Coralogix Privacy Policy Last Revised: September 12, 2024
1. Introduction
This Privacy Policy (this “Privacy Policy”) outlines how Coralogix Ltd. and its subsidiaries (together “Coralogix,” “we,” “us,” or “our”) collect, use, and disclose information that is provided to us, as well as the choices you have with respect to such information.
Capitalized terms which are not defined herein shall have the meaning ascribed to them in our Terms & Conditions page available here (the “Terms & Conditions”), which this Privacy Policy is incorporated thereto by reference. This Privacy Policy supplements and shall be read in conjunction with our Terms & Conditions and our Cookie Policy, available here (the “Cookie Policy”), and may be amended from time to time by additional privacy statements, terms, or notices provided to you.
2. SCOPE AND APPLICABILITY.
This Privacy Policy applies to information that is shared through accessing and using the Coralogix website(s), located at https://coralogix.com/ and https://snowbit.io/ and any of their subdomains or any other website operated by Coralogix (each, a “Website” and collectively, the “Websites”), any use of our proprietary platform that analyzes log, metric, and security data (the “Platform”), and any services provided by Coralogix related to the Websites (the Websites and Platform shall be collectively regarded herein as the “Services”), provided, however, that Coralogix Inc’s reliance on the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework for transfers of Personal Data relating to EU, UK and Swiss Data Subjects’ to the United States as further elaborated in Section 15 below, is governed solely on the basis of the EU-U.S., UK extension to the EU-U.S. and Swiss-U.S. Data Privacy Framework principles. For the avoidance of doubt, our compliance with the DPF is specifically under the jurisdiction of Coralogix’s US entity; Coralogix Inc.
This Privacy Policy governs and is intended to describe our practices regarding information (including Personal Data as defined below) that we may collect from or about you when you use or access the Services, the ways in which we may use such information, and the choices and rights available to you.
Users of our Services (referred to, unless otherwise specifically indicated, as “Users” or “You” respectively) may include (i) individuals who use our Solution in their capacity as employees or other personnel of our business customers (our business customers are hereafter a “Customer”) including individuals identifying as a Customer “admin” users or a Customer’s end-users, using or accessing the Services under a Customer’s account or on a Customer’s behalf (each as “Customer End-User”); (ii) visitors of the Website (each, a “Visitor”); and (iii) Candidate(s) (as defined below).
IMPORTANT NOTE: where Coralogix processes Personal Data of or about Customer End-Users, we do so on behalf of and under the instruction of the respective Customer (where such a Customer may be your employer or other corporation on behalf of which You perform services, or otherwise are using our Service), Coralogix does so in our capacity as a “data processor” on behalf of such a Customer. See below for more information about our practices as a data processor and the impact on your Personal Data in our possession.
The provisions of this Privacy Policy relate to Coralogix’s independent privacy and data processing activities as a “data controller” – Users who are Visitors or Candidates – do not apply to the processing of Personal Data of Customer End-Users. If You are using our Services (including the Solution) as a Customer End-User, or if You otherwise have any questions or requests regarding Customer End-Users’ Personal Data, please contact the Customer on behalf of which You use the Solution (usually this will be your employer or corporation for which You provide a service).
3. YOUR CONSENT
PLEASE READ THIS PRIVACY POLICY BEFORE ACCESSING AND/OR USING OUR SERVICES OR ANY PART/COMPONENT THEREOF. BY ACCESSING OR USING THE SERVICES OR ANY PART/COMPONENT THEREOF, YOU AGREE TO THE TERMS AND CONDITIONS SET FORTH IN THIS PRIVACY POLICY, INCLUDING TO THE COLLECTION AND PROCESSING OF YOUR PERSONAL DATA (AS DEFINED BELOW). IF YOU DISAGREE WITH ANY TERM PROVIDED HEREIN, YOU MAY NOT ACCESS OR USE THE SERVICES.
PLEASE NOTE: YOU ARE NOT OBLIGATED BY LAW TO PROVIDE US WITH ANY PERSONAL DATA. YOU HEREBY ACKNOWLEDGE AND AGREE THAT YOU ARE PROVIDING US WITH PERSONAL DATA AS DESCRIBED IN THIS PRIVACY POLICY AT YOUR OWN FREE WILL. YOU HEREBY AGREE THAT WE MAY COLLECT AND USE SUCH PERSONAL DATA PURSUANT TO THIS PRIVACY POLICY AND ANY APPLICABLE LAWS AND REGULATIONS.
TO THE EXTENT THAT YOU PROVIDE US WITH ANY PERSONAL DATA RELATED TO ANY THIRD PARTY OR ANY OTHER PERSON OR ENTITY WHICH IS NOT YOU, INCLUDING INFORMATION RELATED TO ANY OF YOUR PERSONNEL, COLLEAGUES OR CUSTOMERS, YOU ARE SOLELY RESPONSIBLE FOR RECEIVING AND HEREBY REPRESENT THAT YOU HAVE AND UNDERTAKE THAT YOU SHALL HAVE AT ALL TIMES, MAINTAINED AND RECEIVED, THE CONSENT, AUTHORITY, PERMISSION AND APPROVAL OF SUCH PERSONS OR ENTITY AND PROVIDED THEM WITH SUFFICIENT DISCLOSURES, TO ALLOW CORALOGIX TO ACCESS, STORE, COLLECT, ANALYZE AND PROCESS SUCH PERSONAL DATA AS DETAILED HEREIN.
4. WHAT CATEGORIES AND TYPES OF DATA DO WE COLLECT?
We collect both personal data, and non-personal data. “Personal Data” is information that identifies an individual or may with reasonable efforts or together with additional information we have access to, enable the identification of an individual, or may be of a private or sensitive nature relating to an identified or identifiable natural person. Identification of an individual also includes the association of such individual with a persistent identifier such as a name, an identification number, persistent cookie identifier etc., Personal Data does not include information that has been anonymized or aggregated, provided however that such information can no longer be used to identify a specific natural person.
“Non-Personal Data” is collected without particular reference to the identity of the applicable User from or about whom such information was collected and is available to us while such User is using the Services. Non-personal Information which is being collected consists of technical, behavioral and aggregated information, and may contain the activity of the User on our Website, type of operating system, User’s ‘click-stream’ on the Website, type of browser and keyboards features, User demographics, traffic patterns, etc.
Most of the information that we collect when You use or access our Services is Non-Personal Data, however we collect and process different types of Personal Data through the respective methods of collection discussed below.
We may from time to time ask You for your consent for the collection of other information from You or your device. For instance, we may invite You to allow us to access your contacts to enable us to invite them to use our Services. If we do this or something similar, we will tell You what information we would like to collect, why we need it, and what we’ll use it for.
If we combine Personal Data with Non-Personal Data, the combined data will be treated as Personal Data. Further Personal Data will only be stored and processed if You voluntarily provide it to us, e.g., through a contact form.
5. HOW WE COLLECT YOUR INFORMATION.
In the course of accessing or otherwise using our Services, we receive your Personal Data through the following sources:
Please review the “USING COOKIES AND OTHER TRACKING TECHNOLOGIES” section below to learn more about how we use cookies and other tracking technologies.
• Personal Data collected from other sources: We may also collect Personal Data concerning You, from other third parties who have assured us that they have obtained your consent for such provision of information. For example, we may collect and use your contact information which we may have received from our Customer, your employer or, from another User who invited You to use our Services, as allowed by applicable national laws.
6. OUR LEGAL BASIS FOR USE OF YOUR DATA
a. Legal Grounds for the collection and processing of Personal Data:
b. We may use your Personal Data for the following Purposes:
We also analyze and use the Personal Data that we collect on an anonymized or aggregated basis for product development, to analyze the performance of our Services, to troubleshoot and to improve and optimize the Services, and to ensure the best User experience for our users as a whole.
7. WITH WHOM DO WE SHARE YOUR PERSONAL DATA?
We may share your Personal Data with third parties (or otherwise allow them access to it) only in the following manners and instances:
8. JOB CANDIDATES
Coralogix welcomes and encourages all qualified candidates (“Candidates”) to apply to any open positions posted on our Website, Facebook, LinkedIn, or any other social networking platforms, by sending us contact details and CV (“Candidate Information”). We are committed to keeping Candidate Information private and use it solely for our internal recruitment purposes (including identifying Candidates, evaluating their applications, making hiring and employment decisions, and contacting Candidates by phone or in writing).
Please note that Coralogix may retain Candidate Information submitted to it even after the applied position has been filled or closed for a reasonable time period. This is done so we could re-consider Candidates for other positions and opportunities at Coralogix; so, we could use their Candidate Information as reference for future applications submitted by them; and in case the Candidate is hired, for additional employment and business purposes related to their work. For more information about our Candidates’ privacy policy, please visit the following link: https://land.coralogix.com/candidate-privacy-policy/ , If You previously submitted your Candidate Information to Coralogix, and wish to access it, update it, or delete it from our systems, please contact us at [email protected].
9. STORAGE AND INTERNATIONAL DATA TRANSFER
Information regarding the Users may be maintained, processed, and stored by us and our authorized affiliates and Service Providers in the United States, EU, Israel, and India. Where Coralogix processes Personal Data on behalf of a Customer (including, without limitation, Personal Data of Customer End- Users), such Personal Data will be processed in the locations as permitted and required by the Customer (as further described below).
While the data protection laws in the above jurisdictions may be different than the laws of your residence or current location, please know that we, our affiliates, and our Service Providers that store or process your Personal Data on our behalf are each committed to keeping it protected and secured, pursuant to this Privacy Policy and industry standards, regardless of any lesser legal requirements that may apply in our respective jurisdictions. Specifically, each of our third party Service Providers which store or process your Personal Data have either:
10. DATA RETENTION
We retain the Personal Data we collect or receive from you for as long as needed in order to provide the Services and as otherwise necessary to comply with applicable laws and regulations.
If You withdraw your consent to us processing your Personal Data, including by deleting your account, we will delete your Personal Data from our systems (except to the extent such data in whole or in part is required to comply with any applicable rule or regulation and/or to respond to or defend against legal proceedings brought against us or our affiliates), except where we process your information as a Processor on behalf of our Customer (such as your employer is a Customer who makes use of our Services, in which case data retention is subject to such Customer’s instructions).
11. USING COOKIES AND OTHER TRACKING TECHNOLOGIES
We may use certain monitoring and tracking technologies to understand how You use our Services, including ones offered by third-party Service Providers. These technologies are used in order to maintain, provide, and improve our Services on an ongoing basis, and in order to provide a better experience to our Users. For example, these technologies enable us to:
12. DATA SECURITY
We take great care in implementing and maintaining the security of the Services and of your Personal Data. We have implemented administrative, technical, and physical safeguards to help prevent unauthorized access, use, or disclosure of your Personal Data. Your Personal Data is stored on secure servers and is not publicly available. We limit access to your Personal Data only to those employees, third-party Service Providers, or other partners on a “need to know” basis, and strictly in order to enable us to perform our agreement with You.
Despite these measures, Coralogix cannot provide absolute information security or eliminate all risks associated with Personal Data, and security breaches may happen. If there are any questions about security, please contact us at [email protected] .
13. YOUR RIGHTS
If applicable to You under your country’s jurisdiction, or in connection with Coralogix’s participation in the EU-U.S., the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, You may have certain rights in connection with your Personal Data and how we handle it. If for any reason You wish to exercise any rights to which You are entitled, You may do so by contacting Coralogix (or as it relates specifically to the EU-U.S. DPF, UK Extension to the EU-U.S. DPF or Swiss-U.S. DPF; Coralogix Inc.) at legal@coralogix. When handling these requests, we may ask for additional information to confirm your identity and your request.
The rights which You may be able to exercise may include, but are not limited to, the following:
14. CHILDREN PRIVACY
To accept this Privacy Policy and use our Services, Users must be over eighteen (18) years of age. Therefore, we do not knowingly collect Personal Data from individuals under the age of eighteen (18), and we do not wish to do so. We reserve the right to request proof of age at any stage so that we can verify that individuals under the age of eighteen are not using the Services.
If You believe that we might have any information from or about an individual under the age of eighteen (18), please contact us at [email protected]. Should it come to our attention that a person under the age of eighteen (18) is using the Services, we may prohibit and block such User from using the Services and will make all efforts to promptly delete any Personal Data with respect to such User.
If You are submitting any Personal Data pertaining to any minor to the Services, You hereby represent and warrant that You have received all the necessary legal consents or approvals or that You are the parent or legal guardian and have the actual authority and legal right to upload, submit, disclose or otherwise share such Personal Data and/or any other form of sensitive information, on the minor’s behalf.
15. EU-U.S. DATA PRIVACY FRAMEWORK
Coralogix Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Coralogix has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Coralogix has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
The Federal Trade Commission has jurisdiction over Coralogix’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).
If we transfer your Personal Data onward to a third party, we will continue to remain liable under the DPF Principles if the information is processed in a manner inconsistent with the DPF Principles.
16. DATA CONTROLLER/PROCESSOR
Under various privacy, data protection, or similar laws, regulations, or additional legal frameworks, such as the GDPR or the CCPA, two separate roles for parties involved in the processing of Personal Data typically apply:
If You would like to make any requests or queries regarding personal data we process as a data processor on our Customer’s behalf, including accessing, correcting, or deleting your data, please contact the Customer and/or an applicable Customer End-User directly.
13. GENERAL INFORMATION
a. CHANGES TO THE PRIVACY POLICY
This Privacy Policy is subject to changes from time to time, at our sole discretion. The most current version will always be posted on our Services (as reflected in the “Last Revised” heading). You are advised to check for updates regularly.
We will provide notice of substantial changes to this Privacy Policy on the homepage of the Website and/or we will send You an e-mail regarding such changes to the e-mail address that You may have provided to us. Such substantial changes will take effect seven (7) days after such notice was provided on our Services or sent by e-mail. Otherwise, all other changes to this Privacy Policy are effective as of the stated “Last Revised” date, and your continued use of the Services after the Last Revised date will constitute acceptance of, and agreement to be bound by, those changes.
b. CONTACT US
If You wish to exercise your rights or receive more information regarding our privacy protection practices, please contact us using the details provided below:
[email protected]
In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Coralogix Inc. commits to cooperate and comply with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.