HP Device Health & System Health Apps - Security White Paper

Table Of Contents

Data Collection Flow

1. Device intermittently pings the SDS Cloud to inquire if there are any work requests

SDS Cloud responds with a telemetry data collection work request

Device responds to the work request by uploading the telemetry data to the SDS Cloud

HP Support retrieves telemetry data for the device from the SDS Cloud to provide support to customers

5. HP SDS cloud pushes anonymized usage data into HP Data Lake for machine learning/trend analysis

Additional information on the security measures associated with this solution are available in the FAQs of this document

Figure 3: Hp SDS Data Collection

To track device performance, HP Device Health collects telemetry data which includes device information,

and software registration. Device data is collected from the printer by the SDS cloud. The Device Health

app initiates the data collection and, if exposed, allows the user to track the process. All data gathered is

governed by the HP Privacy Statement.

HP acknowledges and ensures that the end-user customer is

aware of, and consents to, the following data collection parameters which includes:

• Information about devices such as model number, serial number including additional unique

device identifiers, network connection information, firmware version, control panel language, date

installed, number of pages printed, media used, ink or toner metrics and identifiers, and device

configuration.

• Information about solutions that are installed on devices, such as solution name and version.

• Information about device events, such as errors and warnings.

NOTE: None the following items are collected:

• Print job content

• Print job information

• Print job headers

• Job title name

• Sender info, etc.

Data Security

The security of HP customers' devices, data and personal information is a top priority for HP. All

communications between the Device Health enabled Printers/MFPs and the HP SDS platform

uses secure AES-256 encryption for data at rest. Data in transit is secured using TLS 1.2 channel

encryption and GCM secure encryption of the payload. All data gathered by HP is safeguarded per the

tenets of the HP Privacy Statement.

HP retains device telemetry data on the HP SDS platform for the purpose of improving SDS machine

learning accuracy for up to 10 years after the customer or HP has deactivated the device(s) from System

Health Apps & Device Health.