As a leading antivirus software company, Avast aims to defend you against threats in cyberspace. To do so, we may have to collect your Personal Data to provide you with the best weapons and the most up-to-date security. We do not take your trust for granted. As a multinational company with its headquarters in the Czech Republic, we conform our data use to the European Union’s (“EU”) General Data Protection Regulation (“GDPR”), with effect from 25 May 2018. Therefore, in our Privacy Policy, we explain what we do, how we do it, your choices, and how we may need your cooperation to help you stay safe. We are transparent in our use of our Personal Data, while using it in accordance with the GDPR, and balancing the relevant interests of our users, ourselves and other third parties.
The Avast Privacy Policy (“Privacy Notice”) applies to Avast Software s.r.o. ("Avast") and unless specified, its subsidiaries, contractors, representatives, agents, and resellers while they are working on our behalf (collectively “we,” “us” or “our”).”
The Privacy Notice provides an overview of how Avast and its subsidiaries, via our websites, products and services, handle privacy, and how we protect your Personal Data.
Personal data refers to any information relating to an identified or identifiable natural person (“Personal Data”). To determine whether a natural person is identifiable, account should be taken of all the means reasonably likely to be used, such as singling out, either by the controller or by another person to identify the natural person directly or indirectly. Account should be taken of all objective factors, such as the costs of and the amount of time required for identification, taking into consideration the available technology at the time of the processing and technological developments.
This Privacy Notice describes how we handle Personal Data and the choices available to you regarding collection, process, access, and how to update, correct and delete your Personal Data. Additional information on our Personal Data practices may be provided in product settings, contractual terms, or notices provided prior to or at the time of data collection. Certain products and services may have specific privacy notices that describe how we handle Personal Data for those products and services. If any other privacy notice conflicts with this Privacy Statement, such specific notice will take precedence.
If you are in the European Economic Area, the Controller of your Personal Data is Avast Software s.r.o., which has its principal place of business at 1737/1A Pikrtova, Prague 4, Czech Republic, 140 00.
This Privacy Notice Covers
The following general aspects of our collection and processing of Personal Data concerning you:
Please refer to our supplementary product and service privacy notices at the end of this Privacy Notice for additional detail specific to those products and services.
This privacy notice is intended for you if you are a user of our products and services. If you are a business partner or a media contact, the privacy notice that applies to you is located here: [insert link to business partner and PR privacy notice].
Personal Data We Collect
When you visit and use our websites, products and services, we may collect data or ask you to provide certain data, including Personal Data, about you as you use our websites, products and services and interact with us, for the purpose of helping us manage our relationship with you. We will treat as “Personal Data” the following: (i) data collected directly from you or your device relating to an identified or identifiable natural person (“Data Subject”), and may include direct identifiers such as name, address, email address, phone number, and online or indirect identifiers such as login account number, login password, marketing preferences, social media account, payment card number, or IP address; (ii) If we link other online data with your Personal Data, we will treat that linked data as Personal Data; and (iii)we may also collect Personal Data from trusted third-party sources such as distributors, resellers, app stores, contact centers, and engage third-parties such as marketing/survey/analytics/software suppliers to collect Personal Data to assist us.
We organize the Personal Data we process into these categories: Billing Data, Account Data, Device Data, and Service Data.
Billing Data includes your name, email address, credit card number, and in certain circumstances, your billing address and your phone number. In most circumstances, our products and services are purchased from a trusted third-party service provider, reseller, or app store. In those circumstances, your Billing Data is processed by the relevant third party. Please note, Billing Data is not collected for free products and services.
Account Data includes your name, address, email address, phone number, photo, date of birth, gender, and interests.
Device Data includes information about the operating system; hardware; city/country of device; error logs; browser; network; applications running on the device, including the Avast products.
Service Data includes information about the Avast product usage; visited URLs; referral page; and product event and error logs. When a suspicious file is detected, the following information is processed: the suspicious file hash, the detection name, the suspicious file name and path, the executable suspicious file, and the last local IP address.
If you want more detail about the Personal Data we process on a product basis, please refer to the relevant product and service privacy notices accessible below.
Why We Process Your Personal Data
We use your Personal Data for the following purposes and on the following grounds:
On the basis of fulfilling our contract with you or entering into a contract with you on your request, in order to:
On the basis of your consent, in order to:
On the basis of legal obligations, we process your Personal Data when it is necessary for compliance with a legal tax, accounting, anti-money laundering, legal order, or other obligation to which we are subject.
On the basis of our legitimate interest in the effective delivery of our products, services and communications to you, in order to:
How we process your Personal Data
We do our best to disconnect or remove all direct identifiers from the Personal Data that we use. For free versions of the antivirus, this disconnection or removal of identifiers begins when the products and services are initially activated. For paid users of the antivirus, we keep Billing Data in a separate database and minimize its use for anything other than handling payments and our own finances. For both paid and free versions, we continuously monitor for, minimize, disconnect and remove all direct identifiers during the normal performance of the products and services.
Please note, consistent with the above, our processing of your Personal Data in most cases does not require identification. With the paid versions, while the products and services are active and for a necessary retention period after that, we will maintain a copy of your direct identification in order to handle payments, respond to support queries, for anti-fraud purposes, and to maintain proper records of transactions. For the paid versions, Avast is technically able to connect the provision of products and services with the billing data. For the free versions, when no registration or additional collection of information concerning a user’s identity is required, for example, with the free antivirus, Avast provide the products and services without any direct identification of the user.
For the free versions, Avast shall not maintain, acquire or process additional information solely in order to identify the users of our free products and services. This is simply not necessary for the free versions of our products to be provided to you and function. This means, when you use a free version of our products and services and you contact us with a request concerning your Personal Data, e.g. for a copy or deletion of your Personal Data, please understand we are not in a position to identify you in connection with your specific free products and services and thus we will not be able to satisfy some of your requests. Of course, where we are not able to satisfy some of your requests because of this, we will always inform you of this fact.
Processing of IP addresses
For paid products including antivirus, virtual private network, and performance, your IP Address is collected at the time at which your product or service is being provided, for the purpose of facilitating our billing process. Specifically, our third-party billing partner will collect your IP address for its billing process; Avast does not store the IP address from this process.
For free products including antivirus, your IP Address is not collected at the time you download and activate your product. Instead of collecting your IP Address, Avast stores a city/country. This data is used for understanding where the software has been downloaded and for related analytics.
For certain antivirus products (both paid and free versions), the antivirus software, after detecting a suspicious or malware file on your device, will send the malware file with the last detected IP address to Avast for malware analysis, in particular, to study the spread of the contagion, which allows us to better understand the threat we are dealing with and how to best protect against it. Avast will delete this IP address collected for malware analysis promptly, or in any case within 30 days.
For mobile antivirus products, the IP address of your device may be processed by advertising networks to serve ads; Avast does not collect or store the IP address for this purpose. See the purpose of processing Personal Data for marketing [link].
For products that use third-party analytics, some (although not all) of the analytics tools we use may process the IP address; Avast does not store the IP address for this purpose. See the purpose of processing Personal Data for analytics [link].
Network security
We process Personal Data for network and information security purposes. In line with EU data protection law, organizations have a recognized legitimate interest in collecting and processing Personal Data to the extent strictly necessary and proportionate for the purposes of ensuring network and information security. This primarily covers the ability of a network or of an information system to resist events, attacks or unlawful or malicious actions that could compromise the availability, authenticity, integrity and confidentiality of stored or transmitted data, or the security of the related services offered by, or accessible via those networks and systems.
Both as an organization in our own right, and as a provider of cybersecurity technologies and services which may include hosted and managed cybersecurity technology services, it is necessary for the functionality of our systems, products and services and in our legitimate interests as well as in our users’, to collect and process Personal Data to the extent strictly necessary and proportionate for the purposes of ensuring the security of our own, and of our users’ networks, devices, and information systems. This includes the development of threat intelligence resources aimed at maintaining and improving on an ongoing basis the ability of networks and systems to resist unlawful or malicious actions and other harmful events (“cyber-threats”). The Personal Data we process for said purposes includes, without limitation, network traffic data related to cyber-threats such as:
Depending on the context in which such data is collected, it may contain Personal Data concerning you or any other data subjects. However, in such cases, we will process the data concerned only to the extent strictly necessary and proportionate to the purposes of detecting, blocking, reporting (by removing any personally identifiable elements) and mitigating the cyber-threats of concern to you, and to secure your network, device and systems. When processing Personal Data in this context, we do not seek to identify a data subject.
Marketing and Community Networking
Avast has a legitimate interest in promoting our commercial offerings and to optimize the delivery of communications to that effect to our users that are most likely to find them relevant. We will therefore collect and process data to that end as explained below. However, where we are legally required to obtain your consent to provide you with certain marketing materials, we will only provide you with such marketing materials where we have obtained such consent from you. If you do not want to continue receiving any marketing materials from us, you can click on the unsubscribe function in the communication or e-mail at any time.
In-App Messages
Avast will use Personal Data to provide notices (we call this in-product messaging) of our latest product announcements, software updates, and product and service performance. If you do not want to see these notices, you can shut it off in the product settings. If you have supplied Avast your email address, Avast will also provide notices through this channel. Please note, if you don’t want to be on our mailing list, you may unsubscribe anytime by using an unsubscribe link we provide you in every marketing communication we send you.
Interest-Based Ads
We have versions of our products such as mobile antivirus that are free to our users and supported by serving relevant 3rd party ads. Your Personal Data is used by our advertising partners [see below] to serve the 3rd party ads. If you do not want to see 3rd party ads, you may, at any time, change to the paid version of the product, which does not serve 3rd party ads.
These advertisements are delivered to you by our advertising partners and we do not process your Personal Data in order to deliver interest-based advertising ourselves. The only information we get in this particular scenario is the minimum information necessary in order to manage our relationship with the advertising partners and through that, track our revenue and manage our finances. This information consists of a specific advertising partner (although the report does not list the specific ad that was clicked on).
Cookies, Analytics and Crash Reporting
Cookies
Our websites use cookies to acquire data that may be used to determine your physical location via your IP Address and automated geolocation techniques, or to acquire basic information about the computer, tablet, or mobile phone that you use to visit us. See description below. While using our websites, you will be asked to authorize the collection and use of data by cookies according to the terms of this Privacy Notice.
We use common information-gathering tools, such as cookies, pixel tags and Web beacons, to collect information about your general internet usage. When you visit our websites, a cookie file is stored on your browser or the hard drive of your device. Technologies such as: cookies, beacons, tags and scripts are used by us and our marketing partners, affiliates, or analytics or service providers (e.g. payment processor, etc.). These technologies are used in analyzing trends, administering the site, tracking your movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis. You authorize us and agree that we may place cookies or tracking technologies on your device.
Across all of our websites, we may use the following cookies or tracking technologies:
|
Cookie |
Purpose |
Party |
Cookie Provider |
|
Google API |
Functionality |
3 |
|
|
Analytics |
analytics & tracking |
1 |
us |
|
AdWords |
retargeting |
3 |
|
|
DCM |
retargeting |
3 |
|
|
Optimize |
analytics & tracking |
1 |
us |
|
Hotjar |
analytics & tracking |
1 |
us |
|
Optimizely |
analytics & tracking |
1 |
us |
|
Visual Website Optimizer |
analytics & tracking |
1 |
us |
|
|
retargeting |
3 |
|
|
|
retargeting |
3 |
|
|
My Target |
retargeting |
3 |
VKontakte |
|
Outbrain |
retargeting |
3 |
Outbrain |
|
A8Fly |
affiliate |
1 |
us |
|
AXM |
retargeting |
3 |
MediaMath |
|
Commision Junction |
affiliate |
1 |
us |
|
Bing |
retargeting |
3 |
Microsoft |
|
Captera |
retargeting |
3 |
Captera |
|
Criteo |
retargeting |
3 |
Criteo |
|
Ginga |
retargeting |
3 |
Signal |
|
Softonic |
retargeting |
3 |
Softonic International |
|
SalesForce |
retargeting |
3 |
salesforce.com |
|
Sklik |
retargeting |
3 |
Seznam |
|
Hubspot |
CMS |
1 |
us |
|
|
retargeting |
3 |
|
|
SoundCloud |
podcasts |
3 |
SoundCloud |
|
Iron Source |
retargeting |
3 |
Ironsource |
|
apex__avastLocale |
locale switcher |
1 |
us |
|
apex__avgLocale |
locale switcher |
1 |
us |
|
hidemyassComLocale |
locale switcher |
1 |
us |
|
apex__language |
locale switcher |
1 |
us |
|
avgLocale |
locale switcher |
1 |
us |
|
geoip |
locale switcher |
1 |
us |
|
sat_track |
analyticst & tracking |
1 |
us |
|
consentAccepted |
cookie consent accepted by user |
1 |
us |
|
couponfield |
coupon for cart |
1 |
us |
Please note that not all of our websites use all of these cookies.
We may partner with a third party either to display advertising on our site or to manage our advertising on this site and other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. By continuing to browse our websites, you are aware of the use of cookies, as described in this Privacy Policy. If you do not wish to allow the use of cookies, you can disable them through your browser settings. We do note, however, that not all browsers across all platforms may support this functionality. Furthermore, if you disable cookies, our websites may not function properly or at all or your access to our websites and their features may be affected or restricted.
Analytics and Crash Reporting
We use analytical tools, including third party analytical tools, which allow us to, among other things, identify potential performance or security issues with our products, improve their stability and function, understand how you use our products, and websites, so that we can optimize and improve your user experience, as well as evaluate and improve our campaigns. While we generally prefer using our own analytical tools, we sometimes need to partner with other parties, which have developed and provide us with their own tools and expertise. Below, we list these partners, their tools which we use, as well as additional information on where and how we use them.
|
Tool |
Product |
Tool Provider |
Privacy Policy |
|
Google Analytics |
Avast Omni (IoT) Desktop: Desktop AV - Avast and AVG both CCleaner Desktop CCleaner Cloud Avast Cleanup AVG TuneUp Mobile: Call Blocker (Avast Call Blocker) WifiFinder (Avast WifiFinder) Passwords (Avast Passwords) Smart Home Security (Avast Skyline/Scout/IOT) Battery Saver (Avast Battery Saver) Gallery Doctor (AVG Photo Cleaner) Gallery (Flayvr Media Gallery) Mobile Security (Avast Antivirus) AntiVirus Free (AVG Antivirus) AntiVirus Pro (AVG Antivirus) AntiVirus Tablet Free (AVG Antivirus) AntiVirus Tablet Pro (AVG Antivirus) AntiVirus Xperia (AVG Antivirus for Sony) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Sony) Cleanup (Avast Cleaner) CCleaner Android (Piriform CCleaner) Alarm Clock Xtreme Free (AVG Alarm Clock) Alarm Clock Xtreme Pro (AVG Alarm Clock) SecureLine (Avast VPN) AVG Secure VPN (AVG VPN) SecureMe (Avast VPN) HMA! VPN (Privax VPN) |
|
https://support.google.com/analytics/answer/6004245 https://policies.google.com/privacy https://support.google.com/analytics/answer/6366371?hl=en&ref_topic=2919631 |
|
Firebase Analytics |
Avast Omni (IoT) Mobile: Avast Mobile Security (Avast Antivirus) AntiVirus Free (AVG Antivirus) AntiVirus Pro (AVG Antivirus) AntiVirus Tablet Free (AVG Antivirus) AntiVirus Tablet Pro (AVG Antivirus) AntiVirus Xperia (AVG Antivirus for Sony) Cleanup (Avast Cleaner) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Sony) CCleaner Android (Piriform CCleaner) Alarm Clock Xtreme Free (AVG Alarm Clock) Alarm Clock Xtreme Pro (AVG Alarm Clock) Call Blocker (Avast Call Blocker) WifiFinder (Avast Wifi Finder) SecureLine (Avast VPN) AVG Secure VPN (AVG VPN) HMA! VPN (Privax VPN) |
|
|
|
Firebase Crash Reporting |
Avast Omni (IoT) Mobile: Avast Mobile Security (Avast Antivirus) AntiVirus Free (AVG Antivirus) AntiVirus Pro (AVG Antivirus) AntiVirus Tablet Free (AVG Antivirus) AntiVirus Tablet Pro (AVG Antivirus) AntiVirus Xperia (AVG Antivirus for Sony) Cleanup (Avast Cleaner) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Sony) CCleaner Android (Piriform CCleaner) Alarm Clock Xtreme Free (AVG Alarm Clock) Alarm Clock Xtreme Pro (AVG Alarm Clock) |
|
|
|
Fabric Crashlytics |
Avast Omni (IoT) Mobile: Avast Mobile Security (Avast Antivirus) AntiVirus Free (AVG Antivirus) AntiVirus Pro (AVG Antivirus) AntiVirus Tablet Free (AVG Antivirus) AntiVirus Tablet Pro (AVG Antivirus) AntiVirus Xperia (AVG Antivirus for Sony) Passwords (Avast Passwords for Android) Cleanup (Avast Cleaner) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Xperia) CCleaner Android (Piriform CCleaner) SecureLine (Avast VPN) AVG Secure VPN (AVG VPN) HMA! VPN (Privax VPN) Alarm Clock Xtreme Free (AVG Alarm Clock) Alarm Clock Xtreme Pro (AVG Alarm Clock) |
|
|
|
AppsFlyer |
Avast Omni (IoT) Desktop: HMA!VPN for desktop Mobile: SecureLine (Avast VPN) HMA! VPN (Privax VPN) AVG Secure VPN (AVG VPN) Avast Mobile Security (Avast Antivirus) AntiVirus Free (AVG Antivirus) AntiVirus Pro (AVG Antivirus) AntiVirus Tablet Free (AVG Antivirus) AntiVirus Tablet Pro (AVG Antivirus) AntiVirus Xperia (AVG Antivirus for Sony) Cleanup (Avast Cleaner) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Xperia) CCleaner Android (Piriform CCleaner) |
AppsFlyer |
|
|
Adjust |
Mobile: Avast Family Space Avast Companion |
Adjust |
|
|
Facebook Analytics |
Mobile: SecureLine (Avast VPN) HMA! VPN (Privax VPN) AVG Secure VPN (AVG VPN) Mobile Security (Avast Antivirus) (deprecated in newer versions) Cleanup (Avast Cleaner) Cleaner (AVG Cleaner) Cleaner Xperia (AVG Cleaner for Xperia) CCleaner Android (Piriform CCleaner) Gallery (Flavyr Media Gallery) Battery Saver (Avast Battery Saver) Alarm Clock Xtreme Free (AVG Alarm Clock) Alarm Clock Xtreme Pro (AVG Alarm Clock) |
|
|
|
HockeyApp |
Mac and iOS products Avast Mobile Security (Avast Antivirus) SecureLine (Avast VPN) HMA! VPN (Privax VPN) AVG Secure VPN (AVG VPN) SecureMe (Avast VPN) Passwords (Avast - Mac and iOS) |
Microsoft |
|
|
Mixpanel |
Desktop: Avast SecureBrowser |
Mixpanel Inc. |
|
|
Logentries |
Desktop: CCleaner Defraggler Recuva Speccy CCleaner Mac CCleaner Cloud |
Rapid 7 |
|
|
Loggly |
Avast Omni (IoT) Desktop: CCleaner Cloud |
SolarWinds (Loggly) |
|
|
Amplitude |
Avast Omni (IoT) Mobile: Avast Family Space Avast Companion |
Amplitude |
How We Disclose Your Personal Data
We only disclose your Personal Data as described below, within the Avast group, with our partners, with service providers that process data on our behalf and with public authorities, as required by applicable law. Processing is only undertaken for the purposes described in this Privacy Notice and the relevant product and service sections. If we disclose your Personal Data, we require its recipients to comply with adequate privacy and confidentiality requirements, and security standards.
Distributors, Resellers
We may provide your Personal Data to our partners for the purpose of distribution, sale or management of our products. Our partners may use your Personal Data to communicate with you and others about Avast products or services. In addition, you purchase our products directly from our distributor, a reseller, or an app store. Because your relationship in these cases is with that distributor, reseller or an app store, such third party will also process your Personal Data.
Service Providers
We may use contractors and service providers to process your Personal Data for the purposes described in this Privacy Notice and the relevant product and service sections accessible below. We contractually require service providers to keep data secure and confidential.
Such service providers may include in particular contact centers, professional consultants (including to defend or exercise our rights), and marketing/survey/analytics/software suppliers.
Sometimes these service providers, for example, our distributors, resellers, and app store partners, will be independent controllers of your data and their terms and conditions, license agreements (EULA) and privacy statements will apply to such relationships.
Trend Analytics
Avast has partnered with its subsidiary, Jumpshot Inc., to use information about where our products and services are used, including approximate location, zip code, area code, time zone, together with the URL and information related to the URL of sites you visit online. We collectively call this information “Clickstream Data”.
Jumpshot uses this Clickstream Data to build products and services that provide trend analytics for companies. All direct identifiers are removed from Clickstream Data and, as a result, all that Jumpshot gets is an aggregated, de-identified data set of online trends.
Public Authorities
In certain instances, it may be necessary for Avast to disclose your Personal Data to public authorities or as otherwise required by applicable law. No Personal Data will be disclosed to any public authority except in response to:
Mergers, Acquisitions and Corporate Restructurings
Like any other company, Avast too goes through its own cycle of growth, expansion, streamlining and optimization. Its business decisions and market developments therefore affect its structure. As a result of such transactions, and for maintaining a continued relationship with you, we may transfer your Personal Data to a related affiliate.
If we are involved in a reorganization, merger, acquisition or sale of our assets, your Personal Data may be transferred as part of that transaction. We will notify you of any such deal and outline your choices in that event, when applicable.
Cross-Border Transfers of Personal Data among Avast Entities and to Third-Party Vendors
We are a global business that provides its products and services all around the world. In order to reach all of our users and provide all of them with our software, we operate on an infrastructure that spans the globe. The servers that are part of this infrastructure may therefore be located in a country different than the one where you live. In some instances, these may be countries outside of the European Economic Area (“EEA”). Regardless, we provide the same GDPR-level of protection to all Personal Data it processes.
At the same time, when we transfer Personal Data outside of the EEA, we always make sure to put in place appropriate and suitable safeguards, such as standardized contracts approved by the European Commission or specialized regimes such as Privacy shield, which legally bind the receiving party to adhere to a high level of protection, and to ensure that your data remains safe and secure at all times and that your rights are protected.
Situations where we transfer Personal Data outside of the EEA include provision of our products and services, processing of transactions and your payment details, and the provision of support services. Further, an outside-EEA transfer may also occur in case of a merger, acquisition or a restructuring, where the acquirer is located outside of the EEA see the Mergers, Acquisitions and Restructurings section below.
How We Protect Your Personal Data
Safeguards for protection of personal information
We maintain administrative, technical, and physical safeguards for the protection of your Personal Data.
Administrative safeguards
Access to the Personal Data of our users is limited to authorized personnel who have a legitimate need to know based on their job descriptions, for example, employees who provide technical support to end users, or who service user accounts. In the case of third-party contractors who process personal information on our behalf, similar requirements are imposed. These third parties are contractually bound by confidentiality clauses, even when they leave. Where an individual employee no longer requires access, that individual's credentials are revoked.
Technical safeguards
We store your personal information in our database using the protections described above. In addition, we utilize up-to-date firewall protection for an additional layer of security. We use high-quality antivirus and anti-malware software, and regularly update our virus definitions. Third parties who we hire to provide services and who have access to our users' data are required to implement privacy and security practices that we deem adequate.
Physical safeguards
Access to user information in our database by Internet requires using an encrypted virtual private network (VPN), except for email which requires user authentication. Otherwise, access is limited to our physical premises. Physical removal of Personal Data from our location is forbidden. Third-party contractors who process Personal Data on our behalf agree to provide reasonable physical safeguards.
Proportionality
We strive to collect no more Personal Data from you than is required by the purpose for which we collect it. This, in turn, helps reduce the total risk of harm should data loss or a breach in security occur: the less data we collect, the smaller the overall risk.
Storage of Your Personal Data
The data we collect from you may be stored, with risk-appropriate technical and organizational security measures applied to it, on in-house as well as third-party servers in the Czech Republic, in the United States, as well as anywhere Avast or our trusted service providers and partners operate. The current lists of our establishments worldwide and of our service providers who process relevant Personal Data on our behalf are available upon request.
Children’s Privacy
Our websites, products and services are not intended to be used by nor are they directed to children under 13 years of age, and we do not knowingly collect their information. Exceptions do apply where we provide you with products and services designed specifically to assist you as a parent by providing child online protection features. In such cases, we will only collect and process Personal Data related to any child under 13 years of age which you choose to disclose to us or otherwise instruct us to collect and process. Details about this processing is included in the privacy notices of these specific products. Please refer to the specific applicable notices for this important additional information.
How long we retain or store your Personal Data
We will hold your Personal Data on our systems for the longest of the following periods: 1. For Billing Data, for as long as we have a legal obligation or for our legitimate interests in establishing legal rights; and for other data, only as long as necessary for its purpose.
For the sake of clarity where Avast is a data controller processing your Personal Data for our own purposes, your Personal Data will be deleted or anonymized when it is no longer needed for its originally stated processing purposes, or any additional compatible purpose for which Avast may lawfully further process such data.
Moreover, where Avast is a data processor processing your Personal Data for the purposes and on the instructions of another data controller or data processor, we will comply with the time limits agreed with that other Controller or Processor unless we are compelled by applicable laws and regulations to delete such data sooner, or to retain it further.
The Existence of Automated Decision-Making, Including Profiling
Avast does not take any decisions involving the use of algorithms or profiling that significantly affects you.
Your Privacy Rights
You have following rights regarding the processing of your Personal Data:
|
Right to information |
Right to receive information about the processing of your PersonalData, prior to processing as well as during the processing, upon request. |
|
Right of access |
Aside from the information about the processing of yourPersonal Data, you have right to receive a copy of your Personal Data undergoing processing. |
|
Right to rectification |
Avast should process accurate Personal Data; if you discover inaccuracy, you have the right to seek rectification of inaccurate Personal Data. |
|
Right to erasure (‘right to be forgotten’) |
You have the right to erasure of your Personal Data, but only in specific cases stipulated by law, e.g., if there is no legally recognized title on the part of Avast for further processing of your Personal Data (incl. protection of Avast’s legitimate interests and rights). |
|
Right to data portability |
The right to receive Personal Data which you have provided and is being processed on the basis of consent or where it is necessary for the purpose of conclusion and performance of a contract, in machine-readable format. This right applies exclusively to Personal Data which processing is carried out by automated means. |
|
Right to object |
Applies to cases of processing carried out in public interest by Avast or its own legitimate interest, including direct marketing purposes. You have the right to object to such processing, on grounds relating to your particular situation, and Avast is required to assess the processing in order to ensure compliance with all legally binding rules and applicable regulations. In case of direct marketing, Avast shall cease processing Personal Data for such purposes after the objection. |
|
Right to withdraw his or her consent |
In the case of processing based on your consent, you can withdraw your consent at any time, by using the same method (if technically possible) you used to provide it to us (the exact method will be described in more detail with each consent when you provide it). The withdrawal of consent shall not affect the lawfulness of processing based on your consent before its withdrawal. |
|
Right to restriction of processing |
You have the right to restriction of processing of your Personal Data if: -you are contesting the accuracy of your Personal Data, for a period enabling Avast to verify the accuracy of your Personal Data - the processing is unlawful and you oppose the erasure of the Personal Data and requests the restriction of its use instead; - Avast no longer needs the Personal Data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims; or - You have objected to processing of your Personal Data, and there is a pending verification whether the legitimate grounds of Avast override your interests. |
|
Right to contact supervisory authority, court |
You may contact and lodge a complaint with the supervisory authority – The Office for Personal Data Protection (Czech: Úřad na ochranu osobních údajů – www.uoou.cz) or a relevant court. |
In order to make it easier for you to reach out to us and obtain the necessary information and action changes, corrections or deletions of your Personal Data, we have decided to provide you with a privacy preference portal.
We will action your request within one month of receiving a request from you concerning any one of your rights as a data subject. Should we be inundated with requests or particularly complicated requests, the time limit may be extended to a maximum of another two months. If we fail to meet these deadlines, we would, of course, prefer that you contact us to resolve the situation informally.
Residents of the Russian Federation
We collect and process Personal Data on the territory of the Russian Federation in strict compliance with the applicable laws of the Russian Federation.
We collect and process Personal Data (including sharing it with third parties) only upon the consent of the respective individuals, unless otherwise is provided for by the laws of the Russian Federation. You will be asked to grant your consent by ticking the respective box / or clicking “I accept” button or through similar mechanism prior to having access to the site, and/or when submitting or sharing the Personal Data we may request. We collect and use your Personal Data only in the context of the purposes indicated in the consent to processing of Personal Data.
We (directly or through third party contractors specifically authorized by us) collect, record, systematize, accumulate, store, actualize (update and amend), extract Personal Data of the Russian Federation citizens with the use of databases located on the territory of the Russian Federation, except as otherwise permitted by Russian data protection legislation. We may process Personal Data of Russian citizens using databases located outside of the Russian Federation subject to compliance with Russian data protection legislation.
We undertake all the actions necessary to ensure security of your Personal Data.
You are legally entitled to receive information related to processing your Personal Data. To exercise this right, you have to submit a request by e-mail at: customerservice@avast.com with the headline “PRIVACY REQUEST” in the message line.
You have the right to revoke the consent at any time by sending us an e-mail at: customerservice@avast.com with the headline “PRIVACY REQUEST” in the message line. Once we receive the revocation notice from you we will stop processing and destroy your Personal Data, except as necessary to provision the contract or service to you. However, please note once you have revoked your consent, we may not be able to provide to you the products and services you request, and may not be able to ensure proper work of our products.
We do not transfer your Personal Data to the countries that under Russian law are not deemed to provide adequate protection to the individuals’ rights in the area of data privacy.
We do not offer, sell or otherwise make available our products or services that have access to, collect and process (or allow us to do the same) Personal Data of third parties in the Russian Federation without the consent of such third parties.
If any provisions of this Policy contradict the provisions of this section, the provisions of this section shall prevail.
Your California Privacy Rights
Under California Civil Code § 1798.83, we are required to disclose to consumers the following information upon written request: (1) the categories of personal information that we have disclosed to third parties within the prior year, if that information was subsequently used for marketing purposes; and (2) the names and addresses of all such third parties to whom such the personal information was disclosed. We hereby disclose that we have not disclosed any such personal information regarding any California resident during the one-year period prior to the effective date of this Privacy Policy. California residents seeking additional information on this requirement or our privacy practices in general may write to us at customerservice@avast.com with the headline “PRIVACY REQUEST” in the message line. They may also send paper mail to Avast Software s.r.o., Pikrtova 1737/1a, 140 00, Prague 4, Czech Republic. Please write "Attention: PRIVACY" in the address.
If you are a California resident under the age of 18, you may be permitted to request the removal of certain content that you have posted on our websites. To make such a request, please contact us at dpo@avast.com
Contact Us
To exercise any of your rights, or if you have any other questions or complaints about our use of your Personal Data and its privacy, write our Privacy Team through the most convenient channel below:
We are registered as Avast Software s.r.o. and our registered address is Pikrtova 1737/1a, 140 00 Prague 4, Nusle, Postal Code 140 00, Czech Republic. You can always reach us by email at https://support.avast.com/en-usm. Please type “PRIVACY REQUEST” in the message line of your email so we can have the appropriate member of the Avast team respond.
If you prefer, you can send paper mail to AVAST Software s.r.o., Pikrtova 1737/1a, 140 00 Prague 4, Czech Republic. Be sure to write "Attention: PRIVACY" in the address so we know where to direct your correspondence.
Data Protection Officer
As required under the GDPR, we have a data protection officer (DPO) to monitor our compliance with the GDPR, provide advice where requested and cooperate with supervisory authorities. You can contact our data protection officer viadpo@avast.com.
Changes to this Statement
We reserve the right to revise or modify this Statement. In addition, we may update this Privacy Notice to reflect changes to our data practices. If we make any material changes we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.
Specific products for your PC collecting your Service Data
Avast and AVG AntiVirus & Internet security products & services
Our AntiVirus and Internet security products require the collection of personal data to be fully functional. Some of the personal data we collect include:
Avast CommunityIQ is a threat monitoring service. Information about a threat detected in your device is sent to our server, so we can observe how the threat spreads and block it. This is vital for the functioning of our service and our ability to keep your device secure.
When you download our products and services, you will automatically be opted into our CommunityIQ, and your device is able to provide security-related information when needed. You may choose to opt out via product settings. By remaining in our CommunityIQ, you actively help yourself and others in the Avast community to experience a higher standard of security.
Our security experts process the personal data acquired by our CommunityIQ to update our databases of viruses and infected websites, and for historical and statistical purposes to understand where the threat is coming from, the levels of threat per country, how many persons visited the malicious website and the number of people we protected. We process this data for the purposes of antivirus functionality and to protect your device.
The data is collected from your entire submission process online. For both desktop and mobile users, this includes URLs of visited websites, IP Addresses, which we will delete and replace with city / country within 30 days or earlier, approximate geolocation of user or Internet Service Provider (ISP), device IDs together with the information on the nature of the detected threat. We collect this information to ascertain the source of the infection.
Geolocation gives the approximate location, for example, the latitude and longitude of the IP Address. However, if you access a malicious website while using Wi-Fi, then your IP Address can be location data. Depending on your ISP, your IP Address may indicate an exact location or the location of the ISP office or your location at a country level.
We may provide a method for manual submission of suspected malware, or a way to add more information about the source of an infection. Files and information submitted through this process will be retained as long as is necessary for security research and providing you protection.
Avast File Reputation Service
FileRep is a database of executable files sourced from users who participate in the service. The files (or their hashes, that is, de-identified versions of the files) are stored and evaluated for the purpose of determining which are infectious and updating virus databases.
Your participation is voluntary, and the personal data is stored in a way that limits its potential to be associated with individual users, for example, by hashing so the data is de-identified. This means it can be personally identifiable data if reversed by a “key”. However, the risks are lowered. In participating, you actively help yourself and others to experience a higher standard of security.
If you do not want to participate, you can opt-out by unticking the box ‘Enable reputation services’ in the general settings menu.
CyberCapture
CyberCapture is a feature in our AntiVirus that detects and analyses rare, suspicious files. If you attempt to run such a file, CyberCapture locks the file from your PC and sends it to the Threat Lab where it is analyzed in a safe, virtual environment. You are notified when the analysis is complete.
Currently, CyberCapture triggers when you run or download suspicious files from the Internet that CyberCapture has not previously encountered. We plan to expand this condition in the future to cover more sources.
CyberCapture is able to handle large files, but it may take longer to deliver such files to the Threat Lab. All files are uploaded over an encrypted connection, which means your data is inaccessible to hackers.
When CyberCapture is enabled, we collect information about you, your device IDs, and your operating system, for example, whether you are using Windows 10 or XP, and we know your approximate location, usually at the country level.
CyberCapture is enabled by default in the latest version of our AntiVirus. We strongly recommend that you keep CyberCapture enabled. If you would like to disable CyberCapture, open the product user interface and go to Settings.
Avast CleanUp
CleanUp is offered as a Windows program. It removes unneeded files, registry entries, broken shortcuts and other similar items. It also provides system tuning features like program deactivator. For it to function, we process and store the following:
We use this data for operational purposes, and to provide you with a fully functional service.
Avast Secure Browser
In the default setting, our Secure Browser will process:
We use the personal data we collect to provide the Browser’s functionality, to monitor performance and to improve our services. You can access and manage key privacy features from the Secure Browser’s settings:
Browser Security & Privacy Center
The built in Security & Privacy Center is a curated collection of some key security and privacy features, tools and settings, organized into one management console making it easier for you to control and manage your online privacy and security.
Anti-Phishing
This blocks malicious websites and downloads to help prevent your personal computer (PC) from becoming infected with viruses, spyware, and ransomware.
Privacy Cleaner
This cleans your browser history, cached images, cookies including both first-party and third-party cookies, and other junk with just one click, to keep your activity private and free up disk space.
Stealth Mode
This prevents your browsing history from being stored and removes any tracking
cookies (both first-party cookies and third-party cookies) or web cache you pick up during that browsing session.
Avast Secure Browser will also process the following data locally on your PC:
You can manage the data stored locally on your machine in the Browser settings. Data stored locally on your machine is not collected by our servers.
You can manage this information in several ways:
Avast Passwords
Avast Passwords is a feature that stores user passwords and notes under a single master password or fingerprint and permits the user to log on to multiple sites using a unitary sign-on credential.
On Windows, our Passwords can be activated by the user by either performing a smart scan or by opening the feature in the product menu. On other platforms (Android, iOS and Mac) Passwords is a standalone program.
When activated, Passwords will check whether you have stored any passwords via your browser and will suggest you move these passwords to Passwords, so they can be stored securely.
When you choose to do so, Passwords will upload these passwords and remove them from your browser. Please note that the browser check happens locally on your device and none of your passwords are sent to our servers.
Your passwords and other personal data are stored locally on your devices and encrypted by the Passwords app.
However, when you choose to activate the optional feature "Synchronisation & Backup" to synchronise and backup your passwords across all your devices, you are required to create an account. Your personal data, that is, your passwords and notes, which may include credit card details, will be backed up on our remote server in a securely encrypted form, readable only via a “master key” on your device. Thus, it cannot be decrypted by us.
The data collected by our Passwords is necessary to provide the product functionality.
Identity Guard/Passwords/HackCheck
This functionality works in a number of ways. It allows you to check whether the passwords to your online accounts have been compromised. We are able to do this by searching through the database of leaks which we know about. You can do this through a number of our products which have this functionality.
Antispam
Antispam is a product functionality that is designed to protect you against unwanted emails (spam). The software may collect information contained in emails reported by you as spam or identified as spam by a third-party tool (Mailshell). When you report an email as spam, the email is sent to the third party. Your consent is required for each of these submissions if you use the default setting.
We do not collect, use or store your email. We do not share your software or device ID or any of our generated IDs with the third party. In general, Mailshell does not have information about individual users or devices and is not able to connect any information to you. If you wish to know in detail what data Mailshell collects from you, please go to their website.
Avast SafePrice
When you use SafePrice, information related to certain shops or products, URLs, the installation GUID, a timestamp of the offer, purchase, product name and number, merchant’s name, product links, prices and the categories of your purchased items, location at country level will be collected or transferred to us.
This information is used to retrieve available offers, for example, coupons or cheaper prices from third parties partnering with us. We request offers anonymously from those third parties and will not transfer or disclose your identified data to them.
At this stage, you do not communicate with the third party, only with us, and we do not forward any information to the third party except your country level geolocation and language. We do not give them your personal identifiers, so no emails and no names.
The third parties may use cookies in relation to the services they provide on or via SafePrice. For example, when you click on an offer presented within the product, a cookie may be placed on your computer. Third party/third party's partner/service provider sites, offers and/or cookies are not controlled by us and are not subject to this privacy policy.
In the end, you buy directly from the seller. We do not have access to your credit card details as you deal directly with the third-party companies.
Avast BackUp
The Avast BackUp service is provided by a third party under contract with us, and the privacy policy, terms of service, and EULA of the third party apply to any information that users provide in connection with the Avast BackUp service.
Avast BackUp provides backup and storage capabilities for personal data that otherwise would reside only on your computer's hard drive. For the BackUp to work, data on your hard drive must be transferred to a centrally hosted site so that it can be "backed up."
If your hard drive contains personal information, that information will be transferred to the host site for storage and subsequent retrieval. Techniques used to protect this information during storage and transmission are described below.
Avast Omni
Avast Omni is a connected device and suite of products aimed at providing you comprehensive security in your home and for your entire family. It has the following features:
(i) Home Network Security - this is the feature aimed at protecting your whole home network as well as your individual devices from threats such as various types of malware, DDoS attacks or smart home hacking. Upon activation, OMNI will become a hub of your device network next to your router, through which all traffic from your connected devices will be redirected. In order for it to work, it needs to process Device Data and Service Data about the network and devices connected to it and data concerning traffic, including but not limited to: information concerning your devices (such as device ID, OS and its version, model and manufacturer), the network and connections made (are you connected to WiFi or broadband, connection speed, etc.), URLs of the websites you visit, as well as certain metadata concerning the files you download or some fragments of the underlying network traffic (although we will, under no circumstances, access the contents or decrypt it); and
(ii) Parental Controls, which is a feature that functions in the same way as our standalone “Family Space” product.
We process this data in order to provide you with the Omni’s functionality, in particular, to detect threats to your network and devices. We further use this data in order to understand how users use and interact with our product through analytics conducted either by us or by our analytical tool providers.
In order to use Omni, it is necessary that you create and manage your Omni through an Avast Account. All of the above device data and service data will then be linked to your Avast Account.
Service Data specific to CCleaner Desktop Apps and Other Products
All Piriform desktop apps receive usage data via log files. We collect usage data such as your device ID, your browser type and version, your operating system, your IP Address and information on software you have installed as necessary for the functioning of your Piriform desktop apps and to check if you qualify for any installer or in-app promotions we may market. The collecting and processing of your usage data is automatic once you install the app.
Desktop apps
CCleaner Mac
CCleaner for Apple Mac cleans and de-clutters your hard drive, makes your operating system run faster and helps make your browsing on the internet more private and secure.
Recuva
Recuva is a windows app that allows you to search your hard drives and USB drives and recover any deleted files (if deleted with standard windows deletion).
Speccy
Speccy is a windows tool that allows you to receive an audit of your computer hardware and software. You may publish this information to an online page if you wish to share. The audit does not include IP Addresses (http://speccy.piriform.com/results/HSP0RYoxXz3SniCDtOLxcJN).
Defraggler
Defraggler allows you to optimize your older hard drives so they run faster.
Software as a Service (SaaS) Product
SaaS products allow you to connect to and use cloud-based apps via the Internet.
CCleaner Cloud
CCleaner Cloud is offered as both a free and paid version. The platform allows users and businesses to remotely manage their computers centrally from the platform.
For free users, we collect personal data including your name, email address, IP Address and computer events, for example when you install software. This data is necessary to provide and improve our services by connecting this data with the usage logs. For Professional and Business users, we collect the same personal data as for the free user and additionally, we may collect your company name, billing information and mobile number. The data is necessary to complete the contract when you subscribe to our services.
Business-only Product
CCleaner Network
CCleaner Network is a business-only product that is installed locally on your server and allows you to manage and clean your company’s computers. We do not receive any data as this is a local-only closed network product.
Service Data Specific to Your Mobile
Avast and AVG Products & Services
In the sections below, we look at what data is collected when you use AMS, AVG AntiVirus and AVG Protection for Xperia, in addition to variations of these apps developed specifically for tablets or alternative app stores.
When you first run these apps following installation, you have the option to subscribe to use the paid version. If you stay on the free version, we will serve third party ads; if you do not want to view third party ads, you may choose the paid version. Whatever your choice, your Service Data is not connected to your Billing Data, because there is no Billing Data for free users and for paid customers, as described above, your Billing Data is collected only by the app store where you purchased the product.
If you use the free version of our apps, the services are supported by third party ads. Choosing to install the free version means data such as your IP Address will be provided to the third party ad server.
In some instances, Avast Mobile Security (AMS) or AVG AntiVirus may come preinstalled on your mobile device upon purchasing it from the store and you can deactivate them within the product Settings – Personal Privacy.
Generally, we do not serve third party ads in its products for the personal computer. We may serve third party ads in our products for mobile devices.
To be able to offer you our services for free, we show third party ads within your mobile apps through popular ad networks, which are listed below. We display an AdChoices logo on top of every ad. You can tap the icon to learn more about the ad network.
To enable the ad, we embed a third-party software development kit (SDK) for these ads. The SDK code is provided by third party ad agencies or networks.
Data of our mobile users remain anonymous to us and to the third party ad agencies. However, the ad agencies’ SDK code will collect data to tailor ads to you, such as the third-party apps you installed on your device, your Android advertising identifier, your IP Address, your device's operating system details and MAC address, and other statistical and technical information. You can find more information in each network’s privacy policy, the link to which we are also including in the overview below.
|
Ad Network |
Provider |
Product |
Link to Privacy Policy, Additional Information |
|
AdMob |
|
● Avast Mobile Security ● AVG AntiVirus ● AVG Protection for Xperia ● VPN SecureLine Proxy by Avast ● Avast Wi-Fi Finder ● Avast Cleanup ● VPN Proxy by Avast SecureLine ● Avast Battery Saver ● CCleaner ● Alarm Clock Xtreme ● AVG Cleaner ● Gallery ● AVG Cleaner for Xperia™ |
https://policies.google.com/privacy?hl=en https://support.google.com/admob/answer/9012903?hl=en-GB https://support.google.com/admob/answer/2753860#Interest_based |
|
Amazon |
Amazon |
● Avast Mobile Security ● AVG AntiVirus ● AVG Protection for Xperia ● Avast Cleanup ● CCleaner ● Alarm Clock Xtreme ● AVG Cleaner ● AVG Cleaner for Xperia™ |
https://www.amazon.co.uk/gp/help/customer/display.html?nodeId=502584 |
|
AppLovin |
AppLovin |
● AVG Cleaner ● CCleaner ● Avast Cleanup ● AVG Cleaner for Xperia™ |
|
|
Facebook Audience Network |
|
● Avast Mobile Security ● AVG AntiVirus ● AVG Protection for Xperia ● VPN SecureLine Proxy by Avast ● Gallery ● Avast Cleanup ● VPN Proxy by Avast SecureLine ● Avast Battery Saver ● CCleaner ● Alarm Clock Xtreme ● AVG Cleaner ● AVG Cleaner for Xperia™ |
https://www.facebook.com/privacy/explanation https://developers.facebook.com/docs/audience-network/policy/ |
|
InMobi |
InMobi |
● Avast Mobile Security ● AVG AntiVirus ● Avast Cleanup ● CCleaner ● Alarm Clock Xtreme ● AVG Cleaner |
|
|
Ironsource |
IronSource |
● AVG Cleaner ● CCleaner ● VPN SecureLine Proxy by Avast ● Avast Cleanup ● AVG Sony Cleaner |
https://developers.ironsrc.com/ironsource-mobile/air/ironsource-mobile-privacy-policy/ |
|
Mopub |
|
● Mobile Security & Antivirus ● Alarm Clock Xtreme Free ● AVG AntiVirus ● Gallery ● Avast Cleanup & Boost ● AVG Cleaner ● Avast Battery Saver ● AVG Cleaner for Xperia™ ● CCleaner |
|
|
Unity |
Unity Technologies |
● AVG Cleaner ● CCleaner ● Avast Cleanup ● AVG Cleaner for Xperia™ |
|
|
Taboola |
Taboola |
● Alarm clock |
If you do not want to view third party ads, you may uninstall the free mobile product and/or choose an available paid version of mobile products, which does not serve third party ads.
Web Shields
Web Shield Lite is on by default and is only effective on some browsers and Android operating system versions. When enabled in a supported configuration, the app reads URLs from the browser in realtime and sends them to our server via the URL information service. We check the URL against our database of known threats and then display an alert if the URL is a known threat.
Web Shield with Accessibility is off by default. You need to grant Accessibility permission to activate this feature. While it is the same service as Web Shield Lite, it is capable of checking URLs in more browsers and operating systems. The list of supported browsers and operating systems sometimes changes due to the development of or changes to third party services.
We may use de-identified browsing data and Clickstream Data for third party trend analytics. All users may turn off data sharing in product Settings – Personal Privacy.
Avast AntiTheft for Android
AntiTheft is a function within AMS. It is off by default. When you choose to turn it on, you can request location on demand from my.avast.com or through SMS commands from another phone. AntiTheft is designed to protect data residing on your mobile phone in the event of theft.
For AntiTheft to function, we must collect and store information about your phone and its approved users. The types of data we collect include the following:
We use this personal data to locate and identify your lost device, and to help you report the lost device to police and cell phone carriers. If the phone was stolen, it may block the thief from using the device. The collected data is used to provide you the functionality.
Last Known Location is a feature within AntiTheft, also off by default. When you activate the feature, we send more frequent location updates to the server to help you track your device's last known location.
Avast Call Blocker
The Call Blocker feature is only available on Android versions below 9.0. This paragraph does not apply to Android 9.0 and above. Call Blocker is a feature of AMS which allows you to block unwanted callers. It is off by default. When on, we build a database of SPAM callers by analyzing patterns of high volume callers across our user base.
When you (an AMS user) call a third party, or a third party calls you, we will have the following record in our database: the third-party phone number, the time of the call, and an anonymous key code number assigned to this particular record. This allows us to count the number of calls made to a specific recipient in order to evaluate whether the call is a spam or not. Your GUID is disconnected from this data.
We do not collect the phone numbers of our users. Therefore, the data we collect from you is de-identified and we are not able or intending to trace the call record to you.
However, we are able to see the phone numbers of third parties who called our AMS users in general or which phone numbers were called by our AMS users.
The purpose of this data collection is to identify high volume callers; therefore, we look at aggregations, not at individuals. You may shut off this feature in your discretion via the product Settings.
Avast Wi-Fi Finder
Avast Wi-Fi Finder for Android provides information about free hotspots. It is based on crowdsourced data, meaning that every user has to willingly contribute to the database.
We use the data collected for sharing with other Wi-Fi Finder users. You may turn off data collection by not using the WIFI sharing feature. We collect this personal data:
In some Android versions, we need your location permission to scan Wi-Fi networks for security threats. Any time we’re given the location permission, we may use it to refine our databases of Wi-Fi networks, including the locations of Wi-Fi hotspots and dangerous networks.
Avast Battery Saver
The Battery Saver is an app that helps you monitor what apps are running in the background, speed up your mobile device, and save the battery. We collect AppInfo for the purpose of delivering this feature.
Battery Saver has a functionality, Smart Profile that can switch your device setting automatically to preserve the battery upon an event you set up, for example, when you come home. In doing this, you have to reveal your location Wi-Fi or give us permission to use your Android mobile operating system’s location so that the event can be triggered. This data is stored locally on your device and is not transmitted to us.
We track the usage of this feature via Google Analytics, so we would know the demographic and geographic statistics of our users who have enabled Smart Profile. We do not have information on the individual user. As Google is a third party, the third-party privacy policy applies.
Smart Profile is enabled by default, but you may disable this via product settings.
AppInfo
AppInfo is an Avast library used in our product features such as App Insights, for the purposes of displaying how much time is spent on the device, broken down by app, by total data, and by day; enhancing our cloud based threat detection; improving other Avast products; for Avast marketing; for third party ads; and for analytics. To this end, it analyzes device information such as: language; make and model; operating system version; telecom provider; and city and country. Additionally, we observe the list of currently installed apps; the time when an app is installed or removed; the source of an installed app; Wi-Fi and carrier data consumption per app; time that an app is in the foreground; battery and CPU consumption per app; and which permissions are granted to each app. The specific scope of information collected is dependent on permissions granted to the app. We may share statistical data that has been anonymized and aggregated geographically and so, cannot be used to identify individuals, with third parties for trend analytics. You can always turn off the specific features which use data from the AppInfo library in your settings, or change your preferences for the processing of this data in the privacy settings.
Avast ApkRep
We use the ApkRep to build a database of Android apps sourced by users of AMS. We collect and store hashes of app files together with the installation GUID, as well as metadata about the apps (e.g. application package name, application signing certificate information, source market identifier and file size). We process this on the legal basis of our legitimate interests in analyzing your data to find infectious apps and to update our virus databases, which is necessary to continuously improve AMS to keep you secure.
Avast Android CleanUp, AVG Cleaner, AVG Cleaner for Xperia, and CCleaner for Android (Piriform)
Avast Android CleanUp, AVG Cleaner, AVG Cleaner for Xperia, and CCleaner for Android (Piriform) access your device storage to delete data that is not in use. You will be asked to allow your Android operating system to access your device storage. The feature sees what’s in your device, for example the apps and files you have downloaded, ranging from your music playlist to photos. However, everything takes place locally on your device and nothing is transmitted to our servers.
We also offer you a Cloud service connection for you to back up your files so nothing important gets deleted. You may sign-in to Google Drive, Dropbox or Microsoft OneDrive directly from CleanUp. This feature is optional. If you use this feature, you will be storing your files with a third party and thus this is subject to the third party’s terms of service and privacy policy.
Avast Family Space
Avast Family Space (for parents) and Avast Companion (for children) are mobile applications available for Android and iOS. Family Space provides the following functionality:
(i) location monitoring - this feature monitors the location of connected devices using their GPS location. The administrator (parent) can create and save locations such as “home”, “school”, “gym”, “friend’s house”, etc., and receive alerts when the connected device (child’s device) arrives or departs a saved location. This feature also allows the parent to see the child's location on demand, receive scheduled updates about their current location, and see their location history. The connected device also has the option to share its location with the administrator’s device and with other connected devices. The connected device may also request the information of other users in the family. The parent may set permissions in the connected device, which will enable or disable the sharing of information from the child’s device. This particular feature and its functionality may, however, be affected by the scope of permissions granted by the specific user. For example, if the parent does not grant the permission to access their location, the ability to share this information would be limited.
(ii) content filters - this feature blocks the connected device from accessing blocked content (apps and websites). This setting is set by the parent (administrator) through the application in their device. Filter defaults are suggested based on the age range of the users of the connected device, which can be selected and further modified by the administrator.
(iii) insights - this feature allows the administrator to monitor the connected device’s access of named apps or devices. The feature also provides activity summaries from the connected device and location history. Additionally, administrators can set pause on internet access and set time limits on the connected device.
Avast processes only the data necessary to provide this functionality. This data is processed in Avast’s cloud service environment. This processing includes the following categories of data for both the administrator’s device and the connected device: (i) Account Data of the parent (administrator), (ii) Information about the users of the connected device which the administrator chooses to input into the application, such as names, age range or photos, (iii) location data of the devices; (iv) information concerning app usage history and content engagement, including names of apps, names or categories of blocked content and time limits; (v) device and network information.
Avast Mobile Campaign and News Feed
From time to time, we will run mobile campaigns. The goal of our campaigns is to show messages to you to promote various features of our apps and offer discounts on paid features. We use three kinds of messaging formats:
Here are some examples of general events which we use to trigger messaging:
Each app can also define its own events, for example:
Apart from campaigns, when you use our apps on your Android, you will receive news feed from us, for example, once you complete a virus scan or CleanUp process, you are directed to a result screen that offers a Facebook-news-feed-like experience.
Each feed has multiple cards. You can scroll the feed vertically. Each card has its own function. We may offer information or tips, promote our apps or guide you to a screen, application, Google Play or web page when you tap on the card. We also display third party advertisement cards to free users.
We use our servers to download relevant content for you, so we will transmit some of your data in the request, for example, your hardware ID, the install GUID, and device information like language, vendor, model, and android version. Your data is used to deliver content, which is relevant to you.
AVG Alarm Clock, Open Weather and Taboola
AVG Alarm Clock
When you install Alarm Clock, which is an app that you can set to wake you up, you will also receive by default, weather (via Open Weather), news (via Taboola), and third party ads via regular ad SDKs. You may opt out of receiving news and weather reports via Settings – My Day Dashboard.
Through Alarm Clock, we collect and process de-identified statistical data in our own analytics system and we share pseudonymized or de-identified data with third-party analytics and crash reporting. We collect only the personal data necessary for us to enable our third-party providers to send you relevant information. You may opt out of third party analytics through Settings – Personal Privacy.
Open Weather
You receive weather information from Open Weather, our third-party service provider. This service is on by default and we share your approximate location data, so you will receive relevant weather forecasts, for example, East Coast, USA. However, if you wish to have the weather forecast for a specific location, for example, Brooklyn, New York, you have to turn on this setting. Apart from Alarm Clock, you can receive Open Weather on your charge screen when you install AntiVirus, Cleaner and Battery Saver.
Taboola
Alarm Clock will also show you news articles from Taboola, our third-party news aggregator. We share some of your data with Taboola, such as your IP Address, your device, browser and operating system, your hardware ID, news websites you visited and your preferred language, for you to receive locale specific news.
AVG Gallery, Gallery Doctor and Photo Cleaner for iOS
AVG Gallery
Gallery is a smart app that you can install in your Android to help you organize your photos and videos into significant moments. Through Gallery, we collect analytics data in our internal analytics system, and through third party analytics like Google Analytics and third party crash reporting (Crashlytics).
AVG Gallery Doctor
Gallery Doctor is a free app that helps you free up storage space in your mobile by identifying bad & similar photos in your Android gallery. It does not collect any personal data.
Accounts
There are a variety of accounts you can create with us.
Account data is the data you give when you open an account or request a service from us and may including your name, address, email address, phone number, photo, date of birth, gender, and interests (collectively, “Account Data”). Account Data may include the same data as in your Billing Data (such as name and email), but Account Data is not connected to your credit card number and, except in a few instances described below, is not connected to your Service Data. We process this data in order to provide you with the relevant account.
Avast and AVG Accounts
Avast Account (id.avast.com) and AVG account (my.avg.com) are tools which permit you to register multiple products using a single registration and authentication system. If you use these Accounts, you will be asked to provide your email address directly or indirectly via social media login. This is used for authentication.
Opening an account is voluntary. For paid and trial customers, there is the convenience of managing your licenses and seeing your connected devices in My Avast portal.
Once you delete your account, your Account Data will be deleted, but this will not delete other records of your name or your email address stored with us.
Some products may require you to establish an Avast Account for the provision of the service or to provide the product functionality. For example, Avast anti-theft products will sync your personal computer and your mobile device, so if you lose your mobile device, you can track it on your personal computer. For forum.avast.com and business.avast.com, you likewise need an account. For product features to be enabled and functioning, you must have an Avast Account.
For myaccount.avg.com, this is a legacy account that was used for subscription handling and had features such as permitting users to download copies of their invoice(s).
For HMA!, users can manage a list of their product subscriptions, as well as some specific VPN features, and see a list of VPN servers.
Website Product Registration
To register as a customer of our paid AntiVirus products, you are required to provide your email address and select a password. For desktop users, you may register online on the website. We process this information to validate and verify the number of current licenses in existence. We may also use it to verify that copies of our product are legitimate, and not counterfeit. You may voluntarily submit additional information such as your name, demographic information, or other personal information.
In-Product Registration
Instead of website registration you may select "Registration form" from within the product interface. On the registration form, you provide your email address and select a password. We may also ask general demographic questions such as your level of computer experience or your prior AntiVirus program. You may voluntarily submit additional information such as your name, demographic information, or other personal information.
Registration and Log-in via Other Mediums
It is possible to use Facebook or Gmail to voluntarily register the Free AntiVirus and to log-in to your Avast Account. Please note, an Account is not required to download, activate and run the Free AntiVirus and if you choose to register an Account, your Account will not be connected to your Free AntiVirus products and services.
If you choose Facebook or Gmail for registration and sign-in, you will be asked to share certain personal data from your Facebook or Gmail account with us. We collect and store personal data you provide such as your email address, name, avatar (main profile picture) and the identifier of your Facebook or Gmail account.
One of our website features is the "Community" section, which includes a comments area, links to user pages, links to blogs, links to the Avast Forum, and links to third-party sites such as Twitter and Facebook.
You may post a general comment in the "Overview" section of the "Community" pages using your Avast Account or via Facebook or Gmail. The user ID that appears beside your comment will be the user ID from your Facebook or Gmail. If you have a profile photo connected with this user ID, that photo will appear beside your user comment.
Avast Forum
The Avast Forum is accessible from the AVG Support Community pages or via a link on the "Support" section of our website. Certain features require registration by you.
If you decide to register by creating an Avast Account, you will be asked to select a username, password, provide an email address and physical location. Disclosing your physical location is optional. You may allow other users to send you messages and you can log in to your account via Facebook or Gmail.
Once registered for the Forum you may control your privacy settings when using the Forum by visiting your "Profile" page. You can modify your settings at any time. You can also view your past posts, usage stats, password settings, and user profile as seen by others.
You have the option to provide additional information such as personal texts, disclose your birth date, identify your gender, instant messaging number, messenger username, or website name and address, disclose your physical location, and select an avatar or personalized picture. Any information you provide here will be visible to other users.
The following minimum items of information will be available to all users, regardless of your profile settings: your username, your total number of posts, and posts per day, the date and time you registered, your local time, and the date and time of your last activity.
Where you submit your personal data for publication, for example, via the Avast Forum or our Community pages, such data will be made available publicly.
Facebook Posts
If you choose Facebook as your registration or sign-in method, your permission will be sought for us to take certain actions on your behalf.
Specifically, we will request permission to post on your behalf where:
Examples of what might be posted may include the following, or similar messages:
(1) “Avast AntiVirus just saved my computer from infection! Try it now. It’s free.”
(2) “My us AntiVirus just updated, with powerful new security features. Download it for FREE. You’ll love it.”
(3) “I just installed us AntiVirus for free. I really like it. If you want the best protection, download us like I did.”
You are not obliged to agree to allow us to post on your behalf and you may “skip” this state during registration.
You can modify your posting preferences at any time via my Avast Account (https://my.avast.com/en-us/facebook).
Contacting Us
There are many opportunities to contact us via our website. There are links that allow you to reach us by email via the Support page, by clicking our media contact or news subscription buttons, or by requesting online service or support. In general, the amount of information that we collect when you contact us will be in proportion to the nature of the contact. For example, if you contact us by email, we will require your email address to reply.
Newsletters and Blog Notifications
We offer news and information on our website, including email newsletters and blog notifications of current news items. This is a free service we provide to you. You may receive an ad banner on our website promoting a news story. However, you must subscribe if you wish to read it.
We may use your email to send you information on other publications or our other products or services.
When you subscribe, we request your first and last names, email address, and country of residence. We process your personal information to help develop content that is interesting to our audiences and to send you relevant blog notifications and/or newsletters.
You are free to cancel your news subscription(s) at any time by visiting www.avast.com/news-subscription.php?page=unsubscribe
"Refer A Friend"
There may be times when we post a "refer a friend" link that allows a site visitor to send a message to a friend about an Avast product or service. We will never request that our users provide a friend's phone number or other contact information. We do not have any record of the email address that you use to send the message. It is up to the friend to install.
Sometimes the friend referral takes place when you install a product. When the friend installs, we collect the GUIDs and information that your two installations are connected.
Live Events and Competitions
Aside from interacting with you by way of your use or purchase of our products and services, we may collect your personal data from you directly, when we attend trade shows or when you participate in our promotional events or competitions.
When you interact with us at trade shows and provide us with your personal data on a business card or through other means (for instance, through registering for an event we are holding at such trade show), we will be processing your personal data for the purposes of building and expanding our database of existing or prospective business partners. We will use this contact information in order to communicate with you about possible business partnerships or other similar opportunities, and to promote our brand across the industry (serve our legitimate interests).
Live events and competitions held and organized by us generally require that you register first. To complete a registration, you provide us with your name, your e-mail address and other relevant information, which is marked as “Required” (this could, for instance, include information about your technical background, if you are registering for one of our competitions). We may also take photos or videos of the competition.
Provision of live event(s) and competition(s) data is voluntary. However, if you do not provide us with the information marked in the form as “Required”, you will not be able to participate. We will also sometimes process information about your social media accounts (links to your Twitter, Facebook or other social media accounts), should you choose to provide them. Avast will process the “Required” as well as other voluntary information in order to assess your application, register you for the event and to communicate with you about it. We may use your image in photos or videos on our website or as part of our general promotion and marketing efforts. We will also use your email address to communicate with you about our new events and about other products and services from us.
Some of our competitions are carried out through social media or networks. In that case, the privacy policy of that particular social network will apply.
使用虛擬私人網路 (VPN) 就像是使用網際網路但是秘而不宣。我們提供 VPN 服務,使您可以在世界上任何地方安全地以匿名方式存取網際網路。雖然我們尊重您的隱私而且努力採取各種措施來保護隱私,但是這不代表您對我們是完全匿名。
在隱私權政策的這一小節中,我們會說明在您使用我們的 VPN 服務時,我們會蒐集或是您會提供給我們哪些類型的個人資料。
我們用不同於其他應用程式的方法來對待這些資料,因為它的性質如此敏感,所以我們希望您清楚瞭解在相關法律之下我們處理資料的方法、相關法律依據、我們會否傳送或揭露資料,以及資料保存期限等。
1. 個人資料蒐集及使用
個人資料是可連結至已識別或可識別之自然人之任何資訊,包括您使用我們的 VPN 服務時提供給我們的資訊。
更明確而言,我們可能會在以下情形下蒐集及處理有關您的資料:
1.1 帳戶建立及管理
如您在我們這裡建立帳戶(請留意:欲使用我們的若干應用程式或其若干功能者,應建立帳戶),我們需要獲取有關您的若干資訊。為管理您的帳戶而建立和儲存之資料如下:
|
帳戶資料 |
使用目的 |
|
電子郵件位址 |
用於向您寄發訂購收據、通訊往來及偶爾發出產品資訊 |
|
使用者名稱 |
管理您的帳戶及便利您登入服務 |
|
授權金鑰 |
啟動您的訂閱 |
|
續訂日期 |
讓我們知道帳戶有效期限 |
|
試用者 |
在帳戶開始收費前添加試用期 |
在您使用本服務期間,我們會儲存所有上述資料,因為我們提供服務需該等資料。您可以登入我們的隱私權偏好門戶網站查閱所有該等資料。
1.2 來自我們 VPN 伺服器的服務資料
如您使用我們的 VPN 服務,我們僅會為提供及經營我們 VPN 服務及維持其安全且有效率運轉蒐集必要之最少量資訊。為確保我們 VPN 架構運轉良好所蒐集之資訊(下稱「服務資料」)如下:
|
服務資料 |
使用目的 |
|
您連線的時間戳記 |
為管理同時有效連線的數量及處理濫用情事。 |
|
您來源 IP 位址的子網路。 |
為新增的網路需求及容量作規劃。 |
|
您所使用的 VPN 伺服器之 IP 位址。 |
排解我們服務的各類疑難及規劃新增網路容量。 |
|
已傳輸資料量 |
用於規劃新增網路容量及伺服器改善。 |
我們會在伺服器上保留該等資料 30 日,然後就會按先後次序予以刪除,例如:在 1 月 3 日建立的資料,會在 2 月 2 日刪除。
1.3 我們的 VPN 服務不會蒐集的資料期限
我們不會蒐集、儲存或登載以下任何資料:
可以識別您身份的任何完整來源 IP 位址。
連線時之任何 DNS 要求。我們仰賴自己的安全 DNS 伺服器,所以您的要求亦受到保護,不會洩漏給第三方。
任何活動記錄:您所使用的應用程式、您所使用的服務、您所連線的網站等,基本上您在線上進行之任何活動。
1.4 來自我們 VPN 客戶端的服務資料
為確保我們的 VPN 客戶端妥善運轉並予以改善,我們必須知道大體上使用者是如何與客戶端互動。 此資料有關於應用程式內的互動,但無法被用於揭露您正在使用 VPN 服務的目的。
|
客戶端資料 |
使用目的 |
|
作業系統版本 |
用於使用者支援、疑難排解及產品開發規劃 |
|
AVG Secure VPN 版本 |
用於使用者支援、疑難排解及產品開發規劃 |
|
應用程式活動 |
用於規劃產品開發事宜 |
我們會按先後次序在 2 年後刪除該等資訊(也就是說,在 2019 年 1 月 2 日建立的資料,會在 2021 年 1 月 2 日刪除)。
1.5 我們的 VPN 產品的第三方分析
我們盡可能仰賴我們自己的分析工具,以分析第 1.4 款所載之應用程式活動、瞭解我們的服務如何運作或我們的服務是否穩定或順利。但有時我們需仰賴第三方工具,該等第三方工具能以我們無法複製之方式,處理特定問題。我們會盡可能匿名化、遮掩或以其他方式嘗試避免您的資料洩漏。
我們所使用的第三方工具、我們的使用方式及其隱私權政策如下:您會發現這些工具也同樣列示在本隱私權政策的涵蓋所有 Avast 產品的 H. 服務資料小節中,不過為了讓資料充分透明化,我們在這裡詳細說明我們的 VPN 產品如何使用相關的工具:
iOS 及 Android 上的 Google Firebase Analytics
Firebase 協助我們瞭解使用者如何與我們應用程式的若干方面互動。儘管 Firebase 通常是仰賴 Android Advertising ID 或 iOS Identifier for Advertisers,但是我們選擇使用自己的匿名識別碼。因此,不會含有任何可以用於識別您個人身份的資訊。
不過,您可以在我們的應用程式設定中選擇不向我們提供該等匿名化應用程式效能相關資料。
iOS 及 Android 上的 Google Fabric Crashlytics
此 Google 服務協助我們提高應用程式穩定性,明確指出有待改進方面並改善您的體驗。使用該項服務並不會含有任何可以用於識別您個人身份的資訊。
Firebase Analytics 與 Crashlytics 均受到 Google 隱私權政策的規範限制。
iOS 及 Android 上的 AppsFlyer Analytics
AppsFlyer 讓我們知道哪些地方吸引了您,從而幫助我們瞭解行銷活動的效果。這裡所蒐集的資料,受到 AppsFlyer 隱私權政策的規範限制。
您可以在我們應用程式設定中,選擇退出 AppsFlyer Analytics,或依據其隱私權政策的指示選擇退出。
棄用分析
如您仍使用我們較早版本的應用程式,則該類應用程式中嵌入了下列分析工具。我們強烈建議您更新至較新的版本,因為較新版本不再使用以下工具:
·在我們較早版本的 Android 應用程式上的 Facebook Analytics:我們以前透過這種工具得開啟應用程式的人數、在應用程式上停留的時間,以及如何與應用程式互動之相關其他資訊。您可以在這裡查閱 Facebook 的隱私權政策。
· 我們較早版本的 macOS 及 iOS 應用程式上的 HockeyApp:該工具用於進行 beta 分配、當機報告、使用者計量、回饋及其他功能。該項工具為 Microsoft 所有,您可以在這裡查閱其隱私權政策。
2. 我們儲存您個人資料的地點及期限
2.1 您的資料的儲存地點
您使用我們的服務時,可能正在使用位於不同國家的伺服器。不過,使用資料與儲存資料有所差異。無論您使用我們系統架構產生多少資訊,都不會儲存在捷克共和國以外的地方。
我們可能會在某些情形下,有必要把資料傳輸至這兩個司法轄區之外。我們在集團內部處理資料時(不論位於何地),對於所處理之所有個人資料,一概實施歐洲通用資料保護規則所訂之相同程度的資料保護。我們所合作之第三方如涉及資料處理,我們會透過具法律拘束力之方式,要求與我們往來之對象遵守歐盟委員會所核准之標準化契約所訂之高級別資料保護,並要求其確保您的權利係依據本隱私權政策受到保障。
在各種情形下,我們遵循公認標準及資安措施,以便在傳輸過程中或在我們接收資料後,保護向我們提交之個人資料。我們一貫致力於盡最大努力保護您的資料。
使用本服務即表示您接受該等資料傳輸、儲存或處理。
2.2您的資料儲存期限
關於儲存或保留期限,基於各種目的所使用之各類別資料所適用之特定期限,均記載於其各自段落中。在各該期限屆滿後,我們就會刪除該等資料,不會再基於該特定目的予以使用。
如我們為遵守法律義務或法令、解決爭議及執行協議(其中包括法院程序)而有必要者,該等保留期限可以延長。
3. 您的資訊之揭露
原則上,我們不會向其他商業機構揭露任何資訊,但以下對象除外:
3.1 Avast 集團
由於我們屬於 Avast 集團一員,而 Avast 集團成員間可能會分享資訊,以便履行相關之服務提供事宜、用於直銷或協助我們的產品開發。無論何種情況,均須受到本隱私權政策的規範限制。
3.2 提供服務
為了交付您所要求之產品或服務,可能有必要向特定對象分享若干資料,其中例如:您信用卡交易之支付卡供應商,或是為從事網站分析者。蒐集且向該等對象分享之資訊,係如前所述。
3.3 法律要求
如若我們收到有效傳票、搜索票或其他法律文件(例如:我們業務之全部或部分銷售或併購相關文件),或相關適用法律要求我們予以遵守,或我們必須捍衛 Avast 集團的權利或財產,包括我們產品及服務之安全及我們顧客及員工之人身安全、財產及其他權利,我們可能會分享如前述所蒐集之您的個人資訊。
3.4 無論何種情況
「當使用者連接到我們的 VPN 服務時,AVG 不會儲存來源 IP 位址,因此提供我們其中一部伺服器的 IP 位址時無法確認使用者身份。
我們也完全無法揭露關於人們使用我們的 VPN 時使用哪些應用程式、使用哪些服務或者瀏覽哪些網站的資訊。我們根本沒有儲存這類資訊。」