About data provided (EU, UK, Brazil, Vietnam, India)
Kaspersky protects any information received in accordance with law and applicable Kaspersky rules. Data is transmitted over a secure channel.
End User License Agreement and Supplemental Statement
End User License Agreement
Non-personal data is provided to Kaspersky for the following purposes:
- Management of Computer protection and acquired licenses via the My Kaspersky website.
- List of detected security problems, list of recommendations and their versions, available actions, full version of the application, protocol version, aggregated protection status, protection components status, scan tasks status, update tasks status, list of problems detected on User's device, protection level, status of databases and update process.
- Information about weak security settings: notification type, severity, Knowledge Base link, processing state, quantity, possibility to be fixed, detection rule identifier.
- Providing You with the core functionality of the acquired Software.
- Localization, rebranding code, application type, application version, application hotfix, OS version, reason for certificate invalidation, link name and target, region, OS type, list of content IDs read by user, SHA1 hash of User login, first 5 bytes of the device MAC address detected in the monitored home Wi-Fi network, hash of scanned object (MD5, SHA256), web resource domain, web server IP address, SHA1 hash of the certificate, certificate type, certificate content, detect name, database record revision, database record identifier, database record type.
- KSN config identifier, result of the file's validation by KSN, product identifier in KSN.
Personal data is provided to Kaspersky for the following purposes:
Kaspersky Standard
Software activation and verification of the legality of Software use.
The Rightholder has to verify that the license You will use is legal during activation and use of the Software. To do so the Rightholder has to process and receive the following information about the Software, the license You have acquired, and the Computer where You will install the Software, specifically:
- Type, version and localization of the installed Software, versions of installed updates, identifier of the Computer and identifier of the Software installation on the Computer, activation code and unique identifier of activation of the current license; type, version and word size of the operating system; name of the virtual environment if the Software is installed in a virtual environment, identifiers of the Software components that are active at the time the information is provided, content type, IP address of the server, content length, protocol version, user ID, My Kaspersky infrastructure signature, application ID, global product identifier, current local date and time on the User's computer, current activation code, operating system name and version, application service ID, platform of the User's device, unique device ID on My Kaspersky, information about agreements proposed to the user, type of the agreement, version of the agreement text, flag that indicates if the User agrees with the agreement text, type of compression for the license ticket data, type of signature on the ticket, content of the license ticket header, Regional Activation Center identifier, activation code hash calculated using the SHA1 algorithm, ticket body hash calculated using the SHA1 algorithm, license ticket creation date and time, internal license information identifier, current license ticket identifier, license ticket sequence ID, date from which the license ticket is valid, date to which the license ticket is valid, current license ticket state, license version, license ticket version, application IDs of products compatible with the current application, application localization ID, application customization ID, system and application parameters, options for ticket packaging, My Kaspersky service token, My Kaspersky user ID, My Kaspersky account type, signature, supported types of applications, previous activation code, activation date and time.
Providing You with the core functionality of the acquired Software.
The core functionality of the Software as described in the User Manual is to protect the User from known threats to information security. To provide this core functionality, while You are using the Software the Rightholder has to receive from Your device and process information about the installed Software, the acquired license, the scanned objects, detected threats and infections on the Computer, information about the Computer and devices connected thereto, the Computer's activity on the Internet:
- Information about the license and other agreements: status of the license used by the Software; checksum of the Software key file; checksum of the Software activation code; Software license ticket checksum; Software activation date and time; license expiration date; data on the license ticket sequence's link to the user account; ID of the information model used to provide the Software license; current license ticket ID; Software license ticket version; status of the license used by the Software; Software license ticket creation date and time; Software activation code version; ID of the certificate used to sign the Software license ticket header; license identifier; current status of the Software license key; Software activation date; current subscription state; subscription expiration date; order price ID when purchasing the license; ID of the data schema used by the subscription provider; order number used by the partner; flag indicating whether the subscription is in a grace period; cause of the current subscription state/change; customer name; type of license used; country where the partner is located; license validity period; order number when purchasing the license; full name of the partner from whom the license was purchased; Software activation error category; Software activation error code; Software license term; Software subscription type; Software license ID; type of the license used to activate the Software; serial number of the Software license key; number of days since Software activation; number of days since Software license key expiration; number of days till Software license expiration; type of Software license used; version of the legal agreement accepted by the user while using the Software; type of legal agreement accepted by the user while using the Software; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; date and time when the user accepted the agreement terms while using the Software; type of the license used to activate the Software; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; full version of the Software; Software ID; Software activation date; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; license data for user group identification based on additional settings of the subscription license; Software license data for user group identification based on additional settings of the subscription license; Software license expiration date and time; Software license ID; Software license data for user group identification based on additional settings of the subscription license; ID of the information model used to provide the Software license; serial number of the Software license key; Software subscription type; Software subscription expiration date and time; current status of the Software subscription; reason of current/changing status of Software subscription; Software license term; information about trial version of Software; type of Software license used; order number through which the Software license was purchased; ID of the price list item through which the Software license was purchased; ID of the country of the partner that sold the Software license; full name of the partner organization through which the Software license order was placed; order number of the purchase of the Software license from the partner; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; type of legal agreement accepted by the user while using the Software; version of the legal agreement accepted by the user while using the Software.
- Information about the User environment: Wi-Fi network ID based on the MAC address of the access point; DHCP settings (checksums of the local IP address of the gateway, DHCP IP, DNS1 IP, DNS2 IP, and subnet mask); Wi-Fi network ID based on the Wi-Fi network name and the MAC address of the access point; connection types supported by the Wi-Fi access point; checksum (MD5 with salt) of the MAC address of the access point; Wi-Fi signal strength; Wi-Fi network encryption type; DHCP settings (checksums of gateway local IPv6, DHCP IPv6, DNS1 IPv6, DNS2 IPv6; checksum of network prefix length; checksum of local address IPv6); Wi-Fi network ID based on the Wi-Fi network name; Wi-Fi network authentication type; URL of the service used to access the internet; Wi-Fi network name; checksum (SHA256 with salt) of the MAC address of the access point; Wi-Fi network SSID.
- Information about the use of Kaspersky Security Network (KSN): Software ID; result of the Software action; error code; Software component ID; version of list of revoked Software service's decisions; flag indicating whether the user has accepted the terms of participation in KSN; format of the data in the request to Rightholder's infrastructure; flag indicating whether participation in KSN is enabled; delay of sending the statistics.
- Information about an object being processed: port number; contents of the digital certificate being processed; IP address; accessed IPv4 address of the web service; certificate type; web address being processed; digital certificate thumbprint of the scanned object and hashing algorithm; public key of the certificate; checksum of the user name; checksum of the object being processed; checksum type for the object being processed; name of the detected malware or legitimate software that can be used to damage the user's device or data; checksum (MD5) of the object being processed; ID of the triggered record in the Software's anti-virus databases; timestamp of the triggered record in the Software's anti-virus databases; type of the triggered Software anti-virus databases record; accessed address of the web service (URL, IP); web address of the source of the web service request (referer).
- Information about accessing a web service: link name; ID of the topic in the Software help; Web-Portal account ID.
- Information about the Rightholder's installed Software: full version of the Software; type of the installed Software; Software update ID; Software installation ID (PCID); ID of a regional activation center; configuration identifier; Software ID; Software rebranding code; version of the protocol of interaction between the Software and marketing messages; code of the partner organization associated with the Software rebranding; list of IDs of requested content; Software localization; Software rebranding ID; Software group; web address being processed; ID of the Software update start; Software ID derived from the license; installation type (new installation, update); full name of the partner organization through which the Software license order was placed; Software installation/uninstallation status; duration of Software installation in seconds; flag indicating whether the installation was aborted by the user; installation error code; Software activation date; installation date and time for the Software; identifier of the partner organization via which the Software license order was placed; serial number of the Software license key; flag indicating whether the Software is connected to Web-Portal; ID of the licensed Software; Software localization; Software rebranding ID; code of the partner organization associated with the Software rebranding; version of the protocol of interaction between the Software and marketing messages.
- Information about the device: device ID; unique device ID; version of the operating system; OS bit size; operating system family; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; OS type (server, workstation, domain controller); device model; OS Service Pack version; OS build number; extended information about the OS edition; OS edition; additional information about OS features; operating system bit version; flag indicating whether a Windows partition is available; version of the operating system installed on the user's computer; device type (laptop, desktop, tablet); OS ID; OS edition; version of the operating system installed on the user's computer; OS Service Pack version; operating system bit version; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; OS ID.
Kaspersky Plus or Kaspersky Premium
Software activation and verification of the legality of Software use.
The Rightholder has to verify that the license You will use is legal during activation and use of the Software. To do so the Rightholder has to process and receive the following information about the Software, the license You have acquired, and the Computer where You will install the Software, specifically:
- Type, version and localization of the installed Software, versions of installed updates, identifier of the Computer and identifier of the Software installation on the Computer, activation code and unique identifier of activation of the current license; type, version and word size of the operating system; name of the virtual environment if the Software is installed in a virtual environment, identifiers of the Software components that are active at the time the information is provided, content type, IP address of the server, content length, protocol version, user ID, My Kaspersky infrastructure signature, application ID, global product identifier, current local date and time on the User's computer, current activation code, operating system name and version, application service ID, platform of the User's device, unique device ID on My Kaspersky, information about agreements proposed to the user, type of the agreement, version of the agreement text, flag that indicates if the User agrees with the agreement text, type of compression for the license ticket data, type of signature on the ticket, content of the license ticket header, Regional Activation Center identifier, activation code hash calculated using the SHA1 algorithm, ticket body hash calculated using the SHA1 algorithm, license ticket creation date and time, internal license information identifier, current license ticket identifier, license ticket sequence ID, date from which the license ticket is valid, date to which the license ticket is valid, current license ticket state, license version, license ticket version, application IDs of products compatible with the current application, application localization ID, application customization ID, system and application parameters, options for ticket packaging, My Kaspersky service token, My Kaspersky user ID, My Kaspersky account type, signature, supported types of applications, previous activation code, activation date and time.
Providing You with the core functionality of the acquired Software.
The core functionality of the Software as described in the User Manual is to protect the User from known threats to information security. To provide this core functionality, while You are using the Software the Rightholder has to receive from Your device and process information about the installed Software, the acquired license, the scanned objects, detected threats and infections on the Computer, information about the Computer and devices connected thereto, the Computer's activity on the Internet:
- Information on interaction with Web portal: unique device ID on Web-Portal; Web-Portal account ID.
- Information about the license and other agreements: Software license ID; checksum of the Software key file; checksum of the Software activation code; Software license ticket checksum; Software activation date and time; license expiration date; data on the license ticket sequence's link to the user account; ID of the information model used to provide the Software license; current license ticket ID; Software license ticket version; status of the license used by the Software; Software license ticket creation date and time; Software activation code version; ID of the certificate used to sign the Software license ticket header; license identifier; current status of the Software license key; Software activation date; current subscription state; subscription expiration date; order price ID when purchasing the license; ID of the data schema used by the subscription provider; order number used by the partner; flag indicating whether the subscription is in a grace period; cause of the current subscription state/change; customer name; type of license used; country where the partner is located; license validity period; order number when purchasing the license; full name of the partner from whom the license was purchased; Software activation error category; Software activation error code; Software license term; Software subscription type; type of the license used to activate the Software; serial number of the Software license key; number of days since Software activation; number of days since Software license key expiration; number of days till Software license expiration; type of Software license used; version of the legal agreement accepted by the user while using the Software; type of legal agreement accepted by the user while using the Software; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; date and time when the user accepted the agreement terms while using the Software; type of the license used to activate the Software; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; Software activation date; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; license data for user group identification based on additional settings of the subscription license; Software license data for user group identification based on additional settings of the subscription license; Software license expiration date and time; Software license ID; Software license data for user group identification based on additional settings of the subscription license; ID of the information model used to provide the Software license; serial number of the Software license key; Software subscription type; Software subscription expiration date and time; current status of the Software subscription; reason of current/changing status of Software subscription; Software license term; information about trial version of Software; type of Software license used; Software localization; order number through which the Software license was purchased; ID of the price list item through which the Software license was purchased; ID of the country of the partner that sold the Software license; full name of the partner organization through which the Software license order was placed; order number of the purchase of the Software license from the partner; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; type of legal agreement accepted by the user while using the Software; version of the legal agreement accepted by the user while using the Software.
- Information about the User environment: OS ID; OS edition; version of the operating system installed on the user's computer; OS Service Pack version; operating system bit version; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; Wi-Fi network ID based on the MAC address of the access point; DHCP settings (checksums of the local IP address of the gateway, DHCP IP, DNS1 IP, DNS2 IP, and subnet mask); Wi-Fi network ID based on the Wi-Fi network name and the MAC address of the access point; connection types supported by the Wi-Fi access point; checksum (MD5 with salt) of the MAC address of the access point; Wi-Fi signal strength; Wi-Fi network encryption type; DHCP settings (checksums of gateway local IPv6, DHCP IPv6, DNS1 IPv6, DNS2 IPv6; checksum of network prefix length; checksum of local address IPv6); Wi-Fi network ID based on the Wi-Fi network name; Wi-Fi network authentication type; URL of the service used to access the internet; Wi-Fi network name; checksum (SHA256 with salt) of the MAC address of the access point; Wi-Fi network SSID.
- Information about the use of Kaspersky Security Network (KSN): Software ID; result of the Software action; error code; Software component ID; version of list of revoked Software service's decisions; flag indicating whether the user has accepted the terms of participation in KSN; format of the data in the request to Rightholder's infrastructure; flag indicating whether participation in KSN is enabled; delay of sending the statistics.
- Information about an object being processed: port number; contents of the digital certificate being processed; IP address; accessed IPv4 address of the web service; certificate type; web address being processed; digital certificate thumbprint of the scanned object and hashing algorithm; public key of the certificate; checksum of the user name; checksum of the object being processed; checksum type for the object being processed; name of the detected malware or legitimate software that can be used to damage the user's device or data; checksum (MD5) of the object being processed; first 5 bytes of device MAC address; ID of the triggered record in the Software's anti-virus databases; timestamp of the triggered record in the Software's anti-virus databases; type of the triggered Software anti-virus databases record; accessed address of the web service (URL, IP); web address of the source of the web service request (referer).
- Information about accessing a web service: link name; ID of the topic in the Software help.
- Information about the Rightholder's installed Software: full version of the Software; type of the installed Software; Software update ID; Software installation ID (PCID); full version of third-party software; type of Software license used; ID of a regional activation center; configuration identifier; Software ID; Software rebranding code; version of the protocol of interaction between the Software and marketing messages; code of the partner organization associated with the Software rebranding; list of IDs of requested content; Software localization; Software rebranding ID; Software group; web address being processed; ID of the Software update start; Software ID derived from the license; installation type (new installation, update); full name of the partner organization through which the Software license order was placed; Software installation/uninstallation status; duration of Software installation in seconds; flag indicating whether the installation was aborted by the user; installation error code; Software activation date; installation date and time for the Software; identifier of the partner organization via which the Software license order was placed; serial number of the Software license key; flag indicating whether the Software is connected to Web-Portal; ID of the licensed Software; Software ID; Software rebranding ID; code of the partner organization associated with the Software rebranding; version of the protocol of interaction between the Software and marketing messages.
- Information about the device: device ID; unique device ID; version of the operating system; OS bit size; operating system family; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; OS type (server, workstation, domain controller); device model; OS Service Pack version; OS build number; extended information about the OS edition; OS edition; additional information about OS features; operating system bit version; flag indicating whether a Windows partition is available; version of the operating system installed on the user's computer; device type (laptop, desktop, tablet); OS ID; status of the license used by the Software.
The personal data provided under the End User License Agreement (License Agreement) is listed in the corresponding legal document. You can view the License Agreement by reading the license.txt document in the application installation folder.
Supplemental Statement (India only)
The Kaspersky application complies with the terms of the Digital Personal Data Protection (DPDP). To do so, the application will prompt you to accept the Supplemental Statement on Data Processing (Supplemental Statement) during installation.
The personal and non-personal data provided under the Supplemental Statement are identical to the data listed above for the End User License Agreement. Also the personal data provided under the Supplemental Statement is listed in the corresponding legal document. You can view the Supplemental Statement by reading the supplemental_dpdp.txt document located at /Library/Application Support/Kaspersky Lab/KAV/Doc/en/.
Kaspersky Security Network Statement
Use of the KSN may increase the Software's speed of reaction to information and network security threats. It is achieved by:
- Determining the reputation of scanned objects
- Identifying information security threats that are new and challenging to detect, and their sources
- Reducing the likelihood of false positives
- Increasing the efficiency of Software components
- Investigating of infection of a user's computer
- Improving the performance of the Rightholder's Software
- Receiving reference information about the number of objects with known reputation
- Improving the quality of Rightholder's Software
Certain data which is processed under this Statement could be considered personal data according to laws of some countries. With Your consent, the following data will be automatically sent on a regular basis to the Rightholder under this Statement:
Kaspersky Standard
- Information on interaction with Web portal: code of the error category; token type; token used for authentication in the Rightholder's services; unique request ID to the Rightholder services; error code; total duration of request processing; token TTL; type of the installed Software; path to the object being processed; line number of the source file in the exception handler; response status of the Rightholder's service.
- Information about the User environment: browser version; browser type; flag indicating whether the device is plugged in; DHCP settings (checksums of gateway local IPv6, DHCP IPv6, DNS1 IPv6, DNS2 IPv6; checksum of network prefix length; checksum of local address IPv6); DHCP settings (checksums of the local IP address of the gateway, DHCP IP, DNS1 IP, DNS2 IP, and subnet mask); Wi-Fi network ID based on the Wi-Fi network name and the MAC address of the access point; list of available Wi-Fi networks and their settings; checksum (SHA256 with salt) of the MAC address of the access point; Wi-Fi network ID based on the Wi-Fi network name; Wi-Fi network name; local time of the start and end of the Wi-Fi network connection; detected device type; status of VPN client settings; user's choice regarding controlling device connections to the home Wi-Fi network; network category specified in Kaspersky VPN Secure Connection (unknown, safe, unsafe); network category specified in Kaspersky VPN Secure Connection (home, work, public); Wi-Fi signal strength; checksum (MD5 with salt) of the MAC address of the access point; Wi-Fi network authentication type; Wi-Fi network ID based on the MAC address of the access point; Wi-Fi network encryption type; flag indicating whether the DNS domain exists; user classification of the Wi-Fi network; ID of the key from the keystore used for encryption.
- Information about the operation of the Safe Money component: indicator of presence of web address in the Safe Money database; indicator of action location when starting protected browser in Safe Money; start mode of the Safe Money component for the web service; actions performed with the web address in the Software settings; web address being processed; web address of the source of the web service request (referer); indicator of remembered choice of action location for the web service.
- Information about the use of Kaspersky Security Network (KSN): source of the decision made for the object being processed; protocol used to exchange data with KSN; Software database record ID; version of the statistics being sent; detect characteristics; notification type, that triggered the statistic sending; temporal distribution of unsuccessful KSN transactions; number of unsuccessful KSN connections; number of unsuccessful requests caused by KSN being disabled in the Software settings; number of unsuccessful requests to KSN caused by network problems; temporal distribution of successful KSN connections; number of unsuccessful KSN transactions; number of successful KSN transactions; temporal distribution of unsuccessful KSN connections; temporal distribution of requests to KSN that timed out; temporal distribution of successful requests to KSN; number of new KSN connections; temporal distribution of successful KSN transactions; number of KSN connections taken from the cache; ID of the KSN service accessed by the Software; number of unsuccessful requests to KSN caused by routing errors; total number of requests to KSN; temporal distribution of canceled requests to KSN; number of requests for which a response was found in the local request database; date and time when statistics stopped being received; number of successful KSN connections; date and time when statistics started being received; statistics message type; object time in the buffer; error code.
- Information about an object being processed: fragment content of the object being processed; checksum type for the object being processed; source of the decision made for the object being processed; size of the object being processed; checksum of the object being processed; Software verdict on the object being processed; fragment order in the object being processed; objects or its parts being processed; file of the web page being processed; fragment content of the object being processed; file of the email message being processed; ID of the key from the keystore used for encryption; logon session key; encryption algorithm for the logon session key; ID of the account under which the controlled process was started; timestamp of the Software databases; certificate issuer name; date and time of creating an object being processed; algorithm for calculating the digital certificate thumbprint; public key of the certificate; parent application name; description of an object being processed as defined in the object properties; certificate serial number; path to the object being processed; name of the object being processed; date and time when the certificate was issued; calculation algorithm of public key of the certificate; date and time of the last modification of the object being processed; version of the object being processed; date and time of signing the object; checksum (MD5) of the object being processed; digital certificate thumbprint of the scanned object and hashing algorithm; date and time when the certificate expires; checksum (SHA256) of the object being processed; information about file signature check results; format of the object being processed; certificate owner name and settings; Software vendor name; data of the internal log, generated by the anti-virus Software module for an object being processed; storage time for object being processed; type of the triggered Software anti-virus databases record; web address being processed; timestamp of the triggered record in the Software's anti-virus databases; ID of the triggered record in the Software's anti-virus databases; web address of the source of the web service request (referer); confidence of detecting access to the phishing web service; weight of the detected access to the phishing web service; debug detection indicator; phishing attack target; information on who signed the file being processed; date and time of linking the executable file; accessed IPv4 address of the web service; entropy of the file being processed; attributes of executable file being processed; result of status check in KSN of an object being processed; names of the packers that packed the object being processed; name of the detected malware or legitimate software that can be used to damage the user's device or data; flag indicating an application which runs automatically at startup; command line; flag indicating whether the object being processed is a PE file; detect characteristics; date and time of creating an executable file being processed; directory code; result of certificate verification; category of the service that provides user behavior tracking, specified in the Software settings; name of the service that provides user behavior tracking; object type code; ID of the task in which detection was performed; checksum (MD5) of the object being processed; release date and time of the Software's databases; protocol ID; source of the web-traffic being processed: local host or remote host; detect location within the web traffic being processed; direction of a network connection; IP address of the attacker; local port that was attacked; vulnerability danger class; vulnerability ID; trust indicator of the processed object according to KSN; line number of the source file in the exception handler; protocol processing error type; flag indication, describing the source of the web-traffic being processed (server or client); type of the triggered Software anti-virus databases record; accessed address of the web service (URL, IP); checksum (MD5) of the mask that blocked the web service; accessed IPv6 address of the web service; number of the detected software in the System Watcher context; date and time of detecting software by System Watcher; reason of detecting software by System Watcher; number of software runs since the last time the file checksum was sent; checksum type for the object being processed; checksum (SHA256) of the object being processed; size of the object being processed; Software verdict on the object being processed; source of the decision made for the object being processed; checksum of the object being processed; result of the module integrity check.
- Information about accessing a web service: accessed IPv6 address of the web service; accessed IPv4 address of the web service; type of client used to access the web service; web address of the source of the web service request (referer); DNS address of the web service being accessed; information about the client that uses a network protocol (user agent); host source; indicator showing that the message is a part of a bundle of messages belonging to one access to the web service; text of the error message; error type; http request method; error code; logon session key; encryption algorithm for the logon session key; type of the decision on a web address being processed; reason for blocking access to the web service; category of reason for blocking access to the web service; accessed IPv4 address of the web service; accessed IPv6 address of the web service; web address being processed; web address being processed.
- Information about the Rightholder's installed Software: full version of the Software; type of the installed Software; Software update ID; Software installation ID (PCID); release date and time of the Software's databases; version of the Software's component; timestamp of the Software databases; attribute of an object being processed, that allowed to recall the false positive decision on the object; update task type; Software health status after update; error code of the update task; version of the updater component; number of update installation error for the updater component; number of failed update installations for the updater component; full version of the Software before update; text of the error message; type of the triggered Software anti-virus databases record; timestamp of the triggered record in the Software's anti-virus databases; technical specifications of the applied detection technologies; Software database record version; ID of the triggered record in the Software's anti-virus databases; version of the Software's component.
- Information about the device: device ID; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; OS Service Pack version; OS error code; OS ID; version of the operating system installed on the user's computer; operating system bit version.
Kaspersky Plus or Kaspersky Premium
- Information on interaction with Web portal: code of the error category; token type; token used for authentication in the Rightholder's services; unique request ID to the Rightholder services; error code; total duration of request processing; token TTL; type of the installed Software; path to the object being processed; line number of the source file in the exception handler; response status of the Rightholder's service.
- Information about the User environment: browser version; browser type; flag indicating whether the device is plugged in; DHCP settings (checksums of gateway local IPv6, DHCP IPv6, DNS1 IPv6, DNS2 IPv6; checksum of network prefix length; checksum of local address IPv6); DHCP settings (checksums of the local IP address of the gateway, DHCP IP, DNS1 IP, DNS2 IP, and subnet mask); Wi-Fi network ID based on the Wi-Fi network name and the MAC address of the access point; list of available Wi-Fi networks and their settings; checksum (SHA256 with salt) of the MAC address of the access point; Wi-Fi network ID based on the Wi-Fi network name; Wi-Fi network name; local time of the start and end of the Wi-Fi network connection; detected device type; status of VPN client settings; user's choice regarding controlling device connections to the home Wi-Fi network; network category specified in Kaspersky VPN Secure Connection (unknown, safe, unsafe); network category specified in Kaspersky VPN Secure Connection (home, work, public); Wi-Fi signal strength; checksum (MD5 with salt) of the MAC address of the access point; Wi-Fi network authentication type; Wi-Fi network ID based on the MAC address of the access point; Wi-Fi network encryption type; flag indicating whether the DNS domain exists; user classification of the Wi-Fi network; ID of the key from the keystore used for encryption.
- Information about the operation of the Safe Money component: indicator of presence of web address in the Safe Money database; indicator of action location when starting protected browser in Safe Money; start mode of the Safe Money component for the web service; actions performed with the web address in the Software settings; web address being processed; web address of the source of the web service request (referer); indicator of remembered choice of action location for the web service.
- Information about the use of Kaspersky Security Network (KSN): source of the decision made for the object being processed; protocol used to exchange data with KSN; Software database record ID; version of the statistics being sent; detect characteristics; notification type, that triggered the statistic sending; temporal distribution of unsuccessful KSN transactions; number of unsuccessful KSN connections; number of unsuccessful requests caused by KSN being disabled in the Software settings; number of unsuccessful requests to KSN caused by network problems; temporal distribution of successful KSN connections; number of unsuccessful KSN transactions; number of successful KSN transactions; temporal distribution of unsuccessful KSN connections; temporal distribution of requests to KSN that timed out; temporal distribution of successful requests to KSN; number of new KSN connections; temporal distribution of successful KSN transactions; number of KSN connections taken from the cache; ID of the KSN service accessed by the Software; number of unsuccessful requests to KSN caused by routing errors; total number of requests to KSN; temporal distribution of canceled requests to KSN; number of requests for which a response was found in the local request database; date and time when statistics stopped being received; number of successful KSN connections; date and time when statistics started being received; statistics message type; object time in the buffer; error code.
- Information about an object being processed: checksum type for the object being processed; checksum (SHA256) of the object being processed; size of the object being processed; Software verdict on the object being processed; source of the decision made for the object being processed; checksum of the object being processed; fragment content of the object being processed; checksum type for the object being processed; source of the decision made for the object being processed; size of the object being processed; checksum of the object being processed; Software verdict on the object being processed; fragment order in the object being processed; objects or its parts being processed; file of the web page being processed; fragment content of the object being processed; file of the email message being processed; ID of the key from the keystore used for encryption; logon session key; encryption algorithm for the logon session key; ID of the account under which the controlled process was started; timestamp of the Software databases; certificate issuer name; date and time of creating an object being processed; algorithm for calculating the digital certificate thumbprint; public key of the certificate; parent application name; description of an object being processed as defined in the object properties; certificate serial number; path to the object being processed; name of the object being processed; date and time when the certificate was issued; calculation algorithm of public key of the certificate; date and time of the last modification of the object being processed; version of the object being processed; date and time of signing the object; checksum (MD5) of the object being processed; digital certificate thumbprint of the scanned object and hashing algorithm; date and time when the certificate expires; checksum (SHA256) of the object being processed; information about file signature check results; format of the object being processed; certificate owner name and settings; Software vendor name; data of the internal log, generated by the anti-virus Software module for an object being processed; storage time for object being processed; type of the triggered Software anti-virus databases record; web address being processed; timestamp of the triggered record in the Software's anti-virus databases; ID of the triggered record in the Software's anti-virus databases; web address of the source of the web service request (referer); confidence of detecting access to the phishing web service; weight of the detected access to the phishing web service; debug detection indicator; phishing attack target; information on who signed the file being processed; date and time of linking the executable file; accessed IPv4 address of the web service; entropy of the file being processed; attributes of executable file being processed; result of status check in KSN of an object being processed; names of the packers that packed the object being processed; name of the detected malware or legitimate software that can be used to damage the user's device or data; flag indicating an application which runs automatically at startup; command line; flag indicating whether the object being processed is a PE file; detect characteristics; date and time of creating an executable file being processed; directory code; result of certificate verification; category of the service that provides user behavior tracking, specified in the Software settings; name of the service that provides user behavior tracking; object type code; ID of the task in which detection was performed; checksum (MD5) of the object being processed; data of the intercepted DHCP package from the device; release date and time of the Software's databases; protocol ID; source of the web-traffic being processed: local host or remote host; detect location within the web traffic being processed; direction of a network connection; IP address of the attacker; local port that was attacked; vulnerability danger class; vulnerability ID; trust indicator of the processed object according to KSN; line number of the source file in the exception handler; protocol processing error type; flag indication, describing the source of the web-traffic being processed (server or client); type of the triggered Software anti-virus databases record; accessed address of the web service (URL, IP); checksum (MD5) of the mask that blocked the web service; accessed IPv6 address of the web service; number of the detected software in the System Watcher context; date and time of detecting software by System Watcher; reason of detecting software by System Watcher; number of software runs since the last time the file checksum was sent; result of the module integrity check.
- Information about accessing a web service: accessed IPv6 address of the web service; accessed IPv4 address of the web service; type of client used to access the web service; web address of the source of the web service request (referer); DNS address of the web service being accessed; information about the client that uses a network protocol (user agent); host source; indicator showing that the message is a part of a bundle of messages belonging to one access to the web service; text of the error message; web address being processed; error type; http request method; error code; logon session key; encryption algorithm for the logon session key; type of the decision on a web address being processed; reason for blocking access to the web service; category of reason for blocking access to the web service; accessed IPv4 address of the web service; accessed IPv6 address of the web service; web address being processed.
- Information about the Rightholder's installed Software: full version of the Software; type of the installed Software; Software update ID; Software installation ID (PCID); release date and time of the Software's databases; version of the Software's component; timestamp of the Software databases; attribute of an object being processed, that allowed to recall the false positive decision on the object; update task type; Software health status after update; error code of the update task; version of the updater component; number of update installation error for the updater component; number of failed update installations for the updater component; full version of the Software before update; text of the error message; type of the triggered Software anti-virus databases record; timestamp of the triggered record in the Software's anti-virus databases; technical specifications of the applied detection technologies; Software database record version; ID of the triggered record in the Software's anti-virus databases.
- Information about the device: OS ID; version of the operating system installed on the user's computer; operating system bit version; device ID; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; OS Service Pack version; device type define method; device name define method; device type; method used to define vendor of the device or network card detection; number of symbols in the device name; vendor of the device or network card; flag indicating if detected host name is the same as user's host name; operating system family; OS family detection method; first 5 bytes of device MAC address; OS error code; number of symbols in the device name; device type; vendor of the device or network card; operating system family; data of the intercepted DHCP package from the device; version of the Software's component; first 5 bytes of device MAC address.
The Kaspersky Security Network service may process and submit whole files, for example, objects detected through malicious links which might be used by criminals to harm your computer and/or their parts, to Kaspersky for additional examination.
Also, in order to achieve the declared purpose of increasing the effectiveness of protection provided by the Software, the Rightholder may receive objects that could be exploited by intruders to harm the Computer and create information security threats. Such objects are:
- Executable or non-executable files or parts thereof
- Computer's RAM areas
- Sectors involved in the OS boot process
- Network traffic data packages
- Web pages and emails containing suspicious or malicious objects
- Description of classes and class instances for the WMI storage
- Application activity reports
Such application activity reports contain the following information about the files and processes:
- Name, size, and version of the file being sent, it's description and checksums (MD5, SHA2-256, SHA1), format ID, its manufacturer's name, the name of the application the file belongs to, the fully qualified path to the file on the Computer and the path template code, date and time of file creation and update
- Certificate validity start and end dates and times if the file being sent has a digital signature, date and time when the certificate was signed, name of the certificate issuer, information about the certificate holder, impression and public key of the certificate and algorithms used to calculate them, certificate serial number
- Name of the account that had run the process
- Checksums (MD5, SHA2-256, SHA1) for the name of the Computer that is running the process
- Process' windows headers
- ID for the anti-virus databases, name of the identified threat according to the Rightholder's classification
- Information about the license used for the application, license ID, it's type and expiry date
- Computer's local time at the moment the information was provided
- The names and paths of the files that were accessed by the process
- URL- and IP addresses that were accessed by the process
- URL- and IP addresses from which the running file was downloaded
Files (or their parts) that may be exploited by intruders to harm the computer or data may be also sent to Kaspersky to be examined additionally.
Statement regarding data processing for marketing purposes (Marketing Statement)
The Rightholder processes data for marketing purposes in accordance with this Marketing Statement in order:
- To improve the quality, appearance, and performance of the Rightholder's Software, products, services, and infrastructure by analyzing user interactions, experience, and satisfaction;
- To provide You with personalized information and offers from the Rightholder, including in relation to Software features, maintaining security levels, support and other help-related materials, as well as Kaspersky and third-party products and services, marketing offers, discounts, and promotional materials, based on Your interests and preferences.
Certain data which is processed under this Marketing Statement could be considered personal data according to laws of some countries. With Your consent, the following data will be automatically sent on a regular basis to the Rightholder under this Marketing Statement:
Kaspersky Standard
- Information on interaction with Web portal: flag indicating whether the Software is connected to Web-Portal; Web-Portal account ID.
- Information about the license and other agreements: current status of the Software subscription; ID of the information model used to provide the Software license; Software license ID; order number through which the Software license was purchased; Software license data for user group identification based on additional settings of the subscription license; Software subscription type; type of legal agreement accepted by the user while using the Software; version of the legal agreement accepted by the user while using the Software; serial number of the Software license key; type of the license used to activate the Software; Software license expiration date and time; information about trial version of Software; status of the license used by the Software; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; ID of the country of the partner that sold the Software license; full name of the partner organization through which the Software license order was placed; reason of current/changing status of Software subscription; type of Software license used; Software subscription expiration date and time; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; order number of the purchase of the Software license from the partner; Software license term; ID of the price list item through which the Software license was purchased; license data for user group identification based on additional settings of the subscription license; Software license data for user group identification based on additional settings of the subscription license; current status of the Software license key; Software activation date; current subscription state; subscription expiration date; order price ID when purchasing the license; ID of the data schema used by the subscription provider; order number used by the partner; flag indicating whether the subscription is in a grace period; cause of the current subscription state/change; customer name; license identifier; type of license used; license expiration date; country where the partner is located; license validity period; order number when purchasing the license; full name of the partner from whom the license was purchased.
- Information about the user: data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; type of the user that performs the action with the weak security setting.
- Information about the User environment: browser type; browser version; OS ID; OS edition; version of the operating system installed on the user's computer; OS Service Pack version; operating system bit version.
- Information about the use of Kaspersky Security Network (KSN): flag indicating whether participation in KSN is enabled; delay of sending the statistics.
- Information about the use of the application user interface, information about User opinion about the software: web address being processed.
- Information about an object being processed: Advertising ID; web address being processed; web address of the source of the web service request (referer).
- Information about accessing a web service: ID of the user of the Rightholder's website.
- Information about the Rightholder's installed Software: version of the protocol of interaction between the Software and marketing messages; code of the partner organization associated with the Software rebranding; full version of the Software; Software rebranding ID; Software localization; Software activation date; Software ID; type of the installed Software; Software update ID; Software installation ID (PCID); Software ID; Software rebranding code; list of IDs of requested content; Software ID derived from the license; installation date and time for the Software; identifier of the partner organization via which the Software license order was placed; serial number of the Software license key; flag indicating whether the Software is connected to Web-Portal; ID of the licensed Software; result of the task of scanning weak security settings; type of scan task that detected the weak setting.
- Information about the device: unique device ID; operating system bit version; OS ID; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; device ID; version of the operating system; OS bit size; operating system family; action performed with the detected weak security setting; ID of the weak security setting; web address being processed.
Kaspersky Plus or Kaspersky Premium
- Information on interaction with Web portal: flag indicating whether the Software is connected to Web-Portal; Web-Portal account ID.
- Information about the license and other agreements: current status of the Software subscription; ID of the information model used to provide the Software license; Software license ID; order number through which the Software license was purchased; Software license data for user group identification based on additional settings of the subscription license; Software subscription type; type of legal agreement accepted by the user while using the Software; version of the legal agreement accepted by the user while using the Software; serial number of the Software license key; type of the license used to activate the Software; Software license expiration date and time; information about trial version of Software; status of the license used by the Software; flag indicating whether the user has accepted the terms of the legal agreement while using the Software; ID of the country of the partner that sold the Software license; full name of the partner organization through which the Software license order was placed; reason of current/changing status of Software subscription; type of Software license used; Software subscription expiration date and time; data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; order number of the purchase of the Software license from the partner; Software license term; ID of the price list item through which the Software license was purchased; license data for user group identification based on additional settings of the subscription license; Software license data for user group identification based on additional settings of the subscription license; current status of the Software license key; Software activation date; current subscription state; subscription expiration date; order price ID when purchasing the license; ID of the data schema used by the subscription provider; order number used by the partner; flag indicating whether the subscription is in a grace period; cause of the current subscription state/change; customer name; license identifier; type of license used; license expiration date; country where the partner is located; license validity period; order number when purchasing the license; full name of the partner from whom the license was purchased.
- Information about the user: data about the license for identifying a group of users of the company that purchased the license by the comment in the license properties; type of the user that performs the action with the weak security setting.
- Information about the User environment: browser type; browser version; OS ID; OS edition; version of the operating system installed on the user's computer; OS Service Pack version; operating system bit version.
- Information about the use of Kaspersky Security Network (KSN): flag indicating whether participation in KSN is enabled; delay of sending the statistics.
- Information about the use of the application user interface, information about User opinion about the software: ID of the user action; web address being processed.
- Information about an object being processed: Advertising ID; web address being processed; web address of the source of the web service request (referer).
- Information about accessing a web service: ID of the user of the Rightholder's website.
- Information about the Rightholder's installed Software: version of the protocol of interaction between the Software and marketing messages; code of the partner organization associated with the Software rebranding; full version of the Software; Software rebranding ID; Software localization; Software activation date; Software ID; type of the installed Software; Software update ID; Software installation ID (PCID); Software ID; Software rebranding code; list of IDs of requested content; Software ID derived from the license; installation date and time for the Software; identifier of the partner organization via which the Software license order was placed; serial number of the Software license key; flag indicating whether the Software is connected to Web-Portal; ID of the licensed Software; result of the task of scanning weak security settings; type of scan task that detected the weak setting.
- Information about the device: unique device ID; operating system bit version; OS ID; OS version, OS build number, OS update number, OS edition, extended information about the OS edition; device ID; version of the operating system; OS bit size; operating system family; action performed with the detected weak security setting; ID of the weak security setting; web address being processed.
Statement regarding data processing for Web Control (Statement)
With the help of the Web Control component, You can limit time spent on the internet, restrict access to websites of certain categories, and restrict social network correspondences and messaging. The Rightholder processes data to ensure the operation of the Web Control component in accordance with this Statement.
Certain data which is processed under this Statement could be considered personal data according to laws of some countries. With Your consent, the following data will be automatically sent on a regular basis to the Rightholder under this Statement:
- URL used for information request
- Protocol type
- Parent URL (from which the URL was received)
- Port number
If you don't want Kaspersky to receive this data, you can revoke your acceptance of the Statement by turning off Web Control.
Statement regarding data processing for purpose of using Web-Portal (Web-Portal Statement)
The Web-Portal helps You remotely manage Your acquired licenses and the protection of your Computer. During Your use of this functionality, the Rightholder receives and processes information accordance with this Statement in order:
- to enable Your use of the Software under the current subscription,
- to enable Your use of (Your connection to) the Web-Portal.
Certain data which is processed under this Statement could be considered personal data according to laws of some countries. The data to be processed depend on purpose, indicated in the Software interface.
To enable Your use of the Software under the current subscription
With Your consent, the following data will be automatically sent on a regular basis to the Rightholder under this Statement:
- Information on interaction with Web portal: one-time password for device registration on Web-Portal; token type; unique device ID on Web-Portal; data to receive an authentication token for the session; reason for disconnecting from Web-Portal; user ID issued after successful user authentication on Web-Portal; Web-Portal account ID.
- Information about the license and other agreements: information about Software activation errors; Software activation code; Software license expiration date and time; Software license ID; Software license header; current status of the Software license key; type of Software license used.
- Information about the User environment: localization of third-party software; full version of third-party software.
- Information about the Rightholder's installed Software: version of the Software's component; reason for disconnecting from Web-Portal; Software ID derived from the license; full version of the Software; Software localization; type of installed Software.
- Information about the device: OS version, OS build number, OS update number, OS edition, extended information about the OS edition; computer name on the network (domain name); unique device ID; OS type (server, workstation, domain controller).
To enable Your use of (Your connection to) the Web-Portal
With Your consent, the following data will be automatically sent on a regular basis to the Rightholder under this Statement:
- Information on interaction with Web portal: unique device ID on Web-Portal; user ID issued after successful user authentication on Web-Portal; one-time password for device registration on Web-Portal; token type; unique device ID on Web-Portal; data to receive an authentication token for the session; one-time password for automatically connecting the Software downloaded from the Web-Portal account; reason for disconnecting from Web-Portal; user ID issued after successful user authentication on Web-Portal; Web-Portal account ID; user login for the Web-Portal account; reason for disconnecting from Web-Portal; Web-Portal account ID; User email address; User password; Authorization parameters; Authorization context; CAPTCHA identifier; CAPTCHA type; User's reply to CAPTCHA; One-time password for two-step verification; One-time password to automatically connect the application downloaded from Web-Portal; Version of the protocol used; XMPP message identifier; Data to receive an authentication token for the session.
- Information about the license and other agreements: information about Software activation errors; Software license ID; Software activation code; Software license expiration date and time; Software license header; current status of the Software license key; type of Software license used.
- Information about the User environment: localization of third-party software; full version of third-party software.
- Information about the use of the application user interface, information about User opinion about the software: flag indicating whether the user agrees to provide his/her email address to receive personalized marketing offers.
- Information about the Rightholder's installed Software: full version of the Software; type of installed Software; version of the Software's component; full version of the Software; country code; country code according to ISO 3166-1 alpha-2; Software ID derived from the license; Software localization; type of installed Software; Region; Partner's rebranding code; unique ID of the application installation on the computer; application type; version of the application status; aggregated application status; application operating mode; license status; application protection level; protection components status; scan status; database status; database update status; versions of the used anti-virus databases and the time of their last update; list of detected security problems; list of recommendations and available actions.
- Information about the device: OS version, OS build number, OS update number, OS edition, extended information about the OS edition; computer name on the network (domain name); unique device ID; OS type (server, workstation, domain controller); current time and its difference from UTC; device type image; hash sum of the device MAC address and user identifier on Web-Portal; technology used to determine the device parameters; version of device enumeration engine; device name; name and value of device parameters; vendor of the device; operating system regional settings (information about the time zone, default keyboard layout, locale); device token type; unique ID of user-device binding on Web-Portal.
If you don't want Kaspersky to receive this data, you can revoke your acceptance of the Web-Portal Statement by signing out of My Kaspersky.
If you don't want Kaspersky to process this data, you need to delete your My Kaspersky account. For more information about deleting a My Kaspersky account, see the My Kaspersky help.
You agree to submit the following information for the purpose of application identification during database and module updates:
- Software ID (AppID)
- Active license ID
- Unique Software installation ID (InstallationID)
- Unique Update task launch ID (SessionID)
- Version of Software (BuildInfo)
- Information about updating the Updater component: unsuccessful update tasks, the number of failed starts after the upgrade, the version of the component, the error code, the ID of the type of update task, the status code of the software after the update, the date and time the statistics is sent
The application also processes and stores the following personal data displayed in the application interface:
- Email address used to connect to My Kaspersky
- Website addresses that were added to the exclusions (displayed in the Safe Browsing, Private Browsing, Safe Money settings, and in the Reports window)
- License data
- Hashes of passwords
- Hashes of email addresses
This data is stored locally in a non-modified form and can be viewed under any user account on the computer.
Read the Kaspersky Security Network Statement and revoke your acceptance
- In the menu bar, click the application icon and choose Settings.
The application settings window opens.
- On the KSN tab, in the Improved protection section, click Show KSN Statement.
- If you don't want to participate in Kaspersky Security Network, deselect the Participate in Kaspersky Security Network checkbox.
Read the Marketing Statement and disable sending data
- In the menu bar, click the application icon and choose Settings.
The application settings window opens.
- On the KSN tab, in the Improved experience section, click Show Marketing Statement.
- If you want to disable sending data, deselect the Help Kaspersky improve its products by sending information about the application and its operating environment checkbox.
- On the sidebar of the main application window, click Web Control.
The Web Control window opens.
- In the left pane of the window, select a computer user account for which you want to turn off Web Control.
- In the upper-right corner of the window, turn off Web Control.
- Open the main application window and click
<My Kaspersky account>. - In the dialog that opens, click Sign Out.