At meetyoo, “security/data protection” is divided into three areas. All three are equally important. Taken together they result in our claim to offer you the most secure conferences in the German market.
In the following we would like to tell you more about our security philosophy. If you have additional questions about security at meetyoo, then simply write to us.
Teleconferences at meetyoo are just as secure as fixed-network telephone calls or mobile phone calls. A wired network (PSTN) directs these telephone calls to our data center, where they are interconnected on our platform. Telephone and mobile networks are private networks and compared to publicly accessible Internet (relatively) secure. Nevertheless it is very important to be aware that telephone calls as well as teleconferences can theoretically be “tapped.”
Theoretically, teleconferences can be encrypted, but the telephone network (PSTN) does not have any encryption standards that are automatically supported by the end devices (telephone systems, fixed-network phones, mobile phones). For an encrypted telephone conference, all participants would thus have to purchase additional encryption systems. The very high technical expenditure involved and the ensuing low demand are why meetyoo does not offer any encrypted telephone conferences. (Video conferences connected via meetyoo can be encrypted over AES if the end devices support this standard.)
Typically, after dialing the meetyoo conference number, the participant enters a so-called PIN-CODE (personal identification number) via the telephone keypad. Only participants who have this PIN code can participate in the telephone conference. That ensures that no uninvited guests get into your conference. To further increase security, the conference moderator can block the telephone conference by entering a DTMF command via the telephone keypad as soon as all desired participants have dialed in.
Just like with passwords, when people select their own PIN, they tend to pick combinations that are easy to remember (e.g., birth date or simple number sequences). But these PINs are unsafe, because they can be “cracked” by trial and error.
A standard feature is a signal you hear when a participant connects to your telephone conference. So no one can secretly “sneak” into the conference and eavesdrop. We recommend the free “name announcement” option because it is securer. After the PIN is entered, the participant must state their name. When “entering” and “leaving” the telephone conference, this name is announced by the system.
We recommend using the security mode when dialing in, since this provides additional protection. Here, the conference moderator receives his/her own PIN as well as a second PIN to give to participants. The telephone conference can only begin after the conference moderator has entered his/her PIN for authentication; prior to that, the participants hear music on hold.
Conferences that are highly confidential can also be given a so-called “one-time PIN.” This PIN is only valid for one telephone conference and is deleted afterwards.
The highest security is offered by our operator dial-in procedure. Here, the operator “fetches” the participants from the holding queue, and the participants personally authenticate themselves. This is done simply by checking that the participant is on a list that was given to meetyoo beforehand and/or through a code word.
Just call our hotline and we will immediately e-mail your new access data.
The confidentiality of the contents of teleconferences and the accompanying data are regulated by laws and regulations.
Anyone in the business of rendering telecommunication services or involved in them must comply with telecommunications secrecy as specified in the Telecommunications Law. This applies equally to public and private providers. The obligation not only exists for the length of the contractual relationship between the provider of the telecommunication services and the customer, but also extends past the end of the contractual relationship.
That telecommunication data must not be disclosed is already anchored in the German constitution, in the so-called telecommunications secrecy outlined in Article 10 of the German constitution. The legislator has defined this protection in more detail in the German Telecommunications Law. All contents of telecommunication (e.g., telephone calls, faxes, e-mails) and their particulars (e.g., who, when, and if someone was involved in the telecommunication process) are subject to telecommunications secrecy.
meetyoo is registered with the German Federal Network Agency (Bundesnetzagentur) as a provider of telecommunication services and complies with all applicable legal requirements. You can look at the directory here. You should check if it lists your provider to ensure basic protection of your rights.
- meetyoo has a specially trained data protection commissioner.
- meetyoo has binding non-disclosure agreements with all carriers used.
- meetyoo obligates all newly recruited employees to maintain the strictest confidentiality in a separate agreement.
- meetyoo informs all staff about the subject “insider trading” and also has all employees confirm this in writing.
- meetyoo obligates all employees to acknowledge the company’s IT/TC safety guidelines and has that confirmed in writing.
meetyoo saves connection data in accordance with the storage periods regulated in the Telecommunications Law. Afterwards, the data is securely deleted.
If the legislator did not specify otherwise, your data is securely deleted when you tell meetyoo that you no longer wish to work with us.
The technical platform is the core of our company and is thus fundamental for meetyoo. Operational safety always comes first – already in our infrastructure’s design. This focus can also be seen in the proactive monitoring and maintenance of the technical equipment.
All our technology relevant for operations is located in a high-performance data center. Not only does it feature optimal conditions in terms of air conditioning, power supply and fire protection, but the devices are also optimally protected from unauthorized access.
Our data center is under video surveillance 24/7. Gaining access involves undergoing a multi-stage authentication procedure. Only our specially trained technicians have access. Outside technicians are only permitted access when accompanied by a meetyoo technician.
Because something can also go wrong for the best redundancy concepts, all devices relevant for operations are monitored 24/7. We use standard software as well as our own developments customized specifically for our requirements. This way our versed technical team can quickly identify problems and immediately intervene before you experience disruptions.
To prevent the misuse of our platforms, we have implemented comprehensive plausibility checks.
During the planning of our technical infrastructure, steps were already taken to ensure that there would be no so-called “single points of failure.” This guarantees that operations can also smoothly continue if one platform fails. In selecting hardware, care is taken that it preferably supports an interruption-free transition to redundant operation.
In selecting telecommunication providers, we also place tremendous importance on network stability and availability. To further increase our availability we always work together with at least two well-known telecommunication providers. It is not without pride that for the last three years we can show that our services have been 99.9% available.
-
© meetyoo conferencing '09