Data Collection Disclosure

Trend Micro Apex One™ Data Collection Notice

- Updated:
- 17 Aug 2021
- Product/Version:
- Apex One 2019
- Apex One All.All
- Platform:
- N/A

Apex One includes the following modules which may cause the corresponding personal data to be transmitted to Trend Micro. Detailed information and instruction are provided below to opt-out of the personal data collection by disabling specific modules. Modules that cannot be disabled are indicated below.

Smart Feedback
Certified Safe Software Service
Behavior Monitoring
Predictive Machine Learning
Sample Submission
Smart Scan (File Reputation Service)
Support Connector Tool (Support Connector Package)
Web Reputation Service
Web Reputation Service: Browser Exploit Prevention
Telemetry Agents

To see where this data is processed, refer to our list of data centers and authorized data subprocessors and their locations.

Smart Feedback

Smart Feedback shares anonymous threat information with the Smart Protection Network, allowing Trend Micro to rapidly identify and address new threats.

Data collected	URL File name File path Suspicious executable files
Console location	Administration > Smart Protection > Smart Feedback
Console settings	Enable Trend Micro Smart Feedback (recommended)

Certified Safe Software Service

The Certified Safe Software Service queries Trend Micro data centers to verify the safety of a program detected by Malware Behavior Blocking, Event Monitoring, Firewall, or antivirus scans.

Data collected	File name Company
Console location	Agents > Global Agent Settings > System > Certified Safe Software Service Settings
Console settings	Enable the Certified Safe Software Service for Behavior Monitoring, Firewall, and antivirus scans

Behavior Monitoring

Behavior Monitoring provides a necessary layer of additional threat protection from programs that exhibit malicious behavior.

Data collected	URL File name File path
Console location	Agents > Agent Management > Settings > Behavior Monitoring Settings > Rules > Malware Behavior Blocking
Console settings	Enable Malware Behavior Blocking

Predictive Machine Learning

Predictive Machine Learning performs in-depth file analysis to detect emerging unknown security risks.

Data collected	URL File name File path Digital signature signer Attachment file name
Console location	Agents > Agent Management > Settings > Predictive Machine Learning Settings
Console settings	Enable Predictive Machine Learning

Sample Submission

Sample Submission enables the Security Agent to detect and send suspicious files that may contain previously unknown threats directly to the Virtual Analyzer for further analysis.

Sample Submission only submits the information to Trend Micro servers if you use the hosted Apex One Sandbox as a Service Virtual Analyzer. If you use an on-premises Virtual Analyzer, Trend Micro does not collect this data.

Data collected	Suspicious executable file
Console location	Agents > Agent Management > Settings > Sample Submission Settings
Console settings	Enable suspicious file submission to Virtual Analyzer

Smart Scan (File Reputation Service)

Smart Scan (File Reputation Services) checks the reputation of each file against an extensive in-the cloud database.

Data collected	Agent IP
Console location	Agents > Agent Management > Settings > Scan Settings > Scan Methods
Console settings	Smart Scan

Support Connector Tool (Support Connector Package)

When the customer initiates a troubleshooting request to Trend Micro, the Support Connector Tool can assist in deploying a dedicated Support Connector Package for performing further troubleshooting steps. Starting in Apex One Patch 3 (Build 8358/8378), this tool gets installed by default.

Trend Micro will only collect personal data after the customer explicitly provides permission for the collection using the Support Connector Package. Please refer to KB 000232603 to learn more about the Support Connector Tool/Package.

Data collected	Depending on the troubleshooting scope, the Support Connector Package may collect any of the following information: GUID User account Host name Domain name IP address MAC address File name/path/owner Process name/path/owner URL Registry hive Some of the collected information may contain Personally Identifiable Information (PII).
Console location	Not configurable using the web console
Console settings	Not configurable using the web console. If you want to disable Support Connector, please refer to the "Disable Support Connector" section in this article.

Web Reputation Service

Web reputation technology tracks the credibility of web domains accessed by endpoints.

Data collected	URL
Console location	Agents > Agent Management > Settings > Web Reputation Settings > External/Internal Agents
Console settings	Enable Web Reputation on the following operation systems: Windows desktop platforms Windows Server platforms

Web Reputation Service: Browser Exploit Prevention

Browser Exploit Prevention identifies web browser exploits and malicious scripts, and prevents the use of these threats from compromising the web browser.

Data collected	Suspicious or malicious URLs HTTP header / HTML files from Suspicious or malicious URLs Browser information
Console location	Agents > Agent Management > Settings > Web Reputation Settings > External/Internal Agents > Browser Exploit Prevention
Console settings	Block pages containing malicious script

Telemetry Agents

Apex One Telemetry Agent / Cloud Endpoint Telemetry Agent

Data collected	GUID IP Address File name/path^* Process name/path^* Apex One program file versions Apex One program settings Apex One performance data Windows file versions Windows performance data ^*Some of the collected information may contain Personally Identifiable Information (PII).
Console location	N/A

Need More Help?