The Gira S1 uses the Internet access of the network in which it is a participant and the DNS server to connect to the portal server.
When using the "Search links automatically" function in the Gira device portal, a search for devices in the Gira S1 network is triggered through SSDP.
In addition to our own tests, we subject the server system and the Gira S1 to a penetration test once a year by external, specialised testers. The results are evaluated and, if necessary, corresponding measures are derived and implemented.
Certification is also carried out regularly. This is currently done by the VDE.
This test is documented by the “Smart Home Safety Tested” special certificate.
You need your user name and password to log in to both the Gira device portal and the S1 Windows client for connection between Gira S1 and the portal server.
The password must meet special complexity requirements, which are regularly updated. You can find the current requirements when assigning your password in the Gira device portal.
Two-factor authentication is not yet available at this time.
All data collection and storage is subject to the GDPR, the implementation of which is ensured by internal processes and responsible roles in the company.
Communication via our server is encrypted using the current versions of various protocols:
Sensitive data such as access data is never saved as plain text and is also masked in log files. This means it cannot be traced by anyone, not even our employees.
Only selected employees can access our servers, databases and logs. Physical access to our server rooms and offices is secured and restricted to certain employees (depending on sensitivity).
In the event of an incident such as customer data theft as a result of security vulnerabilities in the components we use, we immediately notify our customers, the responsible authorities and other affected groups.
The security vulnerability will be closed or its impact minimised within 72 hours of the release of a patch or other action by the manufacturer.
If our servers unexpectedly fail (average availability is 99.9%), our standby service is automatically notified. This service will carry out a root cause analysis, troubleshooting, restoration of regular operation and customer support.
For prolonged outages, we will always notify our customers and, if necessary, other affected groups.
To use our services, the Gira S1 must have a direct Internet connection.
Connection via a proxy server is not supported.