Netskope Privacy FAQs

What personal data does Netskope collect and process about me? Does Netskope use cookies? Is Netskope GDPR compliant? Are Netskope employees trained on GDPR and other privacy laws? Does Netskope have a procedure for managing data subject requests? Does Netskope have a team dedicated to privacy and data security? How does Netskope ensure the security of data transfers? Does Netskope Use Sub-Processors to Provide Its Services? Is Netskope’s privacy policy aligned with industry standards? How does Netskope secure and protect my personal data? How often are Netskope’s privacy and security policies updated? Is Netskope subject to U.S. surveillance laws, such as FISA Section 702? How does Netskope ensure secure data transfers post-Schrems II? How does Netskope comply with other regulations? Where can I contact for more information?

What personal data does Netskope collect and process about me?

For individuals using the website: Netskope collects and processes personal information when you visit or interact with its website. This includes contact and professional data (such as your name, email, phone number, and organization details) when you register for events, download content, or sign up for updates. Netskope also gathers automatically collected data through cookies and related technologies, such as your IP address, device and browser details, pages viewed, and interaction with website content. Additionally, if you engage with Netskope on social media or community forums, they may collect biographical and community data, including your profile details, posts, and feedback. Netskope uses this data to improve its services, personalize your experience, and provide relevant communications or resources based on your interests.

For customers: Netskope collects additional types of personal information to support its services and manage the relationship. This includes contract and payment data (e.g., billing address, payment details, and contract terms) for managing transactions and subscriptions. Netskope may also collect third-party and augmented data to enhance its records, such as your professional details from third-party sources. If you participate in programs like open-source projects or bug bounty initiatives, Netskope may collect details related to your contributions. The collected information is used for purposes such as providing and improving the services, tailoring user experiences, offering technical support, and ensuring security.

Netskope collects and processes personal information when you visit or interact with its website. This includes contact and professional data (such as your name, email, phone number, and organization details) when you register for events, download content, or sign up for updates.

Does Netskope use cookies?

Yes, Netskope uses cookies and similar technologies, such as web beacons, to collect information and track user interactions on its website. Cookies are small data files stored on your device that enhance site functionality, monitor usage, and enable personalized experiences. Netskope uses both first-party cookies (set by its website) and third-party cookies (set by external providers) for purposes such as analytics, advertising, and content delivery.

Cookies help Netskope provide core website functions, improve site performance, offer insights into user behavior, and personalize ads and content. Social media cookies are also used to facilitate content sharing and support advertising and analytics. You can adjust your cookie preferences; however, disabling certain cookies may impact site functionality. For more details, please refer to Netskope’s Cookies Policy.

Yes, Netskope uses cookies and similar technologies, such as web beacons, to collect information and track user interactions on its website.

Is Netskope GDPR compliant?

Yes, Netskope is GDPR compliant. As a data processor, Netskope follows strict protocols to protect the data of its customers, employees, and partners. This includes implementing robust physical, technical, and organizational measures to prevent unauthorized access, loss, or unlawful processing of data. The company also ensures that its security and privacy practices are independently audited annually. Netskope acts in compliance with various data protection regulations including GDPR and works closely with customers to meet their privacy and data security needs.

As a data controller, Netskope primarily processes employee data and ensures full compliance with the GDPR. This includes implementing robust measures to protect personal data, ensuring transparency in collection and processing, and respecting individuals’ rights. Personal data is processed lawfully, used only for specified, legitimate purposes, and handled in line with principles of data minimization and retention. Netskope supports data subjects’ rights (such as access, rectification, and erasure) and provides clear information through its Privacy Policy. Strong security measures are in place to safeguard personal data, demonstrating Netskope’s commitment to GDPR compliance while maintaining trust with employees and other stakeholders.

Yes, Netskope is GDPR compliant.

Are Netskope employees trained on GDPR and other privacy laws?

Yes, Netskope includes GDPR and other relevant privacy regulations in its annual security awareness training program for employees.

Does Netskope have a procedure for managing data subject requests?

Yes, Netskope has a documented process in place for handling data subject requests. These procedures are detailed on our privacy page, and requests can be directed to [email protected]. For further information, please review Netskope’s Exercise Your Rights section.

Does Netskope have a team dedicated to privacy and data security?

Yes, Netskope has a Privacy and Data Protection Team that includes a dedicated Data Privacy Officer and experienced privacy professionals. This team is committed to ensuring compliance with global privacy laws and collaborates closely with senior management to maintain strong data privacy and security standards.

How does Netskope ensure the security of data transfers?

Netskope secures data transfers by complying with Standard Contractual Clauses, the EU-U.S. and UK Data Privacy Frameworks, and implementing strong encryption and data protection measures. Additionally, Netskope provides customers with a pre-signed Data Processing Agreement (DPA). For any questions regarding the DPA, please contact [email protected].

Does Netskope Use Sub-Processors to Provide Its Services?

Yes, Netskope engages third-party sub-processors and affiliates to process customer personal data as a by-product of providing its services. To ensure compliance with data protection laws, Netskope requires all sub-processors to sign a Data Processing Agreement (DPA) that outlines strict privacy and security obligations. Netskope also provides customers with a 30-day notice of any changes to its list of sub-processors, which is communicated through support channels. The updated list of sub-processors is available here.

Is Netskope’s privacy policy aligned with industry standards?

Yes, Netskope’s privacy practices align with internationally recognized standards, including ISO 27001, ISO 27017, and ISO 27018. Netskope is also certified under the EU-U.S., UK extension, and Swiss-U.S. Data Privacy Framework programs, ensuring its commitment to industry best practices.

How does Netskope secure and protect my personal data?

Netskope secures personal data by implementing industry-standard security measures, including encryption in transit and at rest, robust access controls, regular vulnerability assessments, and compliance with data protection regulations. Netskope’s security architecture is designed to prevent unauthorized access, mitigate risks, and ensure data integrity. The company also conducts continuous monitoring, incident response planning, and employee training to safeguard data effectively.

How often are Netskope’s privacy and security policies updated?

Netskope reviews and updates its privacy and security policies at least annually or whenever there are significant changes to its systems, operations, or applicable regulations. This ensures that the policies remain aligned with evolving industry standards and legal requirements.

Is Netskope subject to U.S. surveillance laws, such as FISA Section 702?

As a U.S.-based company, Netskope complies with all applicable laws, including FISA Section 702. If subpoenaed, Netskope works with legal counsel to evaluate requests and seeks to prevent disclosure whenever possible. Customers are notified of such requests when legally permitted.

How does Netskope ensure secure data transfers post-Schrems II?

Post-Schrems II, Netskope relies on the EU-U.S. Data Privacy Framework, UK extension, and Swiss-U.S. Data Privacy Framework for data transfers. It also incorporates Standard Contractual Clauses in its Data Processing Agreements to ensure compliance with European data protection standards and provide safeguards for cross-border data transfers.

How does Netskope comply with other regulations?

Netskope complies with various global data protection and privacy regulations, including GDPR, and CCPA, by implementing privacy-by-design principles, maintaining transparency, and ensuring lawful processing of personal data. Netskope’s compliance measures include robust security controls, data subject rights management, and adherence to international standards such as ISO certifications. For more information on Netskope’s compliance with other regulations, visit Privacy Across Other Regions section.

Where can I contact for more information?

For more information, you can contact us at [email protected].