Kaspersky Security Network Statement

A. INTRODUCTION

Please read this document thoroughly. It provides important information that you should be acquainted with before continuing to use our services or software. We reserve the right to modify this Statement at any time by making changes to this page.

AO Kaspersky Lab (further Kaspersky Lab) has created this Statement in order to inform and disclose its data gathering and dissemination practices for Kaspersky Internet Security for Android.

Kaspersky Lab has a strong commitment to providing superior service to all of our customers and particularly respecting your concerns about Data Processing.

This Statement contains numerous general and technical details describing the steps we take to respect your Data Processing concerns. Meeting your needs and expectations forms the foundation of everything we do – including protecting your Data.

The Kaspersky Security Network service allows users of Kaspersky Lab security products from around the world to help facilitate identification and reduce the time it takes to provide protection against new ("in the wild") security risks targeting your computer, which helps to identify new threats and their sources and to help improve a user’s security level. Such information is utilized by Kaspersky Lab for no other purposes but to enhance its security products and to further advance solutions against malicious threats and viruses.

By participating in Kaspersky Security Network, you and the other users of Kaspersky Lab security products from around the world contribute significantly to a safer Internet environment.

Legal Issues (if applicable)

Kaspersky Security Network may be subject to the laws of several jurisdictions because its services may be used in different jurisdictions, including the United States of America. Kaspersky Lab shall disclose information without your permission when required by law, or in good-faith belief that such action is necessary to investigate or protect against harmful activities to Kaspersky Lab guests, visitors, associates, property or to others. As mentioned above, laws related to data and information processed by Kaspersky Security Network may vary by country.

Kaspersky Security Network shall duly inform the users concerned when initially processing the above-mentioned information of any sharing of such information and shall allow these Internet users to opt in (in the EU Member States and other countries requiring opt-in procedures) or opt out (for all other countries) online from the commercial use of this data and/or the transmission of this data to third parties.

Kaspersky Lab may be required by law enforcement or judicial authorities to provide some information to appropriate governmental authorities. If requested by law enforcement or judicial authorities, we shall provide this information upon receipt of the appropriate documentation. Kaspersky Lab may also provide information to law enforcement to protect its property and the health and safety of individuals as permitted by statute.

B. RECEIVED INFORMATION

In order to increase the Software’s speed of reaction to information and network security threats, You agree to automatically provide the following information:

Information about Wi-Fi networks:

  • Wi-Fi network SSID
  • SHA256 hash sum of the MAC address (BSSID) of the Wi-Fi access point
  • MD5 hash sum of the MAC address (BSSID) of the Wi-Fi access point
  • Flag indicating whether the device is plugged in
  • Flag indicating whether a DNS name is available
  • Device type
  • Product version
  • Product identifier
  • Hash sum of the UID and BSSID
  • Hash sum of the UID and SSID
  • Hash sum of the UID, BSSID, and SSID
  • List of available Wi-Fi access points
  • Resulting security category of the network in the product
  • Resulting publicity category of the network in the product
  • DHCP settings
  • Signal level
  • Hash sum of the local IPv4 address
  • Hash sum of the local IPv6 address
  • Local time when the connection was started
  • Local time when the connection was interrupted
  • Connection types supported by the access point
  • The set of authentication protocols supported by this configuration
  • The set of group ciphers supported by this configuration
  • The set of key management protocols supported by this configuration
  • The set of pairwise ciphers for WPA supported by this configuration
  • The set of security protocols supported by this configuration
  • Authentication protocol used for the WPA-EAP connection
  • Internal authentication protocol
  • Information about the detected object:

  • MD5 hash sum of the detected object
  • Size of the detected object
  • Name of the detected object according to the Kaspersky Lab classification
  • Flag indicating the verdict status
  • Name of the detected object (file)
  • Full path to the detected file
  • Path template code
  • Identifier of the anti-virus database record on which the verdict is based
  • Database release time
  • Record type, the identifier of the anti-virus database that a record belongs to
  • Date and time of the last anti-virus database update on the user’s device
  • Information about whether the detected file is a portable executable (PE) file
  • File type code
  • File type identifier
  • SHA2-256 hash sum of the detected object
  • Information about opening the phishing URL:

  • Operating system version
  • Operating system service pack version
  • Version of the statistics package
  • URL, which refers to the detected object
  • MD5 hash sum of the executable file that requested the URL
  • Size of the executable file that requested the URL
  • Name of the executable file that requested the URL
  • HTTP referrer data
  • IP address of the server with which a connection was established
  • Information for identifying new web threats and analyzing false positive detects:

  • Operating system version
  • URL address of the page on which malicious or suspicious content, or a malicious or suspicious object was detected
  • IPv4 address of the blocked object
  • Version of the statistics package
  • Name of the detected object according to the Kaspersky Lab classification
  • Name of the executable file that downloaded the detected object
  • Size of the executable file that downloaded the detected object
  • MD5 hash sum of the executable file that downloaded the detected object
  • Identifier of the anti-virus database record on which the verdict is based
  • Database release time
  • Identifier of the anti-virus database that a record belongs to
  • Release date and time of the anti-virus database on the user’s device
  • Information about device firmware:

  • Operating system
  • Device model
  • Build ID for displaying to the user
  • Firmware fingerprint
  • Firmware identifier
  • Product/hardware manufacturer
  • Full product name
  • Build type, for example, "user" or "eng"
  • Current development codename or the string "REL" for production builds
  • Incremental number of the build
  • Flag indicating whether the device is rooted
  • Whether installation of apps from outside of Google Play is allowed
  • Status of the cloud service for verification of Google apps
  • Status of the cloud service for verification of Google apps being installed through ADB
  • License type
  • Additionally, files or parts of files that are at risk of being used by intruders to harm User’s Computer can be sent for analysis to Kaspersky Lab.

    Information about suspicious files:

  • File or part of a file
  • Service information (constant, version, and service name)
  • In order to fight against adware, the User agrees to automatically provide the following information:

  • Date of overlap
  • Overlapping application information: application package name, APK file name, path to APK file without file name, classes.dex file MD5 hash, APK file MD5 hash
  • Overlapped application information: application package name (for the overlapped application: if the advertisement is shown on an empty desktop, the value should be "launcher"), APK file name, path to APK file without file name, classes.dex file MD5 hash, APK file MD5 hash
  • Width of the overlapping view
  • Height of the overlapping view
  • Width of the device screen
  • Height of the device screen
  • When participating in KSN, the User agrees to provide the following information for all purposes mentioned above:

  • Unique software installation identifier
  • Full version of the installed software
  • Type of the installed software
  • Unique identifier of the computer
  • Unique user identifier on My Kaspersky
  • For the purpose of creating the most relevant informational and advertising offerings, You agree to automatically provide the following information to the Rightholder:

  • Unique User ID in Rightholder’s systems
  • Type of license used
  • License validity period
  • Order number when purchasing the license
  • Order price ID when purchasing the license
  • Full name of the partner from whom the license was purchased
  • Order number used by the partner
  • Country where the partner is located
  • Description of license parameters
  • License identifier
  • Customer name
  • Current subscription state
  • Cause of current/changed subscription state
  • ID of the provider’s subscription system
  • Indexed string array used by the subscription provider to transfer additional information
  • Indexed array of numbers used by the subscription provider to transfer additional information
  • Whether the subscription is in a grace period
  • License activation date
  • License expiration date
  • Subscription expiration date
  • Flag indicting whether the user is subscribed to the Rightholder’s Facebook page
  • Operating system type
  • Version of the operating system installed on the User’s computer
  • Operating system bit version
  • Whether the installed instance of the application is connected to My Kaspersky
  • Information about Software installed on the Computer: Software version, name of the store where the application was obtained, timestamp of the first launch of the software, package name and version, pseudonymous app-instance identifier, application ID in Firebase services, application platform and ID
  • Information about the use of the Software: event type and value
  • Information about the User’s computer where the Software is installed: computer brand, category, model
  • Information about the language (locale) of the operating system
  • Information about the User: country of residence, campaign and name of channel that attracted the User
  • Advertising ID
  • AppsFlyer installation ID
  • For the purpose of evaluating and monitoring the quality of KSN services, You agree to automatically provide the following information:

  • KSN service identifier
  • Statistics for successful packets
  • Statistics for unsuccessful packets
  • Statistics for packet time
  • Statistics for packet number
  • Number of connections from cache
  • Number of successful connections
  • Number of unsuccessful connections
  • Number of successful transactions
  • Number of unsuccessful transactions
  • Time distribution of successful connections
  • Time distribution of unsuccessful connections
  • Time distribution of successful transactions
  • Time distribution of unsuccessful transactions
  • Service request identifier
  • Number of service requests
  • Number of service requests from cache
  • Number of requests canceled because of network problems
  • Number of requests canceled because of inactive service
  • Number of requests canceled because of an invalid path
  • Time distribution of successful requests
  • Time distribution of canceled requests
  • Time distribution of requests that timed out
  • Time histogram
  • To improve application performance and help us analyze user satisfaction, You agree to submit the following data to Firebase service automatically:

  • Information about the Software installed on the computer: version, name of the store where the application was obtained, timestamp of the first launch of the Software
  • Information about in-app purchases: identifier and name of the application, currency and purchase amount
  • Information on the use of the Software: event type, name of the blocked application, the flag indicating whether the application is added to the list of blocked applications, length of the PIN code
  • Information about the User’s computer where the Software is installed: computer manufacturer name, type of computer, version and the language (locale) of the operating system, information about the application first opened in the last 7 days and the application first opened more than 7 days ago
  • Advertising ID
  • Information about the User: age category and gender, identifier of the country of residence, and list of interests
  • Information about an application update or uninstallation
  • Information about an operating system update
  • Information about whether the user reset/cleared app data, removed all settings and sign-in data
  • Information about whether the app crashed or threw an exception
  • Information about whether a notification sent by Firebase Notifications was received while the app is in the foreground
  • Information about whether a notification sent by Firebase Notifications was received by a device when the app is in the background
  • Information about whether a user opened a notification sent by Firebase Notifications
  • Information about whether a user dismissed a notification sent by Firebase Notifications
  • Information about whether a user opened the app for the first time via a dynamic link
  • Information about whether a user opened the app via a dynamic link
  • Information about whether the app is updated to a new version via a dynamic link
  • Event type and value
  • Unique installation ID
  • Android ID
  • Information about Software installed on the Computer: instance ID, version, name of the store where the application was obtained, timestamp of the first launch of the Software, whether the app is in the foreground or background, app package name, a pseudonymous app-instance identifier, network, and the following corresponding information: response codes, payload size in bytes, response times, duration times for automated traces
  • Information about the Users’ Computer where the Software is installed: Computer brand, category, model and orientation, RAM and disk size, version and language (locale) of the operating system; information about whether the application was first opened in the last 7 days or more than 7 days ago
  • Carrier, radio/network information, IP address, geography, locale/language, signal strength, whether the device has been jailbroken or rooted, battery level and battery-charging state
  • Time of app initialization
  • Time of AV database download
  • License type
  • Data is forwarded to Firebase over a secure channel. Information about how data is processed in Firebase is published at: https://www.firebase.com/terms/privacy-policy.html.

    For marketing purpose You agree to automatically provide BigQuery service the following information.

    During use of the Software, the following data will be sent to BigQuery automatically and on a regular basis for marketing purpose:

  • Information about Software installed on the Computer: software version, name of the store where the application was obtained, timestamp of the first launch of the software, package name and version, pseudonymous app-instance identifier, application ID in Firebase services, application platform and ID
  • Information about the use of the Software: event type and value
  • Information about the User’s computer where the Software is installed: computer brand, category, model, information about the language (locale) of the operating system
  • Information about the User: country of residence, campaign and name of channel that attracted the User
  • Advertising ID
  • Data is forwarded to BigQuery over a secure channel. Information about how data is processed in BigQuery is published at: https://cloud.google.com/terms/data-processing-terms.

    For marketing purpose You agree to automatically provide to Apps Flyer service the following information:

  • Name and version of the installed Software, Software ID and installation date on the User's computer
  • User’s computer information: computer manufacturer and model name, User’s computer name, unique ID, operating system version, information about the type of network connection, IP address, ID of Android operating system installation on the computer
  • Mobile operator and region
  • Information about the AppsFlyer SDK used in the Software: SDK version
  • ID of Android operating system installation on the computer
  • User’s unique ID in Google services
  • Date, time and name of the event, about which data is sent, event parameter and currency code
  • Protocol version
  • AppsFlyer transaction identifier
  • Preinstalled Software flag
  • First launch flag
  • Date and timestamp of the first launch of the Software
  • Flag indicating use of the Advertiser ID
  • Rightholder’s unique identifier in the AppsFlyer service
  • AppsFlyer license key
  • Value of the event counter
  • IP address
  • Operating system version
  • Data is forwarded to AppsFlyer over a secure channel. Information about how data is processed in AppsFlyer is published at: https://www.appsflyer.com/privacy-policy/.

    For marketing purpose You agree to automatically provide to MyTracker service the following information:

  • MyTracker library version
  • MyTracker package name
  • MyTracker app version
  • MyTracker build number
  • MyTracker localization
  • Android ID
  • Device ID
  • Device model
  • Operating system version
  • Device locale
  • Device name
  • Time zone
  • Device MAC address
  • Operating system type
  • Device screen size
  • Device screen resolution
  • Flag indicating whether the device is rooted
  • Advertising ID
  • Flag indicating Advertising ID accessibility
  • Information about network
  • Type of network connection
  • Event type
  • Event parameters
  • Event time
  • Application identifier
  • List of available Wi-Fi networks and their settings
  • Data is forwarded to MyTracker over a secure channel. Information about how data is processed in MyTracker is published at: https://tracker.my.com/privacypolicy/.

    Securing the Transmission and Storage of Data

    Kaspersky Lab is committed to protecting the security of the information it processes. The information processed is stored on computer servers with limited and controlled access. Kaspersky Lab operates secure data networks protected by industry-standard firewall and password protection systems. Kaspersky Lab uses a wide range of security technologies and procedures to protect information from threats such as unauthorized access, use, or disclosure. Our security policies are periodically reviewed and enhanced as necessary, and only authorized individuals have access to the data that we process. Kaspersky Lab takes steps to ensure that your information is treated securely and in accordance with this Statement. Unfortunately, no data transmission can be guaranteed secure. As a result, while we strive to protect your data, we cannot guarantee the security of any data you transmit to us or from our products or services, including without limitation Kaspersky Security Network, and you use all these services at your own risk.

    We treat the data we process as confidential information; it is, accordingly, subject to our security procedures and corporate policies regarding protection and use of confidential information. All Kaspersky Lab employees are aware of our security policies. Your data is only accessible to those employees who need it in order to perform their jobs. Kaspersky Lab does not combine the data stored by Kaspersky Security Network with any data, contact lists, or subscription information that is processed by Kaspersky Lab for promotional or other purposes.

    C. USE OF THE PROCESSED DATA

    Kaspersky Lab processes the data in order to analyze and identify the source of potential security risks, and to improve the ability of Kaspersky Lab’s products to detect malicious behavior, fraudulent websites, crimeware, and other types of Internet security threats to provide the best possible level of protection to Kaspersky Lab customers in the future.

    Disclosure of Information to Third Parties

    Kaspersky Lab may disclose any of the information processed if asked to do so by a law enforcement official as required or permitted by law, in response to a subpoena or other legal process or if we believe in good faith that we are required to do so in order to comply with applicable law, regulation, subpoena, or other legal process or enforceable government request. Kaspersky Lab may also disclose information when we have reason to believe that disclosing this information is necessary to identify, contact or bring legal action against someone who may be violating this Statement, the terms of your agreements with the Kaspersky Lab or to protect the safety of our users and the public or under confidentiality and licensing agreements with certain third parties which assist us in developing, operating and maintaining the Kaspersky Security Network. In order to promote awareness, detection and prevention of Internet security risks, Kaspersky Lab may share certain information with research organizations and other security software vendors. Kaspersky Lab may also make use of statistics derived from the information processed to track and publish reports on security risk trends.

    D. DATA PROCESSING – RELATED INQUIRIES AND COMPLAINTS

    Kaspersky Lab takes and addresses its users’ Data Processing concerns with utmost respect and attention. If you believe that there was an instance of non-compliance with this Statement with regard to your information or data, or you have other related inquiries or concerns, you may write or contact Kaspersky Lab by email: support@kaspersky.com.

    In your message, please describe in as much detail as possible the nature of your inquiry. We will investigate your inquiry or complaint promptly.

    CHOICES AVAILABLE TO YOU

    Kaspersky Lab protects the information received in accordance with applicable governing law and Kaspersky Lab's rules. Data is transmitted over a secure channel.

    We also reserve the right to send infrequent alert messages to users to inform them of specific changes that may impact their ability to use our services that they have previously signed up for. We also reserve the right to contact you if compelled to do so as part of a legal proceeding or if there has been a violation of any applicable licensing, warranty or purchase agreements.

    Kaspersky Lab is retaining these rights because in limited cases we feel that we may need the right to contact you as a matter of law or regarding matters that may be important to you. These rights do not allow us to contact you to market new or existing services if you have asked us not to do so, and issuance of these types of communications is rare.

    © 2019 AO Kaspersky Lab. All Rights Reserved.