Monitoring and logging
Controllers—and where applicable, their representative—must maintain records of the personal data processing activities for which they are responsible.
MyWiFi maintains system and application logs relating to events and access to certain systems used for the processing of personal data.
What this means to you
You have an obligation to be able to get personal data related to any automations or broadcasts that have involved any specific contact. Don't worry; MyWiFi makes this simple.
Security controls
MyWiFi encrypts data sent to and from channel partners and guest Wi-Fi users using the HTTPS protocol.
MyWiFi also encrypts any sensitive stored information, such as (but not limited to) passwords, credentials, and keys to external services using AES-256-CBC.
MyWiFi also hashes any personally identifiable data that requires pseudonymization using CRC32.
Channel partners can also set up additional security features. An account holder can take the following actions from their MyWiFi Admin:
- Set role-based permissions for staff accounts to limit data availability
- Define, to a certain extent, what personal data is collected from guest Wi-Fi users
- View certain activity logs, including recent user activity and automation history
Security standards and certifications
MyWiFi uses third-party data centers with industry-standard certifications, including:
- ISO 27001
- PCI-DSS
Comments
Please sign in to leave a comment.