GITRIX

Privacy Policy

Privacy Policy for the GITRIX Mobile Application

The GITRIX mobile application (further referred to as “the Application”) is designed with a primary focus on the security and privacy of its users. This policy describes how the application handles data and what your rights are.

1. Data Collection and Usage

The Application is used for multi-factor authentication and identity verification. To function correctly, it handles the following information:

  • Cryptographic Keys: The application generates and securely stores cryptographic keys (private and public) used for authentication. These keys are stored in the secure area of your phone (Secure Enclave / Keystore).
  • Device Identification: The application uses a unique device identifier for pairing with the central GITRIX system of your organization.
  • Biometric Data: If you enable biometric login (TouchID, FaceID, Fingerprint), this data stays exclusively on your phone. The application only receives information from the operating system that the verification was successful. We do not have access to your fingerprints or face scans.

2. Data Transmission

The Application communicates exclusively with the GITRIX server designated by your organization.

  • Communication is secured by strong encryption (TLS).
  • No data is shared with third parties or used for marketing purposes.
  • The Application does not track your location.

3. Permissions

To function, the application may require following permissions:

  • Camera: Solely for scanning QR codes during the pairing process or for offline authentication.
  • Notifications: For receiving PUSH notifications used to approve login requests.
  • Biometrics: To simplify and secure access to the Application.

4. Security

Protecting your data is our priority. The Application uses modern security mechanisms of the mobile operating system and cryptographic standards to prevent unauthorized access to authentication keys.

5. Your Rights

As a user, you have full control over the application. You can deactivate the application at any time directly in the settings or by deleting it from your device, which also deletes all associated cryptographic keys.

6. Updates

This policy may be updated. Any significant changes will be communicated through an update to the Application or on our website.

If you have any questions regarding privacy and data protection, please contact us at info@gitrix.cz.

Last updated: March 1, 2024

Prepare your company for the future of cybersecurity

Discover how GITRIX can simplify identity management and ensure compliance in your organization.

Free consultation