Data Collection

This release collects the following data from a server:

• Public IPv4 address
• LAN IPv4 address
• Wi-Fi MAC address
• OS version
• Machine name
• Wifi Adapter name
• LAN gateway IPv4 address
• LAN gateway MAC address
• Machine resource utilization (uptime, CPU, memory, network throughput)
• Serial number for the machine the component is running on
• OS type (macOS, Windows, other)
• Device type (Server, Workstation)
• Basic system information (Manufacturer, Model, Version, Serial number)
• BIOS information (Manufacturer, Version, Release Date)
• Chassis information (Manufacturer, Model, Type, Version, Serial number, Asset tag)
• CPU information (Manufacturer, Brand, Speed, Amount of Cores)
• RAM Memories information (Size, Type, Speed, Manufacturer, Serial Number)
• Board information (Manufacturer, Model, Version, Serial number, Memory slots and capacity)
• Graphics Cards information (Manufacturer, Model, Memory)
• Disks information (Name, Manufacturer, Size, Serial number, Bus type, device identification)
• Basic operating system information (Platform, release number, code name, Architecture)

Data is collected on intervals ranging from every few minutes to daily. An exception to this is when a machine transitions into the sleep state, as the collection process will be suspended like all other processes. The locked state however is not an exception and collection continues to run as a background service in this state.

Security

All collected data is encrypted at rest and in transit.

The software that makes up this release leverages industry standard technologies for distribution and tamper-proofing. We leverage Extended Validation certificates for code-signing on Windows. A separate PKI is used for integrity checking of downloaded server software. Certificates used in this scenario are revocable to invalidate existing builds. Certificates can also be updated via our auto-update feature set to roll forward to new versions in the event of a compromise.