Compliance and Privacy Assurance
Stewards of your data
The AppDynamics platform provides data that helps you make important business decisions. As stewards of that data, we leverage security, privacy, and compliance frameworks with supporting materials that attest to our capabilities. This makes it easier for you to navigate the complex compliance landscape.
FedRAMP
FedRAMP
As of June, 2020, AppDynamics offers a solution that obtained FedRAMP Moderate Authorization. Government agencies and service providers with authorized offerings can leverage the AppDynamics cloud-based performance monitoring solution. Learn more about the AppDynamics FedRAMP authorized offering here.
SOC 2
SOC 2
AppDynamics’ privacy controls are examined at least once a year by a qualified and independent third-party auditor as part of AppDynamics’ SOC 2 Type II audit. Audit reports are available to customers upon request, as well as potential customers under NDA. We have received a SOC 2 attestation covering security, privacy, confidentiality, and availability since 2014.
Personnel Controls
Personnel Controls
All employees are required to undergo annual security training and must comply with Cisco’s Global Personal Data Protection and Privacy Policy and binding corporate rules.
GDPR
GDPR
The GDPR reinforces existing data protection principles in the European Union (EU) and expands legal protections and privacy rights for EU citizens. A cross-functional effort between our privacy and product teams has led to many product enhancements designed to make it simple for our customers to use our products and SaaS service in compliance with GDPR. Learn more about AppDynamics' compliance with GDPR.
Privacy Policy
Our privacy policy reflects our commitment to protecting personal data. It provides details on the type of personal information we collect, how we store it, how we use it, and what rights individuals have and how to exercise them. Read our Privacy Policy.
Subprocessors
Subprocessors
AppDynamics performs due diligence reviews of all third parties that support the delivery and availability of our products and services. Contractual agreements ensure sub-processing meets our high standards and applicable laws. Learn more about the subprocessors we use.
What is a subprocessor?
AppDynamics engages third parties to support the delivery and availability of our products and services. Some of these third parties are engaged as “subprocessors” to host or process customer data, which may include personal data.
AppDynamics’ subprocessors
Prior to engaging any third party that accesses production infrastructure or processes customer data, including the subprocessors listed below, AppDynamics performs due diligence reviews of each third party's information security program, privacy practices, confidentiality commitments and puts appropriate contractual terms in place to ensure sufficient guarantees that the processing will meet the high standards required by AppDynamics and applicable laws.
A list of subprocessors currently used to provide AppDynamics software products and services is set out below. AppDynamics will update this page when necessary. Please review this page frequently for any updates and to view the most current subprocessor list.
Infrastructure subprocessors
Subprocessor |
Subprocessing activity |
Location of subprocessor |
|---|---|---|
| Amazon Web Services (AWS) | AppDynamics leverages the Amazon Web Services (AWS) Virtual Private Cloud platform to host portions of its SaaS environment. | Global locations |
| Azure | AppDynamics leverages the Microsoft Azure Virtual Private Cloud platform to host portions of its SaaS environment. | Global locations |
Other subprocessors
Subprocessor |
Subprocessing activity |
Location of subprocessor |
| Salesforce (SFDC) | AppDynamics uses SFDC’s software-as-a-service for their customer relationship management (CRM) system and to provision application licenses to the platform products. | Global locations |
| Rookout | AppDynamics leverages the Rookout platform to host its Deep Code Insight product which provides responsive live code observability for rapid debugging and frictionless logging. | United States |
| Zendesk | AppDynamics leverages Zendesk’s ticket management software-as-a-service platform to provide customer support. | United States |
| Okta | AppDynamics leverages Okta to provide Single Sign-On (SSO) authentication for support staff to production environments and to store credentials for the customers who don't have their own Identity providers. | United States |
| Splunk | AppDynamics uses Splunk for centralized logging services, including application audit logs of account events (e.g. login, logout). | United States |
AppDynamics Affiliates
AppDynamics may engage any of its affiliates listed below as a subprocessor, depending where a customer may be geographically located and what products and services a customer consumes.
Affiliate name |
Location |
| AppDynamics Asia Pacific Pte. Ltd. | Singapore |
| AppDynamics International Ltd | United Kingdom |
| AppDynamics LLC | United States |
| AppDynamics Proprietary Limited | South Africa |
| AppDynamics SA, en liquidation | Switzerland |
| AppDynamics India Private Limited | India |
| AppDynamics UK Ltd | United Kingdom |
Data Residency
Data Residency
We offer customers the ability to meet data residency requirements in multiple jurisdictions including the EU, the United States, Australia, Singapore, South Africa, United Kingdom, Hong Kong, and India.
International Data Transfers
AppDynamics complies with applicable law when international transfers of its customers’ personal data are made. Where a customer’s use of AppDynamics products and services requires the transfer of personal data to a location outside the European Economic Area, AppDynamics employs Standard Contractual Clauses (also commonly referred to as EU Model Clauses) as a legally recognized data transfer mechanism.
Product Data Sheets
Product Data Sheets
AppDynamics values transparency and partnership when developing trust with our customers. We know that our customers need to evaluate our products for privacy impact and as part of a regular and healthy vendor risk review. Please review the product information below to learn more about what data may be collected and processed by AppDynamics products.
Standards and data handling
