InSight Data Security Considerations

 

• Data encryption is used between the controller agent and all InSight clients

 

• No unencrypted histories are kept in memory for the magnetic stripe reader and serial devices

 

• Access to sensitive InSight functionality is valid only for authorized 4690 users

 

• InSight can be configured to never allow certain functionality such as remote manager key override or terminal remote control

 

• InSight does not allow the cash drawer to be open when a remote user was the last user to send a keystroke

 

• In the great majority of customers, the store system is part of private and secure corporate infrastructure

 

• InSight’s controller agent generates a security log indicating session activity (session start, login user, password retry attempts, start/stop monitoring, start/stop remote control, session end, session timeout)

 

• Remote control operations, keystrokes, etc. are logged to the security log

 

• Remote keystroke and manager key device history events are flagged as remote