VIA Voice Command and Control

Providing mission critical voice dispatch needs, VIA Command and Control solution for multi-party voice collaboration for the efficient co-ordination of mission-critical responses. VIA Command and Control is built to be used with the Speakerbus iTurret. This market-leading hardware offers full functionality for instance communication, with the scalability your business needs.


  • Multi PSTN Calling
  • Dedicated Cloud Hosted Service
  • FCA and MiFIDII Compliant Call Recording, 7 years
  • Full PSTN based conferencing service avaliable
  • Eight speaker channels, with the option to 32
  • Up to 10 voice calls at one time per turret
  • Two handsets, optional headset and gooseneck microphone
  • Quality speakers and low-latency microphones


  • Disaster Recovery for voice
  • Multiple line capacity
  • Call prioritisation
  • Urgent call interruption
  • Emergency alerting
  • Talker identification
  • Push-to-talk control
  • Multi-location integration
  • Instant collaboration and intercom


£350 per person per month

Service documents

G-Cloud 10



Ross Buggins

+44 333 344 2464

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints Utilisation of VIA provided iTurret devices
System requirements
  • Provided with Speakerbus iTurret
  • VIA Connect

User support

User support
Email or online ticketing support Email or online ticketing
Support response times First response maximum 2 hours.

Category C - 8 hours
Category B - 4 hours
Category A - 30 minutes
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support Web chat
Web chat support availability 9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard None or don’t know
How the web chat support is accessible Through the users can talk to a representative who can guide them to the support phone numbers and ticketing system.
Web chat accessibility testing None
Onsite support Yes, at extra cost
Support levels We provide on site support, configuration and network diagnostics at our standard daily rate. Minimum of half day.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started We can provide and recommend: onsite training, remote training and a detailed user guide. We also have extensive KB articles.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction Contact VIA Support
End-of-contract process Contract extension options in line with G-Cloud stated agreement are available.  Customers wishing to terminate the VIA G-Cloud service will be required to provide at least 30 days’ notice to terminate their services subject to the original agreed terms.

Using the service

Using the service
Web browser interface No
Application to install No
Designed for use on mobile devices No
Accessibility standards None or don’t know
Description of accessibility None
Accessibility testing None
Customisation available Yes
Description of customisation Each iTurret can be uniquely configured to suit the users and the environments specific needs.


Independence of resources We have multiple VIA Command and Control pools. We fully monitor the usage on the VIA platform.


Service usage metrics Yes
Metrics types Service reporting is available on request.
Reporting types Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Developed Vetting (DV)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach Call recordings can be exported through the VIA REPLAY web portal.
Data export formats Other
Other data export formats On Request
Data import formats Other
Other data import formats Submit on request

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • Bonded fibre optic connections
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability Monthly Uptime Percentage Month Service Credit
< 99.9% = 25%
< 99% = 50%
< 95% = 100%
Approach to resilience Available on request.

Including: multiple data centres, multiple IP carriers, multiple SIP carriers, mutiple rack clusters. HA switching and routing.

To customer, resilient HA routers and dedicated VIA Connect services.
Outage reporting A public dashboard
Email alerts
SMS alerts
Webhooks API
Slack Integration

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels VIA Support is restricted to only accessible by by VIA support staff. Customer end users have access to their support tickets by using their VIA credentials - or SSO credentials (including MFA where configured).

VIA infrastructure access is restricted to infrastructure team staff in a least requirement model. Staff are given access to the systems they require for the work they are completing.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for Between 6 months and 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for Between 6 months and 12 months
How long system logs are stored for Between 6 months and 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 QMS
ISO/IEC 27001 accreditation date 15/01/2016
What the ISO/IEC 27001 doesn’t cover None.
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications Yes
Any other security certifications Cyber Secure

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes VIA's security reporting structure follows ISO 27001. It includes notification of the Data Control Officer before any planned work that may impact security systems, and also if any breaches occur. There is a clear procedure in place if there is a breach, with domain admins being notified automatically, and all users having the option to sign up for notifications.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All work requires a Schedule of Work (SOW) to be completed by the DevOps manager. Each department is responsible for supplying the needed detail through checklist systems. The DevOps manager reviews these and creates the SOW. For changes that may impact customers, the SOW is supplied to customers through email notifications and updates.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Most systems are Microsoft based systems. Microsoft release regular security patches. These are tested on a staging platform for compatibility and then released to the production system pools. VIA also have regular penetration testing of all public facing systems.
Protective monitoring type Supplier-defined controls
Protective monitoring approach All office based staff traffic passes through IDS/IPS for detecting rouge data. Document storage is protected with Information Rights Management (IRM) based credential systems for restricting access. All production edge firewalls are fully monitored for multiple attack vectors. All server hardware is monitored for fluctuations in traffic and resource use.
Incident management type Supplier-defined controls
Incident management approach Incidents are reported by users through the VIA Support Portal, or through the support phone line. All major incidents have an RCA completed. These are reviewed monthly to look for common patterns or causes. Customers can request access to RCA reports.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £350 per person per month
Discount for educational organisations No
Free trial available No


Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑