1 Introduction

1.1 Purpose

This article explains how Admin By Request (ABR) handles customer data. ABR is a Software as a Service (SaaS) platform for Privileged Access Management (PAM) that allows organizations to remove permanent local admin rights while still enabling users to perform administrative tasks.

1.2 Scope

This article applies to all paying customers subscribed to the ABR SaaS platform. It covers where data is stored, how it is collected, the security mechanisms in place, and the compliance measures to which ABR adheres.

1.3 Audience

This document is intended for:

Customers with an active subscription
Internal ABR support and service delivery teams
Auditors and procurement teams evaluating vendor support obligations

1.4 Related Articles

This article may refer to, and should be read in conjunction with, the following:

Commitments and responsibilities in ABR's Data Processing Agreement
Support provisions in ABR's Terms and Conditions and Customer Support Services
Collection, use and disclosure of personal data in ABR's Privacy Policy and Data Privacy Settings

Refer also to ABR's Trust Center documents.

This article is available in PDF format:

How We Handle Your Data

Related FAQ

Are you fully GDPR compliant?

Yes. For more information on how Admin By Request meets its compliance obligations and helps your organization do the same, refer to Compliance Mapping.

Can Admin By Request help with stolen computers?

Yes.

Once a stolen machine is booted and communicates with the Inventory, the public IP address of the thief’s router becomes available. The endpoint client does not require anyone to log on to a computer to upload data, so when the thief simply turns on the computer, inventory data is sent transparently. You can now see the public IP address and upload time in your client view and give this to the police. The police can then get the name and address of the IP address owner from the thief’s internet service provider (ISP).

Who can see devices in my tenant?

The only people who can see devices in your tenant are the primary login that was first used to register with Admin By Request and the users listed in the portal under Logins > User Logins.

The installer file downloaded from the portal is unique to your tenant. Depending on the target operating system, it can be an executable file, a package or a script and it is signed with a license that applies only to installers downloaded from the tenant in which you are currently logged-in. The same license file is applied to each of the operating system client installers: Windows, macOS, Linux and Server.

This is true for free plans as well as paid plans.

When installed on an endpoint, once the endpoint connects successfully, you will see in real time the status of the endpoint in your Inventory, which is also unique to your tenant. You will not see any endpoints installed with files downloaded from other tenants - this is simply not possible.