Gonimo Security

Gonimo Security

Here you can find everything you need to know about the security of Gonimo.

General

Family is a safe space, that's why SECURITY is a major issue at Gonimo. Here you can learn about the technical security measures Gonimo uses.

Peer-to-Peer (P2P)

Communication between your baby- and parent-devices takes place over a secure peer-to-peer connection. Usually the Gonimo server is only needed to introduce your devices to each other (handshake). Afterwards a direct peer-to-peer and end-to-end encrypted connection gets established via WebRTC. For the common case that both devices use the same WiFi, the stream will not even leave your home. For other scenarios, our server might give a hand when two devices can't establish a peer-to-peer connection (firewalls), in this case the data gets relayed over one of our servers, but it is still end-to-end encrypted and neither we nor anyone else is able to see the transmitted data.

Encryption

All connections established with Gonimo are encrypted. The connection to the Gonimo server and to the website use HTTPS for encryption. You can check that by looking at the little lock-symbol in your browsers address bar. if you click the lock-symbol you can look at the certificate that was issued by 'Let´s Encrypt' for 'Gonimo.com'.
The connection between your devices is also encrypted and is therefore secure even if the signal got intercepted.

Data

For Gonimo to work, we need to store some data, both on your device and on our servers. We work hard on ensuring this data is secure. We even had an external security audit, which turned out excellent!

Invitation and family-system

Your devices are managed in your 'Gonimo family'. If you use Gonimo for the first time, a family is created for you. With our invitation system you can add new devices to your family. Every invitation consists of a very long secret code and is only valid a single time. This ensures that only those who belong there can join your family.
If you accidentally invite the wrong person, you can simply click on the invitation-link yourself and render it invalid. If its already too late you can easily remove unloved and wrong members from your family in the device list.
If everything goes wrong, you can just create a new family and start over.

PIWIK

We need market research too, to figure out how to make Gonimo even better and simpler for you. Instead of using the market leading 'Google Analytics', like most do, we count on the open source alternative PIWIK. Thereby we keep full control over the collected data and pass no user data to Google. This means that no record can be allocated to a single user, which means more privacy. We only use the collected data anonymized and only for the purpose of understanding your interaction with Gonimo.

Open Source

Gonimo is realized as open source project in all sections. This means our code is public and can be used in other projects. The only restriction is that the resulting project needs to be open source too.
A positive side effect is that everyone can review our security measures. We are glad to get feedback or bug-reports!

Additional information

More information can be found here:

Gonimo's knight's armour