Product/Version

Image

DIGITTRADE High Security HDD HS256S

Qualification: IT product

View the DIGITTRADE Certificate

Cert. No.

DE-130030

Validity

28/02/2013 until 28/02/2015

Monitoring

Not applicable (IT product)

Public Report

DIGITTRADE Short Public Report [PDF] Image

Manufacturer/Provider

Image

DIGITTRADE GmbH
Ernst-Thälmann-Str. 39
06179 Teutschenthal

Germany

BEST

Technical & organisational measures

Confidentiality and integritiy of (personal) data that are stored on the DIGITTRADE HS256S hard disk are ensured by means of strong encryption methods and secure (2 factor) authentication.

Transparency

Users of DIGITTRADE HS256S are informed about relevant data protection issues by means of specific notes on data protection in the user manual.

ATTENTION:

DIGITTRADE HS256S facilitates privacy-compliant use. Responsibility for the processing of personal data lies with the user of the product.

Summary

The target of evaluation (ToE) is an external hard disk drive. It guarantees confidentiality and intergrity of (personal) data by means of

  • full hard disk encryption (256 bit AES, CBC mode)
  • 2 factor authentication: smart card and PIN ("possession & knowledge")
  • management of encryption key (generation, change, copying and destruction)
  • external storage of encyption key (on smart card)

Details

DIGITTRADE HS256S is available with different amounts of storage  capacity (functionalities that are relevant for the certification are  always the same).

The ToE includes:

  • DIGITTRADE HS256S Java Card Applet v1.3 in connection with smart card NXP Semiconductors P5CD081 J3A081 JCOP v2.4.1 R3, BSI-DSZ-CC-0675-2011
  • ID-One Applet in connection with smart card Oberthur Cosmo 64 v5.4 FIPS-140-2 Level 3
  • integrated card reader
  • integrated key panel
  • harddisk-controller-unit
  • integrated encryption modul
  • communication between smart card and controller
  • host interface (USB & Firewire)
  • protected storage

The ToE does NOT include as such

  • smart card NXP Semiconductors P5CD081 J3A081 JCOP v2.4.1 R3 , BSI-DSZ-CC-0675-2011
  • smart card Oberthur Cosmo 64 v5.4 FIPS-140-2 Level 3

Technical Evaluator

Andreas Bethke
Papenbergallee 34
25548 Kellinghusen
Germany
andreas@b3-gruppe.de

Legal Evaluator

Stephan Hansen-Oest
Neustadt 56
24939 Flensburg
Germany
sh@hansen-oest.com

Formerly Certified Versions

n.a.

Image

European Privacy Seal for DIGITTRADE

Press Release Image Image

Image

Disclaimer:

This register is kept with the utmost care. However, EuroPriSe does NOT guarantee the accuracy of information found on the Site. Your reliance on information found on the Site is at your own risk. For more information please go to EuroPriSe Terms & Conditions

© 2008 - 2019 | EuroPriSe GmbH - European Privacy Seal | Handelsregister-Nr. (Commercial Register No.): Bonn HRB 20387

No responsibility for the accuracy of the information. Contact | Privacy Notice | Imprint

Product/Version

REISSWOLF f.i.t.

v1.5; service function as provided in 05/2018

Qualification: IT product and IT-based service (processor service)

View the REISSWOLF f.i.t. certificate

Version of Certification Criteria

11/2011

Cert. No.

EP-S-X5TSCN

Validity

24/05/2018 - 31/05/2020

Monitoring

01/2019

09/2019

Public Report

f.i.t. Short Public Report Image Image 

Manufacturer/Provider

REISSWOLF Systems GmbH

Im Heegen 13
22113 Oststeinbek
Germany

BEST

Access policies can be used to restrict system usage to specific times of the day and/or IP addresses to reduce the attack vector for third-party access. A user session is controlled by means of a cross-tab synchronised session countdown.

ATTENTION

Regarding the processing of personal data on third persons by means of f.i.t., it must be highlighted that the (usually) corporate users of the service qualify as controllers whereas REISSWOLF Systems GmbH acts as a processor on behalf of the users. Customers are advised that the legitimate use of the service may require the collection of the data subject's consent and/or declaration of release from confidentiality.

SUMMARY

REISSWOLF f. i. t. is a web-based archiving system for data storage and access. It serves the purpose of uploading, storing, managing and exchanging data in the sense of a document management system. f.i.t. is a web application that can be used with common internet browsers. 

DETAILS

REISSWOLF f. i. t. is primarily designed for commercial use. It is distributed by REISSWOLF Systems GmbH and operated as Software as a Service (SaaS) in a data center in Germany.

The ToE includes

  • The web-based service REISSWOLF f.i.t. (for details, please cf. the short public report)

It does not include

  • REISSWOLF f.i.t. mobile app
  • REISSWOLF f.i.t. hotfolder
  • Office module
  • Teamviewer
  • Other alternative interfaces to clients

Technical + Legal Evaluator

Ann-Karina Wrede
Innungsstraße 7
21244 Buchholz
Germany

Initial Certification: 05/2018

REISSWOLF f.i.t. provides a web-based service that enables companies to upload, store, manage and exchange data in the sense of a document management system. Users of the service are controllers in respect of personal data on third persons that is processed by means of f.i.t.. The service is designed in a way that facilitates the users' compliance with EU data protection law.

Image

Disclaimer:

This register is kept with the utmost care. However, EuroPriSe does NOT guarantee the accuracy of information found on the Site. Your reliance on information found on the Site is at your own risk.

Image

European Privacy Seal for REISSWOLF f.i.t.