Authorized Subprocessors for ThousandEyes Network Intelligence Platform
Cisco online privacy statement: https://www.thousandeyes.com/cisco-privacy

Introduction

This article communicates the current list of companies who are authorized to process personal data for the ThousandEyes Network Intelligence Platform. These companies are known as subprocessors. ThousandEyes performs due diligence on the technical and organizational security measures of all subprocessors, and requires each to commit to obligations regarding their security controls and applicable regulations for the protection of personal data.

Scope

The table below defines the scope of the data categories that are used in the list of authorized subprocessors.
Personal Data Category
Types of Personal Data
Registration Data
User's email address User's first and last name User's password User's IP address Billing contact name
Support Information
First name, last name, email address, and phone number of the individual opening the service request Customer account information
Application Credentials
Credentials used by Cloud and Enterprise Agents to execute web transaction tests
Usage Information Collected by Endpoint Agent
IP address and logged-in username for the end-user computer where an Endpoint Agent is installed Computer hostname
Additional Usage Information Customer Can Configure Endpoint Agent to Process
Administrator-selected website page names and object names on target pages (for load-time monitoring)
Any category of information displayed on a web page that is being tested during a screenshot capture (if any)
Information displayed on a captured image when a transaction test encounters a script error Information displayed on a web page during a transaction test when the user instructs the service to capture a screenshot
For additional information, please see the ThousandEyes Privacy Data Sheet.

Current List of ThousandEyes Subprocessors

The table below shows information for each sub-processor, including the company’s address, location of data processing, and whether or not we have a data processing agreement executed with the subprocessor. We also include a list of other available documentation validating the company’s security controls.
#
Name
Address
Data Storage Location
Services/Processing Provided
DPA
Other Validation
Personal Data Category
1
Salesforce.com, Inc.
1 Market Street, San Francisco, CA 94105 USA
USA
SaaS CRM
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
2
Marketo, Inc.
901 Mariners Island Blvd, San Mateo, CA 94404 USA
USA
SaaS Marketing automation
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
3
Amazon Web Services
1200 12th Avenue South Suite 1200 Seattle, WA 98144 USA
USA
PaaS
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information; Application Credentials; Usage Information Collected by Endpoint Agent; Additional Usage Information Customer Can Configure Endpoint Agent to Process; Any category of information displayed on a web page being tested during a screenshot capture (if any)
4
Google LLC
1600 Amphitheatre Parkway Mountain View, CA 94043 USA
USA
PaaS
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
5
Heap Inc.
460 Bryant Street, 3rd floor, San Francisco, CA 94107 USA
USA
SaaS Web analytics
Yes
SOC2 Type 1 Internal audit
Registration Data; Support Information
6
Drift.com, Inc.
703 Market St., Floor 15 San Francisco, CA 94103 USA
USA
WWW Website chat
Yes
SOC2 Type 2 Internal audit
Registration Data; Support Information
7
Looker Data Sciences, Inc.
101 Church Street, Santa Cruz, CA 95062 USA
USA
SaaS Web analytics
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
8
MongoDB, Inc.
1633 Broadway, 38th Floor, New York, NY 10019 USA
USA
PaaS
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information; Application Credentials; Usage Information Collected by Endpoint Agent; Additional Usage Information Customer Can Configure Endpoint Agent to Process; Any category of information displayed on a web page being tested during a screenshot capture (if any)
9
Bizible, Inc.
300 Deschutes Way Southwest, Suite 304 Tumwater, WA 98501 USA
USA
SaaS Marketing Attribution
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
10
Snowflake, Inc.
450 Concar Dr, San Mateo, CA 94402 USA
USA
SaaS Reporting analytics
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information
11
Fivetran, Inc.
1221 Broadway, Suite 2400, Oakland, CA 94612
USA
SaaS Data Synchronization
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information; Application Credentials; Usage Information Collected by Endpoint Agent; Additional Usage Information Customer Can Configure Endpoint Agent to Process
12
Okta, Inc.
100 1st Street, 6th Floor, San Francisco, CA 94105 USA
USA
SaaS Authentication Provider
Yes
ISO 27001 SOC2 Type 2
Application Credentials; Support Information
13
OwnBackup, Ltd.
940 Sylvan Ave Englewood Cliffs, NJ 07632 USA
USA
SaaS CRM Backup
Yes
ISO 27001 SOC2 Type 2
Registration Data; Support Information

Affiliates

Depending on the geographic location of a Customer or their Authorized Users, and the nature of the Services provided, ThousandEyes may also engage one or more of its Affiliates as Subprocessors to deliver some or all of the Services provided to a Customer:
#
Entity Name
Address
Data Storage Location
1
ThousandEyes LLC
201 Mission Street Suite 1700 San Francisco, CA 94105, USA
USA
2
ThousandEyes UK Limited
Suite 1, The Sanctuary, 23 Oak Hill Grove, Surbiton, KT6 6DU United Kingdom
USA
3
ThousandEyes Japan KK
1-2-3, Kita Aoyama, Minato-ku, Tokyo, 1070061 Japan
USA
4
ThousandEyes Ireland Operations Limited
24/26 City Quay, Dublin 2, DO2 NY19 Ireland
USA
5
ThousandEyes Germany GmbH i.G.
Hagenauer Straße 59 65203 Wiesbaden Germany
USA
6
ThousandEyes Singapore Private Limited
77 Robinson Road #13-00, Robinson 77 Singapore 068896, Singapore
USA
7
ThousandEyes Australia Pty Ltd
Level 17 383 Kent Street Sydney NSW 2000, Australia
USA
8
Cisco Systems, Inc.
170 West Tasman Drive, San Jose, California 95134
USA

Updates

ThousandEyes will notify customers in advance of any changes to subprocessors using this article. Customers shall not unreasonably object to any intended change. Any objections must be made by email to [email protected] within 30 days of communication.

Notifications

If you want to add, change or remove subscribers to the notification list for your company, please send your request to [email protected].

Change log

  • 2022-05-25: Added subprocessors: Fivetran, Inc., Okta, Inc., OwnBackup, Ltd.
  • 2021-12-01: Updated subprocessor list to add Snowflake Inc.; remove Clari, Inc. and Demandbase, Inc. Updated the scope and subprocessor tables to match the Privacy Data Sheet. Added Cisco as an affiliate.
  • 2021-07-19: Added subprocessor: Bizible, Inc.
  • 2020-10-12: Updated subprocessor: Engagio, Inc. acquired by Demandbase, Inc.; ThousandEyes, Inc. has been converted to ThousandEyes, LLC
  • 2020-07-08: Added subprocessor: MongoDB, Inc.
  • 2020-03-02: Added subprocessor: Looker, removed: Chart.io, Inc.
  • 2019-08-08: Added subprocessor: Chart.io, Inc.
  • 2019-05-30: Added subprocessor: Drift.com, Inc.
  • 2019-03-04: Added subprocessor: Clari, Inc.
  • 2018-11-19: Added subprocessor: Engagio Inc.
  • 2018-05-31: Removed subprocessor: Go Squared Ltd.
  • 2018-03-16: Initial release