Blue Fox Technology Ltd


OpusMap is hosted software for producing and publishing online interactive mapping. OpusMap allows users to upload, edit and amend GIS data for optimised web access and user interaction. Applications include Local and Neighbourhood Plans, property and asset mapping, tourism and route mapping.


  • Single organisation licence with no user limits
  • Access from any computer via a standard web browser
  • Content Management System for publishing maps and documents
  • Design and build interactive maps for your web audiences
  • Author and publish interactive documents
  • Build 2-way links between maps and documents
  • API for integrating with other software including consultation systems
  • No limits on how many maps and/or documents are published
  • Publish maps and documents for both public and private audiences
  • Create stand-alone interactive microsites for your maps and documents


  • Publish iterative and final versions of interactive Local Plans
  • Make GIS data more accessible and user-friendly to target audiences
  • Improve project workflows when publishing online maps
  • Operable by technical and non-technical personnel
  • Supports both collaborative and independent working
  • Simple and transparent licence, support and maintenance structure
  • Supported by experienced cartographers and GIS experts
  • Integrate maps with other data and software via dedicated API
  • Simple and transparent licence set-up and pricing structure.
  • Hosting, support and maintenance full inclusive of licence


£2000 to £4000 per licence per year

Service documents


G-Cloud 11

Service ID

9 2 5 4 4 0 8 2 3 6 4 3 1 4 8


Blue Fox Technology Ltd

David Cooper


Service scope

Service scope
Software add-on or extension No
Cloud deployment model Private cloud
Service constraints No service constraints
System requirements None

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Questions are responded to within 1 hour during the working week
Response times will be longer at weekends
User can manage status and priority of support tickets No
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels All updates to OpusMap (and to server technologies that support OpusMap) are automatic and normally will not affect the service given. These updates come at no extra cost.

Blue Fox Technology is only responsible for the software and the service levels of that software that are dependent on OpusMap running on our hosted server.

We are not responsible for:

Customer’s internal firewalls, VPN or equivalent corporate restrictions
Customer’s hardware and computers used to access OpusMap
Ensuring the customer has sufficient numbers of Key Users to implement workflows and outcomes dependent on their use of OpusMap
Support available to third parties No

Onboarding and offboarding

Onboarding and offboarding
Getting started At contract/project start Blue Fox Technology provides all services required for enabling new customers to begin using OpusMap. This includes:

- Establishing a customer domain in the software

- Personalising the customer domain with:
- Corporate branding
- Base mapping
- Address data/street gazetteer data
- Placename data e.g. Villages or Wards

- On site training
- Provision of video manuals

Ongoing support and maintenance for the duration of the contracted licence period, including:

- Helpdesk
- Telephone and email support
- Problem reporting system
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Data can be extracted from the system at any time. Documents are available as either HTML or PARSOL compliant XML, and mapping data can be extracted as ESRI Shape Files. Data can also be supplied in Microsoft SQL Server database files upon request.
End-of-contract process Offboarding will occur either when the contract expires or if the contract is terminated for whatever reason (e.g. by request from the customer).

An offboarding plan will be determined in consultation with the customer. This will identify:

- A date for the service to be terminated
- What data/content needs to be transferred from OpusMap to the customer
- What live sites published from OpusMap need to be switched off

We respectfully request written confirmation of termination. In turn we will confirm when all support for OpusMap has been terminated.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Online maps published from OpusMap in the map viewer will be responsive across desktop, tablet and mobile devices
Service interface Yes
Description of service interface OpusMap includes an integrated Content Management System for managing and updating maps and data
Accessibility standards WCAG 2.1 AA or EN 301 549
Accessibility testing We have not undertaken interface testing for users of assistive technology
What users can and can't do using the API An API is available to allow users to integrate mapping into third party software. It allows selection of maps as either complete maps, specific layers, or specific sites within a chosen layer.

API access is added as part of setting up the service and is enabled where and when specific projects require it.
API documentation Yes
API documentation formats PDF
API sandbox or test environment No
Customisation available Yes
Description of customisation We provide a number of value added services that enhance the user experience of OpusMap to help meet one-off or ongoing project requirements. These services are customised to each licensee's individual requirements. They include:

1. content and data customisation
2. base mapping customisation
3. integration services
4. functionality customisation


Independence of resources We leverage Cloud computing resources to ensure that no one user's service can impact another. This allows us to scale resources if and when required.


Service usage metrics No


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance None

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations No
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least once a year
Penetration testing approach In-house
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach Data can be exported from the system at any time. Documents are available as either HTML or PARSOL compliant XML, and mapping data can be exported as ESRI Shape Files. Data can also be supplied in Microsoft SQL Server database files upon request.
Data export formats Other
Other data export formats
  • ESRI Shape File
  • PARSOL Compliant XML
  • HTML
Data import formats Other
Other data import formats
  • ESRI Shape File
  • MapInfo TAB File

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability Our data centre's SLA indicates that network resources are guaranteed available 100% of the time, and hardware resources are guaranteed for 99.9% of the time. This SLA excludes any scheduled or emergency maintenance.

In reality, this means that no more than 1.5 minutes of downtime should occur in a single day. The data centre offers a compensation scheme should this be exceeded.
Approach to resilience This information is available upon request.
Outage reporting We use third party systems to report outages via email and text alerts. An API and public dashboard are also available.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication Username or password
Access restrictions in management interfaces and support channels Access is restricted via roles and claims, which allows us to give broad accessibility to types of resources as well as restricted access to specific resources within the system.
Access restriction testing frequency At least every 6 months
Management access authentication Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for Between 1 month and 6 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes All data is stored on servers housed in secure data centres. No personal, or confidential data is stored in our offices. Data from servers are backed up via secure services.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All system changes are logged and tracked in issues and commits. Internally we conduct informal code reviews to prevent security issues.
Vulnerability management type Supplier-defined controls
Vulnerability management approach Our servers are managed and patched by a trusted ISO 27001 compliant partner. Our own software stack is updated as required and patched immediately if necessary. We use a minimal software stack and get security reports directly from the projects involved.
Protective monitoring type Supplier-defined controls
Protective monitoring approach Error logs are regularly checked and any required response is immediate.
Incident management type Supplier-defined controls
Incident management approach Server and infrastructure incident reports are provided by our server management partners. Users can report incidents by email or by phone. Incident reports are provided directly to affected users as required.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £2000 to £4000 per licence per year
Discount for educational organisations No
Free trial available Yes
Description of free trial You can trial OpusMap for free. Supply us with some sample data and we can set-up a trail map. There are step by step video tutorials so you can familiarise yourself with all the tools available and walk through the process of creating and publishing a map to the Web.
Link to free trial

Service documents

Return to top ↑