CANCOM Austria attaches great importance to ensuring the protection goals of confidentiality, availability and integrity - whether for information or personal data. Thanks to CANCOM's underground high-security data center, the earthDATAsafe in Kapfenberg, we can guarantee maximum availability. The ISO/IEC 27001 certification also demonstrates our commitment to information security.
Frequency measurement - information security and data protection by design
Architecture overview FQM:
A detailed overview of the technical and organizational measures we have taken can be found in our unilateral declaration of commitment. In connection with frequency measurement (FQM), we would like to highlight the following measures, for example:
- Privacy by design
- Role concept
- Use of secure passwords
- Multi-client capability
- Log protocols
- No storage of video recordings
- Data center in Austria owned by CANCOM
In addition to many other elements, our data protection program also includes privacy by design/default. In connection with software/solution engineering, we implement the basic principles of data protection from the outset and individually tailored to the respective system and its purpose.
Specifically, this means that we keep the amount of processed data as low as possible, taking into account the purpose to be fulfilled, or process (and ultimately immediately anonymize) personal data for the relevant solution at an aggregation level at which it fulfills its purpose.
- Cloud platform
The FQM is an as-a-service solution for the customer. CANCOM Austria's ISO27001-certified data center is the operating environment for the cloud platform.
1.1 Service description
The service comprises the provision of the clients required for FQM for the Client or its customers. The platform provides functions for receiving, processing sensor data and managing the associated assets (sensors, gateways or devices) or objects (floors, stores, rooms) and is configured accordingly for the respective requirements of the client as part of the initial project. CANCOM guarantees the entire operation and secure processing of the supplied data.
2. FQM security architecture and data protection
The sensors and further systems used do not collect or store any personal data. The sensors collect the required data on the basis of the Privacy by Design guidelines and ensure GDPR-compliant provision. The users are specifically authorized with the integrated client/role management. They see the corresponding shops/floors/zones based on the respective authorizations. The FQM thus fulfills the latest state of the art in terms of data security, GDPR-compliant processing and privacy by design.
2.1. data protection
CANCOM Austria undertakes to comply with the provisions of Art. 28 GDPR in the event that it acts as a processor. In this context, reference is made to the unilateral declaration of commitment available under "Privacy Policy - CANCOM Austria".
2.2 Unilateral declaration of commitment and technical-organizational measures
Here you will find the unilateral declaration of commitment as well as the annex regarding the technical-organizational measures.