Appendix: Data processing performed in external cloud services
Personal data is collected and processed in the following circumstances:
-
When push notification is enabled:
In this case, both Milestone and the vendor of the mobile operating system (that is, Google or Apple) process data to deliver the push notifications to the smartphones.
-
When the collection of usage data is enabled:
In this case, Milestone and Google process usage data and crash data from the XProtect Mobile client and XProtect Web Client.
Processing by Google and Apple occurs outside the EU.
Although the data is set to be anonymized, Milestone cannot guarantee that Google and Apple cannot derive personal data from the data processed by them.
The VMS controller is responsible for conducting a Legitimate Interests Assessment (LIA) and informing the VMS operators that data from the smartphone will be processed by the vendor of the mobile operating system.
With regards to Google, Milestone products are compliant with privacy guidelines as described here: Crashlytics and App Distribution Data Processing and Security Terms.
With regards to Apple iOS, Milestone products are compliant with privacy guidelines as described here: User Privacy and Data Use.
If processing of this data is a concern, to avoid it: