Malwarebytes (ThreatDown)
Privacy Policy

• The program and build which is sending the request
• The current license state (as identified by the product)
• The version of the software as well as any subcomponents (currently, databases) that it uses

• A location item indicating the continent, country, city, and approximate latitude/longitude of the user based on your IP address
• The type of connection (dialup/broadband/satellite/mobile)The ISP through which the connection is made
• The organization to which the IP address is licensed, if any

• The operating system the program is installed on
• The system language in use on that system
• The processor architecture (i.e., 32- or 64-bit)
• The file system in use (i.e., FAT32)
• Information from the Windows Security/Action Center, including security settings and programs installed or in use
• Information about other Malwarebytes program settings and how they are configured
• Information about how you use our software or services (“Log Data”) including use of integrations with our products

• The key or keys used to license the current product
• The type of license being used
• If it represents a console system, the number of seats being managed by that installation of the console
• Endpoint and network domain information

• The vendor name of the malware or PUP removed
• An encrypted description of which database rule was used to remove the malware or PUP in question
• Artifacts detected as malware, PUPs, or suspicious files
• Information related to detected artifacts

• The client’s request for a trial
• The start date and duration of the trial provided
• Any attempted conversion/purchase generated by clicking an in-app link, so that it can be correlated with a trial

• Process ID of the exploit process
• File path of exploit process
• MD5 hash of the exploit payload, if any
• Command-line arguments passed to the exploit
• A list of URLs potentially associated with the exploit, including redirect jumps if any
• Exploit payload files
• Exploit file-format (doc, pdf, xls, etc…)
• (Potentially) a copy of the exploit executable itself

When you download and use our Services, we automatically collect information on the type of device you use, operating system version, and the unique device identifier.We send you push notifications from time-to-time in order to update you about any events or promotions that we may be running. If you no longer wish to receive these types of communications, you may turn them off at the device level. To ensure you receive proper notifications, we will need to collect certain information about your device such as operating system and user identification information.

We do not ask for, access or track any location-based information from your mobile device at any time while downloading or using our Mobile Apps or Services. We use mobile analytics software to allow us to better understand the functionality of our Mobile Software on your phone. This software may record information such as how often you use the application, the events that occur within the application, aggregated usage, performance data, and where the application was downloaded from. We do not link the information we store within the analytics software to any personal information you submit within the mobile application.

As part of our text message filtering functionality, our Mobile Software also collects text messages from senders who are not in your contacts, and analyzes these text messages to determine whether they are malicious. We only receive the sender information and the body of the message which is analyzed to determine if they contain malicious URLs or come from malicious senders; no information is provided about the recipient. Text messages that are malicious are retained for analysis by our researchers, however, all other text messages are discarded. To learn more please visit our knowledgebase article here

• You provide Malwarebytes with access to data contained in the applicable cloud repositor(ies) you share with Malwarebytes.
• You control what files in those repositories are subject to scanning and access by Malwarebytes.
• You are responsible for any requirements or necessary consents for providing such files to Malwarebytes.
• In order to perform the scan, Malwarebytes may transfer the files to Malwarebytes controlled servers in the United States. Such files are promptly deleted after the completion of the scan. Malwarebytes does not retain any copies of such files.

Your Malwarebytes Privacy VPN application generates a cryptographic public/private key pair.

We only receive the public key which is used to validate and establish a VPN connection.

Your public/private key pair is periodically changed for increased security.

• Details about the websites or IP addresses browsed on your device;
• DNS requests made by you;
• Bandwidth usage on your device;
• Network details of your device, including IP address;
• Telemetry data from the Malwarebytes Privacy VPN application, including telemetry on functionality and on system environment; OR
• Local Malwarebytes Privacy VPN application logs. These logs are only available on your device and can be helpful for diagnostic purposes if you experience connectivity issues. If you have an issue with the application you can choose to submit a copy of the log to our support team, but we do not automatically receive it.

• Contact details, including but not limited to your name, address, e-mail address;
• User ID and password, if you establish a Malwarebytes account;
• Chat and video conference information, you provide when interacting with our teams;
• Information about your device, including browser type and web traffic information

• Contact details, including but not limited to your name, address, e-mail address;
• Your past education and job history, and other customary details you include on your resume or curriculum vitae; and
• Voluntary EEO or similar data required to comply with applicable laws, including equal Employment Opportunity record keeping, reporting, and other legal requirements.

Malwarebytes and its service providers collect information through the use of first-party and third-party “cookies” and other similar tracking technologies to analyze trends, administer the website, track users’ movements around the website, to market our products, and to gather demographic and regional information about our user base as a whole.

Cookies are text files saved by your browser when you log into our software or services. We may use both session cookies and persistent cookies to identify that you have logged in, to tell us how and when you interact with our software or services, and to check aggregate usage and web traffic. Unlike persistent cookies, session cookies are deleted when you log off and close your browser.

If you prefer, you can always change your browser options to stop accepting cookies or to prompt you before accepting cookies. However, if you do not accept cookies you may not be able to access the entirety of our software and services.

We use personal information for the following purposes: providing you with information, products or services; providing support to you and responding to your requests; providing information about our products, services, events, or news, including newsletters and promotional messages; performing and enforcing any contract(s) between yourself and Malwarebytes, including billing and collections; to improve our products and services, including malware research, as well as our websites and present content to you; to market new and existing products to you; and as otherwise described to you when collecting your personal information or as otherwise allowed by applicable law.

We will not use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.

Other than with respect to the exceptions below, we do not share personal information with third parties

We may disclose personal information to government agencies, law enforcement officials, and private parties as we, in our sole discretion, believe necessary: (1) to satisfy or comply with any applicable law, regulation or legal process; (2) to respond to lawful requests, including subpoenas, warrants or court orders; (3) to protect our property, rights and safety and the rights, property and safety of third parties or the public in general; and (4) to prevent or stop activity we consider to be illegal or unethical.

In certain situations, Malwarebytes may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Upon request, Malwarebytes will provide you with information about whether we hold any of your personal information. You may access or modify the personal information associated with your use of our services at any time by signing into your Nebula or OneView console (as applicable) and updating your information.

Alternatively, you may submit a data subject access request to access, modify, or delete (subject to applicable law) the personal information associated with your use of our services. If you want us to delete your personal information, your forum account, or your support account, please contact us at privacy@malwarebytes.com with your request. We will respond to your requests within a reasonable timeframe.

We will delete your information as soon as possible; however, some information may remain in archived/backup copies for our records or as otherwise required by law. We may retain your information for as long as your account is active or as needed to provide you services, comply with our legal obligations, resolve disputes and enforce our agreements

Your personal information may be transferred to, and maintained on, country, or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. If you are located outside the United States and choose to provide your personal information to us, we may transfer your personal information to the United States and process it there.

If we transfer personal information which originates in the European Economic Area, Switzerland, and/or the United Kingdom to a country that has not been found to provide an adequate level of protection under applicable data protection laws, one of the safeguards we may use to support such transfer is the EU Standard Contractual Clauses.

Malwarebytes complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”) as set for by the U.S. Department of Commerce.

As part of this process, Malwarebytes has certified to the U.S. Department of Commerce that, for transfers of personal information to the U.S., we will adhere to: (i) the EU-U.S. Data Privacy Framework Principles with regards to the processing of personal information received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF, and (ii) the Swiss-U.S. DPF with regards to the processing of personal information received from Switzerland in reliance on the Swiss-U.S. DPF (collectively, the “DPF Principles” or the “EU, UK, and Swiss Data Privacy Framework Principles”).

All of Malwarebytes’s U.S. subsidiaries using the Malwarebytes brand name adhere to the DPF Principles.

The Federal Trade Commission has jurisdiction over our compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF (collectively, the “DPF”). To learn more about the DPF and to view our certification, please visit the Data Privacy Framework Program’s website.

If we receive personal information in the United States that is subject to the DPF Principles and subsequently transfer that personal information to a third party acting as an agent, we will remain liable under the DPF Principles if our agent processes such personal information in a manner inconsistent with the DPF Principles, unless we prove that we are not responsible for the event giving rise to the damage.

Please note that we may be required to disclose your personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, we will commit to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal information received in reliance on the DPF should first contact us using the contact Malwarebytes at Attn: Privacy (Legal), Malwarebytes, 3979 Freedom Circle, Fl 12, Santa Clara, CA 95054 USA.

In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, we will further commit to refer unresolved complaints concerning our handling of personal information received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF to JAMS Data Privacy Dispute Resolution Program, an independent dispute resolution provider located in the U.S.

If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit the JAMS EU-U.S. Data Privacy Framework website for more information or to file a complaint. The services of JAMS are provided at no cost to you.

Under certain conditions, as more fully described in Pre-Arbitration Requirements of Annex I of the DPF Principles, you may invoke binding arbitration for complaints regarding DPF compliance not resolved by any of the other DPF mechanisms.