GDPR - Privacy and Audit User (Log)

Privacy and user transparency

The cloud offers two great mechanisms to protect the privacy of the cloud owner on the one hand, and on the other hand, every access to the cloud account is recorded in a logbook (audit log). This also allows periodic audits by data protection or works council to be carried out on the system to ensure compliance with data protection guidelines.

Private mode:
Each sub-account can activate its own privacy mode, ensuring that only users of the account can access the image data (live and playback). External service providers (resellers/installers) can continue to support the customer with their reseller account and make system-related settings/optimisations to support the customer or carry out maintenance work. However, in order to gain access to the image data (live or recorded), the owner of the sub-account must explicitly grant this (deactivate Privacy Mode). This ensures the optimal symbiosis between expert support for settings but no access to the image data and privacy is ensured. The control lies with the owner/customer of the system!

How to activate this:

  1. reseller has to activate the privacy mode in the subaccount after the initial setup (Account Settings of the subaccount).

  1. the end user (Subaccount Admin) can switch the privacy mode on or off (Important: the Reseller Admin cannot override this protection, only the owner (Subaccount Admin) → User Account Settings → TabPrivacy → Video Privacy).

  1. Result for the Reseller access is:

Audit Log:

The system logs each user access in a logbook, which can be viewed by users who have the appropriate authorisation. The logbook can be exported in various formats such as CSV format for further processing / archiving.

To do this, the Subaccount Admin only has to release the corresponding right to the user, e.g. works council.

Assign user right:

Access to the action log in the dashboard:

Screen Shot 2021-01-08 at 06.44.35

Example Action Log: