Trackunit Iris is the most widely used telematics platform in the global construction industry. Thousands of companies leverage Trackunit to understand and attain machine-level insights.
All of Trackunit's products run on Iris, the platform designed for connectivity and purpose-built for construction. Iris powers the hundreds of apps that make up the Trackunit services and products, such as Trackunit Manager, Trackunit Go and IrisX.
The chart below shows some of the many responsibilities that Iris covers.
With such a key position in our telematics solution, and so much data flowing through, it is critical that Iris is secure and robust. That’s why security is a cornerstone of our entire company.
Iris and all Trackunit products and services are designed and developed according to the following security principles.
Our Security Principles
We keep our platform secure through continuous scanning, monitoring and updates.
All data transmitted from your machines and mobile devices to the Iris platform is encrypted in transit.
Data is encrypted at rest using robust disk-level encryption.
Independent third-party security vendors perform regular penetration tests to help validate and improve our defenses.
Our engineers monitor the platform 24/7/365 to ensure continuous operation and fast response to incidents.
All developers receive dedicated training in security and data ethics, and our team includes certified ethical hackers.
Every employee is trained in general security awareness with emphasis on social engineering risks.
We handle personal data in accordance with GDPR and manage identity data through certified providers meeting SOC2, ISO27001, ISO27018, FED-RAMP, and CSA Level 2 standards.
Trackunit does not claim ownership of content you generate. What’s yours stays yours.
Frequently Asked Questions
Is my data encrypted?
Yes, all your data is stored and transmitted securely.
Infrastructure Security
The current generation of Trackunit Hardware supports SSL (DTLS1.2) using the industry standard, NIST-recommended encryption algorithms. The solution is implemented via a leading commercial security library.
Communication between services (Manager, Go, On, IrisX) and Iris is implemented as REST interfaces using HTTPS encryption. Users are always authenticated by unique usernames and passwords, and access tokens are granted.
Similarly, the Trackunit public API is using HTTPS encryption, and API customers are granted a token. It is the responsibility of the user and customer to keep this token secure just as it would be the case with usernames and passwords.
Identity Management
User information (full name, username, password, email, etc.) is stored fully encrypted at a state-of-the art Identity Management provider, which is SOC2 and SOC3 audited and ISO 27001, ISO27017, ISO27018 and CSA Star Level 2 certified. Identity management can be enforced at the account level for all web, app and API access.
B2B single sign-on integrations / SSO can be enabled per customer account for login. SSO allows enablement of advanced features such as adaptive MFA if available through the authentication provider.
Where is Iris hosted?
Iris is hosted across trusted public and private cloud providers in Europe. They are highly professional and secure data centers, and Trackunit has all required contracts and data processing agreements in place.
What is the uptime of Iris?
All Iris components are deployed in redundant configurations, which allows for dynamic scaling and hot patching, minimizing the risk of downtime and data loss due to failure or maintenance. There are several deployments done to the Iris platform daily. Ensuring an efficient production pipeline and high focus on quality and security.
The Iris platform is continuously monitored by a broad range of tests, that cover user scenarios and critical functions in the IRIS platform, Trackunit Manager, and our mobile applications.
If one of these tests fail, the DevOps team is automatically paged as a part of our 24/7 on-call program. Allowing for speedy recovery and remediation in case of security issues.
You can always see the current status of all Trackunit systems, including Iris, at https://status.trackunit.com/
On the status page, you can also see any current or past issues, as well as sign up for alerts.
Who can access my data?
Permissions and access to your fleet asset data are managed by you. They are dependent on customer accounts and user levels, i.e. a user can only see the data to which they have been granted access to. This can be your entire fleet of machines or only selected assets.
Access to Iris datastores and services by Trackunit staff is limited to those who need to access the production systems, development environments, and services for professional purposes. The access is secured through use of VPN and multi-factor-–authentication (MFA).
How does the communication between Raw devices and Iris work?
Communication between Trackunit Raw and Iris is based on the GSM network and protected by GSM encryption. In addition, data and commands sent between devices and the Iris platform are encrypted by Trackunit.
A secure, proprietary protocol tailored for low-latency IoT communication is used for the data communication. Text messaging is occasionally used for device management. Communication received by a Raw device is always validated by the device to ensure that only authorized requests are accepted.
How does the Kin Bluetooth network work?
Kin devices (ruggedized Bluetooth-enabled “tags”) and third party Bluetooth tags are tracked using nearby Trackunit Raw devices and mobile apps. We use the network connection of the device to transmit tag data.
The GPS location combined with various algorithms is used to infer the location of the Bluetooth tag.
The Iris platform ensures that the received package is stored only in the account associated with the tag.
If one of your tags transmits data through a phone or device that does not belong to you, you receive no information about the phone or device. Conversely, the owner of the phone or device receives no information about your tag - not even that it has transmitted data.
Is Trackunit GDPR compliant?
Trackunit takes various measures on different levels of the processing of personal data to ensure the compliance with GDPR.
We have a designated internal data protection officer (DPO). Please contact the DPO directly for any questions or requests at DPO@trackunit.com
Trackunit established Privacy Principles as we fully understand that our customers value their privacy. The Privacy Principles are available here
💡 Tip:
Need more help?
Click on the Messenger icon in the lower left corner to get in touch with Customer Support.