HMA Privacy Report

Although HMA doesn’t update its software often, it offers two and multi-factor authentication, secure encryption, and a fair logging policy. Additionally, the company hasn’t had any security breaches or shared any user data with governments, unlike many of its competitors.
Encryption
In Transit | Yes |
---|---|
At rest? | Yes |
All network communications and capabilities? | Yes |
Security Updates
Automatic, regular software/ firmware updates? | No |
---|---|
Product available to use during updates? | No |
Passwords
Mandatory password? | Yes |
---|---|
Two-Factor authentication? | Yes |
Multi-Factor authentication? | Yes |
Vulnerability Management
Point of contact for reporting vulnerabilities? | sec.report@hidemyass.com |
---|---|
Bug bounty program? | No |
Privacy Policy
Link | https://www.hidemyass.com/legal/privacy |
---|---|
Specific to device? | No |
Readable? | Yes |
What data they log | Day of connection, amount of data transferred, crash reports, email address, username, payment info, email address, livechat history |
What data they don’t log | Originating IP address, DNS queries, browsing history, transferred data |
Can you delete your data? | Yes |
Third-party sharing policies | Discloses data to third parties |
Surveillance
Log camera device/ app footage | n/a |
---|---|
Log microphone device/ app | n/a |
Location tracking device/ app | No |
Parental Controls
Are there parental controls? | No |
---|
Company History
Any security breaches/ surveillance issues in past? | No |
---|---|
Did they do anything to fix it? | n/a |
Additional Security Features
Anything like privacy shutters, privacy zones, etc.? | n/a |
---|