Cisco Cisco ScanSafe Web Security Hoja De Datos

Page 1 of 4

White Paper

Cisco Cloud Web Security (CWS) and Data Privacy

Cisco CWS enforces a stringent privacy and security policy that outlines its
commitment to protecting the confidentiality and safety of our customer data.

Access to private and confidential data on Cisco CWS systems is limited to only those employees with a specific

need to retrieve this information. Cisco CWS uses best practice computer security safeguards to protect its

databases and servers against risks of loss, unauthorized access, destruction, misuse, modification, or inadvertent

or improper disclosure of data.

●

Customer web requests are stored on a separate database and server that can be accessed by only a

limited number of Cisco CWS employees. Cisco CWS only accesses data for threat and statistical purposes

and only on an anonymized basis. Cisco segregates any personally identifiable information provided by

customers.

●

Cisco Cloud Web Security operates a multi-tenant architecture. Customers can access only their own data

based on hierarchical access control via ScanCenter with a user-defined password. Customer data is

logically separated to prevent any accidental overlap.

●

All data saved for reporting purposes is stored in a dedicated data warehouse located in London, UK. Data

retention is one year for blocked data, and 45 days for allowed data. Allowed data retention can be

extended to one year for a cost.

Physical Security

Cisco CWS utilizes high security facilities with biometric access control, stringent change control and authorized

access approval. Only a small number of trusted dedicated hands are allowed access and control of hardware and

inventory globally.