LAST UPDATED: July 6, 2020
Huntress Labs Incorporated ("Huntress Labs" or "We" or "Us") has created this Statement in order to inform and disclose its data collection and dissemination practices for the Huntress Security Platform ("Huntress Security Platform" or "Platform"). This Statement contains numerous details describing the steps we take to respect your privacy concerns.
Please read this document in its entirety. It provides important information that you should be familiar with before using the Platform. We reserve the right to modify this Statement at any time. A current version can always be found at https://huntress.io/privacy.html
By using the Platform, you help us identify new threats and provide better protection for all Huntress Labs' customers. The information collected is used by Huntress Labs to enhance the Platform and to further advance solutions against malicious software.
Data collection is integral to the Huntress Security Platform. Do not use the Platform if you do not agree to provide the data required for the Platform to properly function.
Huntress Labs may be subject to the laws of several jurisdictions because the Platform may be used in different jurisdictions, including the United States of America. Huntress Labs shall disclose information without your permission when required by law, or in good-faith belief that such action is necessary to investigate or protect against harmful activities to Huntress Labs guests, visitors, associates, property or to others. As mentioned above, laws related to data and information processed by Huntress may vary by country.
Huntress Labs may be required by law enforcement or judicial authorities to provide some information to appropriate governmental authorities. If requested by law enforcement or judicial authorities, we shall provide this information upon receipt of the appropriate legal documentation. Huntress Labs may also provide information to law enforcement to protect its property and the health and safety of individuals as permitted by statute.
We may collect both personally identifiable information ("PII") and non-personally identifiable information ("Non-PII"). PII is information that is either: (1) expressly provided by you, such as your name, or (2) information that can be used either alone or in combination with other information to personally identify you, such as your email address, phone number, and user name. Non-PII is all information that is not PII or is information that was PII but which we modify and/or aggregate with other data in order to make it Non-PII.
In addition, we may retrieve files as part of the Huntress Security Platform. The files provide additional data to analyze for security threats. Files, file names, file paths, and computer names, for example, may contain PII if such information is included therein. The information in these files, including PII, is used solely for the purpose of assisting in the identification of potential security threats, and for no other reason.
We use PII to shape our external communication and for messaging efforts. Other than the exceptions noted below, we do not share PII with third parties.
Our servers automatically record information about how a person ("User") uses the Platform ("Log Data"). Log Data may include a User's Internet Protocol (IP) address, browser type, operating system, web page that the User was visiting before accessing our server, search terms, and the pages or features of the Platform accessed by the User and the time spent there. We may share Log Data with web analytics service providers.
We may engage third-party service providers to administer and provide our services. We may provide PII to such third parties only for the purpose of performing services on our behalf. We require such third parties to agree not to disclose your PII or use your PII for any other purpose.
Information that we collect from Users, including PII, is considered a business asset. Accordingly, if we go out of business or enter bankruptcy, or if we are acquired, e.g., as a result of a transaction such as a merger, acquisition, or asset sale, your PII may be disclosed or transferred to the third-party acquirer in connection with the transaction.
In order to identify new security threats and to quickly send notification of threats and suspicious applications, the User agrees that the Huntress Agent software ("Software" as defined in the Huntress Platform Terms of Service) automatically provides the following information to us:
For additional examination, the User agrees that the Software automatically provides to us files (executable files, libraries, script files, and configuration files) for and related to autostarting applications that the Platform has not catalogued. Additionally, the following information about the file will be collected:
In order to promptly respond to errors associated with installation, uninstallation, and updating of the Platform and Software, and to record the number of users, the User agrees that the Software automatically provides to us:
In order to increase the level of support, the User agrees that the Software automatically provides to us the following information about the results of testing software operability after applying of updates:
To improve performance of the Platform and the Software, the User agrees that the Software automatically provides to us:
The User agrees that the Software automatically provides to us the following information for all purposes mentioned above:
In order to help Huntress Labs' authorized representatives identify potential security incidents, confirm an actual security incident, and/or provide further details to those responding to an incident, additional information will or may be collected. This includes, but is not limited to, the following:
Huntress Labs is committed to protecting the security of the information it collects and processes. The information is stored on computer servers with limited and controlled access. Huntress Labs operates secure data networks protected by industry-standard firewall and password protection systems. Huntress Labs uses a wide range of security technologies and procedures to protect information from threats such as unauthorized access, use, or disclosure. Our security policies are periodically reviewed and enhanced as necessary, and only authorized individuals have access to the data that we process. Huntress Labs takes steps to ensure that your information is treated securely and in accordance with this Statement. Unfortunately, no data transmission can be guaranteed secure. As a result, while we strive to protect your data, we cannot guarantee the security of any data you transmit to us or from our services or software, including without limitation the Huntress.io website, and you use all the service at your own risk.
We treat the data we process as confidential information; it is, accordingly, subject to our security procedures and corporate policies regarding protection and use of confidential information. All Huntress Labs employees are aware of our security policies. Your data is only accessible to those employees who need it in order to perform their jobs. Huntress Labs does not combine the data stored by the Huntress service with any data, contact lists, or subscription information that is processed by Huntress Labs for promotional or other purposes.
Huntress Labs collects and processes the data described above along with other information collected by the system in order to analyze and identify potential security risks, and to improve the ability of Huntress Labs' services to detect malicious software and other types of computer security threats to provide the best possible level of protection to Huntress Labs' customers in the future.
Huntress Labs may share collected executable files and libraries with anti-malware and security industry partners. The files can be analyzed by automatic tools and security analysts to detect malicious code and to improve antivirus engines and other security solutions. Huntress Labs only provides the file--no other information about the file is provided.
In order to promote awareness, detection and prevention of Internet security risks, Huntress Labs may share certain information with research organizations and other security software vendors. Huntress Labs may also make use of statistics derived from the information processed to track and publish reports on security risk trends.
Huntress Labs believes in your right to privacy. If you have any questions or concerns, please contact Huntress Labs by email: firstname.lastname@example.org.
We reserve the right to send infrequent alert messages to users to inform them of specific changes that may impact their ability to use our services that they have previously signed up for. We also reserve the right to contact you if compelled to do so as part of a legal proceeding or if there has been a violation of any applicable licensing, warranty or purchase agreements.
Huntress Labs is retaining these rights because in limited cases we feel that we may need the right to contact you as a matter of law or regarding matters that may be important to you. These rights do not allow us to contact you to market new or existing services if you have asked us not to do so, and issuance of these types of communications is rare.