Data protection declaration

(As at: May 21, 2013)

AVAST Software a.s. (hereinafter called: Avast or secure.me) attaches great importance to the protection of its customers’ personal data. We will provide you with the most important information by means of this data protection declaration so you know exactly what we do with your data at secure.me, as your data security takes top priority at secure.me.

Below we will inform you, as part of the performance description of the services of secure.me, about the type, scope and purpose of the collection and use of personal data by secure.me.

Data processing on this website

The performances of secure.me are only available to registered users. It is necessary to provide the following data to register:

  • First and last name
  • Email address

As an alternative to registering by email, secure.me also offers registration via the integration of ID Providers (e.g. “Logging on with Facebook”). In this case the personal data of the user is transferred from the ID Provider to secure.me once the user has given their consent to the ID Provider and/or a company related to it and/or a legal successor of one of the companies mentioned (collectively, “ID Providers”). The use of this registration mechanism requires the user to log on with an ID Provider (e.g. Facebook, Google, Twitter, OpenID). The user provides assurance in accordance with these conditions of use that the data stored with this ID Provider about his identity (Name, first name, email address) are true and complete.

Following the registration the customers can provide additional voluntary information.

The data entered by the customer when registering as well as the information issued by users are in principle inaccessible for third parties.

Customers can in principle alter or delete all the information in their profiles. The account can also be deleted in its entirety. If a customer deletes or alters information in their account or deletes the account, this data shall be completely deleted by secure.me. Only the data that is statutorily stipulated as well as order-related data, which must be kept for legal reasons, are retained.

If you choose Facebook as your registration or sign-in method, you will be asked for permission for secure.me to take certain actions on your behalf. Specifically, we will request permission to post on your behalf or to send out an app request in the following cases: (1) you register or install an Avast account or product; (2) you update an Avast account or product; or (3) an Avast product protects you from visiting an infected website; or (4) you invite your friends to use the product. The messages that might be posted in such cases could include the following, or similar messages:

(1) “Avast just saved my Facebook from infection! Try it now. It’s free.”

(2) “Avast just updated, with powerful new security features. Use it for FREE. You’ll love it.”

(3) “I just registered to Avast Facebook Security for free. I really like it. If you want the best protection, register like I did.”

You are not required to agree to allow Avast to post on your behalf. If you do not wish to allow Avast to post these messages. You can modify your posting preferences at any time via your account (www.secure.me).

Collection and processing of personal data during the use of the website and the services of secure.me

When visiting the website the following data will be collected, processed and used in addition to the aforementioned data:

  • IP address
  • Date and time when the website was used
  • URL accessed
  • Volume of data transferred
  • Website from which it was referred
  • Browser type
  • Operating system
  • date, time and content of an error message, if applicable

The aforementioned data shall be solely stored (i) to be able to recognise and rectify any technical errors of the website and services of secure.me that arise, and (ii) to prevent the misuse of the services of secure.me and identify possible violations of applicable legal provisions.

This website uses Google Analytics, a web analysis service of Google Inc. (”Google”). Google Analytics uses so-called “Cookies”, i.e. text files which are stored on your computer and make it possible to analyze your use of the website. The information produced by the cookie concerning your use of this website (including your IP address, which is, however, made anonymous using the _anonymizeIp() method, so that it can no longer be assigned to a connection) will be transmitted to a Google server in the United States and stored there. Google will use this information to evaluate your use of the website to compile reports concerning the website activities for the website operators and to render additional services linked with the use of the website and the Internet. Google will also transfer this information to third parties if necessary, if this is statutorily stipulated, or if third parties process this data on behalf of Google. Google will under no circumstances link your IP address with other Google data. You can prevent the installation of the cookies by setting your browser software accordingly; however, we draw your attention to the fact that you may not be able to use all the functions of this website in that case. You declare your agreement to the processing of the data collected about you by Google as described above and for the aforementioned purpose by using this website.

You can object to the collection of data by Google Analytics at any time in the future by installing a deactivation add-on (http://tools.google.com/dlpage/gaoptout?hl=de) for your browser.

Facebook as a data source

By means of the current version of our service secure.me we have created the option for our customers of adding Facebook as a data source whilst using the service secure.me. If you wish to do this you must integrate the corresponding application of the secure.me service via your Facebook account at Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA and thus add Facebook as a data source. The application of the secure.me service is a so-called social plugin, which enables the data exchange of the secure.me service with Facebook. You determine the scope of access to your data yourself by means of corresponding releases which you must confirm at Facebook.

If you have added Facebook as a data source and call up our website in the future, the secure.me service establishes a direct connection with the servers of Facebook and thus enables the monitoring of your contents stored there or additional data expressly released by you.

We do not have any influence upon the purpose and scope of the data collection and the additional processing and use of the corresponding data by Facebook itself. If you require additional information about the purpose and scope of the data collection and the additional processing and use of the data by Facebook and their setting options for the protection of your privacy, please consult the privacy policy of Facebook at: http://www.facebook.com/policy.php.

Cookies

secure.me uses so-called cookies. These are small text files which the website of secure.me sends to the browsers of the customers and which are stored on their PCs to be saved there as anonymous credentials. The purpose of these cookies is, among other things, to identify a user during the period in which he uses the website of secure.me, as an entitled customer. Without this temporary “intermediate storage”, some data entries which have already been made would have to be repeated for some applications. A cookie only contains the data a server puts out or/and the user supplies upon request (e.g. set-up: Information on the domain, path, expiry date, cookie name and value). They therefore contain purely technical information, and no personal data. A cookie cannot spy on a hard disk.

If the customer so desires, the storage of cookies can be generally rejected via your web browser or in a particular case. However, the non-acceptance of cookies can result in some pages and functions no longer being displayed correctly.

Sending of advertising

secure.me is entitled to send information with advertising content to the customer at the email address indicated by him. The user’s personal data shall thus not be passed on to third parties. The customer can object to secure.me about the future sending of information with advertising content at any time in writing or in text form.

Passing on of personal data to third parties

secure.me only circulates user data to third parties or transfers such data to third parties, when this is necessary to execute a contract or for billing purposes, or if the customer has previously given their express consent to this (opt-in). The payment data shall be exclusively transmitted via a secure encryption, e.g. SSL.

Customers have the right to revoke the consent they have granted with an effect for the future at any time. This shall not affect secure.me’s own right to transmit data to authorized bodies if this is a legal requirement.