GPS tracking and data privacy

2018's GDPR laws (General Data Protection Regulation) made data privacy an international hot topic for businesses. GpsGate Server helps you follow local data and privacy regulations like GDPR. We've been addressing the topic of ethical tracking since GpsGate was founded in 2004. Let's explore why companies use GPS tracking for fleets, and then how companies can keep fleet data secure, maintain data integrity, and protect employee privacy.

Common reasons for a company to introduce a vehicle tracking solution:

• Improve logistics and effectively use assets and fleets
• Increase personal security for drivers
• Prevent cargo loss, spoilage, and theft
• Provide better customer service and reduce complaints

If the purpose of vehicle tracking is justified and well defined, it is normally OK for a company to introduce a GPS tracking solution.

When introducing a tracking solution, you must be transparent with employees. You must also follow all best practices to protect employee data. If you are tracking vehicles, employee data is often intertwined. GDPR and other legislation across the world take this into account.

How we help you protect fleet data

GpsGate has many functions that help companies protect data and employees.

On-site server behind your firewall

Hosting a server on-site allows for more control and security. Companies may also have strong IT infrastructure and want to use an internal secure server. Police forces and others with highly sensitive data often need this. GpsGate Server can be installed on an on-site server behind a firewall. It can operate with SSL encryption (https) to improve data security.

Two-factor authentication

Two-factor authentication (2FA) requires users to complete an extra step to verify their identity when logging in - they supply not only their username and password, but also use an authenticator app to input a separate time-based one-time password. This helps ensure that only authorized employees and users can log into the system and access fleet data. In addition, you can also set strong password requirements for users.

Data retention and clean up

Data retention rules can be set at the server or application level. Data in GpsGate Server can be stored as long as it is needed. When the data is not needed anymore, it can be deleted automatically. Our cleanup function is easy to use and keep your data tidy.

User access control

Companies can define user access with GpsGate Server. Each user has an individual login and is assigned a ‘role’ that defines their access level/user rights. You control exactly what data each application and user has access to. Learn about defining privileges through roles, users, tags, and views.

System audit capability

Administrators can see who has accessed or deleted data at any point. GpsGate Server logs actions in the system, making the system auditable. Examples include data deletion, user deletion, and dismissal of an alarm. Learn how to view historical user actions.

Scheduled tracking - track only during office hours

You can control exactly when your fleet is tracked. For example, you might only want to track your fleet during office hours. If employees use their personal vehicles, companies can schedule tracking during working hours. You can set up tracking according to worker shifts or any other custom timetable. The tracking schedule is based on roles, so different schedules for different users is possible.

Resources

Compliance with local laws for GPS tracking data privacy is always important. Companies should talk with local trade groups to learn more and be familiar with any legislation.

Read our ethical tracking policy.

Learn about all of GpsGate's security features.

Learn more about General Data Protection Regulation on the EUR-Lex site.

This post was originally published in October 2014 and has been updated for accuracy and comprehensiveness.