Malwarebytes maintains various certifications by regularly engaging with independent external auditors to assess and report on our security controls and objectively evaluate the effectiveness of controls that address operations and compliance. These reports are described in more detail here.
Malwarebytes also has specific privacy policies in place for its solutions. The Malwarebytes privacy policies are available here.
ThreatDown is an enterprise security solution with a unified management console hosted by Malwarebytes. ThreatDown provides a single point for deploying, enforcing, and managing security policies for any number and any type of endpoint in any location.
Malwarebytes is not designed for and does not expect to receive, store, process, or transmit electronic protected health data (ePHI). As a provider of software-as-a-service (SaaS) security services, Malwarebytes offers security capabilities to its customers, who implement those services in their own environment. Customers should determine the suitability of Malwarebytes products for their individual use cases.
To comply with HIPAA regulations, please ensure you do not submit any electronic protected health data (ePHI) to the ThreatDown Sandbox or other Malwarebytes services.