Content
Data protection with the ERP interface
At Allthings, we take the protection of your data very seriously. Our ERP interfaces are designed to ensure a secure and data protection-compliant exchange of information between your ERP system and the Allthings platform. Allthings does not sell personal data and processes your data exclusively in the manner described in our privacy policy to provide and improve the functions of the platform. Our services comply with the applicable data protection laws, in particular the EU General Data Protection Regulation (GDPR) and the Swiss Federal Act on Data Protection (nFADP). Compliance with these legal provisions is of essential importance to Allthings.
Security of data transmission
The security of your data during transmission and storage is a top priority at Allthings. All data synchronized via the ERP interface is treated with the same robust security standards as other sensitive data within the Allthings platform.
- Encryption: We use SSL or TLS encryption for the transmission of confidential content. This ensures that the data exchanged between your ERP system and the Allthings platform cannot be read by unauthorized third parties.
- Access controls: Internal access controls and authentication mechanisms ensure that only authorized personnel and systems can access the synchronized data.
- Server locations and data storage: Allthings uses the services of Amazon Web Services (AWS) to ensure the highest security standards for data storage. Your customer data is stored on servers in high-security data centers in Zurich, Switzerland, and Dublin, Ireland. This allows us to store the data in accordance with the highest security standards within Switzerland and the European Union.
Processing of personal data and your rights
Allthings processes your data as a data processor within the scope of the ERP integration in accordance with Article 28 GDPR (or data processor in accordance with Article 9 nFADP). This is regulated by corresponding data processing agreements (DPA) between our customers as data controllers and Allthings, which set out our obligations to protect personal data in detail.
Data subjects have comprehensive rights regarding their personal data. These include the right to information, the right to rectification, the right to erasure, the right to restriction of processing, the right to data portability, and the right to object. A detailed description of these rights and how you can exercise them can be found in our comprehensive article "Data protection at Allthings" and in the privacy policy.