aktuality_do_mailuarrow-backarrow-bottomauthorbasketbezbarierove_mestoblockquotebtn-arrow-backbtn-arrowcalendarcheckcheckedclosedigitalni_evidencedopravni_znaceniemailfacebookfaqfb-circlefooter-imghousehrbitovinfointuitivni_ovladanikatastralni_datalarge-arrow-bottomlinklinkedin-sidebarlinkedinlist-arrowlockloginmapamistni_komunikacemobiliar_obcemobilni_aplikacemodul_DTMmunicipalitynastaveni_roli_a_spolupracenavrhy_na_vkladnewsletterochrana_obyvatelodeslaniphonepozemkove_upravypresnostprojektantiregcountsearchservice1service2service3service4silne_zabezpeceni_a_dostupnostsmlouvy_na_klikspoluprace_nad_dokumentacispravcistavebnicisubjektysupporttechnicka_infrastrukturatriangle-bottomtrideny_odpadtwitterutilityuzemni_planverejne_osvetleniwebova_aplikaceworkerxingyoutubezadatelzelenzivotni_cyklus_stavbyzivotni_situacezrychleni_vystavby
Back to all documents
Mawis Geoportal

User Data Security

MawisGeoportal places a strong emphasis on ensuring a high level of security for user data. The key principles and measures for data protection are listed below: 

1. Access restricted to verified users

  • Only logged-in users can access the system.
  • Authentication is provided through Microsoft Entra ID (formerly Azure Active Directory), which offers advanced account security features, including multi-factor authentication (MFA), identity management, and audit logs.

2. Separation of Public and Private Data

  • Applications within the Mawis Geoportal can display a combination of public and private data.
  • However, all customer personal data is stored in separate database spaces, accessible only to authorized users of the respective customer.

3. Data Architecture and Storage

  • The data is stored in an environment operated by Hrdlička spol. s r.o., specifically:
    • on our own servers at the Hrdlička data center,
    • and in the Microsoft Azure (Entra) and Amazon Web Services (AWS) cloud services.
  • Each customer has a dedicated database space that is isolated from the others.
  • Shared layers (e.g., cadastral maps, WMS layers) are stored outside these dedicated spaces to prevent conflicts with private data.

4. Data Protection and Access Rights 

  • Access to data is controlled based on user permissions, which are set on an individual basis.
  • All communication between the client and the server is encrypted. The system supports audit trails and access logging, which enables the monitoring and analysis of security events.