As a company, ensuring the integrity of the services we provide to our users is vitally important. Therefore, when we delete a group on our platform, we retain specific data that contains valuable information about the history of that group, always respecting and guaranteeing the confidentiality of this information. This practice is essential to maintain the integrity of our operations and services. It reinforces our ability to provide quality service.
We will show below which fields are kept in our database after deleting a group in our platform.
From the organization and group created:
Creation date
Language
Country
State info: i.e. active services, modification dates
Code languages information; i.e., LOC
Sprint length and start date
From registered repositories:
Creation date
Code languages info
Type: i.e git repository, URL, IP
From the ToE surface (i.e., lines, ports):
Attack date
Attacker email
First attack date
Whether it has vulnerabilities
Discovery date
Whether the ToE was present in Surface before group deletion
Last date the ToE was present in Surface
For Input ToEs, discoverer email
For Line ToEs:
Lines of Code
Attacked Lines
Sorts risk level
Of the vulnerability types found (findings):
Title
Severity
CVSS v3.1 vector string, base and temporal score
CVSS v4.0 vector string, base and temporal score
CVSSF
Requirements
Hacker email
Status information
Whether Sorts was involved in detection
Information on reattacks and verifications
Of the vulnerabilities found (locations):
Type: i.e., input, line, port
Severity
CVSS v3.1 vector string, base and temporal score
CVSS v4.0 vector string, base and temporal score
CVSSF
Machine method, if applies
Information regarding Status, Treatments, verifications and Zero risk requests
Custom Level (aka Priority; user defined)
Technique used for detection
File extension for code vulnerabilities
Of the events in the group:
Creation date
Created by (email)
Event date
Hacker email
Solution reason
Solving date
State info
Type
We do not store any information related to: