VMRay

VMRay offers a comprehensive and accurate solution for automated detection and analysis of advanced threats, such as highly evasive malware, zero-day malware, and targeted attacks, that combines a unique agentless hypervisor-based network sandbox with a real-time reputation engine. The combination provides both fast, high volume file classification and deep malware analysis. VMRay closes the gaps in the organisation’s existing security stack and catches threats that bypass traditional security solutions. It empowers Incident Response and SOC teams to handle the growing volume and diversity of advanced threats with far greater speed and precision.

The VMRay solution portfolio is based on a common platform that integrates multiple engines for malware detection and analysis:

Reputation analysis detects known malicious and known harmless file hashes and URLs by leveraging a reputation database in the cloud.
Web analysis detects common and advanced web-based attacks, such as phishing and drive-by downloads.
Static analysis identifies and extracts active elements found in suspicious documents and files, such as embedded scripts, links, and macros.
Dynamic analysis, based on VMRay’s unique sandboxing technology, fully reveals any remaining malicious behavior.

The VMRay solution portfolio consists of three products that address specific Incident Response and SOC requirements.

Strengths: Malware analysis, APT, sandboxing

3 products

Categories

LAST UPDATED ON 1 SEPTEMBER 2023

This Data Protection Policy ("Data protection policy ") applies to all services offered by Arina AG with its registered office in Postfach 97, 7550 Scuol, Switzerland or Arina Deutschland GmbH with its registered office in Friedrichstrasse 1a, 80801 München, Germany ("Arina", "us" or "we") as well as to the use of the website under the domain www.arina.ch and any sub-domains ("website") (together "services"). We take the protection of your personal data very seriously and treat your personal data confidentially and in accordance with the applicable data protection regulations and this data protection policy.

This Data Protection Policy informs you ("you" or "your") about the collection, use and disclosure of personal information when using our services and the options you have in relation to that information.

If you have any questions or suggestions regarding data protection, please feel free to contact us at any time. The person responsible for processing personal data is:

Markus Mosca, Postfach 97, 7550 Scuol, Schweiz (mosca@arina.ch).

1 PROCESSING PERSONAL DATA

We process information about you when you use our services and perform certain actions on our website.

1.1 Using our website

When you access and browse our website, we collect certain personal information in connection with your use of and interaction with our website. This data may include, in particular, your IP address, your browser type and version, the date and time of your visit and the subpages you have accessed. The collection of this information is used to provide, maintain and improve our website and your user experience.
We also use cookies and related tracking technologies. For more information, please refer to Section 9 of this Data Protection Policy and our separate Cookie Policy.

1.2 Provision and delivery of further services

When you place orders with Arina or otherwise use services provided by Arina (e.g. support services), we collect and store personal data from you as part of the ordering, delivery and service provision process. This data includes, in particular, contact data (first name, surname, address, e-mail address, telephone number, etc.), other communication data, contract data, information about the content of your inquiry, and data concerning payment methods. This is to allow for selection, ordering, delivering and provision of the selected products and services and to paying for them.

1.3 Registration for training

When you register with Arina for trainings, we collect and store personal data from you during the registration process. In addition, we may collect further personal data in advance and during the course of the training. This data includes, in particular, contact data (first name, last name, e-mail address, company, etc.) as well as any other contractual data and data regarding payment terms. This is to enable you to plan and conduct the training courses.

1.4 Contact form

If you send us an inquiry via our contact form, the data you enter, including your contact details (first name, last name and e-mail address), will be stored by us to process your inquiry and for follow-up questions from out side.

1.5 Newsletter

If you would like to subscribe to our newsletter, we will collect your contact data (first name, last name, e-mail address and company) as well as any information that allows us to verify that you are the owner of the e-mail address provided and that the owner agrees to receive the newsletter. We use these data exclusively for sending the requested information and do not pass them on to third parties. You can revoke your consent to the storage of the data, the e-mail address as well as its use for sending the newsletter at any time - for example via the 'unsubscribe' link in the newsletter.

1.6 Job applications

If you apply for a job with us, we collect and store personal data in this context. These may include, in particular, your contact details (first name, surname, address, e-mail address), demographic data, data concerning your curriculum vitae, education and previous employment. We do not pass on this data to third parties.

2 LEGAL BASES AND PURPOSES

Our legal basis for collecting and using the personal information described in this Data Protection Policy depends on the personal information we collect and the specific purposes for which we collect it.
Contract: For the purpose of fulfilling our contractual obligations or taking any action in connection with a contract:
● to provide our services
● to offer you support
Consent: For the following purposes we can rely on your voluntarily given consent at the time of providing your personal data:
● to provide you with news, special offers, newsletters and general information about goods and services we offer (with your express permission).
● to process your job application.
Legitimate interests: For the following purposes we rely on our overriding legitimate interest:
● to provide and maintain our website and the detect, prevent and combat security threats.
● to analyze, improve, personalize and monitor the use of our website and communication.
Public interest: For the purpose of meeting obligations in the regulatory and public interest
● to maintain records in accordance with applicable regulations and laws.

3 SAVING AND STORAGE OF DATA

We will retain your personal information only for as long as necessary for the purposes set forth in Section 2 of this Data Protection Policy and only to the extent necessary to fulfill our legal obligations, resolve potential disputes and enforce our legal agreements and policies.

4 SERVICE PROVIDER AND DATA TRANSFERS

We may use third party companies ("Service Providers") to provide our services (e.g., delivering products, conducting training, processing payments, etc.) and to facilitate the operation of our website and to provide related services, such as IT infrastructure services. These third parties have access to your personal information only and only to the extent necessary to perform these functions on our behalf and are required to protect such information in accordance with applicable data protection laws.
Such protection measures may include transfers to countries that provide an adequate level of protection according to the country lists published by the Swiss Federal Data Protection and Information Commissioner. Similarly, the use of standard data protection clauses, binding company rules or other standard contractual obligations or international agreements that provide for an adequate level of data protection.
By agreeing to this Data Protection Policy and the providing your personal data, you expressly consent to these data transfers.
We regularly use the following service providers to provide our services:

4.1 Analytics

We use Google Analytics to continuously improve the content of our website. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses "cookies". Cookies are text files which are stored on your computer and which enable an analysis of your use of the website. The information collected by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
You can prevent the storage of cookies by configuring your browser software accordingly; however, please note that in this case you may not be able to use the full functionality of this website. You can also prevent Google from collecting and processing the data generated by the cookie in relation to your use of the website (including your IP address) by downloading and installing the browser plugin available here:
https://tools.google.com/dlpag....
You can prevent Google Analytics from collecting your data by clicking on the following link. An opt-out cookie will be activated which will prevent your data from being collected during a future visit to this website: Deactivate Google Analytics. For more information about how Google Analytics processes user data, please refer to the Google Privacy Policy:. https://support.google.com/ana....

4.2 Shipping companies

For the delivery of orders we work with external shipping companies, which are carefully selected by us. These service providers only receive the necessary personal data from us for the execution of the respective order, which may in particular include the following data:
• first name, name
• address, delivery address or postcode
• e-mail address

5 DISCLOSURE OF DATA

We may disclose your personal information in good faith and in the belief that it is necessary:
● to fulfill a legal obligation (i.e., when required by law or in response to valid requests from governmental authorities, such as a court or government agency);
● to protect the security of the site and defend our rights or property;
● to prevent or investigate possible misconduct in connection with Arina;
● to protect us from legal liability.

6 DATA SECURITY

We take appropriate technical and organizational security measures that we deem appropriate to protect your stored data from manipulation, loss or unauthorized access by third parties. Our security measures are continuously adapted in line with technological developments.
We also take internal data protection very seriously. Our employees and the service providers commissioned by us are obliged to maintain confidentiality and to comply with the applicable data protection laws. In addition, they are only granted access to personal data to the extent that this is necessary to fulfill their respective tasks or mandate.
The security of your personal information is important to us, but please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. Although we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. We recommend that you use anti-virus software, a firewall and other similar software to protect your system.

7 DATA PROTECTION RIGHTS

Depending on your country of residence, you may have the privacy rights listed below. Please note that we may ask you to prove your identity before responding to such requests.
Access to your personal information (or exercise any of the other rights) is free of charge to you. However, we may charge a reasonable fee if your request is manifestly unfounded, repeated or harassing. Alternatively, in such circumstances, we may refuse to comply with your request.

7.1 Right to information and access

You have the right to know whether we process and store personal data about you. If this is the case, you can request information about this personal data as well as further information about processing, duration of storage, etc. You can also request a copy of your personal data, which we will make available to you in electronic form.

7.2 Right to correction and completion

You have the right to ask us to correct our records if you believe that they contain incorrect or incomplete information about you.

7.3 Right to revoke consent

If you have given your consent to the collection, processing and transfer of your personal data, you have the right to withdraw your consent in whole or in part. This also applies to cases in which you wish to unsubscribe from marketing communications.
As soon as we receive notification that you have withdrawn your consent, we will no longer process your data for the purposes for which you originally agreed, unless there is another legal basis for processing. To stop receiving e-mails from us, please click on the 'unsubscribe' link in the e-mail you received from us.

7.4 Right to deletion

You have the right to request that we delete your personal data if they are no longer necessary for the purposes for which they were collected or if they have been processed unlawfully.

7.5 Right to restrict processing

You have the right to request a limitation of the processing of your personal data if you believe that it is incorrect or our processing is unlawful.

7.6 Right to portability

You have the right to request that we transfer your personal data in a common format, such as Excel, to another person responsible for data processing, if it concerns data that you have made available to us and if we process this data on the basis of your consent or to fulfil our contractual obligations..

7.7 Right to object to processing

If the legal basis for the processing of your personal data is our legitimate interest, you have the right to object to such processing for reasons relating to your particular situation. We will comply with your request unless we have a compelling legal basis for processing that overrides your interests or unless we need to continue processing the personal data to exercise or defend a legal claim.

7.8 Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates data protection law. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (www.edoeb.admin.ch/edoeb/en/ho...). If you are resident in the EU, please contact the competent supervisory authority in your member state.

8 LINKS TO THIRD-PARTY WEBSITES

Our website may contain links to websites or applications that are not operated by us. When you click on a third-party link, you will be directed to that third-party website or application. We have no control over and are not responsible for the content, data protection policies or practices of third party websites or services.

9 COOKIE POLICY

The Arina website uses 'cookies'. Cookies do not damage your computer and do not contain viruses. Cookies help to make our website more user-friendly, effective and safe. Cookies are small text files that are stored on your computer and saved by your browser.
The majority of the cookies we use are 'session cookies'. These are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable us to recognize your browser during your next visit. You can set your browser to inform you when cookies are saved and to allow cookies only under certain circumstances, to block cookies completely or under certain circumstances or to ensure that cookies are deleted when you close your browser. Disabling cookies may limit the functionality of this website.
For further information please refer to our Cookie Policy.

10 MODIFICATIONS

We expressly reserve the right to modify this Data Protection Policy at any time. If such changes are made, they will be published immediately on this website. It is your responsibility to check our website for the latest version of this Data Protection Policy. We therefore recommend that you consult this Data Protection Policy regularly.

Scuol and München, 1 September 2023