This analysis describes what Duo Security's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
This provision establishes the data collection scope and specified use cases that govern Duo's operational processing of authentication-related information. The authorized uses—threat detection, service improvement, and integrity verification—define the operational parameters within which Duo processes this data category.
Users of Duo's authentication services have device and network data collected and processed according to the stated purposes. The terms apply as written upon continued use of the service, meaning authentication activity data collection and processing occur automatically as part of service delivery.
How other platforms handle this
Device and Connection Information. Consistent with your device or browser permissions, your device or browser automatically sends us information about when and how you install, access, or use our Services. This includes information such as your device type, operating system information, browser info...
We collect information about you from a variety of sources, including information you provide directly to us, information collected automatically from your devices and use of our Services, and information from other sources. The types of personal information we collect include: Identifiers such as n...
Your use of the Services is also governed by our Privacy Policy, which is incorporated into these Terms by reference. By using the Services, you consent to the data collection and use practices described in the Privacy Policy. Roblox collects information you provide directly, information collected a...
Monitoring
Duo Security has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"When you use Duo's products and services, we collect information related to your authentication activity, including device information, operating system, browser type, IP address, and authentication events. This information is used to provide and improve our security services, detect threats, and ensure the integrity of the authentication process.— Excerpt from Duo Security's Duo Privacy
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
This provision establishes the data collection scope and specified use cases that govern Duo's operational processing of authentication-related information. The authorized uses—threat detection, service improvement, and integrity verification—define the operational parameters within which Duo processes this data category.
Users of Duo's authentication services have device and network data collected and processed according to the stated purposes. The terms apply as written upon continued use of the service, meaning authentication activity data collection and processing occur automatically as part of service delivery.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Duo Security.