Data Governance

This article provides information regarding the collection, storage, and retention of logs by Citrix Hypervisor.

Citrix Hypervisor is a server virtualization platform that enables the customer to create and manage a deployment of virtual machines. XenCenter is the management UI for Citrix Hypervisor. Citrix Hypervisor and XenCenter can collect and store customer data as part of providing the following capabilities:

  • Health Check - The Health Check service runs on your XenCenter machine and generates server status reports for Citrix Hypervisor servers and pools that are enrolled in the service. The information is collected and automatically uploaded to Citrix Insight Services on a schedule defined by the customer. For more information, see Health Check.

  • Server status reports - A server status report can also be generated on-demand and uploaded to Citrix Insight Services or provided to Citrix Support. The server status report contains information that can aid in diagnosing issues in the customer’s environment.

  • Automatic updates for the Management Agent - The Management Agent runs within VMs hosted on a Citrix Hypervisor server or pool. If the server or pool is licensed, the Management Agent can check for and apply updates to itself and to the I/O drivers in the VM. As part of checking for updates, the automatic update feature makes a web request to Citrix that can identify the VM where the Management Agent runs.

  • XenCenter check for updates - This feature determines whether any hotfixes, cumulative updates, or new releases are available for the Citrix Hypervisor servers and pools XenCenter manages. As part of checking for updates, this feature makes a web request to Citrix that includes telemetry. This telemetry is not user-specific and is used to estimate the total number of XenCenter instances worldwide.

  • XenCenter email alerts XenCenter can be configured to send email notifications when alert thresholds are exceeded. To send these email alerts, XenCenter collects and stores the target email address.

Data residency

Citrix Hypervisor diagnostic logs are on the server where you installed Citrix Hypervisor.

Server status reports that are uploaded to Citrix Insight Services are stored in Amazon S3 environments located in the United States.

The web logs captured from the requests made by the Management Agent automatic updates feature and the XenCenter check for updates feature are located in a Microsoft Azure Cloud environment located in the United States. These logs are then copied to a log management server in the United Kingdom.

The email address that XenCenter uses to send email alerts is stored on the machine where you installed XenCenter.

Data collection

Citrix Hypervisor and XenCenter collect information from the following data sources:

  • XenCenter
  • Citrix Hypervisor servers and pools
  • Hosted VMs

Data transmission

XenCenter and the Health Check service transmit server status reports securely to Citrix Insight Services.

The web requests made by the Management Agent automatic updates feature and the XenCenter check for updates feature are made over HTTPS. Web log files are transmitted securely to the log management server.

Data control

Citrix Hypervisor servers and pools must be enrolled in Health Check by using your MyCitrix account to opt in to the data being collected and stored. These servers and pools can be unenrolled from Health Check at any time.

You can select which data items are included in the Health Check data and server status reports. You can also delete any Health Check data or server status reports that are uploaded to your MyCitrix account on Citrix Insight Services.

You can select whether your VM uses the Management Agent automatic update feature. If you choose to use the Management Agent automatic update feature, you can also choose whether the web request includes the VM identifying information.

The XenCenter check for updates feature is enabled by default. You can choose to disable this feature.

You can delete email alerts configured in XenCenter to remove the stored email information.

Data retention

Citrix Insight Services does not implement an automatic data retention for server status reports collected by the Health Check service or uploaded by the customer. The customer determines the data retention policy. You can choose to delete any Health Check data or server status reports that are uploaded to your MyCitrix account on Citrix Insight Services.

For more information about Citrix Insight Services data handling, see the Data Collection and Privacy statement in the Citrix Insight Services website.

Web logs containing information from web requests made by the Management Agent automatic updates feature and the XenCenter check for updates feature can be retained indefinitely.

XenCenter retains the email information used to provide email alerts for the lifetime of the email notification. When you delete the configured email alert, the data is removed.

Data collection agreement

The information that Health Check uploads to Citrix Insight Services is used for troubleshooting and diagnostics support purposes, as well as to improve the quality, reliability, and performance of our products subject to the Citrix Insight Services Policy and the Citrix Privacy Policy.

At all times, any information received by Citrix is treated in accordance with the Citrix Privacy Policy.

Appendix: data collected

Server status report

A server status report can contain the following log files:

Log type Contains PII?
xapi-debug maybe
xen-info maybe
conntest no
xha-liveset maybe
high-availability maybe
firstboot yes
xenserver-databases yes
multipath maybe
disk-info maybe
xenserver-logs maybe
xenserver-install maybe
process-list yes
blobs no
xapi yes
host-crashdump-logs maybe
xapi-subprocess no
pam no
control-slice maybe
tapdisk-logs no
kernel-info maybe
xenserver-config maybe
xenserver-domains no
device-model yes
hardware-info maybe
xenopsd maybe
loopback-devices maybe
system-services no
system-logs maybe
network-status yes
v6d maybe
CVSM no
message-switch maybe
VM-snapshot-schedule no
xcp-rrdd-plugins maybe
yum if customized
fcoe yes
xapi-clusterd maybe
network-config if customized
boot-loader no

Management Agent automatic updates web log

The Management Agent automatic updates web requests can contain the following data points:

  • IP address of the VM where the Management Agent is installed
  • A VM UUID

XenCenter check for updates web log

The Check for updates feature web requests contain the following data points:

  • IP address of the XenCenter host machine
  • XenCenter version
  • A UUID

XenCenter email alerts

To provide email alerts XenCenter stores the following data points:

  • Email address
  • SMTP server