We strive to ensure that the fewest people possible have access to your data, 和 only on an as-needed basis.
支持, 软件开发人员, 和 Operations Engineers have access to data to support application development 和 troubleshooting. 另外, Rapid7 collects Usability Data to help us improve our solutions 和 services 和 安全 System Data to deliver the Insight platform. For more details on these data types, please visit our 透明度 页面.
销售 和 Solution Engineers only have access to your 安全 System Data if you choose to use a production environment for a proof-of-concept.
销售, Marketing 和 other customer support teams have access to contact information, 销售数据, 和 Usability Data for product support 和 product analytics.
Rapid7 does not give any third-party direct or unfettered access to customer data except as you direct or when required by law.
We redirect law enforcement 和 other third-party requests to the customer. When we receive a government or law enforcement request for customer data, we will promptly notify you 和 provide you with a copy of the request, unless we are legally prohibited from doing so.
We do not give access to platform encryption keys. We do not voluntarily provide any government with our encryption keys or the ability to break our encryption, 和 will challenge overbroad legal dem和s for this data.
To learn more about how Rapid7 h和les data, please view our 隐私政策.
遵照我们的 服务条款, customers are not permitted to perform assessments of our networks or applications.
Rapid7 undergoes third party network 和 application penetration testing on an annual basis to ensure our products 和 corporate IT environments are secure. We are happy to provide letters of attestation from the external firm summarizing the results of this effort 和 Rapid7’s steps for remediation.
Rapid7 is more than happy to help you with your due diligence needs. We work very hard to provide high quality information about our security program, 我们产品的安全性, 和 Rapid7 procedures for keeping customer data secure. Rapid7 has now introduced a “Documentation First Approach Process”. This approach will simply ensure that all our customers 和 prospects have all the applicable security artifacts they need to kick off their review of Rapid7 without delay from our One信任 Profile. Publicly available documents can be downloaded 在这里.
If you require additional access to download Rapid7 SOC2 Type II report 和 other vital documents, kindly contact your Rapid7 account representative 和 they will submit a ticket on your behalf to have access provisioned for you. This will allow you to create a One信任 account 和 give you access to the platform for 5 business days to download all applicable documents. If you still have questions after reviewing our documentation, we are happy to address them. Kindly contact your account representative via email with your additional questions.
You can find our full 隐私政策 at http://g48.zqosn.net/privacy-policy/
Yes, these reports can be downloaded on Rapid7 One信任 Private Profile. Please contact your Rapid7 account representative 和 they will submit a ticket on your behalf to have access provisioned for you. This will allow you to create a One信任 account 和 give you access to the platform for 5 business days to download the SOC2 Type II report 和 any other applicable security artifact for your review. If you still have questions after reviewing our documentation, we are happy to address them. Kindly contact your account representative via email with your additional questions.