Security & Data

Alcosystems & Security

Since alcohol monitoring is a sensitive and security-critical area, Alcosystems has developed a system that offers a clear distribution of roles and access, rigorous identification and authorization processes as well as a non-compromising security-first approach when it comes to handling of and storing test data.

Data handling

Data confidentiality

Every time a test is performed, the data is sent from the mobile or stationary application to Alcosystems cloud solution. The data transfer takes place through an encrypted HTTPS protocol for highest possible security. As a reply, the server sends an SMS notification to confirm whether the test was approved or not.

All data can be erased by an administrator with access. If an engagement with Alcosystems ends, we erase the organization account as well as all data pertinent to the client. All user and testing data in the back-end system is saved on Alcosystems cloud servers.

 

Server locations

Our servers are located within the EU, primarily on Ireland (this can be changed based on client needs).

Alcosystems data storage

Data is primarily stored on Alcosystems cloud servers which isolates it from public access. Smaller data such as user online presence during tests, phone numbers and the number of tests left before calibration are stored on the user’s iBac Pro Unit or on the smartphone Alcosystems Pro application.

Roles & Access

Roles

The Super Administrator and the Administrator run and configure the Alcosystems Solution back-end system. An Administrator can schedule tests, send out a call to tests and create user profiles. A Super Administrator has the same rights as an Administrator while also being able to access all profile and test data belonging to the organization. Their access levels are adjustable in order to suit the organization’s internal needs and procedures.

The person performing the test is the User.

Identification & Authorization

Administrators log on to the back-end system with their username and password which is set up after an order is delivered. They create User profiles for the persons performing the test.

For single option testing, a first-time User logs on to the iBac Pro application aided by an automated guide on their smartphone. The User is requested to fill in their company key identification (which they received from the administrator) and their mobile number. After this initial login, the user can log on with a password every time they will perform a test.
For group option testing, a first-time User logs on to the iBac Pro application on the stationary device connected to an iBac Pro unit and fills in the company key identification and their username. ????

A two-step identification process is possible if required by the administrator.