SecTeer VulnDetect & PatchPro Support Forum VulnDetect
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Download VulnDetect Installer
    • Login

    Data Processing Policy

    Scheduled Pinned Locked Moved Archived
    3 Posts 3 Posters 2.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      Ascendor
      last edited by

      Re: Tech Preview

      First of all, thanks for your initiative!

      What I am missing from the Data Processing Policy, is the information on what kind of data will be gathered and transmitted by the VulnDetect client.

      Will it send a list of my software, versions, install paths etc. to your server? In terms of IT security that could be very valuable information.
      Or is it the other way around, information about the client remains at the client, and the information about vulnerabilities is downloaded to my machine to match with my software?

      I would be happy to read from you about this.

      1 Reply Last reply Reply Quote 0
      • T Offline
        Tom VulnDetect Team Member
        last edited by

        Hi Ascendor,

        Did you read this, we do link to this during installation:
        https://secteer.com/privacy-policy-personal-carma/

        SecTeer will collect the following information for CARMA consumer accounts:

        Name (optional)
        Email / Username (mandatory)
        Password (mandatory)
        Other personal information is not required to use the product, but you may be encouraged to supply this
        IP addresses used to log in and submit data

        The SecTeer CARMA products will collect the following information from your PC or device:

        Program file names (NOT data files)
        Meta data of program files, including, but not limited to size, version information, date, hashes, digital signatures, and other header / meta information
        Directory structure i.e location of program files
        Registry information related to installed software
        Hostname or other unique identifier, to ensure correct correlation in reporting

        Unfortunately, we do not offer a way around this nor do we have any plans to offer a different way of detected this and providing the results.

        If you are concerned about this, then you can achieve a bit more anonymity, by registering using an alternative email address and perhaps send your data via a VPN (we do not support a proxy yet, but that may be implemented at a later stage).

        And, soon, we will start anonymizing the data further i.e. by using placeholders for usernames in e.g. "c:\Users<yourusername>". However, this has NOT been implemented yet.

        We've also planned another feature, which will allow you to exclude certain folders or drives.

        /Tom
        Download the latest SecTeer VulnDetect agent here:
        https://vulndetect.com/dl/secteerSetup.exe

        1 Reply Last reply Reply Quote 1
        • OLLI_SO Offline
          OLLI_S Community Moderator
          last edited by

          @Ascendor
          If you want you can vote for the feature Exclude specific drives/folders from scan
          Simply open the topic (using the link above) and click on the ^ arrow in the first posting.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Download SecTeer Personal VulnDetect - an alternative to the long lost Secunia PSI

          Please see our Privacy and Data Processing Policy
          Sponsored and operated by SecTeer | VulnDetect is a replacement for the EoL Secunia PSI
          Forum software by NodeBB