Release Notes and Announcements

Release Notes

Announcements

Getting Started

Product Introduction

Overview

Advantages

Basic Concepts

Scenarios

Associated Products

Features in Different Editions

Purchase Guide

Purchase Security Protection Licenses

Purchasing Log Analysis Service

Quick Start

Operation Guide

Security Dashboard

Asset Overview

Server List

Asset Fingerprint

Vulnerability Management

Baseline Management

Malicious File Scan

Unusual Login

Password Cracking

Malicious Requests

High-risk Commands

Local Privilege Escalation

Reverse Shell

Java Webshell

Critical File Monitor

Network Attack

A Ransomware Defense

Log Analysis

License Management

Alarm Setting

Cloud Access Management

Hybrid Cloud Installation Guide

FAQs for Beginners

Cloud Workload Protection Description

Feature Description

Agent Process Description

A Security Baseline Detection List

Parsing of JSON Format Alarm Data

Log Field Data Parsing

Agent Installation Guide

Security Score Overview

Practical Tutorial

Auto Fix of Vulnerabilities

Malicious File Processing

Troubleshooting

Intrusions on Linux

Intrusions on Windows

Offline Agent on Linux

Offline Agent on Windows

An Abnormal Log-in Notification

API Documentation

History

Introduction

API Category

Asset Management APIs

Virus Scanning APIs

Abnormal Log-in APIs

Password Cracking APIs

Malicious Request APIs

High-Risk Command APIs

Local Privilege Escalation APIs

Reverse Shell APIs

Vulnerability Management APIs

New Baseline Management APIs

Baseline Management APIs

Advanced Defense APIs

Security Operation APIs

Expert Service APIs

Other APIs

Overview Statistics APIs

Settings Center APIs

Making API Requests

Intrusion Detection APIs

Data Types

Error Codes

FAQs

Agreements

Service Level Agreement

Data Processing And Security Agreement

Glossary

Data Processing And Security Agreement

PDF

Focus Mode

Font Size

Last updated: 2023-12-26 16:41:21

1. BACKGROUND
This Module applies if you use Cloud Workload Protection Platform (CWPP) (“Feature”). This Module is incorporated into the Data Processing and Security Agreement located at  (“DPSA”). Terms used but not defined in this Module shall have the meaning given to them in the DPSA. In the event of any conflict between the DPSA and this Module, this Module shall apply to the extent of the inconsistency.
2. PROCESSING
We will process the following data in connection with the Feature:
Personal Information
Use
Client Protected Resource  Information:  
For protection of  Tencent Cloud servers: APPID, UIN, your  servers information (name, IP address, type, OS, agent version, agent installment  date, time of last login, online status, installed components, and security  level)  
For protection of  non-Tencent Cloud servers: resource  monitoring, account, port, software application, process, database, web  application, web service, web framework, web site, jar package, startup  service, scheduled task, environment variables, kernel module
We only process this data  for the purposes of providing the Feature to you. 
Please note that unless  authorized by you, we have no access to the personal data, if any, stored in  the database or control over the data.
Please note that this  data is stored and backed up in our TencentDB for MySQL (MySQL) feature.
Security Incident  Information: 
For the free subscription  of the Feature:
Intrusion  detection information: events such as client server abnormal login, password  cracking; information regarding the relevant events (server UUID, event  details, threat level, and processing status). 
For the paid subscription  of the Feature, the following are additionally processed:
Detection  information on servers’ security holes: UUID of affected servers, name and  descriptions of detected security holes, current status, date and time of the  latest detection; 
Security baseline  information: UUID of servers, name of security baseline, detection type,  security threat levels, current status, date and time of the latest detection;  
Security report of  the servers: total number of logged client abnormal login, vulnerability  scanning results, password cracking, and malicious file scanning; numbers and  types of purchased subscriptions of the Feature by you.
We only process this data  for the purposes of providing the Feature to you.  We may also anonymize and  de-identify certain security incident information to improve the Feature.  
Please note that this  data is stored and backed up in our MySQL feature.
Client Configuration Data: 
Detection  configuration of vulnerabilities/baselines/files: regular detection settings,  ignored vulnerabilities/baselines, trusted files, quarantined files; 
Whitelist  configuration of intrusion prevention functions: whitelist conditions,  covered servers; 
Other  configurations: automatic protection upgrade settings, automatic renewal  settings, and alarm settings.
We only process this data  for the purposes of providing the Feature to you in accordance to your  specific configuration.
Please note that this  data is stored and backed up in our MySQL feature.
3. SERVICE REGION
As specified in the DPSA.
4. SUB-PROCESSORS
As specified in the DPSA.
5. DATA RETENTION
We will store personal data processed in connection with the Feature as follows:
Personal Information
Retention Policy
Client Protected Resource  Information   Security Incident  Information  Client Configuration Data
We retain such data until  you manually delete such data. Otherwise, when you terminate your  subscription for the Feature or delete your account, we will delete such data  within 7 days.
You can request deletion of such personal data in accordance with the DPSA.
6. SPECIAL CONDITIONS
You must ensure that this Feature is only used by end users who are of at least the minimum age at which an individual can consent to the processing of their personal data. This may be different depending on the jurisdiction in which an end user is located.

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

Personal Information	Use
Client Protected Resource Information: For protection of Tencent Cloud servers: APPID, UIN, your servers information (name, IP address, type, OS, agent version, agent installment date, time of last login, online status, installed components, and security level) For protection of non-Tencent Cloud servers: resource monitoring, account, port, software application, process, database, web application, web service, web framework, web site, jar package, startup service, scheduled task, environment variables, kernel module	We only process this data for the purposes of providing the Feature to you. Please note that unless authorized by you, we have no access to the personal data, if any, stored in the database or control over the data. Please note that this data is stored and backed up in our TencentDB for MySQL (MySQL) feature.
Security Incident Information: For the free subscription of the Feature: Intrusion detection information: events such as client server abnormal login, password cracking; information regarding the relevant events (server UUID, event details, threat level, and processing status). For the paid subscription of the Feature, the following are additionally processed: Detection information on servers’ security holes: UUID of affected servers, name and descriptions of detected security holes, current status, date and time of the latest detection; Security baseline information: UUID of servers, name of security baseline, detection type, security threat levels, current status, date and time of the latest detection; Security report of the servers: total number of logged client abnormal login, vulnerability scanning results, password cracking, and malicious file scanning; numbers and types of purchased subscriptions of the Feature by you.	We only process this data for the purposes of providing the Feature to you. We may also anonymize and de-identify certain security incident information to improve the Feature. Please note that this data is stored and backed up in our MySQL feature.
Client Configuration Data: Detection configuration of vulnerabilities/baselines/files: regular detection settings, ignored vulnerabilities/baselines, trusted files, quarantined files; Whitelist configuration of intrusion prevention functions: whitelist conditions, covered servers; Other configurations: automatic protection upgrade settings, automatic renewal settings, and alarm settings.	We only process this data for the purposes of providing the Feature to you in accordance to your specific configuration. Please note that this data is stored and backed up in our MySQL feature.

Personal Information	Retention Policy
Client Protected Resource Information Security Incident Information Client Configuration Data	We retain such data until you manually delete such data. Otherwise, when you terminate your subscription for the Feature or delete your account, we will delete such data within 7 days.

tencent cloud

Cloud Workload Protection Platform

Data Processing And Security Agreement

1. BACKGROUND

2. PROCESSING

3. SERVICE REGION

4. SUB-PROCESSORS

5. DATA RETENTION

6. SPECIAL CONDITIONS

Help and Support