General Data Protection with Matrix42 Silverback (GDPR/DSGVO)
Mobile Device Management and GDPR
Mobile device management is not just about the technical aspects of the software. Many legal requirements - including those of the EU General Data Protection Regulation (EU GDPR) - must also be observed when using it. Matrix42 Silverback and its proper configuration supports compliance with the EU GDPR.
Matrix42 Silverback takes, at the earliest possible stage of the design of the processing operations, technical and organizational measures designed to protect the privacy of users and support data protection principles from the outset (privacy by design). Matrix42 Silverback processes a minimal amount of personal data such as first name, last name and email address. Furthermore, Matrix42 Silverback supports the privacy measures supported by device manufacturers (Apple, Google, Samsung, Microsoft). Location functions of the devices can only be activated according to certain criteria in order to locate the device via GPS in case of loss. These measures also support data protection through privacy-friendly default settings (privacy by default).
At the same time, Matrix42 Silverback protects private data that is generated during the use of the company device and that may not be collected and stored according to the EU GDPR - e.g. private contacts and emails, app usage frequency and browser history.
Selection of setting options to ensure GDPR
Matrix42 Silverback enables administrators to manage, secure and monitor corporate or personal mobile devices across multiple operating systems.
Passcodes, Configurations, and Policies
- Set and enforce PIN codes and configure maximum failed attempts
- Configure platform specific passcode profiles via Tags
- Prevent the usage of interfaces (e.g. Bluetooth, Camera, SMS, WLAN)
- Configure platform specific restriction profiles via Tags
- Distribute policies and define violation actions
- Configure platform specific policies via Tags
- Define the interval for lockdown devices
Encryption and Integrity
- Device Encryption
- Enforce passcode Settings on Android, iOS, and iPadOS
- Configure BitLocker Encryption for Windows 10/11
- Enable FileVault for macOS
- Detect compromised devices (e.g., root or jailbreak)
- Get security and device integrity information
- Review Security Information for devices
- Configure Lockdown settings for SafetyNet (Basic & Extended Integrity)
Applications
- Block public App Stores
- Enroll devices with Android Enterprise
- Configure platform specific restriction profiles via Tags
- Prohibit specific applications (e.g. WhatsApp)
- Force app installations (e.g. AntiVirus)
- Add applications to the App Portal
- Configure applications and distribute them via Tags
- Control over software status of devices (installed apps or software, operating system version)
Data Separation
- Store business data in separate container (no synchronization between business and private data)
- Use the Apple User Enrollment
- Use the Android Enterprise Work Profiles
- Configure Device Privacy for personal flagged devices that are not enrolled via the two options above
- Configure Cross Profile platform specific restriction profiles via Tags
Remote Actions
- Remote wipe and deletion of company in case of loss/theft devices or leavers
Reporting
- Enable E-Mail alerts for policy violations
- Create reports for security audits