Data Privacy and Compliance

AT A GLANCE:
• Analyzes metadata, not content
• Data is stored locally
• Anonymization mode available
• Unchangeable build-in audit log
Employee data privacy is increasingly important in the digitalized working
environment, which today includes smart devices, cloud computing and SaaS
products that handle and collect our data.
Darktrace allows organizations to comply with data protection regulations
and ensure that the handling of personal data is only admissible if expressly
permitted. In fact, the use of Darktrace AI actively enforces an anonymized and
compliant security practice.

Artificial Intelligence for Data Stays On Organizations’

Cyber Defense
Darktrace provides an AI cyber security (Cyber AI) platform
that is proven to protect critical information systems and
digital networks from potentially devastating cyber-attacks
and data breaches. It does this by automatically analyzing
activity within the organization and detecting emerging
threats in real time.
Minimizing Accessible Data
The task of monitoring and analyzing network data was his-
torically performed by (human) security analysts, who not
only struggled to detect every emerging security incident,
but who posed a risk to data privacy as they had access to
large data sets, including personal data.
With Darktrace, AI performs this analysis. This not only
transforms an organization’s ability to detect advanced
cyber-threats, but drastically reduces the volume of em-
ployee data that is viewable by humans. Indeed, the extent
to which a human security analyst can view employee data
is entirely configurable.
Analyzing Metadata, Not Content
A core principle of Darktrace’s approach is to perform all
analysis in a non-invasive manner, analyzing metadata
rather than content. Examples of metadata analyzed
include the time that an asset was created, the byte size of
a document, and the type of file created.
Systems
With Darktrace, all data is stored locally, whether in an
organization’s cloud or on site at their offices. Data can be
retained for a maximum of 4 weeks, and by being stored on
a rolling buffer, the data is automatically deleted as space
requires. However, storage length can be decreased, and
the data viewed can be anonymized if required. This max-
imizes the control each company has over its own data. If
this data needs to be stored for longer, an organization can
choose to export it.
Anonymization Mode
Darktrace recognizes that different organizations have
different privacy cultures and regulations. The Darktrace
Cyber AI Platform is therefore adaptable to differing levels
of privacy needs.
Anonymization Mode is a product feature that allows for the
obfuscation of personal data viewed by security analysts. If
Darktrace Cyber AI detects a security incident that requires
human investigation, the ‘unlocking’ of sensitive data may
be requested and granted at the company’s discretion.
Anonymized threat alerts can also be delivered to the
Darktrace Mobile App, or to an organization’s third-party
workflow services.
Examples of anonymized data are hostnames (e.g. Jane’s
laptop), IP addresses (e.g. device code), login details for
a SaaS account (e.g. Microsoft, Salesforce, GoToMeeting,
etc.), and file names (e.g. Training for New Employees).
 Data Privacy and Compliance

Configurable User Permissions Supporting GDPR and Other Privacy

In addition to the restriction of access within Anonymization Regulations
Mode, every action taken in the Darktrace Cyber AI inter-
If a data breach occurs, organizations have 72 hours after
face requires granular permissions. If desired, user visibility
first detection to notify the relevant authorities. Current reg-
can also be restricted to specific subnets.
ulations mandate that the extent of the breach, the affected
For example, a security analyst might only be able to see parties and exactly what data has been compromised
information relating to the marketing team and the sales needs to be detailed.
team, and can be prohibited from seeing information relat-
With Darktrace, it is extremely easy to gather this necessary
ing to the finance team or legal team. The grouping of users
information. Darktrace technology provides companies with
and the selection of security analysts assigned to view
full visibility, an unchangeable audit log and event replay,
specific parts of the network are set by the organization and
enabling and supporting regulatory compliance.
may be changed at any time.

‘Watching the Watchers’

All user activity within the Darktrace Cyber AI interface
is logged in an unchangeable audit log. This applies to
actions performed by both an organization’s employees
and Darktrace Cyber Analysts. The audit details the names
of users, and their activities, with time stamps.
The audit log can be accessed at any time and can also
be forwarded to an organization’s log server. Companies
are thereby provided with full visibility of how Darktrace
safeguards their network and digital infrastructure.

About Darktrace (DARK.L), a global leader in cyber security artificial intelligence, delivers complete AI-powered solutions

Darktrace
in its mission to free the world of cyber disruption. Its technology continuously learns and updates its knowledge of
‘you’ for an organization and applies that understanding to achieve an optimal state of cyber security. Breakthrough
innovations from its R&D Centers have resulted in over 145 patent applications filed. Darktrace employs over 2,200
people around the world and protects c.8,800 organizations globally from advanced cyber-threats.
Scan to
LEARN MORE

Evolving threats call for evolved thinking™ info@darktrace.com darktrace.com

© 2023 Darktrace Holdings Limited. All rights reserved. The Darktrace name, logo, and other trademarks used herein are trademarks of Darktrace Holdings Limited. The names of other companies, products and services are the property of their respective owners.