Privacy Policy

Effective as of February 14, 2021 | See a previous version of Privacy Policy | Compare changes

ESET, spol. s r. o., having its registered office at Einsteinova 24, 85101 Bratislava, Slovak Republic, registered in the Commercial Register administered by Bratislava I District Court, Section Sro, Entry No 3586/B, Business Registration Number: ‎31333532 as a Data Controller ("ESET" or "We") would like to be transparent when it comes to processing of personal data and privacy of our customers. To achieve this goal, We are publishing this Privacy Policy with the sole purpose of informing our customer ("End User" or "You") about following topics:

Processing of Personal Data,

Data Confidentiality,

Data Subject's Rights.

This Privacy Policy applies to your my.eset.com account (“Account”) and to provision and use of my.eset.com website, services and features provided by ESET via the Account (collectively “Services”). If there is a Service-specific Privacy Policy referred herein, its wording shall prevail in case of any discrepancies.

We may modify this Privacy Policy from time to time at our sole discretion. We will send You an email notification with a link to the Privacy Policy as amended or We will notify You on the amended version via in-app notification or by other electronic means. If You do not agree to or cannot comply with the Privacy Policy as amended, You shall cease to use the Account and Services and uninstall them if applicable. You will be deemed to have accepted the Privacy Policy as amended if You continue to use the Application or the Services after it becomes effective.

Our Services are intended for adults only. If You are less then eighteen (18) years old, You may only create and use the Account or the related Services if your parent or other legal guardian is involved.

Processing of Personal Data

The Account and Services are provided by ESET under the Terms of Use ("Terms") and if applicable, also under End User License Agreement ("EULA") of ESET product associated with the relevant Service (“Product”), but some of them might require specific attention. We would like to provide You with more details on data collection and processing connected with your Account and provision of our Services. To make them all work, We need to collect or have access to following information:

Your full name, country, valid email address and your login credentials are required for registration and use of the Account, for provision of Services and for establishment, exercise and defense of our legal claims. Moreover, we will obtain some basic technical information about a device and application You use to log into your Account.

Product Administration requires information about managed devices and Product licenses to provide You with its managing functionalities. More specifically, We will process information related to your Product licenses, such as data related to the type of Product license You own (e.g. whether it is free, trial, paid etc.), license validity, activation status and license identification. In relation to those devices that were associated with your Account, We will process data about the device name and type, its operating system, security status, activated Products and data enabling device identification. In case of devices that use your Product licenses but were not associated with your Account (or were shared to another person and associated with their Account), only limited information will be processed, such as device name and type, model and date of Product activation.

oIf You are a Product license owner and You choose to share it with your friend or a family member, You may do so by using our sharing functionality available from your Account, where You will be able to input their email address. We will only process such an email address to enable use of the relevant Product or the Service and to send a related invitation. Your friend might see your email address in such a message sent from us so that they know who initiated it. Your friend can contact us anytime to request We remove their data from our database. You will be able to cancel sharing of your License anytime.

oIf You are not an owner of a Product license, but someone shared their Product license with You, the email address You provide during Account registration will be visible to the Product license owner. Rest assured that only You will be able to access full information about devices associated with your Account. The license owner will be able to view only limited information about your device as described above.

ESET Parental Control contains functionalities which allow You to control access of managed users (such as your children) to certain group of web pages and/or mobile applications, employ time management rules towards managed users and to find location of your device. To enable these features and depending on how exactly You set up rules for the managed users, ESET Parental Control will send information to ESET, including but not limited to information on visited websites, physical locations, mobile applications, information about the device, including information about the operation and functionality of the ESET Parental Control. The information may contain data about You or other managed users (You may specify managed users by name, age or even photo if You like to) or information about the controlled device, such as the operating system and applications installed. Data collected via ESET Parental Control will be processed only for providing You with the Service and they will be deleted sixty (60) to ninety (90) days after their collection.

ESET Anti-Theft helps to prevent loss or misuse of critical data in direct connection with loss or theft of a computer or other device where it is installed. This function is switched off under the default settings of the relevant Product. If You chose to activate this function, data about the missing device will be collected and sent to ESET, which can include, depending on how exactly You set up the Service, data related to the device's network location, content displayed on its screen, device configuration and data recorded by a connected camera. Data collected via ESET Anti-Theft will be processed only for the purpose of providing You with the Service and they will be deleted one (1) year after their collection.

ESET Password Manager allows You to store your passwords, credit card numbers or other data You choose in the locally installed application and synchronize and use them across your devices. Data You choose to save to the application are stored only locally on your devices and are protected and encrypted by your master password. To enable use of such data across your devices, they are also stored on our servers or on servers of our service providers, but only in the encrypted form so only You can access them. Neither ESET nor our service providers have access to your encrypted data or store your master password. Only You have the key to decrypt the data. You can activate this Service via your Account by inputting your email address or an email address of your friend to whom You would like to allow use of the Service under your Product license. To learn more information about processing of personal data via ESET Password Manager, please refer to a special Privacy Policy.

Contact information and data contained in your support requests may be required to provide You with support in case you request it. Based on the channel You choose to contact us, We may collect your email address, phone number, Product license information, Product details and description of your support case. You may be asked to provide us with additional information to facilitate support and to enable us to solve an issue You are facing.

Moreover, We may process data obtained in the course of provision of our Services for some additional purposes:

We may use your contact details or your Account to communicate with You in relation to Products or Services You use, such as to provide You with Service-related reports and notifications, to learn more about your needs and your satisfaction with our Services, but also for advertising of our products and services that are similar to ones You use, unless You opt-out from such marketing communication.

We may process some aggregated statistical data relating to usage of our Services to improve them and their usability, analyze their performance and to fix any errors that may occur.

Cookies

To make our website and Services work properly, We may store some cookies to your web browser, either when You visit our website, when You log into your Account or when You use a certain Service. By default, We only use cookies that are strictly necessary for functioning of our website and Services requested by You. We will ask for your consent with using any other cookies as those that are strictly necessary. Currently, We may store the following cookies to your browser:

Essential Cookies – These cookies are strictly necessary for the website to function and to provide Services requested by You, which cannot be switched off in our systems. They are usually only set in response to actions made by You which amount to a request for Services. Examples of such cookies include language preference cookies, cookies enabling You to stay logged into your Account (set only if You choose the “stay logged in” option when logging into your Account), cookies enabling your proper authentication when you log into your Account or other sessional cookies. Unless You delete them manually, all persistent cookies will be stored in your browser for one (1) year.

Analytical Cookies – N/A

Marketing cookies – N/A

General Rules

There are only few legal bases for data processing which We use according to the applicable legislative framework related to protection of personal data. Our activities are mainly covered by:

Contractual necessity legal basis, which is applicable when it comes to processing which is necessary to provide You with our Products or Services and to communicate with You about them.

Legitimate interest legal basis, that enables us to process data on how our customers use our Services and their satisfaction to provide our users with the best protection, support and experience We can offer. Even marketing is recognized by applicable legislation as a legitimate interest, therefore We usually rely on it for marketing communication with our customers.

Consent, which We may request from You in specific situations when we deem this legal basis as the most suitable one or if is required by law.

Compliance with a legal obligation e.g. stipulating requirements for electronic communication, invoicing or billing.

Data Confidentiality

ESET is a company operating worldwide via affiliated entities or partners as part of our distribution, service and support network. Information processed by ESET may be transferred to and from affiliated entities or partners for performance of the EULA or Terms, for provision of Account, Services or for support or billing purposes. Based on your location and service You choose to use, We might be required to transfer your data to a country with absence of adequacy decision by the European Commission. Even in this case, every transfer of information is subject to regulation of data protection legislation and takes place only if required. Standard Contractual Clauses, Binding Corporate Rules or another appropriate safeguard must be established without any exception.

We are doing our best to prevent data from being stored longer than necessary while providing Services or the Account under the Terms. Unless specified otherwise above, we will store the data processed for the purpose of providing You with the Account and the related Services during the whole period You use our Services or the Account. You can terminate your Account and delete all information associated with it at any time. Termination of Account will lead to immediate deletion of your personal data processed in its context, however, it will not affect processing of your personal data in the context of your Product licenses. Moreover, some data might be stored a little longer in the back-up systems and security monitoring and archiving systems, which are erased periodically in line with our Security Policies.

ESET implements appropriate technical and organizational measures to ensure a level of security which is appropriate to potential risks. We are doing our best to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and Services. However, in case of data breach resulting in a risk to your rights and freedoms, We are ready to notify supervisory authority as well as data subjects. As a data subject, You have a right to lodge a complaint with a supervisory authority.

Data Subject’s Rights

ESET is subject to regulation of Slovak laws and We are bound by data protection legislation as part of European Union. Subject to conditions laid down by applicable data protection laws, You are entitled to following rights as a data subject:

right to request access to your personal data from ESET,

right to rectification of your personal data if inaccurate (You also have the right to have the incomplete personal data completed),

right to request erasure of your personal data,

right to request restriction of processing your personal data,

right to object to processing,

right to lodge a complaint as well as,

right to data portability.

If You would like to exercise your right as a data subject or You have a question or concern, send us a message at:

ESET, spol. s r.o.
Data Protection Officer
Einsteinova 24
85101 Bratislava
Slovak Republic
dpo@eset.sk