Do you want to switch the language?

CANCOM Flow - Information security and data protection by design

CANCOM Austria attaches great importance to ensuring the protection goals of confidentiality, availability and integrity - whether for information or personal data. Thanks to our certified cloud provider, we can guarantee maximum availability. The ISO/IEC 27001 certification also demonstrates our commitment to information security.

Architecture overview CANCOM Flow:

A detailed overview of the technical and organizational measures we have taken can be found in our unilateral declaration of commitment. In connection with CANCOM Flow, for example, we would like to emphasize the following measures:

  • Privacy by design
  • Role concept
  • Use of secure passwords
  • Multi-client capability
  • Log protocols
  • No storage of video recordings
  • Data center in Austria owned by CANCOM

In addition to many other elements, our data protection program also includes privacy by design/default. In connection with software/solution engineering, we implement the basic principles of data protection from the outset and individually tailored to the respective system and its purpose.

Specifically, this means that we keep the amount of processed data as low as possible, taking into account the purpose to be fulfilled, or process (and ultimately immediately anonymize) personal data for the relevant solution at an aggregation level at which it fulfills its purpose.

Diagram of the network architecture for frequency measurement, highlighting data protection and security measures.
Graphic on security in cloud computing, visualizing protective measures and data protection concepts.

1.Cloud platform
CANCOM Flow is an as-a-service solution for the customer. The ISO27001 certified data center of CANCOM Austria is the operating environment for the cloud platform.

1.1 Service description
The service comprises the provision of the clients required for CANCOM Flow for the client or its customers. The platform provides functions for receiving, processing sensor data and managing the associated assets (sensors, gateways or devices) or objects (floors, stores, rooms) and is configured accordingly for the respective requirements of the:client:as part of the initial project. CANCOM guarantees the entire operation and secure processing of the supplied data.

DSGVO info for downloadDSGVO info for download

2. CANCOM Flow security architecture and data protection
The sensors and downstream systems used do not collect or store any personal data. The sensors collect the required data on the basis of the Privacy by Design guidelines and ensure GDPR-compliant provision. The users are specifically authorized with the integrated client/role management. They see the corresponding shops/floors/zones based on the respective authorizations. CANCOM Flow thus fulfills the latest state of the art in terms of data security, GDPR-compliant processing and privacy by design.

2.1. data protection
CANCOM Austria undertakes to comply with the provisions of Art. 28 GDPR in the event that it acts as a processor. In this context, reference is made to the "Privacy Policy - CANCOM Austria" available unilateral declaration of commitment and the appendix (pdf).

How may I help you?
Under this link you will find our privacy policy.