About data provision

The program operates with the use of data whose transmission and processing requires the consent of the Kaspersky Secure Mail Gateway administrator.

You can view the list of data and the terms on which it is used as well as give consent to data processing in the following agreements between your organization and Kaspersky:

In the End User License Agreement.
In accordance with the terms of the License Agreement that you have accepted, you consent to the automatic transmission to Kaspersky of information enumerated in the License Agreement under "Conditions regarding data processing". This information is necessary to improve the level of mail server security.
In the Privacy Policy.
In the Kaspersky Security Network Statement and the Supplementary Kaspersky Security Network Statement.
In the course of participation in the Kaspersky Security Network and submission of KSN statistics to Kaspersky, information can be transmitted that was obtained as a result of the program's operation. The list of data that is transmitted is provided in the Kaspersky Security Network Statement and the Supplementary Kaspersky Security Network Statement.

Kaspersky protects any information received in this way as prescribed by law and applicable rules of Kaspersky. Data is transmitted over encrypted data links.

RAM of Kaspersky Secure Mail Gateway may contain any processed data of program users. The administrator of Kaspersky Secure Mail Gateway must personally ensure the security of such data.

The following table contains the complete list of user data that can be stored by Kaspersky Secure Mail Gateway.

User data that can be stored in Kaspersky Secure Mail Gateway

Section / subsection that uses the data	Data storage directory	Data type	Storage duration	Data protection measures
Reports and monitoring	/var/opt/kaspersky	Statistics on email messages: Addresses of the sender and recipients. Names of infected attachments. Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments.	Indefinite.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.
Trace log	/var/log /var/log/kaspersky	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments. Accounts and IP addresses of program web interface users Accounts of users on the LDAP server and in Active Directory.	Indefinite. When 500 MB limit is reached, log rotation is initiated, and deletion of old records begins.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.
Event log and audit log	/var/opt/kaspersky	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments. Accounts and IP addresses of program web interface users Accounts of users on the LDAP server and in Active Directory.	Indefinite. When 1 million record limit is reached, log rotation is initiated, and deletion of old records begins.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface. User under the HelpDesk account.
Backup	/var/opt/kaspersky	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments.	Indefinite. When size limit is reached, rotation is initiated, and deletion of old records begins. The size limit is 7 GB by default.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.
Anti-Spam Quarantine	/var/opt/kaspersky	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments.	Indefinite. When size limit is reached, rotation is initiated, and deletion of old records begins. The size limit is 1 GB by default.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.
KATA Quarantine.	/var/opt/kaspersky	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments.	Indefinite. Indefinite. When size limit is reached, rotation is initiated, and deletion of old records begins. The size limit is 1 GB by default.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface. Administrator of Kaspersky Anti Targeted Attack Platform.
Temporary files	/tmp/klmstmp /tmp/klms_filter	Information from email messages: Sender's IP address. Email addresses of the sender and recipients. Message subject. Message body. Message control headers. Attachments.	Until program restart.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.
Configuration files	/etc /var/opt/kaspersky /etc/opt/kaspersky	Program configuration files: Black and white lists of email addresses. Program and HelpDesk administrator accounts. Accounts of users on the LDAP server and in Active Directory.	Indefinite.	Access to data is only allowed for the following accounts: Administrator for working with the program in Technical Support Mode. Administrator of the program web interface.

Section / subsection that uses the data

Data storage directory

Data type

Storage duration

Data protection measures

Reports and monitoring

/var/opt/kaspersky

Statistics on email messages:

Addresses of the sender and recipients.
Names of infected attachments.
Information from email messages:
Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Indefinite.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

Trace log

/var/log

/var/log/kaspersky

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Accounts and IP addresses of program web interface users

Accounts of users on the LDAP server and in Active Directory.

Indefinite.

When 500 MB limit is reached, log rotation is initiated, and deletion of old records begins.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

Event log and audit log

/var/opt/kaspersky

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Accounts and IP addresses of program web interface users

Accounts of users on the LDAP server and in Active Directory.

Indefinite.

When 1 million record limit is reached, log rotation is initiated, and deletion of old records begins.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.
User under the HelpDesk account.

Backup

/var/opt/kaspersky

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Indefinite.

When size limit is reached, rotation is initiated, and deletion of old records begins.

The size limit is 7 GB by default.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

Anti-Spam Quarantine

/var/opt/kaspersky

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Indefinite.

When size limit is reached, rotation is initiated, and deletion of old records begins.

The size limit is 1 GB by default.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

KATA Quarantine.

/var/opt/kaspersky

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Indefinite.

Indefinite. When size limit is reached, rotation is initiated, and deletion of old records begins.

The size limit is 1 GB by default.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.
Administrator of Kaspersky Anti Targeted Attack Platform.

Temporary files

/tmp/klmstmp

/tmp/klms_filter

Information from email messages:

Sender's IP address.
Email addresses of the sender and recipients.
Message subject.
Message body.
Message control headers.
Attachments.

Until program restart.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

Configuration files

/etc

/var/opt/kaspersky

/etc/opt/kaspersky

Program configuration files:

Black and white lists of email addresses.
Program and HelpDesk administrator accounts.

Accounts of users on the LDAP server and in Active Directory.

Indefinite.

Access to data is only allowed for the following accounts:

Administrator for working with the program in Technical Support Mode.
Administrator of the program web interface.

Such data can be accessed in Technical Support Mode under the administrator account.

The administrator of Kaspersky Secure Mail Gateway must personally ensure the security of such data when transferring this data to Kaspersky Technical Support for analysis of the program failure reasons.

Managing the program in Technical Support Mode under the administrator account lets you manage dump and trace files settings. A dump is generated whenever the program crashes and can be useful for analyzing the causes of the crash. The dump may include any data, including fragments of content of email messages and analyzed files.

By default, dump generation in Kaspersky Secure Mail Gateway is disabled.