Privacy Policy

Privacy Policy

[Last Amended: June 2, 2021]

This Privacy Policy (“Privacy Policy”), is an integral part of our Terms of Service (“Terms”), and governs the processing and transfer of personal data collected or processed by Akeyless Security Ltd. (“Company“, “Akeyless”, “we”, “us” or “our”) when you visit our website, available at: https://www.akeyless.io/ (“Website“) and when you sign up for and use our services  (“Services“).

Any capitalized terms not defined herein shall have the meaning ascribed to them in the Terms.

This Privacy Policy explains what data we may collect from you, how such data may be used or shared with others, how we safeguard it and how you may exercise your rights related to your Personal Data (as defined below), among others, and where applicable, as required according to the EU General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”).

For the purposes of the GDPR we are considered the Controller (as such term is defined under the GDPR) of the Personal Data we collect from our Visitors and Customers and considered the Processor (as such term is defined under the GDPR) of the Personal Data that we process from our Customers’ employees.

In the event you are a California resident and the CCPA applies to you – please also review our CCPA Privacy Notice.

If you do not agree to this Privacy Policy and to the data collection practices, we describe here, we may not be able to properly provide you with the Services. If you have any questions regarding this Privacy Policy or our data practices, you are welcome to contact us at: privacy@akeyless.io.

APPLICABILITY

This Privacy Policy explains Akeyless’s data collection practices that are applicable toward: (i) any visitor of our Website (“Visitor”); and (ii) our customers who have signed up for our Services (“Customer“). Customers and Visitors will be jointly referred to as “user” “you” or “your“.

THE HIGHLIGHTS:

  1. INFORMATION PROCESSED BY AKEYLESS

We may collect two types of data and information from you, depending on your interaction with us. The first type of information is non-identifiable and anonymous information (“Non-Personal Data”). We are not aware of the identity of the individual from who we have collected the Non-Personal Data. Non-Personal Data which is being gathered consists of technical information, and may contain, among other things, the type of operating system and type of browser, type of device, your action in the website or Services (such as session duration and page impressions), or approximate geo-location. 

The second type of information is individually identifiable information, namely information that identifies an individual or may with reasonable effort identify an individual (“Personal Data”).

For the avoidance of doubt, any Non-Personal Data connected or linked to any Personal Data shall be deemed as Personal Data as long as such connection or linkage exists.

Personal Data we collect from Visitors of our Website

Type of DataPurposes of ProcessingFor EU persons – Legal Basis under the GDPR
Contact Information:In the event you contact us for support or any other inquiries, either through an online form available on the Website (i.e., the contact us page or support ticket), by sending us an email or by any other means of communications we may make available to you, you will be requested to provide us with your name and email address and if you are submitting a support ticket, the subject, type and description of the problem that you are having.In addition, you can choose to provide us with additional information, such as your phone number, your company name, and the name of your country.We will use this information solely for the purpose of responding to your inquiries and provide you with the support or information you have requested.The correspondence and its contents with you may be processed and stored by us in order to improve our customer service and in the event we believe it is required to continue to store it, for example, in the event of any claims or in order to provide you with any further assistance (if applicable).Our legitimate interest.        
Additional featuresIn the event you choose to complete a questionnaire, provide feedback, post on our Website, participate in community features or employ notification services you may be required to provide us with certain additional information.We will use this information for the purpose of providing you with the Services that you requested.Perform our contract with you and our legitimate interest.
CareerIn the event you apply for a job via our Website, we will process your CV (and the information included therein), your cover letter as well as additional information such as your contact information (name, email address and phone number).To process your job application and for recruitment purposes.We will process this information subject to our legitimate interest.        
Newsletter:If you voluntarily subscribe to our newsletter you will be asked to provide us with your email address. You can unsubscribe at any time using the unsubscribe option within the body of the newsletter or by contacting customer support at: support@akeyless.io.We will use your email address solely in order to provide you with the content that you requested to receive.Your consent.
Online IdentifierWhen you interact with our website and Services, we may collect your online identifiers, such as your Internet protocol (IP) address.  We (directly or via our third party service providers) may collect our Visitors’ IP. We use this for operating, providing, maintaining, protecting, managing, customizing and improving our Website and Services and the way in which we offer them.Your consent.
Technical Data:We also collect certain technical Non-Personal Data which relates to your use of the Website such as: the type and version of device, application, or browser used, , operating system, or time zone setting; Services metrics, such as offering usage, occurrences of technical errors, diagnostic reports, your settings preferences, backup information, API calls, and other logs.We use this data in order to maintain, support, improve, protect and manage our Website and Services and for security purposes such as preventing and detecting fraud and abuse. 

Information We Collect from Customers

Type of DataPurposes of ProcessingFor EU persons – Legal Basis under the GDPR
Booking a Demo and Taking a TourIn the event you choose to take a tour you will be requested to provide your email address.In the event you choose to book a free demo you will be requested to create an account and provide us with your name, phone number and company email address.We will use this information for the purpose of providing you with the Services that you requested.Perform our contract with you.        
Account RegistrationIn order to use our Services (including the free demo) you will be required to register and open an account. During the registration process you will be requested to provide us with certain information such as your name, company name, email address, physical address, phone number, and other similar contact information.Furthermore, during the registration process you will be required to provide us with the following additional information: information about your location; information about your organization and your contacts, such as colleagues or people within your organization; usernames, aliases, roles, and other authentication and security credential information; information regarding identity, including government-issued identification information;  corporate and financial information; and VAT numbers and other tax identifiers.To provide the Services to the Customer.To resolve any disputes, communicate with you regarding customer service and support issues, and to respond to your questions or comments and help resolve any problems.Performance of a contract with you or in order to take steps at your request prior to entering into a contract.                
Direct MarketingAs a Customer we will send you email marketing materials regarding the Services you are currently using or any services we may offer in the future (“Direct Marketing”).We will use your email address in order to send you information related to our Services and to keep you up to date regarding new Services.You are able to unsubscribe from receiving such correspondence from us by clicking on the designated link in the applicable message that we will send you or by contacting us at: privacy@akeyless.io.Please note that if you choose to unsubscribe from our Direct Marketing, we may still retain your contact details and send you relevant Service-related information.We will process this information subject to our legitimate interest.
Payment Details:As part of the Services you may need to provide us with your payment details including credit card and bank account information. The payment information will be processed by us.To provide the Services to the Customer.Performance of a contract with you.
Customer EmployeesAs part of the Services, we will process the username and passwords from our Customers’ employees.We will use this data in order to operate, provide, maintain, protect and manage our Services. As explained above, we are considered the Processor of this information and our Customers are considered the Controller. The processing of this information will be done in accordance with our Data Processing Agreement.Performance of a contract with you.
  1. HOW WE COLLECT INFORMATION

Depending on the nature of your interaction with the website and Services, we may collect information as follows:

  1. Automatically – we may use cookies (as elaborated below) or similar tracking technologies to gather some information automatically when you interact with our website.
  2. Provided by you voluntarily – we will collect information if and when you choose to provide us with the information, such as through the Services, contact us communications, etc.
  3. SHARING PERSONAL DATA

Information about our customers is an important part of our business and we are not in the business of selling our customers’ Personal Data to others. We share Personal Data only as described below and with the subsidiaries that Akeyless controls that are either subject to this Privacy Policy or follow practices at least as protective as those described in this Privacy Policy.

  1. COOKIES & TRACKING TECHNOLOGIES

We use “cookies” (or similar tracking technologies) when you access the Website or interact with the Services we offer. The use of cookies is a standard industry-wide practice. A “cookie” is a small piece of information that a website assigns and stores on your computer while you are viewing a website. Cookies can be used for various purposes, including allowing you to navigate between pages efficiently, as well as for statistical purposes. You can find more information about cookies at: https://www.allaboutcookies.org/ and https://cookiepedia.co.uk./.

There are several types of cookies, the three main and common ones are:

The specific cookies we currently use, the purpose of the cookies, their privacy policy and opt-out controls are set forth in the table below: 

THIRD PARTY COOKIESPURPOSEPRIVACY POLICY
Google AnalyticsAnalytic, Measurement & Performance Cookies www.google.com/policies/privacy/partners.https://tools.google.com/dlpage/gaoptout/.For more information regarding our use of Google products, click here.
DoubleClickPreference, Targeting & Advertising Cookies www.google.com/policies/privacy/partners.https://tools.google.com/dlpage/gaoptout/.For more information regarding our use of Google products, click here.
HubSpotPreference, Targeting & Advertising Cookies https://legal.hubspot.com/privacy-policy?hs_chatflow=BOT137_VarB&_ga=2.109303494.215551286.1622634580-1478502587.1622364427
LinkedInPreference, Targeting & Advertising Cookies https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policyhttps://www.linkedin.com/legal/cookie-policy

Cookies Opt-Out

  1. USER RIGHTS

We acknowledge that different individuals have different privacy concerns and preferences. Our goal is to be clear about what information we collect, so that you can make meaningful choices about how it is used. We provide you with the ability to exercise certain choices, rights and controls in connection with your information. Depending on your relationship with Akeyless (e.g., if you are a Visitor, Customer or even employee), data protection and privacy laws provide you with various rights concerning your Personal Data.

Please review our User Rights Policy to learn more regarding your rights under applicable law.

You may exercise any or all of your rights in relation to your Personal Data by filling out the Data Subject Request (“DSR”) form available hereand send it to our privacy team at: privacy@akeyless.io.

Where we are not able to provide you with the information for which you have asked, we will endeavor to explain the reasoning for this and inform you of your rights, including the right to complain to the supervisory authority (in the event you are EEA resident). We reserve the right to ask for reasonable evidence to verify your identity before we provide you with any such information in accordance with applicable law.

  1. DATA RETENTION

We retain Personal Data we collect as long as it remains necessary for the purposes set forth above, all in accordance with applicable laws, or until an individual expresses a preference to opt-out. We may at our sole discretion, delete or amend information from our systems, without notice to you, once we deem it is no longer necessary for such purposes.

  1. SECURITY

At Akeyless, security is our highest priority. We design our systems with your security and privacy in mind. Some of the methods that we use to protect your Personal Data can be found below, please review our Security Policy to learn more.

  1. TRANSFER OF DATA

We may store or process your Personal Data in the EU, the United States or in other countries. Thus, any information you provide us may be transferred to and processed in countries other than the country from which you accessed our Platform. We will take appropriate measures to ensure that your Personal Data receives an adequate level of data protection upon its transfer. When Personal Data that was collected within the EEA is transferred outside the EEA, we will take necessary steps in order to ensure that sufficient safeguards are provided during the transferring of such Personal Data. You may exercise your rights, where applicable, to receive information regarding the transfer mechanism that was used during such transfer. Personal Data transferred outside the EEA is transferred, in all cases pursuant to standard contractual clauses  approved by the European Union (“SCCs“). Additionally, following the withdrawal of the United Kingdom (UK) from the European Union on January 31, 2020, the UK is no longer considered to be a part of the EEA and therefore, the transferring of Personal Data from the EEA to the UK will also be subject to the SCCs or other contractual clauses that will ensure the security of the Personal Data (pending an adequacy decision from the European Commission). 

  1. CHILDREN

Our Website and Services are intended for general audience and  is not directed to persons under 16 years old. If a parent or guardian becomes aware that his/her child has provided us with Personal Data without their consent, he/she should contact us immediately.

We do not knowingly collect or solicit Personal Data from people under 16 years old. If we become aware that a person under 16 years old has provided us with Personal Data, we will delete such data from our databases.

If you are a User, please be aware that you may not upload to the Services any data concerning persons under the age of 16, and you may not send emails to Participants who are under 16 years old. Doing any of the above constitutes an infringement of our Terms and may result in the suspension or Termination of the user’s Account.

  1. CHANGES AND UPDATES

Akeyless reserves the right to change this Privacy Policy at any time, so please re-visit this page frequently. In the event that we made any substantial changes to this Privacy Policy, we will make reasonable efforts to provide you with notification with respect to such changes, if we are required to do so by applicable law. The changes to this Privacy Policy will go into effect as of the date listed in the “Last Amended” heading located at the top of this Privacy Policy.

  1. CONTACT US

If you have any questions or concerns regarding privacy issues, or if you wish to be provided with any other information related to our privacy practices, please contact us:

Via Email: support@akeyless.io

Via Regular Mail: Akeyless Security Ltd.

94 Igaal Alon

 Alon Tower 2,

Tel Aviv, Israel  6789140