Bramble Hub Limited

Bramble Hub GGP Systems - Web Mapping in The Cloud

GGP Web Mapping in The Cloud is a fully hosted service via Amazon Web Services. It has been designed to meet the Web Mapping needs of Public Sector bodies and when coupled with a spatial database provides a flexible platform delivering web mapping to staff and the general public.


  • Intranet and Internet Web Mapping
  • Based upon an Open Source platform
  • Works with all mainstream Spatial Databases
  • Utilises Ordnance Survey base mapping (Open Data & PSMA)
  • Editing and Spatial Queries via Intranet GIS by staff
  • Mapping portal provides fast response to requests for spatial information
  • Consumes OGC WMS and WFS services, Google & Bing mapping
  • Integrates with Back office systems
  • Customisable Printing to PDF via Print Templates
  • 'Where's my Nearest, Report It , Local Plan, Brownfield Sites


  • Internet Web Mapping promotes Channel Shift
  • Sharing spatial data with the Public and the community.
  • Easy to use - ideal for non-technical people
  • Managed service reduces overall cost of ownership
  • Authorities are freed from managing costly and complex GI infrastructure
  • Spatial Data Warehouse provides a single repository for authority data
  • Build using Open Source code, using Open standards
  • Efficient access to, sharing, distribution and management of information
  • Secure Cloud based platform via Amazon Web Services
  • Comprehensive support is provided by a dedicated Service Desk


£6000.00 per virtual machine per year

Service documents

G-Cloud 11


Bramble Hub Limited

Roland Cunningham

+44 (0) 2077350030

Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to GGP Web Mapping in the Cloud can link to any OGC web services, including: GeoServer; MapServer; IDOX; GoogleMaps; Open StreetMap; Ordnance Survey;; NHS Direct and This enables a wealth of mapping data to be incorporated within both internet (public) and Intranet web mapping environments.
Cloud deployment model
  • Public cloud
  • Private cloud
Service constraints Access to the GGP Web Mapping in the Cloud service is available on a 24 x 7 basis. Planned maintenance windows, when the service will be unavailable, typically occur once every quarter usually outside standard working hours. GGP will agree maintenance windows with Amazon Web Services and inform customers in advance.
The only technical requirements clients must adhere to will be to connects to the service via a fast ethernet/Broadband connection. The user must access the system via a browser meeting the minimum requirements
System requirements
  • Access to a fast broadband internet connection.
  • Supported browser

User support

User support
Email or online ticketing support Email or online ticketing
Support response times 9am to 5:30pm on weekdays, excluding public holidays and the period between Christmas and New Year, when the company is closed.
Priority 1 - System Down
Definition - Critical business failure.
Target Response - Within 15 minutes
Priority 2 – High
Definition Key element of service not available or incident affecting 10 or more users or a complete department.
Target Response Within 30 minutes
Priority 3 – Standard
Definition Incident affecting 2-9 users.
Target Response Within 4 hours
Priority 4 - Low
Definition Issue only affecting a single user or Advice & Guidance required.
Target Response Within 4 hours
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels GGP Systems provides remote support to all customers. Support is available Mondays to Fridays, 09:00 – 17:30 on Business Days, excluding public and bank holidays and the period between 24th December and 2nd January. It provides (a) user support; and (b) using commercially reasonable efforts to correct any Material Defects. When the support case is logged, a Case number is provided which will allow the case to be tracked throughout the process to resolution and closure. All support cases are assigned a priority level after assessment by the support handler.
GGP does not have any physical access AWS Data Centres.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started GGP will provide setup, configuration and training.
Key stages in the on-boarding process comprise the following, managed underGGP’s Project Management Methodology which is based on PRINCE2.
• Customer completes standard registration/order
• Customer provides file containing user profiles for loading
• Customer provides gazetteer data (if required) for loading
• Customer provides data overlays for initial migration and setup
• User interface configuration requirements agreed
• Implementation costs and timescales finalised based on data and configuration requirements
• Data migration and user interface configuration undertaken by GGP
• System administrator and end user training provided
• Service commencement
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction Data is available for extraction in common GIS formats.
Data volumes over 100GB will require an individual extraction plan including agreement on extract media.
Users are also able to execute a Dump or Export of data held within their RDBMS; any flat files can be uploaded to a database or exported.
End-of-contract process Customers must provide 3 months’ notice of termination. Following completion of a service termination form an exit plan will be agreed including data extract arrangements. .

Data is available for extraction in common GIS formats. Data volumes over 100GB will require an individual extraction plan including agreement on extract media.

After contract termination all live client data will be deleted. All customer specific backups will be destroyed. There is an additional charge for providing individual backup services.
Please contact GGP for pricing

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install Yes
Compatible operating systems Windows
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Only certain solutions are available to Mobile users. The public facing community portal - providing view only access to Local Plan, Where's my nearest; Report it activities are available to mobile users.

The Admin module is an installed application that resides on the Administrator's pc and is separate from the services running on Amazon Web Services.
Service interface No
What users can and can't do using the API This is a SOAP / Rest API that allows Data to be read in (e.g. Gazetteer data ...)
There is also an API which links to Google Analytics for audit trail.
API documentation Yes
API documentation formats
  • PDF
  • Other
API sandbox or test environment No
Customisation available Yes
Description of customisation The GGP Web Mapping in the cloud solution allows adminitrators to customise the working environment allowing what datasets can be viewed; setting up user accounts and access controls to databases, tables and fields and other GIS files. The administrator also controls the visual look and feel of their application, controling which icons/buttons are available to each group of users and through the use of CSS styling sheets.
All data sources, WMS feeds and links to other OGC compliant services are controled by the customer adminitrator through the Administration module.


Independence of resources AWS will use commercially reasonable efforts to make Amazon EC2 and Amazon EBS each available with a Monthly Uptime Percentage (defined below) of at least 99.95%, in each case during any monthly billing cycle.
AWS offers additional options to ensure availability, including Load Balancing that features high availability, automatic scaling, and robust security.
Please discuss these options with GGP to receive a separate quotation for this service.


Service usage metrics Yes
Metrics types The Administration module provides details on User Access and data access details, along with records of any data updates or changes undertaken.
Reporting types
  • API access
  • Reports on request


Supplier type Reseller providing extra features and support
Organisation whose services are being resold Amazon Web Services

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach Data is available for import/export in common GIS formats. Data volumes over 100GB will require an individual extraction plan, including agreement on extract media.
If required, GGP will export data on behalf of the client and provide the data on media and in formats agreed with the client.
Data export formats
  • CSV
  • Other
Other data export formats
  • .shp
  • GeoJson
  • GML
  • Microsoft SQL Manager-SQL Dump - BKS
Data import formats
  • CSV
  • Other
Other data import formats
  • SHP
  • GeoJson
  • GML
  • Tiff /GeoTiff
  • JPG
  • GIF
  • ECW
  • Mr SID
  • Mid/Mif

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Legacy SSL and TLS (under version 1.2)

Availability and resilience

Availability and resilience
Guaranteed availability AWS will use commercially reasonable efforts to make Amazon EC2 and Amazon EBS each available with a Monthly Uptime Percentage (defined below) of at least 99.95%, in each case during any monthly billing cycle.
AWS offers additional options to ensure availability, including Load Balancing that features high availability, automatic scaling, and robust security.
Please discuss these options with GGP to receive a separate quotation for this service.

No financial recompense is offered for the unavailability of GGP Web Mapping in the Cloud.
Approach to resilience GGP Web Mapping in the Cloud is provided within the Amazon Web Service environment. AWS solutions can be configured to include Load Balancing; High availability; Multiple hosting; backup and recovery options within the UK or abroad. Should customers require additional services, GGP will be happy to discuss and implement them enabling a bespoke environment capable of meeting the exact customer requirements. Depending upon these requirements, an additional charge may be levied by AWS to provide these services.
Please discuss your requirements with GGP staff.
Outage reporting GGP's Amazon Web Service offering is configured with both Email and SMS service outage alerts.

Email and SMS details are setup within the Administration module

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Dedicated link (for example VPN)
  • Username or password
  • Other
Other user authentication Windows Authentication
Access restrictions in management interfaces and support channels Access to the management console is through an installed windows application on the administrators workstation only
Access restriction testing frequency At least every 6 months
Management access authentication
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users receive audit information on a regular basis
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications Yes
Any other security certifications Cyber Essentials

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach Information security governance covers people, processes and technology. The security controls in use at GGP Systems take account of human, environmental and physical factors and cover information in all its forms including paper records. Our security governance encompasses policies, processes, procedures, tools and training.

A top level policy, which sets out the information security objectives, has been signed off by Senior Management. GGP Systems has defined accountabilities and responsibilities at a high level, making top management accountable for information security but ensuring that staff are also aware of their personal roles and responsibilities.
Information security policies and processes GGP Systems Limited follow industry best practice and are certified under the Government's Cyber Essentials scheme, meeting or exceeding all guidelines, including: Boundary Firewalls and Internet Gateways; Secure Configuration; Access control; Malware protection and Patch Management

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Change management encompasses the following criteria
- Announcement: Communicate intention to make change (Updates / Patches / Configuration)
- Overview: Detailed overview of changes that will occur
- Reasoning: The reason(s) behind the changes being made
- Benefits: How does the change(s) benefit the client/users
- Timeframes: Expected timeframes for preparation, planning, consultation, implementation and evaluation.
- Additional Factors: Consideration of other factors – Network disruption, previous updates etc
- Training: Any necessary training for clients/users if changes directly affect them.
Vulnerability management type Supplier-defined controls
Vulnerability management approach GGP Systems Limited follows the tenets of the Governments Cyber Essentials scheme: Critical and Important updates are applied automatically upon release (Important may be delayed by up to one week).
Other updates are checked for relevance to software/operating system installation and are installed monthly where relevant.
Protective monitoring type Supplier-defined controls
Protective monitoring approach GGP Systems Limited takes security seriously. Access to all GGP Amazon EC2 instances is restricted to authorised GGP Systems Limited personnel and is via VPC VPN only. Intrusion protection software is provisioned as part of our instance image, configured with real-time notification of detected incidents. Incident response is treated as a Critical Business Failure and is actioned within 15 minutes.
Incident management type Supplier-defined controls
Incident management approach Users may contact support via email;telephone or web chat, Mon-Friday 9am to 5:30 pm : Priority 1:Critical Business Failure, response within 15 min.; Priority 2:Key element of service not available, respond within 30 min; Priority 3:Incident affecting 2-9 users, response within 4 hrs; Priority 4: Incident affecting a single user, response within 4 hrs. Reports will be circuated on request.

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £6000.00 per virtual machine per year
Discount for educational organisations No
Free trial available No

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑