Data Processing information for TherapyDesigner and InteractionDesigner

Access control

(rooms and buildings)

Target description: Deny unauthorized persons access to data processing systems with which personal data is processed or used or in which personal data is stored.

IONOS SE: See TOMs from IONOS SE

Access control

(IT systems, applications)

Target description: Prevent data processing systems from being used by unauthorized persons.

movisens GmbH: No additional data is stored that goes beyond the subject of the contract. All access data to subcontractors is stored in encrypted form.

IONOS SE: See TOMs from IONOS SE

Access control

(to data)

Target description: It must be ensured that those authorized to use a data processing system can only access the data subject to their access authorization, and that personal data cannot be read, copied, changed, or removed without authorization during processing, use, and after storage.

All movisens GmbH employees who have access to data processing systems that relate to this contract are obligated to comply with data protection laws and regulations in accordance with the DSGVO and are trained accordingly.

At the application level, database queries are limited to the data with the corresponding access authorization.

The client's application administrators determine the access of the client's employees to the respective study data.

IONOS SE: See TOMs from IONOS SE

Input Control

(into data processing systems)

Target description: It must be ensured that it can be subsequently checked and determined whether and by whom personal data has been entered into data processing systems, changed or removed.

Data can be entered by the app user and by the dashboard user with appropriate access rights.

For therapy variables that are entered ore edited the history is stored together with the user id of the respective editor.

Disclosure control

(of data)

Goal Description: To ensure that personal data cannot be read, copied, altered, or removed without authorization during electronic transmission or while being transported or stored on data media, and that it is possible to verify and determine to which entities personal data is intended to be transmitted by data transmission equipment.

TLS encryption of all data connections.

Both the communication between the smartphone and the server and the communication between the server and the researcher's browser are encrypted.

The certificates and technologies used for encryption are regularly checked for vulnerabilities.

Data on the smartphone is encrypted using cryptography, which ensures that the collected data is not accessible to any unauthorized person even if the device is lost, given that the smartphone is protected with a display lock (e.g. pin, fingerprint).

Job control

Goal description: Within the scope of order control, it must be ensured that personal data processed on behalf of the customer can only be processed in accordance with the customer's instructions.

movisens GmbH does not further process the collected data. Further processing is the responsibility of the ordering party.

Availability control

(of data)

Goal description: To ensure that personal data is protected against accidental destruction or loss.

Daily data backups are created. These are archived for up to 6 months.

IONOS SE: ee TOMs from IONOS SE

Separation control

Target description: Data collected for different purposes must also be processed separately (internal multi-client capability/ purpose limitation, separation of functions production/test).

At application level, database queries are restricted to data with the appropriate access authorization.

IONOS SE
Elgendorfer Str. 57
56410 Montabaur

Cloud services

cloud.ionos.de/compute

TherapyDesigner backend/dashbaord

Clinicians, Researcher

Operation of TherapyDesigner platform

E-Mail address, name, first name, organisation, configured studies, permissions

IONOS SE
Elgendorfer Str. 57
56410 Montabaur

Cloud services

cloud.ionos.de/compute

TherapyDesigner backend/dashbaord

Patients/Participants

Operation of TherpayDesigner platform

Data collected on smartphone and information entered through TherapyDesigner Dashbaord: Data concerning (physical and/or mental) health, diagnoses and symptoms, data about health, other data entered by patient.

IONOS SE
Elgendorfer Str. 57
56410 Montabaur>

S3 storage

cloud.ionos.de/compute

TherapyDesigner backend/dashboard

Clinicians, Researcher, Patients/Participants

Backup

Encrypted backups

Functional Software, Inc. dba Sentry
45 Fremont Street, 8th Floor
San Francisco, CA 94105
USA

Sentry

https://sentry.io

TherapyDesigner backend/dashboard

Clinicians, Researcher, Patients/Participants

Store and analyze Crash-Logs of TherapyDesigner backend/dashboard

Stack traces and console logs, these can contain a participant Id (for which an internally generated UUID is used)

Functional Software, Inc. dba Sentry
45 Fremont Street, 8th Floor
San Francisco, CA 94105
USA

Sentry

https://sentry.io

TherapyDesigner App

Patients/Participants

Store and analyze Crash-Logs of TherapyDeisgner app

Stack traces and context logs, instance URL, study ID, participant ID (for which an internally generated UUID is used) , debug version y/n, usually no other patient/participant or study data

Google LLC
1600 Amphitheatre Parkway, Mountain View
California 94043
USA

Firebase Cloud Messaging

firebase.google.com

TherapyDesigner platform

Patients/Participants

Push-Notifications to patient/participant

Command, participantId (internal UUID), deviceToken

Apple Inc
One Apple Park WayCupertino
CA 95014
USA

Apple Push Notification Service

developer.apple.com/notifications/

TherapyDesigner platform

Patients/Participants

Push-Notifications to patient/participant

Command, participantId (internal UUID), deviceToken