ISM Security

Security and Data Processing

General Information

ISM Security is a security monitoring system that analyzes events on your server and notifies you of potential threats. We deliberately limit the volume of data collected and ensure transparency of all processes.

What data is collected

The agent collects only technical security events, including:

  • authentication events (successful / failed logins)
  • network activity (connections, port scanning)
  • information about running processes (metadata only)
  • system events (errors, suspicious activity)

We do not collect:

  • file contents
  • passwords or private keys
  • network traffic content (payload)
  • personal data of users, unless it is explicitly contained in the system logs

How the agent works

The agent is installed on your server and:

1

Reads system logs and events

2

Analyzes them locally

3

Sends only relevant security events

Data transmission occurs only when there is suspicious or significant activity.

Data Transmission

  • All data is transmitted over a secure protocol (HTTPS / TLS)
  • Transport-level encryption is used
  • Each agent is authenticated using a unique API key
  • Key revocation is possible at any time

Data Storage

  • Data is stored in a secure infrastructure
  • Data isolation between clients is used
  • Logs are stored for a limited time (retention period)
  • Access to data is strictly limited

Data Access

  • Only you have access to your data through the control panel
  • System administrators do not have access to data without necessity (e.g., during incident investigation)
  • All administrative actions are logged

Agent Security

  • The agent has no access to files outside of necessary system logs
  • Does not execute remote commands
  • Does not change system configuration
  • Operates with minimal necessary privileges

User Control

You have full control over:

  • installation and removal of the agent
  • generation and revocation of API keys
  • the volume of transmitted data (via configuration)
  • disabling the agent at any time

Transparency

We adhere to the principles of full transparency:

  • documentation on how the agent works is available
  • the list of collected data is open
  • changes in the data collection logic are recorded and published

Responsibility

ISM Security does not perform active actions on your server and does not interfere with its operation. The system is purely monitoring and advisory in nature.

The responsibility for decision-making and incident response remains with the user.

Contacts

If you have questions about security or data processing, please contact us:

support@ism-security.ru