Cloud Protection for Salesforce

The threat landscape is constantly evolving, which also means changes in the protection offered by WithSecure. Old products cannot respond to all the current threats.

Security fixes and non-security fixes are not provided for unsupported product versions. Virus definition updates are not tested with End-of-Lifed products. This may decrease the protection capability and reliability of old products, causing, for example, the malfunctioning of the product, conflicts with third party software, false positives and negatives.

Salesforce platform support policy

Salesforce makes major updates to their platform three times per year, usually in Spring, Summer, and Winter. Salesforce plans their platform updates months in advance and communicates the schedule to partners and customers through Salesforce roadmap update sessions. Salesforce first validates prerelease updates in sandboxes and then automatically rolls out new platform releases to production environments globally.

WithSecure is committed to supporting the latest Salesforce platform updates and providing full product compatibility with new releases before they are deployed to production environments. When changes introduced in a Salesforce platform release break compatibility, WIthSecure may release new versions of the Cloud Protection application to address and fix compatibility issues.

Version change policy

The WithSecure Business Suite solution consists of various products, such as Policy Manager or Client Security. These products have major, minor, and maintenance versions. The major version can also be referred to as the series, defined by the major version number (e.g., 14-series). Each series has its own lifecycle, and multiple product series can be supported at the same time. Typical changes in the product per version type include:

• Major (M.0)
• Distinctively new product generation or significant changes in the product functionality, performance, or security
• New integration with the Salesforce platform, WithSecure, or 3rd party services
• Minor (x.N)
• New features and improvements
• Support for Salesforce platform updates
• Support for new languages
• Maintenance (x.x.C)
• Maintenance releases (also known as patches) address critical defects or vulnerabilities
• In principal, maintenance releases do not introduce changes to the existing functionality

WithSecure reserves the right to discontinue or deprecate existing functionality from a new (major or minor) product version based on changes in the threat landscape, market situation, Salesforce platform, or any other business reason. All such changes are noted in the product release notes.

Product version support policy

The product version policy is applied to the WithSecure Cloud Protection application. WithSecure's Security Cloud and other backend systems used by the application follow an internal lifecycle policy and do not require any actions from customers. WithSecure updates Security Cloud and other services without impact to the application functionality and performance.

Major and minor version support for the product is a minimum of 12 months from general availability (GA) or until 3 months after the release of the next major/minor version, whichever is shorter.

WithSecure may release a new major or minor release of the application to support new Salesforce platform updates. In such cases, the previous version of the application is announced as reaching end of life when the new version becomes generally available.

Maintenance releases do not extend the lifespan. A new maintenance release automatically deprecates any previous maintenance release within the same major/minor versioge.

Product update policy

WithSecure Cloud Protection application can be updated by installing a new version from Salesforce AppExchange. WithSecure can also update the application remotely.

WithSecure highly recommends that you validate a new version of the application in sandbox environments before deploying it to production.

Customers are responsible for updating WithSecure applications in their production and sandbox environments and making sure that they are using the officially supported version. WithSecure provides "upgrade-as-a-service" free of charge and customers can contact WithSecure technical support to schedule automatic updates in a production or sandbox environment at the most convenient time.

WithSecure may update the application remotely without notice if there is a critical defect or vulnerability that can impact performance or compromise the security of the customer's Salesforce organization.

WithSecure reserves the right to update the application remotely if the customer does not upgrade to the new version before the previous version reaches end-of-life.

End-of-life communication policy

WithSecure makes end-of-life product announcements on the Product Lifecycle Announcements page. We encourage customers to visit the site regularly as it contains useful information regarding WithSecure's end-of-life program.

To inform partners and customers well in advance of an approaching end-of-life milestone, WithSecure sends an electronic notification at least 30 days prior to a product's end of life.

Change policy

WithSecure reserves the right to change this policy without prior notice, in which case the new policy will be made available to partners and customers on the supported products page.