Skip to main content

Retention policies

The following section describes the GravityZone data retention policies.

Feature

Retention policy

GravityZone notifications

The default retention policy is 30 days. However, you can set your own values. The maxim allowed value is 365 days. For information on how to change the default policy, please see Configuring notification settings.

GravityZone incidents and alerts

Incident and alert data is available for 90 days. This period can be extended by enabling either the GravityZone EDR 180 days Data Retention Add-on, or GravityZone EDR 365 days Data Retention Add-on. This option is not compatible with MSP subscription plans.

Endpoint Detection and Response (XDR) Raw Events

Raw Events becomes available when activating one of the following add-ons: GravityZone EDR 90 days Data Retention Add-on, GravityZone EDR 180 days Data Retention Add-on, or GravityZone EDR 365 days Data Retention Add-on. This add-on also sets the retention period for Raw Events.

GravityZone data used for reporting

Data in GravityZone that is leveraged for reporting is available for 2 years.

GravityZone Quarantine

Retrieved files are available in Quarantine for 24 hours after which they are automatically deleted and a new retrieve action is required.

Sandbox Analyzer samples

Samples submitted to Cloud Sandbox Analyzer are deleted immediately after detonation.

Sandbox Analyzer reports

The HTML reports using data from samples submitted to Cloud Sandbox Analyzer are available for 365 days.

GravityZone Security for Email reports

GravityZone Security for Email report information is available for 3 months after a report has been generated from the console. After this period has passed, reports will be archived and you can access them by going to GravityZone Security for Email console > Analytics > Log archives.

Mobile Security threat and console data

Mobile Security data is retained by default for the duration of the contract and 60 days after the service expires. This includes device data and configuration data. The threat data and any threat detection will be retained for 90 days unless the service is deleted with respect to a service expiry as stated above.

Integrity Monitoring data retention add-on

In addition to the add-on license, Bitdefender offers a data retention add-on, which can store your events in GravityZone for 90 days, 180 days or 1 year. The default value of the data retention add-on is 7 days.

Note

You can only have one data retention add-on at a time. When the Integrity Monitoring add-on license is removed, the data retention add-on is also removed.

When the data retention add-on expires, the retention is reduced to 7 days if the Integrity Monitoring add-on license is still valid.