Privacy
We respect your privacy and follow industry standards to protect your personal information. Learn more about how your data is processed, transferred, and stored.
Subprocessors
A sub-processor is a third-party engaged by HashiCorp who processes Personal Data of HashiCorp customers in in connection with the delivery and support our Products or Services. HashiCorp engages different types of sub-processors to perform various functions, as explained in the tables below.
Due diligence
HashiCorp undertakes to use a commercially reasonable selection process by which it evaluates the security, privacy and confidentiality practices of proposed sub-processors that will or may have access to or otherwise process Personal Data.
Contractual safeguards
HashiCorp requires its sub-processors to satisfy equivalent obligations as those that apply legally or contractually to HashiCorp (as a Data Processor), all as set forth in HashiCorp’s Data Processing Agreement (“DPA”), including but not limited to the following requirements to:
Process Personal Data in accordance with data controller’s (i.e. the customer’s) documented instructions (as communicated in writing to the relevant sub-processor by HashiCorp);
In connection with their sub-processing activities, use only personnel who are reliable and subject to a contractually binding obligation to observe data privacy and security, to the extent applicable, pursuant to applicable data protection laws;
Require a duty of confidentiality of personnel to whom they grant access to Personal Data;
Implement and maintain appropriate technical and organizational measures and provide an annual certification that evidences compliance with this obligation. In the absence of such certification, HashiCorp reserves the right to audit the sub-processor;
Comply with EU-US DPF, Swiss-US DPF, and the UK-US DPF Extension (as applicable) and/or Standard Contractual Clauses with respect to personal data transfers;
Not engage in the sale of customer’s personal data;
Promptly inform HashiCorp about any actual or potential security breach in accordance with applicable data privacy laws; and
Cooperate with HashiCorp in order to deal with requests from data controllers, data subjects or data protection authorities, as applicable.
Process to engage new subprocessors
HashiCorp will provide a notice of updates to this list of sub-processors that are utilized to deliver its Services. HashiCorp undertakes to keep this list updated regularly to enable its customers to stay informed of the scope of sub-processing associated with HashiCorp.
Subprocessors
For information on where HashiCorp production systems and support teams are located, please see hashicorp.com/trust/privacy/tia
The following table describes the countries and legal entities engaged by HashiCorp in the storage or processing of Personal Data.
| Entity Name | Nature of processing | Entity Country | Entity Address | Product(s) in scope |
|---|---|---|---|---|
Cloud Products Only | ||||
| AWS | Cloud Service Provider | HashiCorp maintains operations through AWS within the United States and Europe depending on your choosing. |
410 Terry Avenue North, Seattle, WA 98109-5210 U.S.A. 38 Avenue John F. Kennedy, L-1855 Luxembourg | HCP Terraform |
| HashiCorp maintains operations through AWS, within the United States and various regions supported at your choosing (i.e., United States, Canada, Ireland, England, Germany, Australia, Japan, Singapore). Please refer to HashiCorp’s Data Location Overview page for further details. |
410 Terry Avenue North, Seattle, WA 98109-5210 U.S.A. | HCP | ||
| Auth0 (Okta) | Authentication Provider | Auth0 data is hosted in the United States. | 10800 NE 8th Street, Ste. 600, Bellevue, WA, 98004, U.S.A. | HCP |
| Azure | Cloud Service Provider | HashiCorp maintains operations through Azure, and allows customers to provision their own consul clusters. | One Microsoft Way, Redmond, WA, 98052-6399, U.S.A. |
HCP |
| Datadog | Log and event aggregator | Datadog data is hosted in the United States or Ireland depending on which HCP region you choose. Please refer to HashiCorp’s Data Location Overview page for further details. | 620 8th Avenue, 45th Floor, New York, NY, 10018-1741, U.S.A. | HCP Terraform, HCP |
|
4th Floor, 1 Dockland Central, Guild Street Dublin 1, D01 E4X0 Ireland | HCP Terraform | |||
| Fastly | Content delivery network, Internet security services, load balancing, and video and streaming services | Fastly data is hosted in the United States. | P.O. Box 78266, San Francisco, CA, 94107, U.S.A. | HCP Terraform |
| Heap | Analytics for product usage and user behavior | Heap data is hosted in the United States | 225 Bush Street, Suite 200, San Francisco, CA, 94104, U.S.A. |
HCP Terraform HCP |
| LaunchDarkly | Feature flagging | LaunchDarkly data is hosted in the United States. | 1999 Harrison St., Suite 1100, Oakland, CA, 94612, U.S.A. | HCP |
| Segment | Customer data collection platform | Segment data is hosted in the United States. | 100 California Street, Suite 700, San Francisco, CA, 94111, U.S.A. |
HCP Terraform HCP |
| Sentry | Error monitoring | Sentry data is hosted in the United States. | 45 Fremont Street, 8th Floor, San Francisco, CA, 94105, U.S.A. |
HCP Terraform HCP |
| Stripe | Payment processing | Stripe data is hosted in the United States. | 510 Townsend Street, San Francisco, CA, 94103, U.S.A. |
HCP Terraform HCP |
| SumoLogic | Logging and monitoring | SumoLogic data is hosted in the United States. | 855 Main Street, Redwood City, CA, 94063, U.S.A. |
HCP Terraform HCP |
| Twilio | Messaging service for multi factor authentication | Twilio data is hosted in the United States. | 375 Beale Street, Suite 300, San Francisco, CA, 94105, U.S.A. |
HCP Terraform HCP |
| Enterprise Products Only | ||||
| Replicated | Installation and packaging | Replicated data is hosted in the United States. | 5913 Blackwelder St., Culver City, CA, 90232, U.S.A. | Terraform Enterprise |
| All Products | ||||
| DocuSign | Document signing software | DocuSign data is hosted in the United States |
221 Main Street, Suite 1550 San Francisco, CA 94105, U.S.A. | All Products |
| Forethought | Customer support and ticket routing | Forethought data is hosted in the United States. | 150 Spear Street, Suite 350, San Francisco, CA, 94105, U.S.A. | All Products |
| Gainsight | Customer success and support | Gainsight data is hosted in the United States. | 350 Bay Street, Suite 100, San Francisco, CA, 94133, U.S.A. | All Products |
| Email service provider | Google email services are hosted in the United States. |
1600 Amphitheatre Parkway, Mountain View, CA, 94043, U.S.A. | All Products | |
| Ironclad | Contract management | Ironclad data is hosted in the United States. |
71 Stevenson Street, #600 San Francisco, CA 94105 | All Products |
| Marketo | Customer and sales leads management | Marketo data is hosted in the United States | 901 Mariners Island Blvd, Suite 200, San Mateo, CA, 94404, U.S.A. | All Products |
| Material Security | Email security | Material Security data is hosted in the United States | 1003 Main St., Redwood City, CA, 94063, U.S.A. | All Products |
| Netsuite | Billing and accounting | Netsuite data is hosted in the United States. | 2300 Oracle Way, Austin, TX, 78741, U.S.A. | All Products |
| Salesforce |
Customer relationship management Tableau - Data visualization | Salesforce data is hosted in the United States. | 415 Mission Street, 3rd Floor, San Francisco, CA, 94105, U.S.A. | All Products |
| SendSafely | Encrypted file exchange platform used for support | SendSafely data is hosted in the United States. |
40 East Main Street, Suite 897, Newark, DE 19711, U.S.A. | All Products |
| Sigma Computing, Inc. | Data analytics | Sigma data is hosted in the United States. | 116 New Montgomery St #700, San Francisco, CA 94105 | All Products |
| Slack | Customer support | Slack data is hosted in the United States. | 500 Howard Street, San Francisco, CA, 94105, U.S.A. | All Products |
| Snowflake | Data warehouse | Snowflake data is hosted within the United States. | 106 E. Babcock Street, Suite 3A, Bozeman, MT, 59715, U.S.A. | All Products |
| Tackle.io | Marketplace listings | Tackle.io data is hosted within the U.S. | 104 S. Capitol Blvd., 201 A Boise, Idaho 83702 | All Products |
| Workato | Professional services for data warehouse | Workato data is hosted in the United States. | 215 Castro St., Suite 300, Mountain View, CA, 94041, U.S.A. | All Products |
| Zendesk | Customer support | Zendesk data is hosted in the United States. | 989 Market Street, San Francisco, CA, 94103, U.S.A. | All Products |
| Zoom | Customer support | Zoom data is hosted in the United States. | 55 Almaden Blvd., 6th Floor, San Jose, CA, 95113, U.S.A. | All Products |
| HashiCorp Federal, Inc. Use Only | ||||
| DLT Solutions | Customer support for HashiCorp Federal, Inc. | Data is hosted in the United States. |
2411 Dulles Corner Park Suite 800 Herndon, VA 20171 | Any products for which the customer purchases dedicated DLT support. |
HashiCorp engages various HashiCorp wholly-owned subsidiaries to perform limited internal activities in connection with delivering our products and services, and those subsidiaries may qualify as Subprocessors. HashiCorp, Inc. and its subsidiaries are parties to an intra-group data transfer agreement. For any questions regarding these subsidiaries, please reach out to privacy@hashicorp.com.