Note that this page is a supplement to the Cisco Privacy Statement. In order to understand the data collection and use practices relevant for a particular product or solution, you should read both the Cisco Privacy Statement and any applicable supplement or service description.
The following describes our data collection and use practices with respect to the Cisco AnyConnect Secure Mobility Client ("AnyConnect").
Collection and Use of Information
Customer Experience Feedback
We use the AnyConnect Customer Experience (“CEF”) module to collect certain information related to your use of AnyConnect, including, but not limited to: (i) usage data such as version of AnyConnect software installed, operating system platform and version of the endpoint device AnyConnect is installed on, AnyConnect modules and features that are enabled and installed, and total count of devices that have AnyConnect installed; and (ii) user experience data, such as average VPN log times, download and install times, download and upgrade frequency and other network-related user experience information (“Usage Information”). Usage Information does not include any personally identifiable information. We use Usage Information to help us quickly and efficiently respond to inquiries and requests, and to enhance AnyConnect for our customers. We may also use Usage Information to determine which features within AnyConnect are most or least effective or useful to you. The CEF module generates a unique identifier (“UID”) that is stored on your endpoint device and accompanies each Usage Information report. The UID is a randomly generated number; it does not contain any personal information and is not used to identify you. We use the UID to associate information with unique endpoint devices to determine if the Usage Information is from a device which has previously reported Usage Information (which has since changed) or is from a new device which has not reported Usage Information previously. In particular, the UID allows us to distinguish between one user experiencing a problem one hundred times and other users experiencing the same problem once. You may withdraw your consent to our collection and use of Usage Information by turning the CEF Module off. Configuration instructions for the CEF Module are available in your AnyConnect Secure Mobility Client Administrator Guide.
You may also at your option use a feedback reporting feature in AnyConnect to provide us your feedback on AnyConnect, including bugs or other product issues or other comments (“Feedback Information”). Feedback Information may include personally identifiable and other information that you choose to provide us, such as your name, email address, user name, device identifier(s), device platform type and version, AnyConnect version, originating IP address, destination IP address/FQDN (Fully Qualified Domain Name) and client event message history. We use Feedback Information to help us quickly and efficiently respond to inquiries and requests, and to enhance AnyConnect for our customers. We may also use Usage Information to determine which features within AnyConnect are most or least effective or useful to you.
Crash Dump Information
Your network administrator may configure AnyConnect to send us information on device, system or application failures (“Crash Dump Information”). Crash Dump Information may include the time of crash, software version, module(s) that caused the crash, stack trace and minidump files. Crash Dump Information does not include any personally identifiable information. We use Crash Dump Information to troubleshoot the cause of crashes and improve the reliability of AnyConnect. Please contact your network administrator if you do not want to provide us Crash Dump Information.
Network Connection Information
We collect the IP address and port number of your endpoint device using AnyConnect when the device establishes a connection to our network (“Network Connection Information”). We use Network Connection Information for network connectivity purposes. We do not use Network Connection Information to identify your location or other personally identifiable information.
We use the AnyConnect Telemetry Module to collect web threat data, including, but not limited to information on spam, phishing or other malware that threatens your device or applications (“Telemetry Information”). Telemetry Information may include limited personally identifiable information, such as your browsing history related to the web threat. We use Telemetry Information to improve the security of AnyConnect and other Cisco security products and services and to reduce the risk of web threats. You may withdraw your consent to our collection and use of Telemetry Information either by turning the Telemetry Module off or uninstalling the Telemetry Module. Configuration and uninstallation instructions for the Telemetry Module are available in your AnyConnect Secure Mobility Client Administrator Guide.
Web Security Information
Sharing Your Information
We may share aggregated and anonymous user experience information with service providers, contractors or other third parties to assist us with improving AnyConnect and other Cisco security products and services and your user experience, but any shared information will be consistent with Cisco's overall Privacy Statement and will not identify you personally in any way.
We may add to or upgrade AnyConnect to provide you with new features on an ongoing basis. We may update this Supplement from time to time to reflect any changes in our collection or use of information from these new features.
Your use of AnyConnect is subject to the Cisco End User License Agreement and the AnyConnect Supplemental End User License Agreement.