Privacy and Data Protection

  1. How is data privacy maintained?

    Within VoiceConsole SaaS deployment, customers can only access their own data. Customer access is limited to any tenant in which they have been assigned. Without being assigned to an instance, they will have no access to any customer, tenant, or other data. The following admin fields below are stored in a database for users:

    • Name

    • Email

    • Date and Time of last login

  2. How is the data stored in the cloud protected? And who can access the data?

    Each customer is provided a secure link and login information for their instance of VoiceConsole SaaS deployment, which is secured using an in-depth defense methodology. Multiple layers of defense are implemented, ranging from active monitoring to stringent encryption ciphers for data in-motion, in processing, and at rest. This provides a secure channel for data exchange between the Honeywell Cloud and the user's device. As Honeywell VoiceConsole SaaS deployment segregates tenant data logically, each customer can view and interact with only their data and reports.

    Data is stored in the Azure Cloud SQL Database. The Database and Azure File storage system are both automatically protected by Service-side encryption (SSE) and Transparent data encryption (TDE) per Azure’s processes. All stored data is encrypted at the tenant level using keys that are unique to each organization. All encryption keys are securely stored in a vault solution separate from encrypted data. All customer data is segmented from the Honeywell network and kept in its own production instance. There is no interaction with development systems or infrastructure, which are also kept separate.

  3. What access do Honeywell partners have?

    There are several SaaS instances where Honeywell partners have access to customer instances to help facilitate customer service needs. Technical Support or the customer can grant partners access to specific instances if necessary.

  4. What access does Honeywell Support have?

    Honeywell Support Teams have full access to customer instances to properly support customers. Removing Honeywell Support accounts could create delays in support requests and license updates.

  5. Is the retained data localized? And where is the server location?

    During the onboarding process, the customer or Honeywell partner must specify where to store data. Currently, VoiceConsole supports both US and EU regions.

  6. How does the VoiceConsole SaaS deployment comply with GDPR laws?

    VoiceConsole SaaS deployment is designed with the capability of GDPR compliance. Customers can make use of this capability and are ultimately responsible for ensuring their systems and storage are fully compliant with GDPR laws beyond VoiceConsole Saas deployment.

 

For more information on Honeywell's approach to privacy and its global privacy program, visit the Honeywell Data Privacy Trust Center.