Artificial intelligence (AI) deployment platform

Lumen is a leading data science deployment platform. Available to public sector organisations Lumen makes it easy to connect your data to your data science and deliver results and insights from the start. Data Science deployment is hard but it doesn’t have to be with Lumen.


  • Deploy data science in Python, R, Java, MATLAB and more.
  • Lumen builds data pipelines automatically using AI
  • Connect all of your data to your data science models
  • SaaS or any cloud deployment available; AWS, Azure, UKCloud.
  • Simple drag and drop builder for data science powered apps
  • Output data science results to your chosen data visualisation solution
  • Lumen automate the deployment of data science
  • Full security and encryption
  • 97% SLA
  • A/B test live data science models in Lumen


  • Deploy data science quickly and easily
  • Reduce data science deployment from months to minutes
  • Easily create data science powered apps for your users
  • Improve the number of data science models reaching production
  • Connect your data science directly to any data source
  • Remove the need for a data lake
  • Reduce the IT resources required to deploy data science
  • Automatically containorize your data science in Lumen


£550 a user a month

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.


G-Cloud 12

Service ID

9 2 8 4 8 4 9 9 3 1 5 8 9 2 3


Telephone: +44 (0)7584 099337

Service scope

Service constraints
System requirements
Lumen user license

User support

Email or online ticketing support
Email or online ticketing
Support response times
Subject to agreed SLA
User can manage status and priority of support tickets
Online ticketing support accessibility
None or don’t know
Phone support
Web chat support
Onsite support
Yes, at extra cost
Support levels
We provide an online support portal where customers can raise support tickets. We will agree a SLA per customer in regards to support levels and costs.
Support available to third parties

Onboarding and offboarding

Getting started
Onsite training is provided for data science deployment via Lumen on UKCloud. There is also a documentation centre on the Bellrock Technology website with user guides.
Service documentation
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
A full data extract is available on request.
End-of-contract process
When the contract ends, all data and models are returned to the customer and deleted to remove them all from the platform.

Using the service

Web browser interface
Using the web interface
Users access the Lumen platform through a dedicated web interface. All functionality is accessible via the web browser.
Web interface accessibility standard
None or don’t know
How the web interface is accessible
Platform is available in English via the website.
Web interface accessibility testing
What users can and can't do using the API
API for results are automatically generated when data science is deployed on the platform
API automation tools
  • Ansible
  • Chef
  • OpenStack
  • SaltStack
  • Terraform
  • Puppet
API documentation
API documentation formats
Command line interface


Scaling available
Scaling type
Independence of resources
The platform is available via an elastic deployment to ensure it performs to agreed standards.
Usage notifications


Infrastructure or application metrics


Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least once a year
Penetration testing approach
Protecting data at rest
Encryption of all physical media
Data sanitisation process
Data sanitisation type
Deleted data can’t be directly accessed
Equipment disposal approach
A third-party destruction service

Backup and recovery

Backup and recovery
What’s backed up
  • Databases
  • Models
  • Data Pipelines
  • Dashboards and applications
Backup controls
Backups are provided daily automatically as part of the service.
Datacentre setup
Multiple datacentres
Scheduling backups
Supplier controls the whole backup schedule
Backup recovery
Users contact the support team

Data-in-transit protection

Data protection between buyer and supplier networks
Private network or public sector network
Data protection within supplier network
IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
97% SLA for Monday to Friday 9 - 5
Approach to resilience
Service is hosted on UKCloud or AWS and backed up nightly to ensure resilience.
Outage reporting
Email alerts to all users in the scenario where an outage happens.

Identity and authentication

User authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google apps)
  • Username or password
Access restrictions in management interfaces and support channels
Named user license access only. 2 factor authentication and password protected access to the service.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Username or password
Devices users manage the service through
Directly from any device which may also be used for normal business (for example web browsing or viewing external email)

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
How long system logs are stored for

Standards and certifications

ISO/IEC 27001 certification
ISO 28000:2007 certification
CSA STAR certification
PCI certification
Other security certifications

Security governance

Named board-level person responsible for service security
Security governance certified
Security governance approach
Regular security reviews and checks, underway with cyber essentials.
Information security policies and processes
We will take appropriate security measures against unlawful or unauthorised processing of personal data, and against the accidental or unlawful destruction, damage, loss, alteration, unauthorised disclosure of or access to personal data transmitted, stored or otherwise processed. We will put in place procedures and technologies to maintain the security of all personal data from the point of the determination of the means for processing and point of data collection to the point of destruction. Personal data will only be transferred to a data processor if he agrees to comply with those procedures and policies, or if he puts in place adequate measures himself. We will maintain data security by protecting the confidentiality, integrity and availability of the personal data.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
The need for a change will be documented and reviewed by the CEO in the performance improvement tracker. A change manager will be assigned to oversee the change process, assigned by the CEO. RIsk severity, urgency and those affected will be identified. Schedule for change process established by the change manager and approved by the CEO. All changes follow our full change management procedure and will meet the quality standards agreed by the company.
Vulnerability management type
Vulnerability management approach
All vulnerabilities will be dealt with as quickly as possible.
Protective monitoring type
Protective monitoring approach
All system usage is monitored to identify any threats.
Incident management type
Supplier-defined controls
Incident management approach
An incident process is in place to notify affected customers of any incidents.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart

Energy efficiency

Energy-efficient datacentres
Description of energy efficient datacentres
Managed by third party.


£550 a user a month
Discount for educational organisations
Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at Tell them what format you need. It will help if you say what assistive technology you use.