POLICIES

F5 Distributed Cloud Client-Side Defense™ Privacy Statement

Effective Date: March 29, 2022

Overview

The Distributed Cloud Client-Side Defense (the “Service”) uses JavaScript to monitor your web pages for suspicious code, sending telemetry to the Distributed Cloud Client-Side Defense Analysis Service, which generates actionable alerts viewable in a dashboard with one-click mitigation. When you enable mitigation, the Client-Side Defense JavaScript will block network calls from the browser that attackers use to exfiltrate data. This Privacy Statement applies to the data that the Service uses.

Roles of the Parties

Under the data protection laws of the EU and similar jurisdictions, F5 is a processor of the data about the customer’s users, and the customer is (or acts on behalf of) a controller of such data, to the extent it contains personal data.

Personal Data Collected by the Service

The Service processes data from the browsers and devices of users of the customer’s online properties. We use automated means to collect this data.

The Service processes the following data:

  • IP addresses are read and stored by the Service.
  • Information about which assets, e.g., JavaScript assets, are accessing various page elements or data structures.
  • Information about which assets request or send data which end-points.

Processing of the Personal Data

The Service uses the data to determine if data or content presented in a webpage or entered by a user is being exfiltrated to an unauthorized destination.

More Information

To exercise your rights with respect to the customer data that F5 processes when providing the Service to a customer, please contact that customer. For more information about F5’s privacy practices, please see the F5 Privacy Notice.