{"id":920,"date":"2025-09-18T10:58:40","date_gmt":"2025-09-18T10:58:40","guid":{"rendered":"https:\/\/help.classymade.de\/?page_id=920"},"modified":"2025-09-18T12:16:24","modified_gmt":"2025-09-18T12:16:24","slug":"token-policy","status":"publish","type":"page","link":"https:\/\/help.classymade.de\/?page_id=920","title":{"rendered":"Token Policy"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-page\" data-elementor-id=\"920\" class=\"elementor elementor-920\" data-elementor-post-type=\"page\">\n\t\t\t\t<div class=\"elementor-element elementor-element-6e53505 e-flex e-con-boxed e-con e-parent\" data-id=\"6e53505\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-65c259a elementor-widget elementor-widget-text-editor\" data-id=\"65c259a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2 dir=\"auto\" data-sourcepos=\"1:1-1:33\">Token\u2011Policy (Expo\/APNs\/FCM)<\/h2><h3 dir=\"auto\" data-sourcepos=\"3:1-3:21\"><a id=\"user-content-1-zweck--geltung\" class=\"anchor\" href=\"#1-zweck--geltung\" aria-hidden=\"true\"><\/a>1 Zweck &amp; Geltung<\/h3><p dir=\"auto\" data-sourcepos=\"5:1-5:119\">Diese Policy regelt Erhebung, Speicherung, Nutzung, L\u00f6schung und Logging von Push\u2011Tokens in der Hilferuf\u2011Funktion.<\/p><h3 dir=\"auto\" data-sourcepos=\"7:1-7:14\"><a id=\"user-content-2-erhebung\" class=\"anchor\" href=\"#2-erhebung\" aria-hidden=\"true\"><\/a>2 Erhebung<\/h3><ul dir=\"auto\" data-sourcepos=\"9:1-11:0\"><li data-sourcepos=\"9:1-9:70\">Token werden <strong data-sourcepos=\"9:16-9:45\">nur nach OS\u2011Einwilligung<\/strong> erzeugt und gespeichert.<\/li><li data-sourcepos=\"10:1-11:0\">Pro App\u2011Installation wird genau ein Token verwaltet; Wechsel\/Neuregistrierung \u00fcberschreibt alte Tokens.<\/li><\/ul><h3 dir=\"auto\" data-sourcepos=\"12:1-12:26\"><a id=\"user-content-3-speicherung--schutz\" class=\"anchor\" href=\"#3-speicherung--schutz\" aria-hidden=\"true\"><\/a>3 Speicherung &amp; Schutz<\/h3><ul dir=\"auto\" data-sourcepos=\"14:1-17:0\"><li data-sourcepos=\"14:1-14:125\">Tokens werden <strong data-sourcepos=\"14:17-14:50\">AES\u2011256\u2011GCM verschl\u00fcsselt<\/strong> gespeichert; Schl\u00fcssel liegen im <strong data-sourcepos=\"14:86-14:92\">KMS<\/strong> (Key\u2011Zugriffe werden geloggt).<\/li><li data-sourcepos=\"15:1-15:81\"><strong data-sourcepos=\"15:3-15:15\">Trennung:<\/strong> Token\u2011Repository getrennt vom Nutzerprofil (nur Referenz\u2011ID).<\/li><li data-sourcepos=\"16:1-17:0\"><strong data-sourcepos=\"16:3-16:14\">Zugriff:<\/strong> ausschlie\u00dflich Service\u2011Accounts (RBAC); kein Zugang f\u00fcr regul\u00e4re Nutzer oder 1st\u2011Level\u2011Support.<\/li><\/ul><h3 dir=\"auto\" data-sourcepos=\"18:1-18:13\"><a id=\"user-content-4-nutzung\" class=\"anchor\" href=\"#4-nutzung\" aria-hidden=\"true\"><\/a>4 Nutzung<\/h3><ul dir=\"auto\" data-sourcepos=\"20:1-22:0\"><li data-sourcepos=\"20:1-20:73\">Tokens d\u00fcrfen <strong data-sourcepos=\"20:18-20:36\">ausschlie\u00dflich<\/strong> f\u00fcr Hilferuf\u2011Push genutzt werden.<\/li><li data-sourcepos=\"21:1-22:0\">Empf\u00e4ngerkreis ist auf Rollen <strong data-sourcepos=\"21:34-21:63\">\u201eSchulsanit\u00e4tsdienst\u201c<\/strong> (und ggf. eskalierend \u201eUser\u201c) derselben Schule beschr\u00e4nkt.<\/li><\/ul><h3 dir=\"auto\" data-sourcepos=\"23:1-23:30\"><a id=\"user-content-5-aufbewahrung--l\u00f6schung\" class=\"anchor\" href=\"#5-aufbewahrung--l%C3%B6schung\" target=\"_blank\" rel=\"nofollow noreferrer noopener\" aria-hidden=\"true\"><\/a>5 Aufbewahrung &amp; L\u00f6schung<\/h3><ul dir=\"auto\" data-sourcepos=\"25:1-28:0\"><li data-sourcepos=\"25:1-25:101\"><strong data-sourcepos=\"25:3-25:41\">L\u00f6schung bei Logout\/Deinstallation<\/strong> sofort (Soft\u2011Delete + Hard\u2011Delete im n\u00e4chtlichen Job).<\/li><li data-sourcepos=\"26:1-26:46\"><strong data-sourcepos=\"26:3-26:46\">Auto\u2011Purge nach 90 Tagen Inaktivit\u00e4t.<\/strong><\/li><li data-sourcepos=\"27:1-28:0\"><strong data-sourcepos=\"27:3-27:19\">Invalidierung<\/strong> bei Expo\u2011Receipt \u201eDeviceNotRegistered\u201c.<\/li><\/ul><h3 dir=\"auto\" data-sourcepos=\"29:1-29:13\"><a id=\"user-content-6-logging\" class=\"anchor\" href=\"#6-logging\" aria-hidden=\"true\"><\/a>6 Logging<\/h3><ul dir=\"auto\" data-sourcepos=\"31:1-33:0\"><li data-sourcepos=\"31:1-31:93\"><strong data-sourcepos=\"31:3-31:11\">Keine<\/strong> Klar\u2011Tokens in Logs\/Monitoring\/Fehlermeldungen; Maskierung per Regex (s.\u00a02.4).<\/li><li data-sourcepos=\"32:1-33:0\">Audit\u2011Logs enthalten nur: Ausl\u00f6ser (Rolle), Mandant (School\u2011ID), Anzahl Empf\u00e4nger, Expo\u2011Ticket\/Status, Zeitstempel.<\/li><\/ul><h3 dir=\"auto\" data-sourcepos=\"34:1-34:28\"><a id=\"user-content-7-vorf\u00e4lle--pr\u00fcfungen\" class=\"anchor\" href=\"#7-vorf%C3%A4lle--pr%C3%BCfungen\" target=\"_blank\" rel=\"nofollow noreferrer noopener\" aria-hidden=\"true\"><\/a>7 Vorf\u00e4lle &amp; Pr\u00fcfungen<\/h3><ul dir=\"auto\" data-sourcepos=\"36:1-37:100\"><li data-sourcepos=\"36:1-36:111\">Bei Verdacht auf Missbrauch\/Leak: <strong data-sourcepos=\"36:37-36:71\">sofortige Token\u2011Invalidierung<\/strong>, Incident\u2011Workflow gem\u00e4\u00df IR\u2011Plan.<\/li><li data-sourcepos=\"37:1-37:100\"><strong data-sourcepos=\"37:3-37:24\">J\u00e4hrliches Review<\/strong> dieser Policy; Stichproben\u2011Audit der Token\u2011L\u00f6schjobs und Zugriffslogs.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Token\u2011Policy (Expo\/APNs\/FCM) 1 Zweck &amp; Geltung Diese Policy regelt Erhebung, Speicherung, Nutzung, L\u00f6schung und Logging von Push\u2011Tokens in der Hilferuf\u2011Funktion. 2 Erhebung Token werden nur nach OS\u2011Einwilligung erzeugt und gespeichert. Pro App\u2011Installation wird genau ein Token verwaltet; Wechsel\/Neuregistrierung \u00fcberschreibt alte Tokens. 3 Speicherung &amp; Schutz Tokens werden AES\u2011256\u2011GCM verschl\u00fcsselt gespeichert; Schl\u00fcssel liegen im KMS (Key\u2011Zugriffe &#8230; <a title=\"Token Policy\" class=\"read-more\" href=\"https:\/\/help.classymade.de\/?page_id=920\" aria-label=\"Mehr Informationen \u00fcber Token Policy\">Weiterlesen<\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-920","page","type-page","status-publish"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Token Policy - ClassyMade GmbH<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/help.classymade.de\/?page_id=920\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Token Policy - ClassyMade GmbH\" \/>\n<meta property=\"og:description\" content=\"Token\u2011Policy (Expo\/APNs\/FCM) 1 Zweck &amp; Geltung Diese Policy regelt Erhebung, Speicherung, Nutzung, L\u00f6schung und Logging von Push\u2011Tokens in der Hilferuf\u2011Funktion. 2 Erhebung Token werden nur nach OS\u2011Einwilligung erzeugt und gespeichert. Pro App\u2011Installation wird genau ein Token verwaltet; Wechsel\/Neuregistrierung \u00fcberschreibt alte Tokens. 3 Speicherung &amp; Schutz Tokens werden AES\u2011256\u2011GCM verschl\u00fcsselt gespeichert; Schl\u00fcssel liegen im KMS (Key\u2011Zugriffe ... Weiterlesen\" \/>\n<meta property=\"og:url\" content=\"https:\/\/help.classymade.de\/?page_id=920\" \/>\n<meta property=\"og:site_name\" content=\"ClassyMade GmbH\" \/>\n<meta property=\"article:modified_time\" content=\"2025-09-18T12:16:24+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data1\" content=\"1\u00a0Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/help.classymade.de\\\/?page_id=920\",\"url\":\"https:\\\/\\\/help.classymade.de\\\/?page_id=920\",\"name\":\"Token Policy - ClassyMade GmbH\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#website\"},\"datePublished\":\"2025-09-18T10:58:40+00:00\",\"dateModified\":\"2025-09-18T12:16:24+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/help.classymade.de\\\/?page_id=920#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/help.classymade.de\\\/?page_id=920\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/help.classymade.de\\\/?page_id=920#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\\\/\\\/help.classymade.de\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Token Policy\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#website\",\"url\":\"https:\\\/\\\/help.classymade.de\\\/\",\"name\":\"ClassyMade GmbH\",\"description\":\"Hilfecenter\",\"publisher\":{\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/help.classymade.de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"de\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#organization\",\"name\":\"ClassyMade GmbH\",\"url\":\"https:\\\/\\\/help.classymade.de\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/help.classymade.de\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Classymade-logo-quadrat-grau.png\",\"contentUrl\":\"https:\\\/\\\/help.classymade.de\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Classymade-logo-quadrat-grau.png\",\"width\":2000,\"height\":2000,\"caption\":\"ClassyMade GmbH\"},\"image\":{\"@id\":\"https:\\\/\\\/help.classymade.de\\\/#\\\/schema\\\/logo\\\/image\\\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Token Policy - ClassyMade GmbH","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/help.classymade.de\/?page_id=920","og_locale":"de_DE","og_type":"article","og_title":"Token Policy - ClassyMade GmbH","og_description":"Token\u2011Policy (Expo\/APNs\/FCM) 1 Zweck &amp; Geltung Diese Policy regelt Erhebung, Speicherung, Nutzung, L\u00f6schung und Logging von Push\u2011Tokens in der Hilferuf\u2011Funktion. 2 Erhebung Token werden nur nach OS\u2011Einwilligung erzeugt und gespeichert. Pro App\u2011Installation wird genau ein Token verwaltet; Wechsel\/Neuregistrierung \u00fcberschreibt alte Tokens. 3 Speicherung &amp; Schutz Tokens werden AES\u2011256\u2011GCM verschl\u00fcsselt gespeichert; Schl\u00fcssel liegen im KMS (Key\u2011Zugriffe ... Weiterlesen","og_url":"https:\/\/help.classymade.de\/?page_id=920","og_site_name":"ClassyMade GmbH","article_modified_time":"2025-09-18T12:16:24+00:00","twitter_card":"summary_large_image","twitter_misc":{"Gesch\u00e4tzte Lesezeit":"1\u00a0Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/help.classymade.de\/?page_id=920","url":"https:\/\/help.classymade.de\/?page_id=920","name":"Token Policy - ClassyMade GmbH","isPartOf":{"@id":"https:\/\/help.classymade.de\/#website"},"datePublished":"2025-09-18T10:58:40+00:00","dateModified":"2025-09-18T12:16:24+00:00","breadcrumb":{"@id":"https:\/\/help.classymade.de\/?page_id=920#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/help.classymade.de\/?page_id=920"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/help.classymade.de\/?page_id=920#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/help.classymade.de\/"},{"@type":"ListItem","position":2,"name":"Token Policy"}]},{"@type":"WebSite","@id":"https:\/\/help.classymade.de\/#website","url":"https:\/\/help.classymade.de\/","name":"ClassyMade GmbH","description":"Hilfecenter","publisher":{"@id":"https:\/\/help.classymade.de\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/help.classymade.de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"},{"@type":"Organization","@id":"https:\/\/help.classymade.de\/#organization","name":"ClassyMade GmbH","url":"https:\/\/help.classymade.de\/","logo":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/help.classymade.de\/#\/schema\/logo\/image\/","url":"https:\/\/help.classymade.de\/wp-content\/uploads\/2025\/06\/Classymade-logo-quadrat-grau.png","contentUrl":"https:\/\/help.classymade.de\/wp-content\/uploads\/2025\/06\/Classymade-logo-quadrat-grau.png","width":2000,"height":2000,"caption":"ClassyMade GmbH"},"image":{"@id":"https:\/\/help.classymade.de\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/pages\/920","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/help.classymade.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=920"}],"version-history":[{"count":10,"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/pages\/920\/revisions"}],"predecessor-version":[{"id":930,"href":"https:\/\/help.classymade.de\/index.php?rest_route=\/wp\/v2\/pages\/920\/revisions\/930"}],"wp:attachment":[{"href":"https:\/\/help.classymade.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=920"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}