Vendor Relations - Software Review Policies & Procedures

Thank you for viewing our Software Review Policies and Procedures Guide. We are dedicated to providing our customers with the most accurate spyware information and protection possible.

Acknowledging the ever-changing nature of spyware and potentially unwanted applications, ParetoLogic institutes a three-pronged approach to the detection of new spyware/potentially unwanted applications and the decision to include such applications in our database. Utilizing the expertise of the ParetoLogic SWAT Team, feedback from our customers, and information from spyware experts and software vendors/developers, ParetoLogic employs a painstaking and thorough investigation, measuring the characteristics and behaviours of each suspect application against our Criteria for Detection guidelines.

False Positive Reports

ParetoLogic employs due diligence to ensure that all applications included in our spyware/potentially unwanted applications database are accurate and up to date. If a consumer or a software vendor is concerned that a certain application has been erroneously included in our spyware/potentially unwanted application database, they are encouraged to inform us of their concerns in the following manner:

Consumers or software vendors who wish to report a possible false positive entry in the spyware database may report their concerns here.

All reports of possible false positive inclusions in our database are immediately investigated by ParetoLogic's SWAT team and if found to be erroneous in their inclusion, will be corrected in a timely manner. If our investigation confirms that the application in question meets ParetoLogic's criteria for detection, a vendor/developer may submit a formal request for a re-evaluation of their product or application.


Requests for Re-Evaluation of Applications Included In Our Database

A software vendor/developer who asserts that their product or application has been unfairly classified as spyware/potentially unwanted application according to our detection criteria may submit a formal request for a re-evaluation of that product or application. The process for this submission is outlined in the remainder of this document and is required for ParetoLogic's acceptance of a request for re-evaluation.


ParetoLogic's Software/Application Re-Evaluation Process

This process has been designed to facilitate the re-evaluation process in a fair, accurate, and timely manner. It is our intention that this process will provide our users with the most accurate anti-spyware information and tools possible.

1. Software Vendor/Developer Reviews ParetoLogic's Software Review Policies and Procedures Document and ParetoLogic's Detection Critieria
   
   All software vendors intending to request a re-evaluation of their software/application are strongly advised to carefully read ParetoLogic's Software Review Policies and Procedures (this document) as well as ParetoLogic's Detection Criteria guidelines.
   
   
2. Software Vendor Completes and Submits Vendor Request for Re-Evaluation Form
   
   In order to attain all the relevant information required to initiate a fair and accurate investigation, ParetoLogic has developed a Vendor Request for Re-Evaluation Form for all software vendors/developers requesting a re-evaluation of their application. Thorough responses to each question posed will ensure a more expedient resolution to your request.
   
   
3. ParetoLogic Confirms Receipt of Request for Re-Evaluation
   
   Upon receipt of a completed Vendor Request for Re-Evaluation Form, ParetoLogic will reply to the vendor/developer within 48 hours, confirming receipt of the Vendor Request for Re-Evaluation Form. The vendor will be given an approximate period of time in which to expect that the investigation will be completed and a response given.
   
   
4. ParetoLogic Conducts Investigation
   
   ParetoLogic's SWAT team will conduct a comprehensive investigation of the application in question, measuring the characteristics and behavior of the application against ParetoLogic's Detection Criteria. The Detection Criteria addresses several factors of an application's performance. Specifically, these are:
   
   
   • Installation, Notice, and Consent
   • License Provisions
   • System Configuration Alterations
   • Data Transmission and Privacy
   • Computer Performance, Reliability, and User Experience
   • Malware characteristics
   • Advertising Practices
   • Removal Procedures
   • EULA and Consent Practices
   ParetoLogic's re-evaluation of the application may include the following:
   
   
   • Thorough testing of the application
   • Thorough examination of the vendor's website and documentation
   • Examination of the vendor's/developer's EULA
   • Examination of the vendor's/developer's stated Privacy Policies
   • Examination of advertising and marketing practices
   • Examination of the nature of relationships and partnerships with affiliates, partners, advertisers, and distributors
   • Investigation of end-user complaints in online forums and blogs
   • Investigation of reviews and reports available from industry experts
   • Consultation with industry experts
5. If Necessary, ParetoLogic May Contact the Vendor to Obtain Supporting Information and/or Clarification
   
   Although every effort is made by ParetoLogic to obtain all the information necessary at the outset of the investigation, the SWAT team may require clarification and/or supporting information in order to perform an accurate evaluation of the application. This enquiry could include questions regarding technical functionality of the application, EULA and Privacy Policies, affiliate, partnership, and promotional practices, and requests for alternative download links to the application.
   
   If ParetoLogic deems this action necessary, the vendor will be contacted via email and/or possibly by telephone by the Vendor Relations Manager. We require all vendors submitting a request for a re-evaluation to appoint one contact person with whom ParetoLogic may communicate. In order to ensure an expedient resolution to the investigation, we request that all correspondence from ParetoLogic be responded to by this contact person in a reasonable period of time.
   
   
6. The Application is Measured Against ParetoLogic's Detection Criteria
   
   After careful evaluation of all the information garnered during the investigation, ParetoLogic's SWAT team will measure the characteristics and behaviour of the application as well as the promotional, advertising, and partnership/affiliate activities of the vendor/developer against ParetoLogic's Detection Criteria.
   
   ParetoLogic's Detection Criteria has been developed in accordance with Internet Security Industry guidelines as well as with the consultation and experience of industry experts. We believe the criteria set out in the document represent a fair and accurate depiction of characteristics associated with spyware, malware and potentially unwanted applications.
   
   
7. ParetoLogic SWAT team Submits Results of Investigation to ParetoLogic Management for Evaluation
   
   ParetoLogic's SWAT team will submit the results of their investigation, including any and all findings of instances in which the application or the actions of the vendor/developer met the ParetoLogic Detection Criteria. The SWAT team will provide ParetoLogic management with their assessment and recommendations regarding the most appropriate course of action to be taken. These recommendations will include:
   
   
   • The inclusion or exclusion of the application in the XoftSpy/XoftSpySE database
   • The proposed classification of the application if included in the database
   • The appropriate threat level to be designated to the application
   • What, if any, default options regarding the application should be given to users
   • Any updates that should be made to the applications description in ParetoLogic's Glossary/Definitions support page
   • What changes could be made by the vendor/developer in order for the application or vendor practices to comply with standard Internet security and privacy practices.
   ParetoLogic management will review the evaluations and recommendations submitted by the SWAT team and will render a decision as to the best course of action. ParetoLogic management will uphold the detection of the application if the application or vendor/developer practices meet any or all of the detection criteria. ParetoLogic may choose to alter the threat level and default options presented to ParetoLogic customers if there are valid considerations for doing so.
   
   
8. ParetoLogic Notifies Vendor/Developer of Results of Re-Evaluation
   
   The Vendor Relations Manager will provide to the vendor/developer contact individual a formal response via email outlining the pertinent findings of the investigation. This response will include in what ways, if any, the application in question or the vendor/developer met the detection criteria, and the resulting decisions and actions to be taken by ParetoLogic regarding the inclusion of the application in the ParetoLogic spyware/potentially unwanted application database. The vendor/Developer contact person may contact the ParetoLogic Vendor Relations Manager for further clarification for up to 30 days after they have received the results of the re-evaluation.



9. ParetoLogic Proceeds with Actions as Outlined in the Formal Response to Vendor/Developer
   
   When the re-evaluation of the application and/or vendor/developer practices is complete, ParetoLogic will initiate the actions as outlined in the formal response to the vendor/developer. In our effort to offer our users an accurate and up to date spyware/potentially unwanted application database, ParetoLogic endeavors to make timely alterations to our database as required. To this end, any changes to be instituted regarding the application in question will be made as quickly as possible. Please be advised that such changes can take up to 30 days to take effect.

Final Notes

1. ParetoLogic Retains Absolute Autonomy Over its Software Re-Evaluation Process and its Detection Criteria
   
   ParetoLogic values the expertise of industry professionals/organizations/associations and while we may on occasion solicit opinions or advice from these entities, we retain absolute autonomy over our software re-evaluation process and ParetoLogic's detection criteria.
   
   
2. ParetoLogic Retains the Right to Disclose and/or Publish Any and All Information Related to Software/Application Re-Evaluations
   
   As part of ParetoLogic's ongoing effort to provide as much information as possible to users to further their knowledge of Internet security and privacy issues as well as the procedures and criteria used by ParetoLogic, we reserve the right to disclose and/or publish any and all information related to software/application re-evaluations.
   
   
3. Vendors/Developers May Request an Additional Re-Evaluation of their Application No Less Than Six Months From the Formal Response Date of the Most Recent Re-Evaluation
   
   ParetoLogic appreciates efforts on behalf of vendors/developers to develop applications, products, and marketing that respects the privacy, integrity, and dominion of end users and their computers. In order to allow sufficient time for material and significant changes to be implemented in applications seeking re-evaluation, vendors and developers may request an additional re-evaluation of the application in question no less than six months from the formal response date of the most recent evaluation of said product.

Thank you for reviewing the ParetoLogic Software Review Policies and Procedures Guide. We appreciate your cooperation in helping us to provide the most accurate and current information possible to our customers.

Consumers or Software Vendors who wish to report a possible false positive entry of an application in our spyware database may report their concerns to us here.

If you believe that your application does not meet our detection criteria and would like us to re-evaluate it, please complete and submit our Vendor Request for Re-Evaluation form here.