Vitodata 100 / 300 – IP communication and data protection

Vitodata_IP_Kommunikation.jpg

IP communication

[1] Vitocom – IP communication
[2] IP communication to Vitodata server
[3] IP communication to Vitocom S/W update server
[4] IP communication to Vitodata 100 web app
[5] IP communication to Vitodata 300 web app

[1] Vitocom – IP communication

- dynamic IP addressing with DHCP client (default)
- static IP addressing is configurable
- IP communication is established by Vitocom
- enabling the domain "*.viessmann.com" is recommended

[2] IP communication to Vitodata server

- URL: https://httpsconnector.viessmann.com
- IP*: 93.122.86.35
- Port: 443

[3] IP communication to Vitocom S/W update server

- URL: https://vitocomupdate.viessmann.com
- IP*: 93.122.86.36
- Port 80, 443

[4] IP communication to Vitodata 100 web app

- URL: https://vitodata100.viessmann.com
- IP*: 93.122.86.36
- Port: 443

[5] IP communication to Vitodata 300 web app

- URL: https://vitodata300.viessmann.com
- IPs: 93.122.86.36
- Port: 443

*Note: The IPs can change anytime with restructuring of the Viessmann network IPs. When enabling the Domain "*.viessmann.com" in your IT network,  the use of  the above mentioned  absolute IPs  are not needed.


Data protection

Viessmann processes the data it collects in line with the provisions of the German Data Protection Act (BDSG) and, as of mid-2018, the EU General Data Protection Regulation (EU GDPR). This means that, in addition to the terms of use, the customer's consent is binding for collecting, saving and using the data.

If any changes are made to the processing of data which affect data protection, correspondingly updated consent will be obtained. This offers maximum transparency and trust for and by the customer.

The storage of data takes place within the EU. German data centres are primarily used for this purpose. A corresponding data protection organisation within the company continuously controls and checks compliance with the legal provisions.

Secure communication

Communication between the components incorporated within the IoT ecosystem (Internet of Things) is always encrypted using the latest state of the art technology. If this technology changes, this is also promptly reflected in the products supplied by Viessmann.

With Vitodata 100/300, the challenge-response system is deployed for user authentication.

Secure processing

The server systems used for processing data are located in data centres that are secured and certified in accordance with international standards. They guarantee secure operation around the clock. All access to the data is also actively monitored, allowing early detection of any attacks via an alarm system. A corresponding IT security organisation continuously controls and checks the standards required for operation.

Tested security

In addition to its own internal assessments, Viessmann arranges regular inspections of all data protection agreements and technical components of the IoT ecosystem by independent external companies.

These tests are not only of a formal nature, but also include technical attacks on the components (penetration testing), complemented by white hat hacking activities.