Breadcrumbs

Approach to security by design for i3CONNECT displays

As a customer, you can benefit from i3CONNECT’s solutions and remain confident that your data is handled in line with core security and compliance expectations such as data locality, confidentiality, and protection.

This page explains how i3CONNECT displays help you reduce day-to-day security risks through controlled updates, role-based access, and encrypted cloud communications. Use it when you’re validating your organisation’s security requirements, answering IT questionnaires, or preparing for a rollout.

This page is not a legal, compliance, or procurement statement. If you need contractual security commitments, a Data Processing Agreement (DPA), or formal certification evidence, contact i3CONNECT via your account manager or the i3CONNECT support portal.

Recommendations

  1. Confirm your display is running the latest software and firmware using the display’s update settings or your organisation’s remote management process (if used).

  2. Run the Setup Wizard on first boot to set your essentials: language, date and time, network, and (optional) enrolment into remote management.

  3. Set the right access level for the room by using user profiles (administrator, user, guest) so only the right people can change system settings.

  4. Review how content is shared and stored so your team knows what happens to screenshots and exported whiteboard/annotation files.

  5. Validate your network security expectations by confirming that external communications are encrypted (HTTPS/TLS) and that stored data is encrypted where applicable.

FAQ

Automatic updates and “who can change what”

  • i3CONNECT displays ship with factory-installed firmware and software that are inspected and approved by i3CONNECT Quality Assurance in Europe.

  • Updates and upgrades are designed to happen automatically, reducing the risk of accidental (or intentional) unsafe changes.

  • If you need tighter change control (for example, approval windows), align this with your internal IT policy and your remote management approach. If your environment blocks updates, contact i3CONNECT support.

  • For more detail on updates, see:
    Firmware update when installing display - Installation Wizard / internet / Over The Air (OTA)

Setup Wizard visibility and advanced settings

  • The Setup Wizard is intended for non-technical first-time setup (language, time, network, enrolment, basic preferences).

  • Users can define UI preferences such as quick launch buttons and theme.

  • More complex settings are restricted and require the right access and knowledge. If you can’t access a setting you expect, verify you’re signed in with an administrator profile.

User profiles and passwords

  • i3CONNECT supports segmented user profiles: administrators, ordinary users, and guest users.

  • Administrator and ordinary user profiles are protected by usernames and passwords (guest access is not).

  • If staff are changing settings they shouldn’t, move them to a lower-rights profile and restrict administrator access.

Personal data on the display

  • No personal user data is stored on the display.

  • Whiteboard and annotation screenshots can be shared locally and/or stored on protected network storage if your organisation chooses.

  • Locally shared screenshots expire after 4 hours and are removed from the system.

  • No hidden “backdoor” communication or test routines are implemented.

Encryption, password handling, and backups

  • External network communication is encrypted (for example HTTPS/TLS) using 256-bit AES.

  • User passwords are not stored in a machine-readable format.

  • Backups are stored encrypted.

  • User data is not accessible to unauthorised third parties.

  • If your security team needs deeper detail (cipher suites, endpoints, retention, logging), request the relevant security documentation from i3CONNECT support.

Cloud hosting, access control, and third-party services

(current at time of publication)

  • i3CONNECT uses major cloud infrastructure providers to apply high standards in service and data management.

  • Cloud hosting infrastructure is based on Amazon Web Services (AWS) and hosted in an Amazon data center in Ireland.

  • Only a limited number of people have access to the infrastructure, and they have no means to download, decrypt, or read sensitive information on the server.

  • Our internal IT security policy applies a zero-trust approach: strict access management shields environments, databases, and infrastructure from unauthorised access or copying of information.

  • For remote connectivity and mailing services, i3CONNECT uses trusted providers such as Twilio and its Sendgrid subsidiary (connectivity/processing services; no user data is stored there).

  • For access and identity management (user profiles in Cortex and storing cloud management credentials in Whiteboard), i3CONNECT uses an accredited third-party service from:
    http://auth0.com


This information can change

i3CONNECT products and services evolve to improve functionality, security, and user experience. The cloud services and servers used may change over time. The information on this page is accurate to the best of our knowledge at the time of publication and may change without prior notice.