Local user data (local authentication) |
Type of data |
-
Username and password
-
E-mail
-
IP address |
Purpose |
-
Authentication of local NSP users
-
User e-mail addresses (optional) to send notifications for certain events; for example, alarms or account status
-
IP address provides accountability of individual product access. |
Storage |
|
Retention |
Data is retained in the database until an authorized user deletes it. Log retention time can vary based on log file size and the number of log backups. |
Processing |
Local user data is processed for the stated purpose. |
Access |
Authorized users |
Safeguards |
-
Additional local users must be created by an authorized user.
-
Database access is restricted to authorized users.
-
TLS secures data in transit.
-
Passwords for local users are hashed before they are stored.
-
Log file access is restricted to authorized users. |
Comments |
Local authentication is performed using a local database of users and a local security scheme. |
Customer profile data |
Type of data |
-
Name
-
E-mail
-
Address
-
Phone |
Purpose |
Data may be used by an authorized user for associating customers to configured services. |
Storage |
Local database |
Retention |
Data is retained in the database until an authorized user deletes it. |
Processing |
Customer profile data is processed for the stated purpose. |
Access |
Authorized users |
Safeguards |
|
NE data |
Type of data |
-
Username and password
-
IP address |
Purpose |
|
Storage |
Note that NE backups that are stored on the NFM-P server may contain data that is not stored in the NFM-P database. Data contained in the NE backup files will be dependent upon the NE type and version; therefore the privacy statements for the individual NEs must be consulted. |
Retention |
Data is retained in the database until an authorized user deletes it. Log retention can vary based on the log file size and number of log backups. |
Processing |
NE data is processed for the stated purpose. |
Access |
Authorized users |
Safeguards |
-
NEs are configured by authorized users.
-
Database access is restricted to authorized users.
-
Secure transit option is available.
-
Passwords for NE users are encrypted before being stored.
-
Log file access is restricted to authorized users. |
Subscriber data |
Type of data |
-
MAC address
-
IP address
-
International Mobile Subscriber Identity (IMSI)
-
International Mobile Station Equipment Identity (IMEI)
-
Mobile Station International Subscriber Directory Number (MSISDN)
-
Access Point Name (APN) |
Purpose |
|
Storage |
|
Retention |
Data is retained in the database until an authorized user deletes it. Log retention can vary based on the log file size and number of log backups.
Retention period for auxiliary servers can be configured. |
Processing |
Subscriber data is processed for the stated purpose. |
Access |
Authorized users |
Safeguards |
-
NEs are configured by authorized users.
-
Database access is restricted to authorized users.
-
Secure transit option is available.
-
File access is restricted to authorized users.
-
Log file access is restricted to authorized users. |
E mail notification policies |
Type of data |
|
Purpose |
-
Username, password and sender’s e-mail address are used for SMTP configuration
-
Recipient e-mail addresses are required to create e-mail notification policies in supported applications |
Storage |
|
Retention |
Data is retained in the database until an authorized user deletes it. By default, SMTP server and application e-mail notification policies are not configured. |
Processing |
SMTP server configuration and application e-mail notification policies are processed for the stated purpose. |
Access |
Authorized users |
Safeguards |
-
SMTP configuration and application e-mail policies are configured by authorized users.
-
Database access is restricted to authorized users.
-
Password for SMTP configuration is encrypted before being stored. |