Privacy Policy

Effective as of Sept 1, 2012

Rapid7 LLC and its affiliates (collectively, "we", "our", "us" or "Rapid7") is committed to your privacy. This privacy statement describes how Rapid7 collects and uses the personal information you provide on our Web sites: www.rapid7.com and www.metasploit.com (each a "Site" and collectively, the "Sites"). It also describes the choices available to you regarding our use of your personal information and how you can access and update this information.  We encourage you to read this Privacy Statement carefully when using the Site, or when providing information to us through the Site.  You understand that by using Site you are accepting our practices as described in this privacy statement.

Rapid7 has been awarded TRUSTe's Privacy Seal signifying that this privacy policy and practices have been reviewed by TRUSTe for compliance with TRUSTe's program requirements including transparency, accountability and choice regarding the collection and use of your personal information. The TRUSTe program covers information collected through these Web sites, www.rapid7.com and www.metasploit.com and does not cover information that may be collected through any software downloaded from the Sites. TRUSTe's mission, as an independent third party, is to accelerate online trust among consumers and organizations globally through its leading privacy trustmark and innovative trust solutions. If you have questions or complaints regarding our privacy policy or practices, please contact us at info@rapid7.com. If you are not satisfied with our response you can contact TRUSTe here.

Rapid7 participates in the U.S.-Swiss Safe Harbor and U.S.-EU Safe Harbor Privacy Frameworks as set forth by the United States Department of Commerce.  As part of our participation in the safe harbor, we have agreed to TRUSTe dispute resolution for disputes relating to our compliance with the Safe Harbor Privacy Framework.

Collection and Use of Personal Information

We collect the following personal information from you

  • Contact Information such as name, email address, mailing address, phone number
  • Billing Information such as credit card number, and billing address
  • Unique Identifiers such as user name, account number, password

As is true of most Web sites, we automatically gather information about your computer such as your IP address, browser type, referring/exit pages, and operating system.

We use this information to

  • Fulfill your order
  • Send you an order confirmation
  • Send you requested product or service information
  • Send product updates or warranty information
  • Respond to customer service requests
  • Administer your account
  • Send you a newsletter
  • Send you marketing communications

Choice/Opt-Out

As stated above, we may also use the information described above to send you a newsletter or other marketing communications.  You may choose to stop receiving our newsletter or marketing communications at anytime by following the unsubscribe instructions included in the newsletters or communications.  Alternatively, you can opt-out of receiving such newsletters and communications by contacting us at info@rapid7.com.

Information Sharing

We will share your personal information with third parties only in the ways that are described in this privacy statement. We do not sell your personal information to third parties.

We may provide your personal information to companies that provide services to help us with our business activities such as shipping your order or offering customer service. These companies are authorized to use your personal information only as necessary to provide these services to us.

We may also disclose your personal information

  • as required by law such as to comply with a subpoena, or similar legal process
  • when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request,
  • if Rapid7 is involved in a merger, acquisition, or sale of all or a portion of its assets, provided, however, that you will subsequently be notified via email and/or via a prominent notice on our Sites of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information,
  • to any other third party with your prior consent to do so.

Third Party E-Commerce Solutions Provider

Our shopping cart is hosted by our e-commerce solutions provider. They host our ordering system, and collect your billing information directly from you for the purpose of processing your order. This company does not use this information for any other purpose.

Cookies and Other Tracking Technologies

Cookies are pieces of data that a website transfers to a user's hard drive for record-keeping purposes.   We may use cookies, for example, to keep track of your preferences and profile information. Cookies are also used to collect general usage and volume statistical information that does not include personal information.

We may also use another company to place cookies on your computer to collect non-personally identifiable information to compile aggregated statistics for us about visitors to our Site.  Third party vendors, including Google, show our ads on sites on the internet.

The use of cookies by our service providers is not covered by our privacy statement. We do/do not have access or control over these cookies. Our use session ID cookies to make it easier for you to navigate/use our site and to provide you with relevant content and advertisements. Third party vendors, including Google, use cookies to serve ads based on a user's prior visits to our website. Users may opt out of Google’s use of cookies by visiting the Google advertising opt-out page.

You have many choices with regards to the management of cookies on your computer. All major browsers allow you to block or delete cookies from your system. To learn more about your ability to manage cookies and web beacons, please consult the privacy features in your browser.

Web beacons

Our Web pages contain electronic images known as Web beacons (sometimes called single-pixel gifs) and are used along with cookies to compile aggregated statistics to analyze how our Site is used and may be used in some of our emails to let us know which emails and links have been opened by recipients. This allows us to gauge the effectiveness of our customer communications and marketing campaigns.

Links to Other Web Sites

Our Site includes links to other Web sites whose privacy practices may differ from those of Rapid7 If you submit personal information to any of those sites, your information is governed by their privacy statements and Rapid7 disclaims any and all liability or responsibility for the use of your information by these sites. Accordingly, we encourage you to carefully read the privacy statement of any Web site you visit.

In order to make a purchase from us, you must use our shopping cart provider to finalize and pay for your order. Its privacy statement and security practices will also apply to your information. We encourage you to read that privacy statement before providing your information.

Security

When we collect personal information directly from you, we follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore we cannot guarantee its absolute security. If you have any questions about security on our Site, you can contact us at info@rapid7.com.

Children's Privacy

Our Site is a general audience site, and we do not intend to market to or collect, nor do we knowingly collect, personal information from children under the age of 13.  Unfortunately, we cannot always determine the age of a visitor to our Site or the sender of an email.

Additional Policy Information

Our Site may include Widgets, which are interactive mini-programs that run on our site to provide specific services from another company (e.g. displaying the news, opinions, music, etc). Personal information, such as your email address, may be collected through the Widget. Cookies may also be set by the Widget to enable it to function properly. Information collected by this Widget is governed by the privacy policy of the company that created it.  All Widgets are offered by Rapid7 on an “as is” basis and Rapid7 does not guaranty the accuracy, completeness, timeliness, reliability, suitability or usefulness of the Widgets or any other portion of the Site.

Our Site may also offer publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected, and used by others who access them.  All such information is offered by Rapid7 on an “as is” basis and Rapid7 does not guaranty the accuracy, completeness, timeliness, reliability, suitability or usefulness of such information.

Customer Testimonials/Comments/Reviews

We post customer testimonials/comments/reviews on our web site which may contain personally identifiable information.  We do obtain the customer's consent via email prior to posting the testimonial to post their name along with their testimonial.

Correcting and Updating Your Personal Information

To review, delete or  and update your personal information to ensure it is accurate, contact us at info@rapid7.com. We will respond to your request to access within 5 days.

Data Retention

We will retain your information for as long as your account is active or as needed to provide you services. If you wish to cancel your account or request that we no longer use your information to provide you services contact us at info@rapid7.com. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Conditions of Use, Notices and Changes to Our Privacy Policy

By using this Site, you agree to the terms and conditions contained in this privacy statement. If you do not agree to any of these terms and conditions, you should not use this Site or any of Rapid7’s benefits or services offered hereby.  You agree that any dispute over privacy or the terms contained in this privacy statement will be governed by the laws of the Commonwealth of Massachusetts. Any legal action or proceeding relating to this privacy statement or your access to or use of this Site shall be instituted solely in a state or federal court in the Commonwealth of Massachusetts.  You agree to submit to the jurisdiction of, and agree that venue is proper in these courts.

Notification of Privacy Statement Changes

We may update this privacy policy to reflect changes to our information practices. If we make any change in how we use your personal information we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on this Site prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices. 

Contact Information

You can contact us by writing or email us at the address below:
Rapid7
100 Summer Street
13th Floor
Boston, MA 02110-2131
info@rapid7.com