Data management

With ScanTrace,
you keep the control.

How we handle your data, how we don't transfer it.

Everything in your infrastructure

Because ScanTrace integrates into your own infrastructure, you keep the control over the data. Every part of the ecosystem is secured by your existing infrastructure, meaning that you don't have to send the data to our services to be processed.

The only exception to that rule is optionnal opt-in telemetry that checks and automatically update your license information.

Data in your infrastructure

Same SLA as your infrastructure

Control over the deployment

Optional opt-in telemetry

Data privacy with the Android application

We care about privacy. When using our Android Application, we collect sensors and location data in background. Especially, the following data is collected :

GPS data is collected while the service is running.

Bluetooth data is scanned in background, meaning devices that send specific Bluetooth advertisement data is collected.

Accelerometer data, or motion data is collected to detect movement.

Android device identifier, to securely identify this device if no custom identifier is provided.

This data is timestamped but not associated with activity on the Android device. It is meant for future correlation within our backend.

How we store data

When working with the Android device, the data is temporarely stored on the device. Every 15 minutes (approximatively), the data is sent to the backend.

The security configuration of the backend, including the use of transport encryption such as TLS, is determined by the customer organization. ScanTrace supports secure communication with appropriately configured backend systems.

Once on the backend, the data is associated with the device using a configurable identifier that can be changed by administrators; this allows erasing or replacing data that could be correlated with one people.

How data is used

Data is used on our backend in order to locate when assets are processed by the user. ScanTrace tracks assets, not people. That is why it is not possible to request tracking directly a device or a people. Data is never used outside the backend and outside the ecosystem. Only authorized users can access the data, protected by account management.

Data erasure

By default, data is kept 30 days before being automatically deleted by the backend. This behaviour can be changed for systems that need to keep the data for bigger retention times.

Service telemetry

On top of the processing data, service telemetry is sent to the backend opportunastically. This allows the installator of the ScanTrace Backend to ensure that every device can correctly collect and send data. Only the last metric is kept and it’s not available outside the backend installator.