The user agrees to automatically provide the information listed below in order to discover new and difficult-to-detect information security threats and their sources, as well as intrusion threats; to promptly take measures to increase the security of the information being stored and processed using the Computer; and to receive information and advertising materials about information security: Information about agreements accepted in the application:
Agreement ID
Agreement version ID
Flag indicating whether the agreement was accepted
Time when the flag indicating whether the agreement was accepted was modified
Information for operation of My Kaspersky:
User’s email address
User’s password
Authorization context
Captcha identifier
Captcha type
User’s reply to captcha
Locale
One-time password for two-factor authentication
Unique user identifier on My Kaspersky
Unique device identifier on My Kaspersky
Unique temporary device identifier on My Kaspersky
Region
Flag indicating whether the user agrees to provide his / her e-mail address to receive personalized marketing offers
Flag indicating whether Privacy Statement was accepted
One-time password to connect the application automatically
Activation code
Application ID on My Kaspersky
Application ID
Application version
Application locale
General information about the user's device: unique device identifier on My Kaspersky, device’s network name, device type, operating system type, operating system version
General information about licenses used in the application: license type, current license status, service information about license, activation error, license expiration date and time, feature array
Device token type
Service ID
Unique ID of user-device binding on My Kaspersky
Information about Wi-Fi networks:
Wi-Fi network SSID
SHA256 hash of the MAC address (BSSID) of the Wi-Fi access point
MD5 hash of the MAC address (BSSID) of the Wi-Fi access point
Flag indicating whether the device is plugged in
Flag indicating whether a DNS name is available
Device type
Product version
Product identifier
Hash of the UID and BSSID
Hash of the UID and SSID
Hash of the UID, BSSID, and SSID
List of available Wi-Fi access points
Resulting security category of the network in the product
Resulting publicity category of the network in the product
DHCP settings
Signal level
Hash sum of the local IPv4 address
Hash sum of the local IPv6 address
Flag indicating whether the user specified that the current Wi-Fi network is the user’s home Wi-Fi network
Captive portal URL
Local time when the connection was started
Local time when the connection was interrupted
Status of VPN client settings
Connection types supported by the access point
The set of authentication protocols supported by this configuration
The set of group ciphers supported by this configuration
The set of key management protocols supported by this configuration
The set of pairwise ciphers for WPA supported by this configuration
The set of security protocols supported by this configuration
Authentication protocol used for the WPA-EAP connection
Internal authentication protocol
Information about applications installed on user’s device:
Production product version
MD5 hash of the DEX file of the installed application
MD5 hash of the APK file of the installed application
Flag indicating whether the application is in the system catalog
Flag indicating whether the application has Device Administrator rights
Flag indicating whether the application is a default SMS messenger
Flag indicating whether the application uses accessibility services
Permissions granted dynamically to the application
Name of the APK file that is being installed
Path to the APK file that is being installed
Package name (or bundle name) from AndroidManifest.xml
Application version
Application version from AndroidManifest.xml
MD5 hash sum of the DEX file of the installed application
MD5 hash sum of the APK file of the installed application
Serial number of the certificate that was used to sign the APK file
Issuer of the certificate that was used to sign the APK file
Public key used to sign the APK file
Hash of the certificate used to sign the APK file
Date when the file was signed
Date when the certificate was issued
Date when the certificate expires
Application verdict status
Method used to get the application verdict
Information about device firmware:
Operating system
Device model
Build ID for displaying to the user
Firmware fingerprint
Firmware identifier
Product/hardware manufacturer
Full product name
Build type, for example, "user" or "eng"
Current development codename or the string "REL" for production builds
Incremental number of the build
Flag indicating whether the device is rooted
Hash of user’s device identifier
User identifier on My Kaspersky
Information about the detected object:
MD5 hash sum of the detected object
Size of the detected object
Name of the detected object according to the Kaspersky Lab classification
Flags indicating the verdict status
Name of the detected object (file)
Full path to the detected file
Path template code
Identifier of the anti-virus database record on which the verdict is based
Database release time
Record type, the identifier of the anti-virus database that a record belongs to
Date and time of the last anti-virus database update on the user’s device
Information about whether the detected file is a portable executable (PE) file
File type code
File type identifier
SHA2-256 hash sum of the detected object
Information about weak device settings and battery charge level:
Addressee (current device) ID: unique My Kaspersky account identifier, unique device identifier, identifier of the service accessed by the app, server address to which the message is sent
Overall product status
Information about weak device settings known to the product: weak setting identifier, weak setting severity level, link to the description in the knowledge base, flag indicating whether the weak setting is active now and whether it can be fixed remotely
Number of ignored settings
Device battery charge level as a percentage
Flag indicating whether submitting the battery charge level is turned on in the app
Information about the application installation event:
Application identifier in Kaspersky Lab services
Product locale
Partner identifier for which the build was released
Operating system type
Operating system major version
Operating system minor version
Build number
Device type, system value of device model
Date and time of application first launch
Device identifier
Installation identifier
Information about VPN installation available on the device:
VPN installation identifier
VPN license state
Information about security news request:
Application identifier
Application version
Device identifier
User identifier
Product locale
Operating system
Information about update request:
Application ID
Unique identifier of the application installation
Unique identifier of the update task launch
Full application version
Type of the Software
Version of the Software
Configuration ID
Result of the update request
Error code
Information provided in redirect links:
Link purpose
Product locale
Product group
Product version
Operating system
Device identifier
Identifier of the service accessed by the product
User ID
My Kaspersky infrastructure accessed by the product
Temporary token
Flag indicating the type of target link
License ID
Partner name
Information to determine Wi-Fi access point reputation:
Wi-Fi network SSID
SHA256 hash sum of the MAC address (BSSID) of the Wi-Fi access point
MD5 hash sum of the MAC address (BSSID) of the Wi-Fi access point
Authentication type
Encryption type
Hash (SHA256) of the device ID and BSSID
Hash (SHA256) of the device ID and SSID
Hash (SHA256) of the device ID, SSID, and BSSID
Signal quality
Connection types supported by the access point
List of available Wi-Fi access points
DHCP and DHCP IPv6 settings
Captive portal URL
Array of WPS parameters for WPS-enabled Wi-Fi access points
Information to determine web-resource reputation:
URL address of the page with personal data removed
URL protocol
Port number
Product type
User identifier
Parent URL address of the page with personal data removed
Information about certificate verification request for an external resource:
Website URL
Website IP address
Website certificate hash
Certificate type
Certificate contents
Information about SHA1 hash of user’s e-mail address to check for possible data leaks
Information about devices found in the Wi-Fi network that the device is connected to:
Device identifier
SHA-256 hash of the device (MAC + My Kaspersky user ID)
Device name
Device type
Device manufacturer
Device operating system
Detection technology
Detection technology version
Alias device name
Alias type
Locale
Last 8 bytes of IP address
SHA256 of Wi-Fi BSSID
The user agrees to automatically provide the information listed below in order to improve software quality: VPN session parameters:
VPN session duration (in seconds)
VPN server virtual location
Product’s operation mode
Reason for starting VPN session
Incoming traffic volume
Outgoing traffic volume
Reason for session interruption
Information about the quality of KSN services:
KSN service identifier
Statistics for successful packets
Statistics for unsuccessful packets
Statistics for packet time
Statistics for packet number
Number of connections from cache
Number of successful connections
Number of unsuccessful connections
Number of successful transactions
Number of unsuccessful transactions
Time distribution of successful connections
Time distribution of unsuccessful connections
Time distribution of successful transactions
Time distribution of unsuccessful transactions
Service request identifier
Number of service requests
Number of service requests from cache
Number of requests canceled because of network problems
Number of requests canceled because of inactive service
Number of requests canceled because of an invalid path
Overlapped application information: application package name (for the overlapped application: if the advertisement is shown on an empty desktop, the value should be "launcher"), APK file name, path to APK file without file name, classes.dex file MD5 hash, APK file MD5 hash
Width of the overlapping view
Height of the overlapping view
Width of the device screen
Height of the device screen
To improve software quality and assess the effectiveness of adaptive scenarios, the user agrees to automatically provide the information listed below: Result of VPN adaptive scenario:
Adaptive scenario identifier
Action to perform when adaptive scenario is activated
User’s action
VPN server virtual location
Product’s operation mode
Trigger for the adaptive scenario
SHA256 hash of the VPN installation identifier and the trigger
Result of action performed on a weak setting:
Identifier of the weak setting on which an action is performed
Action performed on a detected weak setting
Rights of the user performing the action on a weak setting
Type of scan task that detected a weak setting
Task result (number)
Information about devices found in the Wi-Fi network:
MAC address prefix of the device (first 5 bytes)
Device operating system
Device type
Number of characters in the device name
Manufacturer of the device
Data of intercepted DHCP package settings
Information about operation of the component that detects whether the user might be interested in Kaspersky Safe Kids product:
Date and time when the verdict was provided
Current verdict value
Date and time of the start of receipt of statistical data
Date and time of the end of receipt of statistical data
Aggregated information about the user:
User name in the operating system
Hash (CRC64) of the software installation identifier
Default keyboard layout
Information about browsing history:
Date and time of website visit
Website category according to the Kaspersky Lab classification
Website title
URL address of the page with personal data removed
Information about search queries:
Date and time when the query was made
Category of search query according to the Kaspersky Lab's classification
Search query text
Information about installed and active apps:
Event date and time
Type of app event
Time of app use
Unique process identifier
App name (package name)
App category according to the Kaspersky Lab classification
MD5 hash of application file
PEGI or ESRB app category
Minimum allowed age for using age-restricted apps
Information about the location of the device:
Country identifier
City identifier
Identifier of the OS language
Child detection component version
Hash (CRC64) of the device MD5 identifier
Information about the user's time zone
The user agrees to automatically provide the following information to generate the most suitable informational and advertising offers: Information about security news request:
Application identifier
Application version
Device identifier
User identifier
Product locale
Operating system
To provide application functionality according to purchased license or subscription, you agree to submit the following data: Information about purchase receipt:
SKU
Date and time of the purchase
Product package name
Receipt name
Purchase token
Digital signature of the purchase
Status of the purchase
For all of the purposes listed above, the User agrees to automatically provide the information listed below: Information about installation:
Product version
Device ID
Installation ID
Product type
Name of the store where the application was obtained
Timestamp of the first launch of the Software
Package name and version
Information about the operating system:
Operating system type
Operating system major version
Operating system minor version
Build number
Processor type
To support two-step verification on My Kaspersky, you need to provide a security code sent to your device in an SMS message.
To ensure the security of your My Kaspersky account, you need to provide the CAPTCHA characters.
The Rightholder may use the received data to generate reports on information security risks.
Kaspersky Lab protects any received information as prescribed by law and the applicable rules of Kaspersky Lab. Information is transmitted over encrypted communication channels.
To improve application performance, you agree to submit the following data to Firebase Performance Monitoring service automatically:
Instance ID
IP address
Advertising ID
General device information: model, OS, and orientation
RAM and disk size
CPU usage
Carrier (based on Mobile Country and Network Code)
Radio/Network information (for example Wi-Fi, LTE, 3G)
Country (based on IP address)
Locale/language
Signal strength
Jailbroken or rooted status of device
Battery level and battery-charging state
App version
App foreground or background state
App package name
Pseudonymous app-instance identifier
Network URLs (not including URL parameters or payload content) and the following corresponding information: response codes (for example 403, 200), payload size in bytes, response times
Duration times for automated traces
Data is forwarded to Firebase Performance Monitoring over a secure channel. Access to the information and protection of the information are governed by the corresponding terms of use of the Firebase Performance Monitoring service.
To improve application performance, you agree to submit the following data to Crashlytics service automatically:
Information about an abnormal termination (crash) of the Software: unique event identifier, date and time of the Software installation and event, identifier indicating the screen orientation, text of the error message, flag indicating whether the Software was running in the background, battery level, and battery discharge rate; if a fatal signal was raised, its name and integer code, a list of app screens that led to the event, a list of flags indicating the state of the app.
Information about the Software installed on the Computer: the Software bundle identifier and the full version number of the Software, the uint64 instruction pointer of every frame of every currently running thread, time of the app launch, percentage of successful network requests, network delay, time that the app spent in background, execution time of functions or arbitrary sections of code, which are characterized by a string identifier or a numeric index.
For each binary image loaded into the application: its name, UUID, byte size, and the uint64 base address at which it was loaded into RAM.
Information about the Computer: OS and version, Computer model, CPU architecture, total RAM and amount currently used, total disk space and amount currently used, flag indicating whether the Computer is rooted.
If available in the runtime, the plain-text method or function name containing each instruction pointer, the uint64 value of each register on the CPU, а Boolean indicating whether the device's proximity sensor was triggered.
Name and version of the operating system.
Android ID and Android Advertising ID.
Data is sent to Firebase Performance and Crashlytics services over an encrypted channel.
Access to the information and protection of the information are governed by the corresponding terms of use of the AppsFlyer, Firebase, and Crashlytics services.
To provide the core functionality of the Software, the following data will be sent to Firebase Cloud Messaging automatically and regularly:
Unique installation ID (Instance ID)
Sender identifier (for sending messages)
Application version (version code)
Application build number
Application version code
Application package name
OS version
Version Google Play Services
Version code Google Play Services
Application ID
Application ID in Firebase services
Protocol version
The Rightholder uses the Firebase Cloud Messaging service only for the delivery of messages in accordance with the specifications/documentations of Google Inc. for Firebase Cloud Messaging.
Information received by the VPN Provider directly from the Software and the Rightholder. The VPN Provider has to verify the legality of access to its services during Your use of the Software. To do so the VPN Provider has to process and receive the following information about the license You have acquired, and the Computer where You have installed the Software:
Authorization tokens to connect software to provider infrastructure services
Temporary authorization data to start the VPN session
Unique pc software installation identifier
Unique account identifiers to record the VPN traffic in the provider's system
User device type
Types of network protocols used for the VPN
Information about the geographic location of the VPN server
The VPN Provider processes information in accordance with its privacy policy. You can find and read its complete content at https://www.pango.co/privacy/.
During use of the Software, the following data will be sent to AppsFlyer automatically and on a regular basis in order to achieve the declared purpose:
User’s computer information: device brand, model, type, factory image name, platform extension, country code, language, currency code; OS SDK version, CPU architecture, CPU ABI architecture, device display, battery charge type, battery level.
Sensors data: accelerometer, magnetometer; information about the network type connection, service provider, mobile operator.
Name and version of the installed software, Google install referrer, a flag whether uninstall tracking is enabled, GCM token.
Date, time and name of the event about which data is sent, time between launches, event parameter, event counter, unique AppsFlyer transaction ID.
Information about Advertiser ID: Advertiser ID, a flag indicating a way Advertising ID is collected, a flag indicating whether Advertiser ID is enabled.
Information about the AppsFlyer used in the software: AppsFlyer key, AppsFlyer events API version, presence of other AppsFlyer SDKs, unique AppsFlyer installation ID, AppsFlyer SDK version, a flag indicating whether AppsFlyer was pre-installed on the device, GCD conversion data timing.
Data is forwarded to AppsFlyer over a secure channel. Information about how data is processed in AppsFlyer is published at: https://www.appsflyer.com/privacy-policy/.
During use of the Software, the following data will be sent to BigQuery automatically and on a regular basis in order to achieve the declared purpose: Information about Software installed on the Computer:
Software version
Name of the store where the application was obtained
Timestamp of the first launch of the software
Package name and version
Pseudonymous app-instance identifier
Application ID in Firebase services
Application platform and ID
Information about the use of the Software:
Event type and value
Information about the User’s computer where the Software is installed:
Computer brand, category, model
Information about the language (locale) of the operating system
Information about the User:
Country of residence
Campaign and name of channel that attracted the User
To improve software quality and analyze the target audience, you agree to automatically provide the following information to the Firebase service:
Information about Software installed on the Computer: instance ID, version, name of the store where the application was obtained, timestamp of the first launch of the Software, app foreground or background state, app package name, a pseudonymous app-instance identifier, network, and the following corresponding information: response codes, payload size in bytes, response times, duration times for automated traces.
Information about the use of the Software: event type and value.
Information about the Users’ Computer where the Software is installed: Computer brand, category, model and orientation, RAM and disk size, version and language (locale) of the operating system; information about whether the application was first opened in the last 7 days or more than 7 days ago.
Carrier, radio/network information, IP address, geography, locale/language, signal strength, jailbroken or rooted status of device, battery level and battery-charging state.
Advertising ID, Android ID.
Information about the User: User’s age category and gender, country of residence, and list of interests.