Views:

Inventory

This data is collected as part of device registration, and this microservice utilizes this data to display inventory to the user.

Data Collected	Instance Type AWS account ID (AWS account number) AWS region Availability zone Customer VPC information such as VPC ID, Gateway ID,Instance ID, region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Billing (Pay-As-You-Go)

This data is collected to understand usage and bill users accordingly.

Data Collected	Cloud One Account ID Inspected bytes counter AWS Account ID where NSVA is deployed AWS Subscription ID (generated by CloudOne)
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Internal Telemetry

This data is collected to understand usage habits for internal measurements and product design. No individually identifying elements are used in any reports

Data Collected	Cloud One Account ID Instance ID Instance Type Inspected Bytes counter
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Policy Management

This data is collected to determine uniqueness of a device distribution and record the customization of filter behavior.

Data Collected	Appliance ID Filter overrides AWS principals
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

AWS Connector

This data is collected to scan, collect, process and organize AWS assets of the customers.

Data Collected	AWS Account ID (AWS account number) Cross-account IAM Customer VPC information such as VPC ID, Gateway ID Instance ID Region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

All

This data collection is based on customer configuration and not identifying.

Data Collected	Incidental data stored as a result of monitoring or security events.
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Device Management

This data is used to troubleshoot configuration of security devices.

Data Collected	Appliance configuration Instance ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Geo-locator

This data is used to identify the device to distribute related configurations.

Data Collected	Appliance instance ID AWS Account ID (same as Tenant ID)
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Extended Detection and Response (XDR)

This data is used to correlate event logs and system messaging to the source company. This aids in troubleshooting and root cause analysis of issues.

Data Collected	Company ID (Customer is assigned this ID by Trend Micro) Cloud One Account ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Device Monitoring

This data is collected to scan, collect, process and organize AWS assets of the customers.

Data Collected	AWS Account ID Appliance ID Inspected Bytes Device Health status Matched filters, and Triggered filters
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Monitoring

Data collected	AWS Account ID Appliance health events Inspected Bytes Event Logs
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Bypass

This data is collected to detect the need for a device to bypass traffic and record the behavior of that device.

Data collected	AWS Account ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Upgrade

This data is stored as identifiers of a managed service stack and to track upgrade progress.

Data collected	AWS Account ID VPC ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Routing Guidance Script

This data is collected to improve the routing guidance script and better understand how the target VPC is configured.

Data collected	AWS Account ID (AWS account number) Target VPC configuration information such as VPC ID and Availability Zones Region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Keywords: data collection notice Network Security, collected data by Network Security, turn off data collection Network Security, disable data gathering Network Security

Trend Micro Cloud One™ - Network Security Data Collection Notice

Product / Version includes:

Cloud One - Network SecurityAll

Last updated: 2023/02/23

Solution ID: KA-0011887

Category: SPEC

Summary

Cloud One - Network Security includes the following modules which, when enabled, will cause the corresponding data to be transmitted to Trend Micro. Please take note that Cloud One - Network Security does not collect personal identity data elements.

Inventory
Billing (Pay-As-You-Go)
Internal Telemetry
Policy Management
AWS Connector
All
Device Management
Geo-locator
Extended Detection and Response (XDR)
Device Monitoring
Network Security Hosted Infrastructure Monitoring
Network Security Hosted Infrastructure Bypass
Network Security Hosted Infrastructure Upgrade
Network Security Hosted Infrastructure Routing Guidance Script

Inventory

This data is collected as part of device registration, and this microservice utilizes this data to display inventory to the user.

Data Collected	Instance Type AWS account ID (AWS account number) AWS region Availability zone Customer VPC information such as VPC ID, Gateway ID,Instance ID, region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Billing (Pay-As-You-Go)

This data is collected to understand usage and bill users accordingly.

Data Collected	Cloud One Account ID Inspected bytes counter AWS Account ID where NSVA is deployed AWS Subscription ID (generated by CloudOne)
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Internal Telemetry

This data is collected to understand usage habits for internal measurements and product design. No individually identifying elements are used in any reports

Data Collected	Cloud One Account ID Instance ID Instance Type Inspected Bytes counter
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Policy Management

This data is collected to determine uniqueness of a device distribution and record the customization of filter behavior.

Data Collected	Appliance ID Filter overrides AWS principals
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

AWS Connector

This data is collected to scan, collect, process and organize AWS assets of the customers.

Data Collected	AWS Account ID (AWS account number) Cross-account IAM Customer VPC information such as VPC ID, Gateway ID Instance ID Region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

All

This data collection is based on customer configuration and not identifying.

Data Collected	Incidental data stored as a result of monitoring or security events.
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Device Management

This data is used to troubleshoot configuration of security devices.

Data Collected	Appliance configuration Instance ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Geo-locator

This data is used to identify the device to distribute related configurations.

Data Collected	Appliance instance ID AWS Account ID (same as Tenant ID)
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Extended Detection and Response (XDR)

This data is used to correlate event logs and system messaging to the source company. This aids in troubleshooting and root cause analysis of issues.

Data Collected	Company ID (Customer is assigned this ID by Trend Micro) Cloud One Account ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Device Monitoring

This data is collected to scan, collect, process and organize AWS assets of the customers.

Data Collected	AWS Account ID Appliance ID Inspected Bytes Device Health status Matched filters, and Triggered filters
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Monitoring

Data collected	AWS Account ID Appliance health events Inspected Bytes Event Logs
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Bypass

This data is collected to detect the need for a device to bypass traffic and record the behavior of that device.

Data collected	AWS Account ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Upgrade

This data is stored as identifiers of a managed service stack and to track upgrade progress.

Data collected	AWS Account ID VPC ID
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Network Security Hosted Infrastructure Routing Guidance Script

This data is collected to improve the routing guidance script and better understand how the target VPC is configured.

Data collected	AWS Account ID (AWS account number) Target VPC configuration information such as VPC ID and Availability Zones Region
Details	This data is required to utilize the Cloud One - Network Security product, and collection of this information cannot be disabled.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Trend Micro Cloud One™ - Network Security Data Collection Notice

Inventory

Billing (Pay-As-You-Go)

Internal Telemetry

Policy Management

AWS Connector

All

Device Management

Geo-locator

Extended Detection and Response (XDR)

Device Monitoring

Network Security Hosted Infrastructure Monitoring

Network Security Hosted Infrastructure Bypass

Network Security Hosted Infrastructure Upgrade

Network Security Hosted Infrastructure Routing Guidance Script

Trend Micro Cloud One™ - Network Security Data Collection Notice

Product / Version includes:

Summary

Inventory

Billing (Pay-As-You-Go)

Internal Telemetry

Policy Management

AWS Connector

All

Device Management

Geo-locator

Extended Detection and Response (XDR)

Device Monitoring

Network Security Hosted Infrastructure Monitoring

Network Security Hosted Infrastructure Bypass

Network Security Hosted Infrastructure Upgrade

Network Security Hosted Infrastructure Routing Guidance Script