Trust Center Privacy Standards | AppDynamics

The AppDynamics platform provides data that helps you make important business decisions. As stewards of that data, we leverage security, privacy, and compliance frameworks with supporting materials that attest to our capabilities. This makes it easier for you to navigate the complex compliance landscape.

FedRAMP

As of June, 2020, AppDynamics offers a solution that obtained FedRAMP Moderate Authorization. Government agencies and service providers with authorized offerings can leverage the AppDynamics cloud-based performance monitoring solution. Learn more about the AppDynamics FedRAMP authorized offering here.

SOC 2

AppDynamics’ privacy controls are examined at least once a year by a qualified and independent third-party auditor as part of AppDynamics’ SOC 2 Type II audit. Audit reports are available to customers upon request, as well as potential customers under NDA. We have received a SOC 2 attestation covering security, privacy, confidentiality, and availability since 2014.

Personnel Controls

All employees are required to undergo annual security training and must comply with Cisco’s Global Personal Data Protection and Privacy Policy and binding corporate rules.

GDPR

The GDPR reinforces existing data protection principles in the European Union (EU) and expands legal protections and privacy rights for EU citizens. A cross-functional effort between our privacy and product teams has led to many product enhancements designed to make it simple for our customers to use our products and SaaS service in compliance with GDPR. Learn more about AppDynamics' compliance with GDPR.

Privacy Policy

Our privacy policy reflects our commitment to protecting personal data. It provides details on the type of personal information we collect, how we store it, how we use it, and what rights individuals have and how to exercise them. Read our Privacy Policy.

Subprocessors

AppDynamics performs due diligence reviews of all third parties that support the delivery and availability of our products and services. Prior to engaging third parties, we ensure that their information security program is reasonable and consistent with AppDynamics’ security and privacy obligations. Contractual agreements ensure sub-processing meets our high standards and applicable laws. Compliance reviews and re-assessments of third party suppliers is done regularly.

For specific information about sub-processors which process personal information in our products, please refer to the AppDynamics Privacy Data Sheets located on the Cisco Trust Portal.

Data Residency

We offer customers the ability to meet data residency requirements in multiple jurisdictions* including the EU, the United States, Australia, Singapore, South Africa, England, Hong Kong, India, and Brazil.

* Not all products are available in all locations.

International Data Transfers

AppDynamics complies with applicable law when international transfers of its customers’ personal data are made. Where a customer’s use of AppDynamics products and services requires the transfer of personal data to a location outside the European Economic Area, AppDynamics employs Standard Contractual Clauses (also commonly referred to as EU Model Clauses) as a legally recognized data transfer mechanism.

Product Data Sheets

AppDynamics values transparency and partnership when developing trust with our customers. We know that our customers need to evaluate our products for privacy impact and as part of a regular and healthy vendor risk review. Please review the product information below to learn more about what data may be collected and processed by AppDynamics products.