Priontek Privacy Policy

 

 

1. Introduction

Priontek develops intelligent video analytics systems designed for local use.
All data processing — including face recognition, event analytics, and storage — takes place directly on the device or local server.
Priontek does not collect, transmit, or store personal, biometric, or video data in the cloud.

This Policy explains how data are handled within Priontek systems and mobile applications connected through peer-to-peer (P2P) encrypted channels.

​

2. Data Processed Locally

Priontek systems may locally process:
– video streams from connected cameras;
– analytical events (motion, object, and face detection, access control, etc.);
– device information (firmware version, internal IDs, diagnostics).

No raw video or biometric data are transmitted to Priontek or third parties.

​

3. Local Architecture and Connectivity

All analytics run on the edge device (AI-NVR, AI-box, or camera).
The system can operate entirely offline within a local network.
When remote access is enabled, the connection between device and mobile app is established via encrypted P2P (end-to-end encryption), without routing through Priontek servers.

User accounts, passwords, and QR-tokens are created and managed solely by the user or local administrator.
Priontek cannot access or recover credentials and has no technical means to decrypt communications.

​

4. Purpose of Processing

Data are processed solely to provide system functions such as:
– access control and identification;
– security monitoring and incident analysis;
– performance and operations analytics.

Data are never used for advertising, profiling, or resale.

​

5. Third-Party Integrations

Users may connect external services (e.g., Telegram, Google Drive, Dropbox, Microsoft Teams) for extended functionality such as notifications, backups, or event export.

When such integrations are enabled:
– data may be transmitted directly from the local device to the selected service via secure HTTPS or OAuth 2.0 API;
– Priontek has no access to transmitted content and no responsibility for its subsequent processing;
– the processing of these data is governed by the respective service’s privacy policy (for example, Telegram Privacy Policy, Google Privacy Policy).

Activation of any integration constitutes the user’s consent to transfer data to that service.
The user bears full responsibility for the choice of third-party platforms and the content shared with them.

​

6. Security and Encryption

– AES-256 encryption for stored data and TLS 1.3 for transmission.
– Unique dynamic encryption keys per device.
– Digitally signed firmware updates.
– Regular internal penetration testing and security audits.

All measures comply with ISO 27001 and IEC 62443 principles.

​

7. Data Retention and Deletion

Data remain on the device for the period configured by the user.
After expiration, data are automatically deleted or overwritten.
Users can manually erase all data or reset the system at any time.

 

8. User Rights

Users may:
– view, edit, or delete local data;
– revoke remote access;
– disable integrations;
– reset credentials and encryption keys.

Requests regarding privacy can be addressed to:
Data Protection Officer — privacy@priontek.com

 

9. Legal Basis and Responsibility

Priontek acts solely as a software provider and data processor.
The data controller is the user or organization operating the device.

Priontek ensures the security of its software but has no technical ability to access, view, or restore user data.
Responsibility for compliance with data-protection laws during system operation rests with the device operator.

​

10. Cookies and Website Usage

The Priontek website uses only essential technical cookies required for operation and security.
No advertising or profiling cookies are used.
Visitors may manage cookies in their browser settings or via the consent banner.

​

11. Certification and Compliance

Priontek products are developed in accordance with:
– ISO 27001 (Information Security Management);
– GDPR Art. 25 & 32 (Data Protection by Design and Security);
– LGPD Art. 46 – 49;
– CCPA Sec. 1798.100.

The company performs continuous code-integrity verification and vulnerability testing.

​

12. Policy Updates

This Policy may be updated to reflect technological or legal changes.
The latest version is always available at https://priontek.com/privacy.
Significant updates will be communicated through the website or in-app notice.