Delivering security within Oculus for Business solutions starts within the headsets themselves. Data is encrypted at rest on the headsets using AES-256 XTS, and, if desired, administrators can lock each headset with a PIN. Data transmitted between the headsets and backend servers is encrypted with industry-standard TLS 1.2 and TLS 1.3 protocols.Beyond the headsets' built-in security capabilities, Oculus has created two core elements to ensure their secure deployment and operation, as well as company and employee privacy. The first element is a mobile Device Setup app, and the second is a Device Manager web portal. To initiate a deployment, administrators with credentials will log in to the Device Setup app. This app connects to each VR headset over Bluetooth, validates the enterprise licence and initiates an over-the-air software update. In addition, Oculus collects device-specific data required for the provisioning and remote management of its VR headsets, including: the device serial numbers associated with each organisation; user IDs; names and email addresses of administrators authorised to manage the headsets; device health information (such as battery life and last time active); and various configuration settings.