• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Download VulnDetect Installer
  • Login
SecTeer VulnDetect & PatchPro Support Forum VulnDetect
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Download VulnDetect Installer
  • Login

Data Processing Policy

Scheduled Pinned Locked Moved Archived
3 Posts 3 Posters 2.5k Views 3 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A Offline
    Ascendor
    last edited by 7 Aug 2018, 16:18

    Re: Tech Preview

    First of all, thanks for your initiative!

    What I am missing from the Data Processing Policy, is the information on what kind of data will be gathered and transmitted by the VulnDetect client.

    Will it send a list of my software, versions, install paths etc. to your server? In terms of IT security that could be very valuable information.
    Or is it the other way around, information about the client remains at the client, and the information about vulnerabilities is downloaded to my machine to match with my software?

    I would be happy to read from you about this.

    1 Reply Last reply Reply Quote 0
    • T Offline
      Tom VulnDetect Team Member
      last edited by 10 Aug 2018, 09:04

      Hi Ascendor,

      Did you read this, we do link to this during installation:
      https://secteer.com/privacy-policy-personal-carma/

      SecTeer will collect the following information for CARMA consumer accounts:

      Name (optional)
      Email / Username (mandatory)
      Password (mandatory)
      Other personal information is not required to use the product, but you may be encouraged to supply this
      IP addresses used to log in and submit data

      The SecTeer CARMA products will collect the following information from your PC or device:

      Program file names (NOT data files)
      Meta data of program files, including, but not limited to size, version information, date, hashes, digital signatures, and other header / meta information
      Directory structure i.e location of program files
      Registry information related to installed software
      Hostname or other unique identifier, to ensure correct correlation in reporting

      Unfortunately, we do not offer a way around this nor do we have any plans to offer a different way of detected this and providing the results.

      If you are concerned about this, then you can achieve a bit more anonymity, by registering using an alternative email address and perhaps send your data via a VPN (we do not support a proxy yet, but that may be implemented at a later stage).

      And, soon, we will start anonymizing the data further i.e. by using placeholders for usernames in e.g. "c:\Users<yourusername>". However, this has NOT been implemented yet.

      We've also planned another feature, which will allow you to exclude certain folders or drives.

      /Tom
      Download the latest SecTeer VulnDetect agent here:
      https://vulndetect.com/dl/secteerSetup.exe

      1 Reply Last reply Reply Quote 1
      • O Offline
        OLLI_S Community Moderator
        last edited by 10 Aug 2018, 20:43

        @Ascendor
        If you want you can vote for the feature Exclude specific drives/folders from scan
        Simply open the topic (using the link above) and click on the ^ arrow in the first posting.

        1 Reply Last reply Reply Quote 0
        2 out of 3
        • First post
          2/3
          Last post
        Download SecTeer Personal VulnDetect - an alternative to the long lost Secunia PSI

        Please see our Privacy and Data Processing Policy
        Sponsored and operated by SecTeer | VulnDetect is a replacement for the EoL Secunia PSI
        Forum software by NodeBB