FabOps Vendor Attestation

Our commitment to security, compliance, and data protection for the Microsoft Fabric ecosystem.

Workload Name

Fabops.Intelligence (Fabops.Intelligence.Product) is a Microsoft Fabric workload developed by Onyx Data Ltd. It provides AI-powered governance, cost attribution, and performance analytics natively within Microsoft Fabric environments.

OneLake Integration & Data Architecture

OneLake

FabOps integrates directly with OneLake as the unified data layer for Microsoft Fabric. All governance telemetry and metadata is read from and stored within your OneLake instance, ensuring data never leaves your tenant boundary.

Data Hub

FabOps leverages the Fabric Data Hub to discover and catalogue workspace assets, providing a centralised view of all data artefacts across your organisation's Fabric estate.

Data Lineage

Full data lineage tracking is supported, enabling administrators to trace data flows from source to consumption across workspaces, lakehouses, and semantic models.

Sensitivity Labels

FabOps respects and enforces Microsoft Purview sensitivity labels applied to Fabric items. Governance scoring accounts for label coverage and compliance across all monitored assets.

Security & Identity

Microsoft Entra Conditional Access

FabOps fully supports Microsoft Entra Conditional Access policies. All authentication flows honour your organisation's conditional access rules, including MFA requirements, device compliance, and location-based restrictions.

Private Links

FabOps supports Azure Private Links for secure connectivity. Customers can configure private endpoints to ensure all traffic between FabOps and your Fabric tenant traverses the Microsoft backbone network without exposure to the public internet.

HTTP-only Cookies

All session management uses HTTP-only cookies with the Secure and SameSite flags enabled. This prevents client-side JavaScript access to session tokens and mitigates cross-site request forgery (CSRF) and cross-site scripting (XSS) risks.

B2B

FabOps supports Azure AD B2B collaboration scenarios, allowing guest users from partner organisations to access shared governance dashboards and reports subject to your tenant's B2B access policies.

Monitoring & Operations

Monitoring

FabOps provides continuous monitoring of your Fabric estate including capacity utilisation, workspace health, governance score trends, and cost attribution. Real-time alerts notify administrators of anomalies and threshold breaches.

Diagnostic

Comprehensive diagnostic capabilities enable administrators to troubleshoot performance issues, identify misconfigured workspaces, and trace governance violations back to their root cause with full audit trails.

Performance

FabOps tracks performance metrics across all Fabric workloads including query execution times, refresh durations, and capacity consumption patterns. Historical performance data is retained for trend analysis and capacity planning.

Service Health and Availability

FabOps maintains 99.9% uptime SLA. Service health dashboards provide real-time status, planned maintenance windows, and incident history. Automated health checks verify connectivity to your Fabric tenant every 60 seconds.

Compliance Requirements

GDPR & UK Data Protection

FabOps is fully compliant with the General Data Protection Regulation (GDPR) and the UK Data Protection Act 2018. We are registered with the ICO and maintain data processing agreements with all customers.

Business Continuity and Disaster Recovery

FabOps implements a comprehensive business continuity and disaster recovery strategy with geo-redundant backups, automated failover, and a recovery point objective (RPO) of 1 hour and recovery time objective (RTO) of 4 hours.

Application Life Cycle Management

FabOps follows rigorous application life cycle management practices including CI/CD pipelines, staged rollouts, automated regression testing, and version-controlled deployments. All releases undergo security review before production deployment.

Live Site

Our live site operations team follows incident management procedures aligned with ITIL best practices. Critical incidents are escalated within 15 minutes, and post-incident reviews are conducted within 48 hours of resolution.

Accessibility & World Readiness

Accessibility

FabOps is designed to meet WCAG 2.1 Level AA accessibility standards. All interactive elements support keyboard navigation, screen readers, and high-contrast modes. We conduct regular accessibility audits and remediate findings promptly.

Presence

FabOps is available globally through the Microsoft Azure Marketplace and the Fabric workload hub. Customers in all supported Azure regions can deploy and access FabOps within their local data residency requirements.

World Readiness

FabOps is designed for world readiness with full support for multiple locales, date/time formats, number formatting, and right-to-left (RTL) text rendering to serve a global customer base.

Internationalization

The FabOps user interface supports internationalization (i18n) with externalized string resources, locale-aware formatting, and Unicode compliance throughout the application stack.

Technical Implementation

JavaScript

The FabOps front-end is built with JavaScript using modern frameworks optimised for the Fabric workload runtime. All client-side code undergoes static analysis, dependency vulnerability scanning, and content security policy enforcement.

Support

Onyx Data provides tiered support for all FabOps customers. Standard support includes email response within 1 business day. Professional and Enterprise tiers include priority support, dedicated success managers, and custom SLA agreements.

Download Full Attestation

For a complete vendor attestation document including detailed security practices and compliance certifications.

Contact info@onyxdata.co.uk for the full attestation document.

Security Questions?

For security-related enquiries or to request additional compliance documentation.

Contact Security Team