SigNoz INC.
PRIVACY POLICY
Version Dated: December 20, 2024
Welcome to SigNoz Inc.
- INTRODUCTION
SigNoz Inc. (“SigNoz”, “Company”, “Us”, “We”, or “Our”), respects the privacy of its Users (“Customer”, “your,” or “you”). This Privacy Policy (the “Privacy Policy”) explains how we collect, use, disclose, and safeguard your Personal Data when you use our website, available at https://signoz.io/ (“Website”) and Platform (the “SaaS Platform”).
SigNoz provides services through an open-source observability tool that helps in monitoring and troubleshooting problems for applications through the SaaS Platform (“Services”).
SigNoz is committed to protecting the privacy of its Customers’ whose personal data is collected and stored while using theSaaS Platform through our Website. This Privacy Policy is applicable to our Website and SaaS Platform and all applications offered for sale or use to the public.
This Privacy Policy shall be read together with the Terms and Conditions of SigNoz https://signoz.io/terms-of-service/ .
The capitalized terms not defined herein shall have the same meaning as set out in the Terms of Reference https://signoz.io/terms-of-reference/.
PLEASE READ THIS PRIVACY POLICY CAREFULLY TO UNDERSTAND OUR POLICIES AND PRACTICES REGARDING YOUR PERSONAL DATA AND HOW WE WILL TREAT IT.
BY ACCEPTING THIS PRIVACY POLICY, EITHER BY CLICKING A BOX INDICATING YOUR ACCEPTANCE OR BY ACCESSING, SIGNING UP AND USING OUR WEBSITE AND SAAS PLATFORM, YOU AGREE TO ACCEPT ALL THE TERMS CONTAINED IN THIS PRIVACY POLICY AND ACKNOWLEDGE AND AGREE WITH THE PRACTICES DESCRIBED HEREIN.
IF YOU HAVE ANY QUESTIONS REGARDING THIS PRIVACY POLICY, PLEASE SEND US AN EMAIL AT support@signoz.io
WE DO NOT SELL YOUR PERSONAL DATA, NOR DO WE INTEND TO DO SO.
WE DO NOT GIVE ACCESS TO YOUR PERSONAL DATA TO THIRD PARTIES EXCEPT TO SUBPROCESSORS TO ASSIST US IN THE PROVISION OF OUR SERVICES TO YOU.
- PURPOSE OF THIS PRIVACY POLICY
The purpose of Privacy Policy is to establish terms under which SigNoz collects, processes, safeguards and shares your Personal Data resulting from the use of the Website or SaaS Platform. This Privacy Policy outlines your rights and the obligations of SigNoz with respect to collection, processing of your Personal Data.
- SCOPE OF THIS PRIVACY POLICY
This Privacy Policy applies to the Processing of Personal Data undertaken by SigNoz upon the instructions of the Customer.
- SCOPE OF PROCESSING
-
The Customer acknowledges that it shall ensure that Processing of the Personal Data of its Users shall be done in full compliance with Applicable Data Protection Laws.
-
The Customer agrees and acknowledges that any instructions provided by the Customer under the terms of this Privacy Policy shall mean authorization to SigNoz to Process Personal Data of the Users’.
-
The Customer agrees that it shall be solely responsible for ensuring all the necessary consents and authorizations from its Users’ under the Applicable Data Protection Laws for Processing of Personal Data.
-
SigNoz acknowledges that it will Process the Personal Data only in accordance with the instructions of the Customer. The Customer instructs SigNoz to Process Personal Data of Users’ for the purposes set out in below in Clause 7 of this Privacy Policy and pursuant to any other written instructions given by the Customer and acknowledged by SigNoz shall constitute as instructions for the purposes of this Privacy Policy.
-
SigNoz agrees and acknowledges that it shall Process the Personal Data of Users’ in compliance with Applicable Data Protection Laws.
-
SigNoz agrees and acknowledges that it shall not Process Personal Data other than on the relevant instructions provided by the Customer and in accordance with the terms of this Privacy Policy, unless required under the Applicable Data Protection Laws and in such a case SigNoz shall inform the Customer of that legal requirement before Processing, unless it is prohibited under the Applicable Data Protection Laws.
-
SigNoz shall notify the Customer immediately if the instruction for Processing Personal Data given by the Customer is in violation of the Applicable Data Protection Laws.
-
SigNoz agrees that it shall not directly or indirectly sell or share Personal Data.
- WHAT PERSONAL DATA DO WE COLLECT?
When you use our Website or SaaS Platform, we collect Personal Data which may include your name, address, online contact information such as your email address or username, phone number, and other personal information. The Personal Data collected by SigNoz will be stored on our servers and as needed forwarded to sub-processors. You are able to change, review or delete your Personal Data via email by contacting us at support@signoz.io or through your profile or account settings on our Website or SaaS Platform.
We collect the following types of Personal Data which is necessary to provide our Services:
-
Identity Data: SigNoz may collect information that can be used to contact or identify you, including first and last name, email address, organisation name;
-
Usage Data: SigNoz may collect information that your browser sends whenever you visit the Website or use SaaS Platform, including computer’s Internet Protocol (IP) address, browser type, browser version, pages visited, date and time of visit, time spent on pages. When you visit the Website or use SaaS Platform through mobile device unique ID, mobile operating system, type of internet browser;
-
Location Data: SigNoz may collect and store information about your location if you give the permission to do so.
- HOW DO WE COLLECT YOUR PERSONAL DATA?
We collect your Personal Data from you in the following ways:
-
When you visit the Website or SaaS Platform in the form of Cookie data;
-
When you use the Website or SaaS Platform for the Services provided by SigNoz;
-
When you provide Customer Content while using the Services provided by SigNoz;
- HOW DO WE USE YOUR PERSONAL DATA?
We use the Personal Data that you provide:
-
To provide you with information, products or services requested from Us;
-
To present our Website and SaaS Platform and their contents to you;
-
To notify you about changes to our Website and SaaS Platform and any products or services;
-
To improve the Website and SaaS Platform;
-
To provide and improve Our customer service;
-
To gather analysis or valuable information so that we can improve products and services;
-
To detect, prevent and address technical issues;
-
To contact you about Our products and services that may be of interest;
-
To provide you with notices about your account and/or subscription, including expiration and renewal notices, email-instructions, etc.;
-
To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
- OUR COOKIE POLICY
We use cookies and similar tracking technologies to track the activity on our Website or SaaS Platform and we hold certain information.
Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Other tracking technologies are also used such as beacons, tags and scripts to collect and track information and to improve and analyze our Service.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
-
Session Cookies: We use Session Cookies to operate our Service.
-
Preference Cookies: We use Preference Cookies to remember your preferences and various settings.
-
Security Cookies: We use Security Cookies for security purposes.
- HOW DO WE PROTECT YOUR PERSONAL DATA?
Our Website uses an SSL certificate as a security measure and we are SOC-II compliant. Our SOC-II compliance records are available at https://trust.signoz.io. We require usernames and passwords for our employees who can access your Personal Data that we store and/or process on our SaaS Platform and servers. In addition, we actively prevent third parties from getting access to your Personal Data that we store and/or process on our SaaS Platform and servers. We accept payment by credit card through a third-party credit card processors on our behalf. We will implement reasonable security measures every time you (a) enter, submit, or access your information or (b) access our SaaS Platform, on our Website.
- HOW LONG WE RETAIN YOUR PERSONAL DATA
We generally retain Personal Data to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for fraud prevention purposes. We determine that the appropriate retention period for Personal Data is 180 days or 6 months, after consideration of factors such as the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and the applicable legal requirements. In case you wish to delete your data and Personal Data, please contact us at support@signoz.io and we will do the needful. For further information, please refer to SOC II policy- data retention policy available at https://trust.signoz.io/.
When we no longer require the Personal Data we have collected about you, we will delete it. However, if necessary, we may retain your Personal Data for our compliance with a legal, accounting, reporting obligation or for archiving purposes in accordance with applicable law.
- DATA SECURITY MEASURES
-
SigNoz shall implement and maintain appropriate technical and organizational security measures to preserve the security and confidentiality of the Personal Data, in accordance with Applicable Data Protection Laws.
-
SigNoz agrees that upon becoming aware of a Security Incident, SigNoz shall notify the Customer within a reasonable time.
-
Without prejudice to SigNoz’s obligations, the Customer is solely responsible for complying with Security Incident notifications under the Applicable Data Protections Laws.
-
Any notification to the Customer pursuant to Clause 12 (b) above given by SigNoz shall not be construed as an acknowledgement by SigNoz of any fault or liability with respect to the Security Incident.
- SUB-PROCESSING
-
SigNoz shall maintain a list of Subprocessors which shall include the identities of the Subprocessors, their country of location, and their anticipated Processing tasks. SigNoz will regularly update the list of Subprocessors and at the request of the Customer, which shall be at least 14 business days in advance and in writing, provide such list of the Subprocessors.
-
When engaging a Subprocessor, SigNoz will have an agreement with the Subprocessor that ensures the Subprocessor only accesses and uses Personal Data (i) to the extent required to perform the obligations subcontracted to it, and (ii) consistent with the terms of this Privacy Policy.
-
SigNoz shall remain fully liable for all obligations subcontracted to its Subprocessors, including the acts and omissions of its Subprocessors in Processing Personal Data. SigNoz will notify Customer of any failure by its Subprocessors to fulfil a material obligation about Personal Data under the agreement between SigNoz and the Subprocessor.
- TERM AND TERMINATION
-
This Privacy Policy shall come into effect upon the date first mentioned above and shall remain in force until the subscription plans chosen by the Customer expires or is terminated. Notwithstanding the above, SigNoz and Customer will each remain subject to the obligations under the Applicable Data Protection Laws until Customer stops transferring Personal Data to SigNoz and SigNoz stops Processing Personal Data.
-
Upon termination of this Privacy Policy, at the request of the Customer, SigNoz shall return, or dispose of, anonymize, destroy and/or render unusable, unreadable, indecipherable or unrecoverable (collectively, “Delete” or “Deletion”) Personal Data, whether stored electronically on servers, in hard copy, or in any other form. In addition, SigNoz shall Delete Personal data from electronic media or devices before making such electronic media or devices available for re-use. To the extent that destruction of Personal Data is not feasible, the SigNoz will continue to extend the requirements of this Privacy Policy to such Personal Data, and the SigNoz shall obligate any and all successors and assigns to the same obligations.
- LIMITATION OF LIABILITY
-
Liability Caps and Damages Waiver. To the maximum extent permitted under Applicable Data Protection Laws, each party’s total cumulative liability to the other party arising out of or related to this Privacy Policy will be subject to the waivers, exclusions, and limitations of liability stated in the Agreement.
-
Related-Party Claims. Any claims made against SigNoz or its Affiliates arising out of or related to this Privacy Policy may only be brought by the Customer that has accepted the Terms and Conditions available at https://signoz.io/terms-of-service/
15. YOUR DATA PROTECTION RIGHTS UNDER GENERAL DATA PROTECTION REGULATION (GDPR)
If you are a resident of the European Union (EU) and European Economic Area (EEA), you have certain data protection rights, covered by GDPR. – See more at https://eur-lex.europa.eu/eli/reg/2016/679/oj
We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please email us at support@signoz.io.
In certain circumstances, you have the following data protection rights:
-
the right to access, update or to delete the information we have on you;
-
the right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete;
-
the right to object. You have the right to object to our processing of your Personal Data;
-
the right of restriction. You have the right to request that we restrict the processing of your personal information;
-
the right to data portability. You have the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format;
-
the right to withdraw consent. You also have the right to withdraw your consent at any time where we rely on your consent to process your personal information;
Please note that we may ask you to verify your identity before responding to such requests. Please note, we may not able to provide Service without some necessary data.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
16. YOUR DATA PROTECTION RIGHTS UNDER THE CALIFORNIA PRIVACY PROTECTION ACT (CALOPPA)
CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require a person or company in the United States (and conceivable the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy. – See more at: https://consumercal.org/about-cfc/cfc-education-foundation/california-online-privacy-protection-act-caloppa-3/
According to CalOPPA we agree to the following:
-
users can visit our site anonymously;
-
our Privacy Policy link includes the word “Privacy”, and can easily be found on the page specified above on the home page of our website;
-
users will be notified of any privacy policy changes on our Privacy Policy Page;
-
users are able to change their personal information by emailing us at support@signoz.io.
Our Policy on “Do Not Track” Signals:
We honor Do Not Track signals and do not track, plant cookies, or use advertising when a Do Not Track browser mechanism is in place. Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
17. YOUR DATA PROTECTION RIGHTS UNDER THE CALIFORNIA CONSUMER PRIVACY ACT (CCPA)
If you are a California resident, you are entitled to learn what data we collect about you, ask to delete your data and not to sell (share) it. To exercise your data protection rights, you can make certain requests and ask us:
-
What personal information we have about you. If you make this request, we will return to you:
-
The categories of personal information we have collected about you.
-
The categories of sources from which we collect your personal information.
-
The business or commercial purpose for collecting or selling your personal information.
-
The categories of third parties with whom we share personal information.
-
The specific pieces of personal information we have collected about you.
-
A list of categories of personal information that we have sold, along with the category of any other company we sold it to. If we have not sold your personal information, we will inform you of that fact.
-
A list of categories of personal information that we have disclosed for a business purpose, along with the category of any other company we shared it with.
Please note, you are entitled to ask us to provide you with this information up to two times in a rolling twelve-month period. When you make this request, the information provided may be limited to the personal information we collected about you in the previous 12 months.
-
To delete your personal information. If you make this request, we will delete the personal information we hold about you as of the date of your request from our records and direct any service providers to do the same. In some cases, deletion may be accomplished through de-identification of the information. If you choose to delete your personal information, you may not be able to use certain functions that require your personal information to operate.
-
To stop selling your personal information. We don't sell or rent your personal information to any third parties for any purpose. You are the only owner of your Personal Data and can request disclosure or deletion at any time.
Please note, if you ask us to delete or stop selling your data, it may impact your experience with us, and you may not be able to participate in certain programs or membership services which require the usage of your personal information to function. But in no circumstances, we will discriminate against you for exercising your rights.
To exercise your California data protection rights described above, please send your request(s) by one of the following means:
By email: support@signoz.io
Your data protection rights, described above, are covered by the CCPA, short for the California Consumer Privacy Act. To find out more, visit the official California Legislative Information website. The CCPA took effect on 01/01/2020.
18. MODIFICATIONS TO OUR PRIVACY POLICY
We will post any changes to this Privacy Policy in a notice of the change at the bottom of our web page with a hyperlink thereto. We will also send you an email describing such changes. Please regularly review this Privacy Policy. Notwithstanding if you continue to use our services, you are bound by any changes that we make to this Privacy Policy.
19. LIST OF THIRD-PARTY SERVICE PROVIDERS
SigNoz uses the following third-party service providers for the provision of services as detailed under the Terms of Service as applicable. You can find a list of our third party service providers at https://trust.signoz.io/subprocessors
Additionally, if you have any questions or concerns about our third-party service providers, please email us at support@signoz.io .
20. CONTACT US
To ask questions or comment about this Privacy Policy and our privacy practices, contact us at:
-
Privacy Officer: Ankit Nayan
-
Email: ankit@signoz.io
-
Address: 2261 Market Street #4496, San Francisco, CA, 94114
-
PLEASE NOTE: IF YOU USE OUR WEBSITE OR SAAS PLATFORM, YOU HAVE AGREED TO AND ACCEPTED THE PRACTICES DESCRIBED IN THIS PRIVACY POLICY AND THE TERMS AND CONDITIONS SET FORTH IN OUR TERMS OF SERVICE AS APPLICABLE. IF YOU DO NOT AGREE WITH THE TERMS OF THIS PRIVACY POLICY, PLEASE DO NOT USE OUR WEBSITE OR SAAS PLATFORM.