What Moonlock collects and why

We collect information that, alone or in combination with other data, could be used to identify you (Personal Data). Some of the information we collect is stored using anonymization instruments that cannot be linked back to you (Non-Personal Data). Below are the types of Personal Data and Device Information we collect and process, as well as the purposes of processing.

1. Contact and Account Data namely, Your email, name and transactional data (if applicable). This information is needed to complete the sign-up form with MPA (see below), conclude EULA with You, provide You with Our Services, updates and communicate with You. Please note: the processor of your payment data is our payment partner indicated in Section VI below. 

2. Product(s) Usage Data refers to aggregated information collected about how You interact with a Product(s) or Services, such as a software application, Device. This data helps us understand usage patterns, optimize features, identify issues, and improve the overall user experience. It also helps to understand Your behavior, improve UX and performance of the Product(s). When we process data for purposes such as behavioral advertising or measuring the effectiveness of advertising campaigns, we rely on your consent. For purposes like fraud prevention, error correction, bug fixing, and technical improvements, we process this data based on our legitimate interests.

3. System Protection Data is an interpretation of collected data about detected malwares and type of Device. 

4. Device Information means data from the Device, such as the type of hardware and software in use (for example, operating system and browser type), Device UUID, Device model, Device serial number, unique malware ID on the Device, macOS Device version, and Device system settings. This data is needed to provide you with the core Product’s functionality according to the Terms of Service, services for malware detection and monitoring of the list of applications on the Device, as well as to ensure compatibility, provide maintenance, and update our services. Technical Device Information alone is not Personal Data and cannot be directly attributed to you.

5. MacPaw Account ID (MPA) is Your unique identifier, which helps you to access Products and Services through your personal Account on our website MacPaw from different Devices and manage Your subscriptions. We use it to identify your purchased subscriptions and grant access to our Services. MacPaw Account ID helps us to manage your access and subscription (s), identify fraudulent activity and fix the errors (if any). Please, take a note that MacPaw Account ID is a necessary identifier to provide you with our Services. We do not share Your MacPaw Account ID to any external third parties beyond MacPaw. We do not match Your MacPaw Account ID with Your data from Product (s) and related Services for any marketing and/or targeting purposes, and do not profile You. 

6. Marketing data refers to information collected through cookies and similar technologies, as well as data shared by third-party social media and advertising platforms (e.g., Google, LinkedIn, Facebook) when you interact with our website MacPaw and Moonlock website. With your consent, these third-party platforms may share your Personal Data to personalize your experience and deliver content relevant to your interests, including targeted offers. The relevant Cookie Policy can be found on the Websites. Marketing data also includes information provided when you subscribe to newsletters, such as your email address and preferences, which are used to send you updates and promotional content tailored to your interests.

Technical Information collected by "Malware automation” functionality

Our “Malware automation” function performs malware scans to protect You by identifying malware, detecting suspicious behaviour of applications, and improving the state of the user’s device. For this purpose, we may collect technical data (files that generally do not contain personal data, like binary files, executable files, system files, etc.) identified by the product as potentially infected, together with information about the nature of identified threats. These files will be evaluated only for the presence of a threat or malware. We apply appropriate safeguards to retain and anonymize these files from any other data that may be classified as Personal Data, so it hinders any identification of users. We collect only information that is required to provide malware protection and threat analysis. These files are being stored for a limited time, depending on their usefulness for security needs. The legal basis for processing is the performance of EULA with You.

Detailed information on the legal basis for the collection we rely on when offering you Product(s) and related Services, as well as the storage and processing of each type of Personal Data, is provided in the section “Purposes and Legal basis we rely on” of this Privacy Notice.