Is the system and the app secure?
Fermax has a process in place assess the cybernetic safety of your connected product on a continual basis, as part of its life cycle. This assessment takes into account industry best practices and recommendations, such as OSSTMM (Open Source Security Testing Methodology Manual), IoT Security Foundation and OWASP (Open Web Application Security Project) guidelines, as well as the SANS Institute's GIAC Penetration Testing specific methodology for testing for intrusion, and includes the review of specifications, design, functionality and other information for the purposes of:
- Ensuring compliance with applicable security policies and recommendations.
- Identifying potential threats or cases of abuse related to the logical security of the equipment or the development, manufacturing and maintenance processes.
- Detecting potential security flaws that could allow a hacker to interfere with legitimate processes or procedures.
- Identifying planned countermeasures to mitigate vulnerabilities.
- Reinforcing the password policy.
- Guaranteeing the security of communications.
- Safeguarding the storage of sensitive information.
- Improving availability of services.
To the extent that the monitor and the app are connected to the Internet, technical information about your video door entry system, including IP address, monitor identifier, monitor firmware version, smartphone model with which it was paired, will be collected and sent to Fermax. This information is used by Fermax to identify the technical attributes of the system, and to ensure that your system has the latest security and stability patches to guarantee secure service provision.
We ensure that we do not store sensitive information about our users, and that the only data of a personal nature is email (considered low risk by the AEPD - Spanish Data Protection Agency).
In addition to carrying out regular cybersecurity audits of our product, both at a physical level (hardware) and at a software level (servers, services and apps), we have a specific team within Fermax to ensure the security measures of both our internal infrastructure and our product. This team is responsible for dealing with possible cybersecurity incidents and, where appropriate, and in compliance with the GDPR and its transposition to the LOPD, contacting the AEPD and our potential users in the event of a security breach that may have affected them.
In the event that the user wishes to avoid this automatic collection of information, he/she can request cancellation of the service through the app (account deletion), or deactivate Internet connectivity on the monitor.
Related Articles
What are the Main doors in the app?
If your monitor is a WiFi model?, you can open the door directly from the main screen of the DuoxMe app by simply pressing the key button, without having to first activate the outdoor panel camera. You can enable them and edit their name in Settings ...How do I answer a call in the DuoxMe app?
<br> How to answer the call on iOS devices How to answer the call on iOS devices You ...What service plans are available and how much does the service cost?
If you have a NON-WiFi FERMAX terminal, there are two service plans available that differ in terms of tariffs, contracting conditions, billing, functionalities and compatibility with the devices in the homes. You can choose between: • The free plan ...What is the F1, F2 or concierge button for? How can I activate it from the app?
• The F1 button (additional function 1) is used to activate additional functions in your video door entry system, such as opening an additional door, activating a lift, provided they are available in the installation. They require a relay connected ...What does the "No signal" warning in the DuoxMe app mean?
This message indicates that the Fermax terminal has lost its internet connection, preventing communication from the app. The solution depends on your terminal model. How do I know if my device is a WiFi? model or a non-WiFi model? If your terminal ...
Find manuals, technical books, tender specifications and much more on our professional website.