"trusted third parties"

Discussion in 'NOD32 version 2 Forum' started by jmc777, Feb 3, 2006.

Thread Status:
Not open for further replies.
  1. jmc777

    jmc777 Registered Member

    Joined:
    Aug 6, 2004
    Posts:
    244
    Hi! After reading a conversation on another forum regarding Threatsense.net and the reporting of suspicious files and statistical data, a user brought up the subject of Eset sharing data with third parties, as mentioned in the NOD32 EULA. I appreciate that most of the data sent to Eset is anonymous, but there is a chance -- as stated in the EULA -- that some personal information might be contained within a suspicious file sent in for analysis. So I ask the following question to allay fears and paranoia in some current, and prospective, NOD32 users: Who are the "trusted third parties"...?
     
  2. mrtwolman

    mrtwolman Eset Staff Account

    Joined:
    Dec 5, 2002
    Posts:
    613
    Antivirus vendors share malware samples on occasion. So they can be labeled as trusted third party due the fact they have experiences and policies on protecting privacy. When a new virus is reported to the WildList Organisation, you have to submit a sample of the file. WLO could be also censidered trusted third party.
     
  3. SiriusB

    SiriusB Registered Member

    Joined:
    Feb 3, 2006
    Posts:
    2
    As an addition to the original post concerning ThreatSense, would not the fact that NOD32 MAY upload personal details be a contravention of the Data Protection Act if you use your PC for a business?

    Whether or not the files contain personal details about customers and regardless of the fact you can turn ThreatSense off, would agreeing to the EULA still be a breach of the DPA, since you have still given NOD32 permission to upload files?

    This has become a heated debate on another forum for the last week or so and the views of some knowledgeable people on here would be a big plus.

    SiriusB
     
  4. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    What is personal details? If you use your credit card number as a login to Windows, then yes, Eset will receive this info if a suspicious file is found in "documents and settings/your_credit_card_number/my documents..."
     
  5. SiriusB

    SiriusB Registered Member

    Joined:
    Feb 3, 2006
    Posts:
    2
    The examples given are any files that contain information on customers that you may have. My PC is for personal use so there isn't anything that important, but if I use it for a business and I had client details or customer details then would it not be a breach of the DPA if I allowed any files containing some or all of their details to be uploaded to Eset?

    SiriusB
     
  6. Happy Bytes

    Happy Bytes Guest

    :D :D :D
     

    Attached Files:

    • cat.jpg
      cat.jpg
      File size:
      8.5 KB
      Views:
      186
  7. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    That's why documents and files potentially carrying confidential information are excluded from submitting by default. The exclusion list can further be customized as well.
     
  8. Brian N

    Brian N Registered Member

    Joined:
    Jul 7, 2005
    Posts:
    2,148
    Location:
    Denmark
    haha, funny image :D
     
  9. Happy Bytes

    Happy Bytes Guest

    That's our cat here in the threatsense server room :D
     
  10. SSK

    SSK Registered Member

    Joined:
    Nov 28, 2004
    Posts:
    976
    Location:
    Amsterdam
    So you're using Cat-power to sniff out new RAT's? :ninja: :D
     
  11. Blackspear

    Blackspear Global Moderator

    Joined:
    Dec 2, 2002
    Posts:
    15,115
    Location:
    Gold Coast, Queensland, Australia
    Or should that be RAT power to sniff out the cats (now where is my cat soup recipe o_O

    :D :D :D
     
  12. Brian N

    Brian N Registered Member

    Joined:
    Jul 7, 2005
    Posts:
    2,148
    Location:
    Denmark
    Grrr! :p
     
Thread Status:
Not open for further replies.