Cloudreach Europe Limited


CloudHealth’s Cloud Service Management platform integrates with services across the datacenter and cloud, giving customers the ability to visualize, optimize, and automate their cloud environments. Using a policy-driven approach aligned to business processes, customers leverage CloudHealth to drive cost savings, improve agility, enhance security, and reduce complexity.


  • Cost allocation and amortization across lines of business
  • Reporting on usage, performance, cost, and security in the cloud
  • Asset management across cloud-based and system-based resources
  • Rightsizing recommendations and analyses
  • Automation of day-to-day operations including operational tasks and optimization tasks
  • Alerting and notifications based on budgets
  • Long-term trended reporting.
  • Audit trails for change management and security.
  • Governance through policy definitions across heterogeneous environments.


  • Reduce cost cloud costs by 10-20%
  • Achieve better performance, while reducing waste
  • Reduce risk by automating policies and governance
  • Save time by automating operational tasks
  • Tackle AWS Reserved Instances with confidence using analysis and automation
  • Manage the complexity of a large cloud environment
  • Visualize, optimize, and automate across multiple clouds.


£2 to £3 per transaction per month

Service documents

G-Cloud 10


Cloudreach Europe Limited

Pritesh Patel

07473 991 134

Service scope

Service scope
Software add-on or extension No
Cloud deployment model Public cloud
Service constraints None
System requirements None

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Low severity: 24 hours to first response
High Severity: 4 hours to first response
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Yes, at extra cost
Support levels Standard Support via 24x7 Service desk:

Onsite Support:
Onsite charged at daily rate from pricing sheet

Dedicated Service Delivery Manager:
Charged at daily rate from pricing sheet
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started - Onboarding service is included
- User documentation is available
- Best practice ebooks are availabe
- Video tutorials
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction Before the contract ends, users can continue to extract data as reports in Cloudhealth. Raw billing data is never removed from the Cloud Provider (AWS or Azure) so this does not need to be exported.
End-of-contract process The offboarding process is invoked to close user accounts and remove customer data from the service. No additional cost is incurred for this.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service The CloudHealth web interface can be used on both mobile and desktop devices. It uses a responsive design and therefore will adjust according to the screen size.
Accessibility standards None or don’t know
Description of accessibility Web browser, as well as RESTful API
Accessibility testing None.
What users can and can't do using the API Reporting API
The CloudHealth reporting API is a REST-based interface that uses JSON as an interchange format. It allows you to retrieve both default reports provided with the platform (“standard reports”), as well as reports you save (“custom reports”) with custom filter settings (i.e. time). You can also use the API to construct ad hoc queries on an array of available dimensions (including custom perspectives) and their respective members.

Asset API
The Asset API can be used to retrieve information about assets you are currently or have historically run with AWS. It supports three functions:
1. List all available objects for your account
2. Provide detail on an object, including its attributes and relationships
3. Query objects of a specific type

Metrics API
The CloudHealth Metric API is a REST-based API that can be used to pull metrics from CloudHealth and used in analyses.
In addition, you can push metric data (e.g. CPU, memory, disk) to CloudHealth. By doing so, you will not only have an enhanced view into the health and performance of your systems, but CloudHealth will be able to generate better rightsizing recommendations.
API documentation Yes
API documentation formats PDF
API sandbox or test environment No
Customisation available No


Independence of resources Cloudhealth is an enterprise-scale service using cloud scaling technologies to maintain service levels.


Service usage metrics No


Supplier type Reseller providing extra features and support
Organisation whose services are being resold CloudHealth Technologies Inc.

Staff security

Staff security
Staff security clearance Other security clearance
Government security clearance Up to Baseline Personnel Security Standard (BPSS)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations EU-US Privacy Shield agreement locations
User control over data storage and processing locations No
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process No
Equipment disposal approach In-house destruction process

Data importing and exporting

Data importing and exporting
Data export approach Via the usual reporting, data presentation and API facilities that the service offers
Data export formats Other
Other data export formats
  • JSON
  • PDF
Data import formats Other
Other data import formats JSON

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks TLS (version 1.2 or above)
Data protection within supplier network TLS (version 1.2 or above)

Availability and resilience

Availability and resilience
Guaranteed availability 99.50%
Approach to resilience Cloudhealth is an enterprise-scale service using cloud scaling technologies to maintain service levels
Outage reporting Email alerts.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
  • Other
Other user authentication Web users are authenticated with a username and password.
API users are authenticated by public key authentication
Access restrictions in management interfaces and support channels CloudHealth offers role-based access to correctly restrict users' access to data
Access restriction testing frequency At least once a year
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information No audit information available
Access to supplier activity audit information No audit information available
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 Isoqbar
ISO/IEC 27001 accreditation date April 2017
What the ISO/IEC 27001 doesn’t cover - Cryptographic compliance
- Secure area
- Third party security
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Cloudreach implements control procedures in accordance with ISO 27001 in order to protect the company and our clients from financial and reputational risk. All members of staff must:
• Understand their responsibilities
• Recognise where our security policies impact use of devices for Cloudreach purposes
• Report Security Incidents and Weaknesses in the specified way
• Have awareness of the management controls that are in place
• Undergo Security Management training on joining and attend a refresher each year

The Cloudreach Core Information Security Team comprises:
• Management Team
• Global Office and Business Continuity Functions
• Operational Security Function
• Internal Audit/Project Management Function

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach All changes to the service are assessed for potential security impact, and are tracked through to completion in a system of records.
Vulnerability management type Supplier-defined controls
Vulnerability management approach All potential threats, vulnerabilities and exploitation techniques which could affect the service are regularly assessed, monitored and tracked using a number of internal systems. Software an OS patches are applied on a regular basis as part of regular system maintenance process. Our security team regularly scan online CVE databases to discover potential new vulnerabilities.
Protective monitoring type Supplier-defined controls
Protective monitoring approach All potential threats, vulnerabilities and exploitation techniques which could affect the service are regularly assessed, monitored and tracked using a number of internal systems. Each vulnerability is assigned a severity to help prioritise the mitigation activities.
Incident management type Undisclosed
Incident management approach Users report security incidents through our standard customer support processes. We do have a pre-defined process for handling common events such as in the case of a disaster or a complete loss of service.

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks No


Price £2 to £3 per transaction per month
Discount for educational organisations Yes
Free trial available Yes
Description of free trial A fully functional 14 day trial
Link to free trial By arrangement

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑