2022 Cisco and/or its affiliates. All rights reserve.
pinned certificate public keys are then used by the Webex App to verify that the certificates received in the TLS
server certificate are the ones expected. Without certificate public key pinning, any publicly trusted CAs could
issue a certificate that a bad actor could use to intercept Webex Messaging communications. With traffic
inspection by the proxy server, the enterprise CA signed certificate will not match the certificate pins embedded
in the application software. In this case, the Webex App searches the OS trust store for a certificate that matches
the one received from the proxy server. If a matching certificate is found, the TLS connection from the Webex
App to the proxy server is allowed to be established.
8. Privacy
Webex App and Privacy Data Handling
Cisco has implemented appropriate technical and organizational measures designed to secure personal and
customer data from accidental loss and unauthorized access, use, alteration, and disclosure. Personal data
includes both identifying information (first name, last name, user ID, and so on) and user generated content
(meeting recordings, messages and files sent or received, and so on)
Additional information about collection and retention of personal and customer data by the Webex App is
available in the Webex App and Webex Messaging Privacy Data Sheet.
Support Logs
When a customer submits a request for support services or other troubleshooting to Cisco Technical Assistance
Center (TAC), Cisco TAC may receive and process support data which could include personal data. Support data
(logs, configuration and firmware files, core dumps, and so on) includes details related to a support incident,
such as authentication information, information about the condition of the product or system, and registry data
about software installations and hardware configurations. The Cisco Technical Assistance (TAC) Service Delivery
Privacy Data Sheet describes Cisco’s processing of such data.
Data Retention Policy
Personal, customer, and support data is retained by Cisco for varying periods of time based on the type of
information. Support data is retained for the longest period of time in order to comply with Cisco business record
audit policies. Customer and personal data are generally retained for shorter periods of time, but in the case of
user generated content the administrator can set longer retention periods. For additional information about
Webex App data retention, refer to the Webex App and Webex Messaging Privacy Data Sheet.
9. Pro Pack and Extended Security Pack
Advanced security capabilities and integrations are available to administrators of a Webex organization via the
following premium offers and service add-ons:
• Pro Pack for Control Hub
Pro Pack for Control Hub is a premium offer for customers that require more advanced security, compliance,
and analytics capabilities. Advanced capabilities include Hybrid Data Security with on-premises key
management, mobile device security controls, and flexible long-term retention and historical reporting.
For more information on the Pro Pack for Control Hub offer, refer to the Control Hub (Data Security and
Privacy) Data Sheet.