Do you want to switch the language?

CANCOM Flow - Information security and data protection by design

CANCOM Austria attaches great importance to ensuring the protection goals of confidentiality, availability and integrity - whether for information or personal data. Thanks to our certified cloud provider, we can guarantee maximum availability. The ISO/IEC 27001 certification also demonstrates our commitment to information security.

In addition to many other elements, our data protection programme also includes privacy by design/default. In connection with software/solution engineering, we implement the basic principles of data protection from the outset and customised to the respective system and its purpose.

In concrete terms, this means that we keep the amount of data processed as low as possible, taking into account the purpose to be fulfilled, or process personal data in the case of a relevant solution at an aggregation level (and ultimately anonymise it immediately) at which it fulfils its purpose.

Diagram of the network architecture for frequency measurement, highlighting data protection and security measures.

CANCOM FLOW - Architecture

Graphic on security in cloud computing, visualising protective measures and data protection concepts.

1.Cloud platform
CANCOM Flow is an as-a-service solution for the customer. The ISO27001 certified data center of CANCOM Austria is the operating environment for the cloud platform.

1.1 Service description
The service comprises the provision of the clients required for CANCOM Flow for the client or its customers. The platform provides functions for receiving, processing sensor data and managing the associated assets (sensors, gateways or devices) or objects (floors, stores, rooms) and is configured accordingly for the respective requirements of the:client:as part of the initial project. CANCOM guarantees the entire operation and secure processing of the supplied data.

2. CANCOM Flow security architecture and data protection
The sensors and downstream systems used do not collect or store any personal data. The sensors collect the required data on the basis of the Privacy by Design guidelines and ensure GDPR-compliant provision. The users are specifically authorised with the integrated client/role management. They see the corresponding shops/floors/zones based on the respective authorisations. CANCOM Flow thus fulfils the latest state of the art in terms of data security, GDPR-compliant processing and privacy by design.

2.1 Data protection
CANCOM Austria undertakes to comply with the provisions of Art. 28 GDPR in the event that it acts as a processor. In this context, reference is made to the "Privacy Policy - CANCOM Austria" available unilateral declaration of commitment and the appendix(pdf).

How may I help you?
Under this link you will find our privacy policy.