System & Data Security of Nice Care Smart
Fiope (H.K.) Limited (“Fiope,” “we” or “us”) is committed to protecting your data. At Fiope, we take the security of our products very seriously. If you’re a Nice Care SmartTM customer, and you use our connected products, here is all the information you need to know about Nice Care SmartTM product security principles.
Frequently asked questions about data security
We do everything in our control to make sure the data we have in our system is used for providing the data and insights to you and making your life easier with caretaking. Below are some answers to commonly asked questions regarding the security of the data we have at Nice Care SmartTM :
How do we secure our connected products?
At Fiope, we take a defense-in-depth approach to security, adding multiple layers of protection around our Products, cloud and apps from start to finish. We ensure that the development of our products follows industry-standard security best practices, and we are using technology-leading tools to assist our development and security teams during this process. When deployed to market, we work with our suppliers and partners to ensure that our products and our suppliers' and partners' supporting infrastructure (including physical infrastructure, cloud and mobile apps) are properly configured, monitored and continuous security improvement processes are in place.
How do we handle your data?
How is data secure while in transit?
Fiope considers the data collected by our Sensor and Hub sensitive, confidential information. These data are protected following the industry standard guidelines to ensure the security of this data just like any other personal data. During data transmission, Nice Care SmartTM Sensor and Hub connected products communicate with the Nice Care SmartTM cloud service using robust encryption. Currently, we use AES 256-bit encryption and Transport Layer Security (TLS v1.2). Data encryption is augmented through strong identity management. All Nice Care SmartTM Sensor and Hub connected products have identities when they come out of the factory and those identities are validated upon each new cloud connection.
How is data stored at rest?
Within Nice Care SmartTM ‘s cloud (built on top of AWS), customer data is stored encrypted. Customer data has multiple encryption keys which are rotated on a regular basis to reduce the risk of the data being compromised even in the event of a key exposure. Within the mobile application, data storage follows the platform’s standards for application-secure data; any sensitive data that is used by the application is not stored on the mobile device, but is instead securely transported to Nice Care SmartTM ‘s cloud for storage.
How do we keep our products up-to-date and secure?
In conjunction with our security-minded development processes, Fiope ensures that we monitor and adhere to all supplier and industry alerts regarding security patches to systems and components used in our products.
How do we secure the ‘Nice Care Smart’ App?
The mobile ‘Nice Care Smart’ application is built to the security standards as specified by the manufacturers of the operating systems and devices (Apple iOS, Android, Samsung, etc.), and include advanced obfuscation tools to limit reverse-engineering by malicious users.
How do we secure personal data?
Personal data such as name, gender, birthday, profile photos, contact information like email addresses, phone number are all stored within Nice Care SmartTM ‘s cloud (built on top of AWS) and will not be in-transit. AWS adopts world-class, highly secure data centres utilizing state-of-the-art electronic surveillance and multi-factor access control systems. Data centres are staffed 24x7 by trained security guards, and access is authorized strictly on a least privilege basis. To ensure customers’ security, AWS has implemented sophisticated technical and physical measures against unauthorized access. With ISO 27001, 27017, 27018, 9001 certification, AWS is complied to all company system and organization control regulations. AWS has a system of controls in place that specifically address the privacy protection of customer content, demonstrated with ISO 27018 certification. For more information on Cloud Security, please visit https://aws.amazon.com/compliance/
Future products and security
The landscape of security threats is ever evolving, as is the security at Fiope. Fiope continuously trains, researches, and exercises processes that improve the maturity of the company’s overall ability to identify, react to, isolate and resolve security issues within our company and our products as quickly as possible.
Any additional questions, please at firstname.lastname@example.org.