top of page

With Great Data, comes Great Responsibility

Personal data is a big thing, particularly when you are the custodian of a lot of it, we take that very seriously.

ISO 27001 and 9001

Highly

Secure

99.99% 

Uptime

Compliantly Collect
First Party Data on
Auto-Pilot

Empower Compliance with Data Privacy Laws Worldwide. Purple's Captive Portal Offers Unmatched Flexibility for Implementing Necessary Conditions, Opt-In or Opt-Out Choices, and Custom Data Fields to Meet Global Data Protection Requirements

Data & Security Overview

Discover our comprehensive suite of tools designed to optimize your WiFi network and drive unprecedented growth.

Data in Transit

  • All public portals and websites use TLS encryption.

  • TLS 1.2 minimum supported.

  • Regular review of TLS ciphers.

DNS Data

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Webhooks

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data Sovereignty

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data Reset

  • Hosted on Google Cloud (GCP) or Amazon Web Services (AWS).

  • Data disks encrypted (AES-256).

Location-Based Services

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Personal Identifiable Information

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data Retention
 

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data Protection

Compliant with EU's GDPR.

Clear data purposes and rights in EULA and privacy policy.

Separate active opt-in for EU marketing consents.

Users can view, modify, or delete data.

Purple Data Protection Officer for queries.

Connectors

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Payments

  • All public portals and websites use TLS encryption.

  • TLS 1.2 minimum supported.

  • Regular review of TLS ciphers.

Data Storage and Backup
 

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Captive Portal

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

API

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

ISO Compliance

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data Ownership/
Controller
 

  • I'm a paragraph. Click here to add your own text and edit me. It's easy.

Data & Data Security

​

Data in Transit

  • All public portals and websites use TLS encryption.

  • TLS 1.2 minimum supported.

  • Regular review of TLS ciphers.

​

Data at Rest

  • Hosted on Google Cloud (GCP) or Amazon Web Services (AWS).

  • Data disks encrypted (AES-256).

​

Data Protection

  • Compliant with EU's GDPR.

  • Clear data purposes and rights in EULA and privacy policy.

  • Separate active opt-in for EU marketing consents.

  • Users can view, modify, or delete data.

  • Purple Data Protection Officer for queries.

​

Captive Portal

  • Stores device MAC, user agent, AP MAC.

  • User data stored based on login method.

  • Data secured via TLS in transit.

  • RADIUS accounting for network metrics.

​

DNS Data

  • Collects domain lookup data via WebTitan.

  • Logged against venue's IP.

  • Not traceable to individual users.

​

Location-Based Services

  • Passive collection of device data.

  • MAC address, RSSI, date/time recorded.

  • Location coordinates with right hardware.

​

Connectors

  • Third-party integrations for CRM data.

  • Connector connection/session data encrypted.

​

API

  • RESTful API for extracting user data.

  • Encrypted with HTTPS, requests signed.

​

Webhooks

  • Real-time data export triggers.

  • HTTPS POST to user-defined endpoint.

​

PII (Personally Identifiable Information)

  • Data varies by configuration.

  • Encrypted and stored in three locations.

  • PII data retention of 13 months of inactivity.

​

Payments

  • No handling or storing of financial data.

  • Payments via Stripe, PCI-DSS compliant.

​

ISO Compliance

  • ISO 9001 for business practice.

  • ISO 27001 for data security.

  • Audited annually.

​

Data Sovereignty

  • Data stored in three GCP locations.

  • Compliant with regional data storage laws.

​

Data Retention

  • User data anonymized after 13 months of inactivity.

  • Non-identifiable information retained.

  • Raw data discarded sooner if needed.

​

Data Storage and Backup

  • Databases replicated with real-time backups.

​

Data Ownership/Controller

  • Customers share data ownership.

  • Joint Controller with Purple & Flow.

  • Data treated per local legislation.

​

Application Components

​

Captive Portal

  • Configurable splash page.

  • T&Cs acceptance required.

  • OAuth access via social media.

​

Location/Presence Data Collection

  • Collects MAC addresses and RSSI.

  • Coordinates with the right hardware.

  • Location data linked to WiFi users.

​

Customer Portal

  • User account hierarchy.

  • Password policies and rotation.

  • Secure access control.

​

Radius

  • Authentication required for all traffic.

  • One-time password for security.

​

Personnel Management,

Procedures, and Policies

​

Staff Access

  • Limited access to key staff.

  • Contractors strictly prohibited from live data.

​

Development and Testing

  • Secure development policy.

  • Code review, testing, and QA.

​

Releases

  • Weekly deployments for maintenance.

  • Large releases on a quarterly basis.

​

Vulnerability/Threat Management

  • Monthly automated tests.

  • Weekly software patches.

  • Third-party penetration test annually.

​

Incident Response

  • Security Incident Reporting Policy.

  • Data protection contacts notified.

  • Clear staff termination procedure.

​

Trusted Among Industry Leaders

Elevate your brand's presence and compete with major players by harnessing the power of social WiFi. Our solution empowers smaller brands to seamlessly connect with customers, gather valuable data, and deliver personalized experiences. Gain a competitive edge, boost brand loyalty, and drive targeted marketing campaigns to fuel your business growth. Join the league of successful brands and unlock a world of possibilities with our social WiFi product. Don't miss out on the opportunity to thrive in the digital age.

Here's what Purple can do for you!

Capture 83% more CRM data through guest WiFi and drive loyalty scheme sign-ups. With Purple, automate messages to stay top-of-mind post-visit.

Maximize loyalty program sign-ups

Boost direct bookings by revealing guest identities from third-party reservations. Gather comprehensive guest data to personalize marketing and promote future direct bookings.

Drive customer remarketing for conversions and loyalty.

Boost customer loyalty by rewarding visits. Purple tracks customer visits, enabling targeted promotions based on visit count. 73% of customers would return if their loyalty was rewarded.

Encourage Repeat Visits

Prevent customer loss: 51% won't engage after one negative experience. Purple's solution offers automated interstitial ads, delivering personalized deals and benefits for positive customer experiences.

Deliver optimal experiences

Enhance customer decision-making by leveraging reviews. Purple's integrations boost review volume and quality on global platforms like TrustPilot by over 200%.

Elevate venue reputation

Unlock remarkable ROI: Purple insights empower hospitality venues to customize customer marketing, resulting in a staggering $20 return for every $1 invested.

Super personalized targeting

Explore Our Pricing Options

I'm a paragraph. Click here to add your own text and edit me. It’s easy. Just click “Edit Text” or double click me to add your own content and make changes to the font. I’m a great place for you to tell a story and let your users know a little more about you.

Get Ready to Maximize Your Productivity With Our Workflow Solutions

Contact
bottom of page