Endpoint Security Privacy Policy

The State of Phishing 2023

An in-depth look at cybersecurity threat trends with insights into how cybercriminals are swiftly advancing and what is required to stop them.

Read it Now

It’s Time to Get Started with SlashNext

Learn how to leverage the industry’s best zero-hour phishing protection and IR solutions in your environment.

request a demo

Get a Customized Risk Assessment

See if your current email security stops the latest BEC and other exploits by plugging into SlashNext Cloud Email Security and receive a detailed report.

LEARN MORE

Last Updated: August 24, 2021

SlashNext (“SlashNext,” “we,” or “us” or “our”) firmly believes that your privacy is as important as your security, so we want to be transparent about the data we collect to help safeguard your device and the security of your employer. SlashNext provides you with this Endpoint Security Privacy Policy (the “Privacy Policy”) to describe our information practices with respect to our Endpoint Security Products (“Endpoint Security Product” or “Services”). This Privacy Policy governs the data collected from or about you through your installation and activation of our Endpoint Security Product on your mobile device or browser. Collection of data on our website is governed by our Website Privacy Policy. By downloading and activating the Endpoint Security Product, you authorize the data collection, use, disclosure, and storage practices described in this Privacy Policy.

You may have been directed to download and install the Endpoint Security Product as a result of your employment by an organization that either (1) requires all or some of its workforce to install the Endpoint Security Product or (2) requires all or some of its workforce to install a mobile device management suite that includes the Endpoint Security Product. This Privacy Policy governs only our information practices with respect to our Endpoint Security Product. To the extent you have questions or requests regarding the data collection, use, disclosure, and security practices of your employer (“Employer”) or a mobile device management provider (“MDM Provider”), or about data that we collect on behalf of your Employer, you should direct those questions or requests to those parties.

Information We Collect

We may collect a variety of information from or about you or your devices from various sources, as described below.

A. Information You Provide to Us

Activation Information. In order to activate the Services, we ask you for your activation key which we use to match with the profile your Employer has created for you.

Communications. If you contact us directly, we may receive information about you. For example, when you send a Support Request, we may receive your name, email address, the contents of a message or attachments that you may send to us, and other information you choose to provide.

B. Information We Collect When You Use Our Services

Web Traffic. SlashNext’s Services mitigate the risks of social engineering and related attacks targeting enterprise employees who use mobile devices and web browsers. Leveraging a robust sensor network and machine learning driven cloud intelligence, the SlashNext Services identify and block malicious sites as you browse the web, or access URLs from within your SMS, social media or other apps. In order to detect malicious sites, the Endpoint Security Product compares your web traffic to a list of known malicious websites, all on your device. When a malicious, phishing webpage is encountered, the Endpoint Security Product sends information regarding that malicious, phishing webpage to SlashNext, including that your device encountered the webpage, and the date and time the encounter occurred. None of your other web traffic is sent to SlashNext.

Device Information. We receive information about the device and software you use to access our Services, including IP address, web browser type, operating system version, phone carrier, model, and manufacturer, and device identifiers.

Location Information. We may infer your general location information, for example by using your internet protocol (IP) address.

Usage Information. To help us understand how you use our Services and to help us improve them, we automatically receive information about your interactions with our Services, like the features you use, and the dates and times of your use of the Services.

SlashNext does not collect any user data from the applications on your mobile device. SlashNext does not collect, read, review, or scan your emails, text messages, photos, or videos.

C. Information We Receive from Third Parties

Information provided by your Employer. Our Services require that all activated versions of our Endpoint Security Software be associated with a particular employee profile. As such, your Employer may provide SlashNext with your name, phone number and email address to enable the Services.

How We Use the Information We Collect

We use the information we collect:

To provide, maintain, improve, and enhance our Services. For instance, we may aggregate information collected from your device to conduct research and provide insight into device security and threats. In these instances, the aggregated information included in the research is anonymized;
To understand and analyze how you use our Services and develop new products, services, features, and functionality;
To communicate with you, provide you with updates and other information relating to our Services, provide information that you request, respond to comments and questions, and otherwise provide customer support;
To find and prevent fraud, and respond to trust and safety issues that may arise;
For compliance purposes, including enforcing our terms of service or other legal rights, or as may be required by applicable laws and regulations or requested by any judicial process or governmental agency; and
For other purposes for which we provide specific notice at the time the information is collected.

How We Share the Information We Collect

Employers. As an enterprise product, certain data is shared with your Employer, or anyone authorized by your Employer to view such data. Employers or their authorized persons are granted access to certain information related to the security of your mobile device. Your Employer may be able to see your unique device attributes such as device model and OS version.

Additionally, when a malicious, phishing webpage is encountered, the Endpoint Security Product warns you, the enterprise employee, as well as your Employer, and blocks access to the webpage, thereby preventing what might be an attempt to steal your credentials or install malicious code on your mobile device. In such a case, your Employer will be alerted that your device encountered the malicious, phishing webpage, the date and time the encounter occurred, and may receive a screenshot generated on our systems (not your device) of the malicious, phishing webpage.

SlashNext does not enable your Employer to see the content of your personal email, browsing history, contacts, calendar, or your personal text messages. Your Employer may have certain rights to access this information on their own, where, for example, this information is transmitted using an Employer-provided device or network. SlashNext, however, will not provide your Employer visibility into applications on your device or the websites you access unless they appear to contain a malicious, phishing webpage or violate company IT security policy, which may evolve and get revised from time to time.

Vendors and Service Providers. We may share any information we receive with vendors and service providers retained in connection with the provision of our Services.

As Required By Law and Similar Disclosures. We may access, preserve, and disclose your information if we believe doing so is required or appropriate to: (a) comply with law enforcement requests and legal process, such as a court order or subpoena; (b) respond to your requests; or (c) protect your, our, or others’ rights, property, or safety. For the avoidance of doubt, the disclosure of your information may occur if you post any objectionable content on or through the Services.

Merger, Sale, or Other Asset Transfers. We may transfer your information to service providers, advisors, potential transactional partners, or other third parties in connection with the consideration, negotiation, or completion of a corporate transaction in which we are acquired by or merged with another company or we sell, liquidate, or transfer all or a portion of our assets. The use of your information following any of these events will be governed by the provisions of this Privacy Policy in effect at the time the applicable information was collected.

Consent. We may also disclose your information with your permission.

Third Parties

Our Services may contain links to other websites, products, or services that we do not own or operate. We are not responsible for the privacy practices of these third parties. Please be aware that this Privacy Policy does not apply to your activities on these third party services or any information you disclose to these third parties. We encourage you to read their privacy policies before providing any information to them.

Security

We make reasonable efforts to protect your information by using physical and electronic safeguards designed to improve the security of the information we maintain. However, as our Services are hosted electronically, we can make no guarantees as to the security or privacy of your information.

Children’s Privacy

We do not knowingly collect, maintain, or use personal information from children under 13 years of age, and no part of our Services are directed to children. If you learn that a child has provided us with personal information in violation of this Privacy Policy, then you may alert us at privacy@SlashNext.com.

International Visitors

Our Services are hosted in the United States and intended for visitors located within the United States. If you choose to use the Services from the European Union or other regions of the world with laws governing data collection and use that may differ from U.S. law, then please note that you are transferring your personal information outside of those regions to the United States for storage and processing. Also, we may transfer your data from the U.S. to other countries or regions in connection with storage and processing of data, fulfilling your requests, and operating the Services. By providing any information, including personal information, on or to the Services, you consent to such transfer, storage, and processing.

Update Your Information or Pose a Question

You may be able to update your account by contacting your Employer. If you have questions about your privacy on the Services or this Privacy Policy, please contact your Employer (or MDM Provider as applicable). You may also direct question to us at privacy@SlashNext.com.

We will post any adjustments to the Privacy Policy on this page, and the revised version will be effective when it is posted. If we materially change the ways in which we use or share personal information previously collected from you through the Services, we will notify you through the Services, by email, or other communication.

Demo Request

Support

6701 Koll Center Parkway, Suite 250
Pleasanton CA 94566
800.930.8643
info@slashnext.com

The State of Phishing 2023

It’s Time to Get Started with SlashNext

Get a Customized Risk Assessment

Get a Customized Risk Assessment

Request a Meeting or Demo