Europa Technologies Limited

viaEuropa services for British Geological Survey (BGS) map data

viaEuropa is a hosted map and search service designed for BGS data products, including GeoSure. Providing Data-as-a-Service (DaaS), viaEuropa supports broad deployment to multiple platforms. The service supports OGC standards (including WMTS, WMS, WFS) as well as all popular GIS software and web mapping APIs.


  • Tile services (WMTS, XYZ)
  • Web Feature Services (WFS)
  • Web Map Services (WMS)
  • API search services, linking ground risk to OS AddressBase
  • BGS digital map data
  • Location intelligence via API queries
  • Winner of British Cartographic Society award


  • Integrate mapping across multiple applications without local hosting.
  • Query data to get the location information you need.
  • Snap to existing map features when digitising new data.
  • Search by address, postcode, street or locality.
  • Provide accessible mapping to users with colour vision deficiencies.
  • Perfect for Central Government, Local Government, Emergency Services and others.
  • Save effort of maintaining local BGS data holdings.


£295 per unit per month

Service documents

G-Cloud 10


Europa Technologies Limited

Duncan Hill


Service scope

Service scope
Service constraints None.
System requirements
  • Compatible with all modern (currently maintained) web browsers
  • Compatible with software supporting OGC standards
  • Compatible with commercial and open source mapping APIs

User support

User support
Email or online ticketing support Email or online ticketing
Support response times The standard support response time is 1 hour.
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels Standard support is provided between the hours of 09:00 and 18:00 (UK time), Monday to Friday, excluding public holidays in England. Standard support is included at no charge.
Premium support with out-of-hours contacts is also available.
All clients have a named account manager that they can contact directly should they need to.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Users are provided with appropriate instructions and samples to enable them to quickly get started. This includes template applications for common web mapping APIs and files that can be used in popular desktop GIS applications. Training is not usually required.
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction No user data is stored.
End-of-contract process At the end of the contract the user account will be terminated.

Using the service

Using the service
Web browser interface Yes
Using the web interface Demo/template applications provided for OpenLayers v2/v3, Leaflet, Google Maps, Bing Maps and Esri ArcGIS Server API.
Web interface accessibility standard None or don’t know
How the web interface is accessible Accessibility is determined by the web mapping API chosen by the customer. viaEuropa base maps have been designed and tested for users with colour-vision deficiencies.
Web interface accessibility testing ViaEuropa base maps have been designed and tested for users with colour-vision deficiencies.
What users can and can't do using the API Endpoints for mapping services (including WMTS, WFS, WMS) and location intelligence (e.g. address search) services. REST interface for tile services. Access via an API key.
API automation tools Other
Other API automation tools N/A
API documentation Yes
API documentation formats PDF
Command line interface Yes
Command line interface compatibility
  • Linux or Unix
  • Windows
  • MacOS
Using the command line interface Some services available on the command line using cURL.


Scaling available Yes
Scaling type Manual
Independence of resources High level of redundant capacity plus throttling where necessary.
Usage notifications Yes
Usage reporting Email


Infrastructure or application metrics Yes
Metrics types HTTP request and response status
Reporting types
  • Regular reports
  • Reports on request


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations No
Datacentre security standards Managed by a third party
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest Physical access control, complying with another standard
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Backup and recovery

Backup and recovery
Backup and recovery No

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability The target service level is 99.9% availability. Service credits are offered when the Service is unavailable for periods of 45 minutes or more in any calendar month. You will have one day’s worth of your monthly service fee credited to your account if the total outage period in a month is 45 minutes or more and an additional day for each additional 30 minutes of downtime up to 50% of your monthly hosting fee. Further details included in the service agreement.
Approach to resilience Multiple redundant servers and datacentres.
Outage reporting Email alerts.

Identity and authentication

Identity and authentication
User authentication
  • Dedicated link (for example VPN)
  • Username or password
  • Other
Other user authentication API key.
Access restrictions in management interfaces and support channels Username and password credentials required.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Username or password
Devices users manage the service through Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Audit information for users
Access to user activity audit information Users receive audit information on a regular basis
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users receive audit information on a regular basis
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach In accordance with published policy, reviewed annually.
Information security policies and processes Information security policies include the following: Data Protection Policy, Information Classification Policy, Information Security Policy, Information Systems Policy. These policies are included as part of the company handbook and are explained to all staff when they start. Staff are notified when policies have been updated and further training provided where appropriate. All policies are reviewed annually at board-level.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Documented change management and approval process. Security impact assessments with customer consultation and sign-off.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Regular checks on Common Vulnerabilities and Exposures (CVE) database for operating system and system software security weaknesses. All approved software patches applied in a timely manner. Detection and mitigation of attacks including DDoS.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Automatic detection and mitigation of attacks including DDoS. Banded capacity alerts. System administrator intervention where necessary.
Incident management type Supplier-defined controls
Incident management approach Online ticket system integrated with technical support.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Separation between users

Separation between users
Virtualisation technology used to keep applications and users sharing the same infrastructure apart No

Energy efficiency

Energy efficiency
Energy-efficient datacentres No


Price £295 per unit per month
Discount for educational organisations No
Free trial available Yes
Description of free trial A free trial can be requested for a period of up to 1 month.
Link to free trial


Pricing document View uploaded document
Skills Framework for the Information Age rate card View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑