• Close
  • Privacy Policy

    Effective as of May 4, 2016

    Rapid7 LLC and its affiliates (collectively, "we", "our", "us" or "Rapid7") are committed to your privacy. This Privacy Policy describes how Rapid7 collects and uses the personal information you provide on our Web sites: www.rapid7.com and www.metasploit.com (each a "Site" and collectively, the "Sites"). It also describes the choices available to you regarding our use of your personal information and how you can access and update this information. We encourage you to read this Privacy Policy carefully when using the Site, or when providing information to us through the Site. You understand that by using the Site you are accepting our practices as described in this privacy statement.

    The TRUSTe program covers information collected through these Web sites, www.rapid7.com and www.metasploit.com and does not cover information that may be collected through any software downloaded from the Sites. In order to view our relationship with TRUSTe please visit the validation page visible by clicking on the TRUSTe Seal. If you have questions or complaints regarding our privacy policy or practices, please contact us at info@rapid7.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact TRUSTe at https://feedback-form.truste.com/watchdog/request.

    Rapid7 participates in the U.S.-Swiss Safe Harbor and U.S.-EU Safe Harbor Privacy Frameworks as set forth by the United States Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries and Switzerland. Rapid7 has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. As part of our participation in the safe harbor, we have agreed to TRUSTe dispute resolution for disputes relating to our compliance with the Safe Harbor Privacy Framework. To learn more about the Safe Harbor program, and to view Rapid7's certification, please visit http://www.export.gov/safeharbor/.

    Collection and Use of Personal Information

    We collect the following personal information from you

    • Contact Information such as name, email address, mailing address, phone number
    • State Tax Reference Number
    • Unique Identifiers such as user name, account number, password

    As is true of most Web sites, we automatically gather information about your computer such as your IP address, browser type, referring/exit pages, and operating system.

    We use this information to

    • Fulfill your order
    • Send you an order confirmation
    • Send you requested product or service information
    • Send product updates or warranty information
    • Respond to customer service requests
    • Administer your account
    • Send you a newsletter
    • Send you marketing communications


    We may use the information described above to send you a newsletter or other marketing communications. You may choose to stop receiving our newsletter or marketing communications at any time by following the unsubscribe instructions included in the newsletters or communications. Alternatively, you can opt-out of receiving such newsletters and communications by contacting us at info@rapid7.com.

    Information Sharing

    We will share your personal information with third parties only in the ways that are described in this Privacy Policy. We do not sell your personal information to third parties.

    We may provide your personal information to companies that provide services to help us with our business activities such as shipping your order or offering customer service. These companies are authorized to use your personal information only as necessary to provide these services to us.

    We may also disclose your personal information

    • as required by law such as to comply with a subpoena, or similar legal process
    • when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request,
    • if Rapid7 is involved in a merger, acquisition, or sale of all or a portion of its assets, provided, however, that you will subsequently be notified via email and/or via a prominent notice on our Sites of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information,
    • to any other third party with your prior consent to do so.

    Third Party E-Commerce Solutions Provider

    Our shopping cart is hosted by our e-commerce solutions provider. They host our ordering system, and collect your billing information directly from you for the purpose of processing your order. This company does not use this information for any other purpose.

    Cookies and Other Tracking Technologies

    Technologies such as: cookies, beacons, tags and scripts are used by Rapid7 and our affiliates, or analytics or service providers, such as our online customer support provider. These technologies are used in analyzing trends, administering the site, tracking users' movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.

    We use cookies for our shopping cart, to remember users' settings (e.g. language preference), for authentication. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still use our site, but your ability to use some features or areas of our site may be limited.

    As is true of most web sites, we gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data.

    We may combine this automatically collected log information with other information we collect about you. We do this to improve services we offer you.

    We and our partners use Local Storage (LS) such as HTML5 or similar technologies to store content information and preferences. Third parties with whom we partner to provide certain features on our site or to display advertising based upon your Web browsing activity use LS such as HTML 5 to collect and store information. Various browsers may offer their own management tools for removing HTML5 LSOs. To manage Flash cookies, please click here.

    We partner with third party sites to either display advertising on our Web site or to manage our advertising on other sites. Our third party partners may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking http://preferences-mgr.truste.com/ (or if located in the European Union click http://www.youronlinechoices.eu/) Please note this does not opt you out of being served ads. You will continue to receive generic ads.

    Links to Other Web Sites

    Our Site includes links to other Web sites whose privacy practices may differ from those of Rapid7. If you submit personal information to any of those sites, your information is governed by their privacy statements and Rapid7 disclaims any and all liability or responsibility for the use of your information by these sites. Accordingly, we encourage you to carefully read the privacy statement of any Web site you visit.

    In order to make a purchase from us, you must use our shopping cart provider to finalize and pay for your order. Its privacy statement and security practices will also apply to your information. We encourage you to read that privacy statement before providing your information.


    The security of your personal information is important to us. When you enter sensitive information (such as the State Tax Reference Number) on our partnership forms, we encrypt the transmission of that information using secure socket layer technology (SSL).

    When we collect personal information directly from you, we follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore we cannot guarantee its absolute security. If you have any questions about security on our Site, you can contact us at info@rapid7.com.

    Children's Privacy

    Our Site is a general audience site, and we do not intend to market to or collect, nor do we knowingly collect, personal information from children under the age of 13. Unfortunately, we cannot always determine the age of a visitor to our Site or the sender of an email.

    Additional Policy Information

    Our Site may include Widgets, which are interactive mini-programs that run on our site to provide specific services from another company (e.g. displaying the news, opinions, music, etc). Personal information, such as your email address, may be collected through the Widget. Cookies may also be set by the Widget to enable it to function properly. Information collected by this Widget is governed by the privacy policy of the company that created it. All Widgets are offered by Rapid7 on an "as is" basis and Rapid7 does not guaranty the accuracy, completeness, timeliness, reliability, suitability or usefulness of the Widgets or any other portion of the Site.

    Our Site may also offer publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected, and used by others who access them. All such information is offered by Rapid7 on an "as is" basis and Rapid7 does not guaranty the accuracy, completeness, timeliness, reliability, suitability or usefulness of such information. To request removal of your personal information from our blog or community forum, contact us at info@rapid7.com. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.

    Customer Testimonials/Comments/Reviews

    We post customer testimonials/comments/reviews on our website which may contain Personal Information. We do obtain the customer's consent via email prior to posting the testimonial to post their name along with their testimonial. If you wish to update or delete your testimonial, you can contact us at info@rapid7.com.

    Correcting and Updating Your Personal Information

    To review, delete or and update your personal information to ensure it is accurate, contact us at info@rapid7.com or by contacting us by telephone or postal mail at the contact information listed below. We will respond to your request to access within 5 days.

    Data Retention

    We will retain your information for as long as your account is active or as needed to provide you services. If you wish to cancel your account or request that we no longer use your information to provide you services contact us at info@rapid7.com. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

    Conditions of Use, Notices and Changes to Our Privacy Policy

    By using this Site, you agree to the terms and conditions contained in this Privacy Policy. If you do not agree to any of these terms and conditions, you should not use this Site or any of Rapid7's benefits or services offered hereby. You agree that any dispute over privacy or the terms contained in this privacy statement will be governed by the laws of the Commonwealth of Massachusetts. Any legal action or proceeding relating to this Privacy Policy or your access to or use of this Site shall be instituted solely in a state or federal court in the Commonwealth of Massachusetts. You agree to submit to the jurisdiction of, and agree that venue is proper in these courts.

    Notification of Privacy Statement Changes

    We may update this privacy policy to reflect changes to our information practices. If we make any change in how we use your personal information we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on this Site prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

    Contact Information

    You can contact us by writing or email us at the address below:

    100 Summer Street
    13th Floor
    Boston, MA 02110-2131