Kaspersky Thin Client does not send any data to Kaspersky. Data is processed on the devices with Kaspersky Thin Client installed, and on the local infrastructure servers that interact with Kaspersky Thin Client.
Kaspersky Thin Client saves the following information on the device:
Event log containing technical data on system operation and information about Kaspersky Thin Client events sent to the Kaspersky Security Center Server.
Audit log containing data on certificates uploaded to Kaspersky Thin Client and information on instances of enabling and disabling management of thin clients via Kaspersky Security Center.
Thin client settings:
Date and time when Kaspersky Thin Client was installed on the device.
Thin client name.
Currently installed version of Kaspersky Thin Client.
Kaspersky Thin Client interface language.
List of languages available when switching the keyboard input language.
Information about primary and secondary monitors.
Primary monitor ID.
Location (coordinates) of the connection panel.
Time when certificates were last used for authenticating connections: to Kaspersky Security Center, to remote desktops via RDP or via Basis.WorkPlace, and to the log server.
Settings for working with Kaspersky Security Center:
Address (name or IP address and port) of Kaspersky Security Center Administration Server.
Kaspersky Security Center connection method (manually or via DHCP).
List of Kaspersky Thin Client identifiers for connecting to Kaspersky Security Center.
Synchronization period between Kaspersky Thin Client and Kaspersky Security Center, in minutes.
The number of received certificates for authenticating Kaspersky Thin Client connection to Kaspersky Security Center.
Current certificate fingerprint for authenticating Kaspersky Thin Client connection to Kaspersky Security Center.
Kaspersky Thin Client naming settings (name, device ID, and additional information) specified by the Kaspersky Security Center administrator.
Secret that confirms user actions in Kaspersky Thin Client interface: resetting data and settings, disconnecting the thin client from Kaspersky Security Center, and changing the certificate for connecting the thin client to Kaspersky Security Center.
Technical support contact details.
Certificate files for authenticating Kaspersky Thin Client connection to Kaspersky Security Center.
Basis.WorkPlace connection settings:
Address (name or IP address and port) of the Basis.WorkPlace connection manager.
User name for connecting to the Basis.WorkPlace connection manager.
Certificate files for authenticating the connection broker when connecting to a remote desktop managed by Basis.WorkPlace.
Number of reconnection attempts.
Connection profile.
Settings for redirecting local devices to the remote desktop: whether redirection of USB devices is enabled or disabled.
Image quality settings: whether font smoothing is enabled or disabled.
Whether use of two monitors is enabled or disabled.
RDP server connection settings:
Address (name or IP address and port) of the RDP server.
Domain and user name for connecting to the RDP server.
Certificate files for authenticating the RDP server when connecting to a remote desktop via RDP.
Settings for redirecting local devices to the remote desktop:
Whether USB devices redirection is enabled or disabled.
Whether smart cards redirection is enabled or disabled.
Whether use of two monitors is enabled or disabled.
Image quality settings:
Whether font smoothing is enabled or disabled.
Whether menu animation is enabled or disabled.
Whether the desktop background is displayed.
Whether window contents are rendered while dragging.
Whether Windows themes are enabled or disabled.
Network settings:
Whether automatic network configuration via DHCP is enabled or disabled.
Thin client IP address.
Subnet mask.
List of IP addresses of DNS servers.
IP address of the network gateway.
Power-saving mode settings: the number of minutes before the monitor turns off and the number of hours before the thin client turns off when Kaspersky Thin Client is idle.
Log server connection settings:
Address (name or IP address and port) of the log server used for forwarding audit and event logs.
Certificate files for authenticating the log server when Kaspersky Thin Client connects to this server.
Date and time settings:
Date and time received from the Administration Server during the last synchronization with Kaspersky Security Center.
Time zone.
Information about available and installed Kaspersky Thin Client updates:
Update availability status.
Update installation status.
Update delivery status.
Available update data: Kaspersky Thin Client version, release name, date and time, importance.
Time of the last successful update check.
Time of the last successful update installation.
Information about Kaspersky Thin Client End User License Agreements:
End User License Agreement IDs.
End User License Agreement texts.
Information about whether the End User License Agreements were accepted.
The Basis.WorkPlace virtualization system saves the following information in the database:
User name.
IP address of Kaspersky Thin Client.
ID of Kaspersky Thin Client.
Session startup events.
Session termination events.
The name or IP address of the RDP server and Basis.WorkPlace connection manager are overwritten each time a connection is successfully established.
The user name is overwritten upon each successful connection to the RDP server or Basis.WorkPlace connection manager.
The log server address used for audit and event log forwarding is overwritten each time system events are successfully sent to the log server. When an audit and event log is forwarded, all system events saved on the thin client are sent to the log server.
Any received information is protected by Kaspersky in accordance with the requirements established by law and in accordance with current Kaspersky regulations. Data is transmitted over encrypted communication channels.