Compliance and Privacy Assurance
Stewards of your data
The AppDynamics platform provides data that helps you make important business decisions. As stewards of that data, we leverage security, privacy, and compliance frameworks with supporting materials that attest to our capabilities. This makes it easier for you to navigate the complex compliance landscape.
FedRAMP
FedRAMP
As of June, 2020, AppDynamics offers a solution that obtained FedRAMP Moderate Authorization. Government agencies and service providers with authorized offerings can leverage the AppDynamics cloud-based performance monitoring solution. Learn more about the AppDynamics FedRAMP authorized offering here.
SOC 2
SOC 2
AppDynamics’ privacy controls are examined at least once a year by a qualified and independent third-party auditor as part of AppDynamics’ SOC 2 Type II audit. Audit reports are available to customers upon request, as well as potential customers under NDA. Our SOC 2 has been in place for five years and covers security, availability, confidentiality, and privacy.
Personnel Controls
Personnel Controls
All employees are required to undergo annual security training and must comply with Cisco’s Global Personal Data Protection and Privacy Policy and binding corporate rules.
GDPR
GDPR
The GDPR reinforces existing data protection principles in the European Union (EU) and expands legal protections and privacy rights for EU citizens. A cross-functional effort between our privacy and product teams has led to many product enhancements designed to make it simple for our customers to use our products and SaaS service in compliance with GDPR. Learn more about AppDynamics' compliance with GDPR.
Privacy Shield
Privacy Shield
AppDynamics previously certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, voluntary frameworks that introduced security protections for the flow of data from Europe to the United States. AppDynamics continues to maintain the related security/privacy controls and also incorporates Standard Contractual Clauses (SCCs) to enable the safe and legal transfer of personal data outside of the EU/EEA into contracts.
Privacy Policy
Our privacy policy reflects our commitment to protecting personal data. It provides details on the type of personal information we collect, how we store it, how we use it, and what rights individuals have and how to exercise them. Read our Privacy Policy.
Subprocessors
Subprocessors
AppDynamics performs due diligence reviews of all third parties that support the delivery and availability of our products and services. Contractual agreements ensure sub-processing meets our high standards and applicable laws. Learn more about the subprocessors we use.
What is a subprocessor?
AppDynamics engages third parties to support the delivery and availability of our products and services. Some of these third parties are engaged as “subprocessors” to host or process customer data, which may include personal data.
AppDynamics’ subprocessors
Prior to engaging any third party that accesses production infrastructure or processes customer data, including the subprocessors listed below, AppDynamics performs due diligence reviews of each third party's information security program, privacy practices, confidentiality commitments and puts appropriate contractual terms in place to ensure sufficient guarantees that the processing will meet the high standards required by AppDynamics and applicable laws.
A list of subprocessors currently used to provide AppDynamics software products and services is set out below. AppDynamics will update this page when necessary. Please review this page frequently for any updates and to view the most current subprocessor list.
Infrastructure subprocessors
Subprocessor |
Subprocessing activity |
Location of subprocessor |
|---|---|---|
| Amazon Web Services | AppDynamics leverages the Amazon Web Services (AWS) Virtual Private Cloud platform to host portions of its SaaS environment. | Global locations |
| Imperva Incapsula | AppDynamics leverages Incapsula to provide protection against distributed-denial-of-service (DDoS) attacks for its SaaS environment. | Global locations |
| CenturyLink | AppDynamics leverages CenturyLink to provide protection against distributed-denial-of-service (DDoS) attacks for its SaaS environment. | Global locations |
| IBM Softlayer | AppDynamics leverages IBM Softlayer to provide additional points-of-presence for its Synthetic User Monitoring product allowing customers to test their applications from additional geographic locations worldwide. | Global locations |
Other subprocessors
Subprocessor |
Subprocessing activity |
Location of subprocessor |
| Rookout | AppDynamics leverages the Rookout platform to host its Deep Code Insight product which provides responsive live code observability for rapid debugging and frictionless logging. | United States |
| Zendesk | AppDynamics leverages Zendesk’s ticket management software-as-a-service platform to provide customer support. | United States |
AppDynamics Affiliates
AppDynamics may engage any of its affiliates listed below as a subprocessor, depending where a customer may be geographically located and what products and services a customer consumes.
Affiliate name |
Location |
| AppDynamics Asia Pacific Pte. Ltd. | Singapore |
| AppDynamics International Ltd | United Kingdom |
| AppDynamics LLC | United States |
| AppDynamics Proprietary Limited | South Africa |
| AppDynamics SA, en liquidation | Switzerland |
| AppDynamics India Private Limited | India |
| AppDynamics UK Ltd | United Kingdom |
Data Residency
Data Residency
We offer customers the ability to meet data residency requirements in multiple jurisdictions including the EU, the United States, Australia and India.
International Data Transfers
We transfer personal data according to applicable laws. If your use of our products and services requires us to transfer personal data outside the European Economic Area and/or Switzerland, we follow mechanisms laid out in the EU-US Privacy Shield or the Swiss-US Privacy Shield. We are also able to enter into the Standard Contractual Clauses (commonly referred to as EU Model Clauses).
Product Data Sheets
Product Data Sheets
AppDynamics values transparency and partnership when developing trust with our customers. We know that our customers need to evaluate our products for privacy impact and as part of a regular and healthy vendor risk review. Please review the product information below to learn more about what data may be collected and processed by AppDynamics products.
Explore the Trust Center
