports or penetration test results.
Turnaround time for security patch deployment is 24hrs.
CVE Database, System Component Vendors and internal development teams.
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach Based on monitoring tools.
Lock down the compromised system. Resolve issue that led to compromise
Response time within 1 hour of incident report
Incident management type Supplier-defined controls
Incident management approach Yes
Through email and ticketing system

Secure development

Secure development
Approach to secure software development best practice Supplier-defined process

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart Yes
Who implements virtualisation Supplier
Virtualisation technologies used KVM hypervisor
How shared infrastructure is kept separate Each instance runs within it's own docker container with isolation.

Energy efficiency

Energy efficiency
Energy-efficient datacentres No


Price £399 per instance per month
Discount for educational organisations No
Free trial available Yes
Description of free trial Fully functional open data CKAN portal with pre-installed extensions and support available for 30 days.
Link to free trial


Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑