1. What are the objectives of the security document?
This document aims to detail the security measures implemented for SAM Tool Supervisor (STS) and SAM Tool Manager (STM) regarding applications, hosting infrastructure, and personal data processing in compliance with the GDPR.
2. What is the role of SAM Tool Supervisor (STS)?
STS is a web application that manages and monitors products, tools, and consumables.
It provides a real-time view of machine status and content, and allows configuration and activity analysis across the fleet.
3. What is the role of SAM Tool Manager (STM)?
STM is software integrated into SAM'URAI® storage units.
It manages product distribution and sends user interactions to STS via HTTPS requests.
4. What operating systems are used in SAM'URAI® machines?
Machines run on Windows 10 and come with Windows Defender as the default antivirus.
5. How are the machines protected against unauthorized physical access?
USB and RJ45 ports are hidden to prevent external access.
A physical key is required to open the machines.
6. What role does the firewall play in the machines?
Machines are equipped with TinyWall, a firewall that restricts connections to:
Communication with STS
Required updates
Remote access via TeamViewer
7. What is the technical architecture of SAM Tool Manager (STM)?
STM is based on:
Java: Programming language for the graphical interface
JavaFX: Modern framework for application development
MongoDB: NoSQL database used to store user interactions
8. Where is SAM Tool Supervisor (STS) data hosted?
Data is hosted on Google Cloud in Saint-Ghislain, Belgium, in a private virtual server (VPS) within a private cloud network.
9. How are the performance and availability of STS monitored?
STS uses Google Cloud Monitoring to track performance and generate alerts in case of issues.
10. What is the system update policy?
The PHP and MySQL versions used for STS are regularly updated to ensure both security and performance.
11. What personal data is collected for users?
STS: First name, last name, email address, password
STM: First name, last name, email address, badge, password
12. How is personal data collected?
Data is collected via registration forms available on the SAM Tool Supervisor website.
13. How is personal data protected?
Passwords are encrypted
Clients can restrict access to their data or refuse report reception from their distributor
14. What rights do users have over their data?
Access: View personal data
Correction: Modify data
Erasure: Delete data at the end of the contract
Portability: Retrieve data in a structured format
15. How long is data retained?
Data is retained for the entire duration of the contract and deleted once it ends.
16. How to get help or report a data-related issue?
Phone: 04 77 92 13 00
Email: reclamation@sam.eu
17. What type of internet connection is used by these machines?
SAM'URAI® machines can be connected to the internet via an RJ45 network cable or a SIM card.
18. How do I retrieve the IP or MAC address of my machine?
To retrieve these addresses, take the keyboard located inside the machine by opening the left door.
Once the keyboard is connected, press Ctrl + Shift + Esc to open the Task Manager.
Click on “Run new task”, then type “explorer” and confirm.
The Windows menu will open. Search for the Terminal and open it.
Then type the following command: ipconfig /all
This command will display all the network information for your PC, including:
IP addresses (IPv4 and IPv6)
MAC addresses (physical address)
You can then close the terminal, log out of the client session, and log back in (to cancel the explorer execution).
To reconnect to the Windows client session, enter the client password.
STM will then restart and the machine will be ready for use.