Version /legal/privacy/3.0.0/ of This Agreement was created on December 29, 2022 and has been deprecated. Please see Privacy Policy 3.3.1 for the latest version.
This Privacy Policy sets out how Sentry collects, discloses, and uses personal information about you and how you can exercise your privacy rights. This Privacy Policy applies to personal information that we collect when you visit our website at sentry.io (“Site”), use our products and services (“Service”), or otherwise interact with us (e.g., by attending an event or communicating with us). If you do not agree with this policy, please do not access or use our Site or Service or interact with any other aspect of our business.
This Privacy Policy does not apply to data submitted to the Service (“Customer Data”). A separate agreement (“Customer Agreement”) governs delivery, access, and use of the Service, including the processing of Customer Data. With respect to any personal information included in Customer Data, the organization (e.g., your employer or another entity or person) that entered into the Customer Agreement (“Customer”) controls its instance of the Service and any associated Customer Data. If you have any questions about a Customer’s instance of the Service and any associated Customer Data, please contact the Customer.
We recommend that you read this Privacy Policy in full to ensure you are fully informed. However, if you only want to access a particular section of this Privacy Policy, then you can click on the relevant link below to jump to that section.
Table of contents
Sentry offers an application monitoring solution designed to identify, monitor, and alert developers to errors, bugs, and other performance issues that are occurring in their applications.
For more information about Sentry, please see the “About Us” section of our Site at https://sentry.io/about/.
The personal information that we may collect about you broadly falls into the following categories:
Information that you provide
We collect information about you when you input it into our Site or the Service or otherwise provide it directly to us.
Account and profile creation
We collect information about you when you register for an account, create or modify your profile, and set preferences for the Service. For example, you may provide your contact information, including your first and last name, email address, and password when you register for the Service. You may also have the option of adding an avatar to your profile to be displayed in the Service. We keep track of your preferences when you select settings within the Service, including marketing and notification settings.
Sign in via other platforms
Instead of creating a user account, you can log in via your account with other platforms (currently Google, Github, or Azure Devops). We will not collect the password that you use for the relevant platform, but we may collect details from your account with the platform, such as username and email address.
Requests and inquiries
You may choose to provide us with information when you contact us about our Service or otherwise interact with us. For example, you may choose to submit information regarding a problem you are experiencing with our Service and send us screenshots to help in resolving the problem. You may submit your contact information to register for our events, to subscribe to receive marketing communications from us, or to make an inquiry through our Site. You may also provide content to us when you participate in a survey, contest, promotion, sweepstake, activity, or event, including via social media and other content platforms.
Transactions
If you register for a paid Service, we will collect transaction information, such as the Service plan that you purchase and information related to refunds, credits, and cancellations, and your billing address and payment information. Please note that any payment information you provide is sent directly to a third-party payment processor. We have no access to and do not store your payment information.
Information that we collect from your device and usage
We collect certain information about your device and how you and your device interact with us and our Site or Service. In some countries, including countries in the European Economic Area and the United Kingdom (together, ”Europe”), this information may be considered personal data under applicable data protection laws.
Specifically, the information we collect will include information such as your IP address, device type, unique device identification numbers, browser-type, operating system, software installed on your device, product keys, general location information (such as inferred from an IP address), and referring URL. We also collect information about how you and your device have interacted with our Site or Service or with us via email, including the pages you accessed, features you used, Service you purchased, links you clicked, and when you accessed and for how long.
Some of this information is collected using cookies and similar tracking technology, as explained further under the heading “Cookies and similar tracking technology” below.
Information that we obtain from third-party sources
From time to time, we receive personal information about you from third-party sources (including social media and other content platforms, public databases, and from our business and channel partners and service providers).
The types of information we collect from third parties include name, email addresses, job titles, and social media profiles. We may combine this information with information we collect through other means described above. This helps us to maintain and improve the accuracy of our records, identify new customers, deliver personalized communications, and suggest services that may be of interest to you.
We use your information for business and commercial purposes, such as to:
We may aggregate or de-identify information collected through the Service. We may use aggregated or de-identified data for any purpose, including without limitation for research and marketing purposes, and may also disclose such data to any third parties, including without limitation, advertisers, promotional partners, sponsors, event promoters, and others.
If you are based in Europe, we collect and process information about you only where we have a legal basis for doing so under applicable European laws. This means we collect and process your information only where:
The legal bases depend on the type of information and the purpose for our processing. In some contexts, more than one legal basis applies. When we process your information based on your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on such consent before it is withdrawn. To exercise your rights, see “Your data protection rights” below. Where we are using your information because we or a third party (e.g., your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Service.
We disclose your personal information to the following categories of recipients:
We use cookies and similar tracking technology (collectively, “Cookies”) to collect and use personal information about you, including to understand and save your preferences, and to compile aggregate data about Site and Service interaction.
We may also allow certain third parties (e.g., ad networks and ad servers such as Google Ads) to serve tailored marketing to you and to access their own cookies or other tracking technologies on your computer, mobile phone, or other device you use to access the Site or Service. Cookies may be associated with de-identified data linked to or derived from data you voluntarily have submitted to us (e.g., your email address) that we may share with a service provider in hashed, non-human-readable form.
You may refuse to accept Cookies by activating the setting on your browser that allows you to refuse the setting of Cookies and choosing not to opt into Cookies via the banner displayed upon your first visit to our Site. You can find information on popular browsers and how to adjust your Cookie preferences at the browser provider’s websites. You can choose to disable Cookies, but if you do, your ability to use or access certain parts of our Site and Service may be affected.
If you are interested in more information about tailored browser advertising and how you can generally control Cookies from being put on your device to deliver tailored marketing, you may visit the Network Advertising Initiative’s (“NAI”) Consumer Opt-Out Link and the Digital Advertising Alliance’s (“DAA”) Consumer Opt-Out Link to opt-out of receiving tailored advertising from companies that participate in those programs. Please note that to the extent advertising technology is integrated into the Site or Service, you may still receive advertising content even if you opt out of tailored advertising. In that case, the advertising content will just not be tailored to your interests. Also, we do not control any of the NAI or DAA opt-out links and are not responsible for any choices you make using these mechanisms or the continued availability or accuracy of these mechanisms. If your browsers are configured to reject Cookies when you visit this opt-out page, or you subsequently erase your Cookies, use a different computer or change web browsers, your NAI or DAA opt-out may no longer be effective. Additional information is available on NAI’s and DAA’s websites, accessible by the above links.
We do not recognize or respond to browser-initiated Do Not Track signals.
We use appropriate technical and organizational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. However, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that information, during transmission through the Internet, or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others. In particular, email sent to or from Sentry may not be secure, and you should therefore take special care in deciding what information you send to us via email.
In some cases your personal information is transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country (and, in some cases, may not be as protective).
Specifically, our Site and Service is hosted in the United States, and our affiliate companies and third-party service providers operate around the world, including in the United States, Canada and Europe. This means that when we collect your personal information, we may process it in any of these countries.
Where we transfer your personal information to countries and territories outside of Europe, which have been formally recognised as providing an adequate level of protection for personal information, we rely on the relevant “adequacy decisions” from the European Commission and “adequacy regulations” from the Secretary of State in the United Kingdom.
Where the transfer is not subject to an adequacy decision or regulations, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this policy. The safeguards we use are the European Commission-approved standard contractual clauses, the UK International Data Transfer Agreement, and other appropriate legal mechanisms. This is how transfers of personal information between our group companies and with our third-party service providers will be safeguarded.
Privacy Shield Notice
While Sentry remains self-certified under the EU-U.S. Privacy Shield Framework, we are not currently relying on this framework for the transfer of personal data from the European Union or the United Kingdom to the U.S.
Functional Software, Inc. (our registered company name) participates in and complies with the EU-U.S. Privacy Shield Framework and the Privacy Shield Principles regarding the collection, use, and retention of information about you that is transferred from the European Union or the United Kingdom (as applicable) to the U.S. We ensure that the Privacy Shield Principles apply to all information about you that is subject to this policy and is received from the European Union and the United Kingdom.
Under the EU-U.S. Privacy Shield Framework, we are responsible for the processing of information about you we receive from the European Union and the United Kingdom and onward transfers to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for such onward transfers and remain liable in accordance with the Privacy Shield Principles if third-party agents that we engage to process such information about you on our behalf do so in a manner inconsistent with the Privacy Shield Principles, unless we prove that we are not responsible for the event giving rise to the damage. We may be required to disclose information about you under the EU-U.S. Privacy Shield Framework in response to lawful requests by U.S. authorities, including to meet national security or law enforcement requirements.
To learn more about the Privacy Shield Program, and to view Sentry’s certification, please see www.privacyshield.gov.
We encourage you to contact us as provided below should you have a Privacy Shield-related (or general privacy-related) complaint. We have further committed to cooperate and comply with the panel of the European data protection authorities (DPAs) as our independent recourse mechanism in the resolution of your Privacy Shield complaint. For unresolved complaints, you may also contact your local data protection authority. Contact details for data protection authorities in the European Union are available here and for the United Kingdom Information Commissioner are available here.
Under certain conditions, more fully described on the Privacy Shield website, including when other dispute resolution procedures have been exhausted, you may invoke binding arbitration.
We are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).
We retain the personal information we collect from you where we have an ongoing legitimate business need to do so (e.g., to provide you with a service you have requested or to comply with applicable legal, tax, or accounting requirements). In certain circumstances, we will need to keep your information for legal reasons after our relationship has ended. For example, we may retain your data for longer than the usual retention period when we have a legal obligation to do such, to deal with and resolve requests and complaints, to protect an individual’s rights and property, and for litigation and regulatory matters. The specific retention periods depend on the nature of the information and why it is collected and processed and the nature of any legal requirement. The criteria we use to determine the retention period include:
When we have no ongoing legitimate business need or legal reason to process your personal information, we will either delete or anonymise it or, if this is not possible (e.g., because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
Depending on your location, you may have the following data protection rights. To exercise any of them see specific instructions below or contact us using the contact details provided under the “How to contact us” heading below.
We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
Sentry’s Site and Service are not directed to children under 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information without parental consent, please contact us using the contact details provided under the “How to contact us” heading below. If we become aware that a child under 16 has provided us with personal information without parental consent, we will take steps to remove such information and terminate the child’s account.
If you are 16 or older, but have not reached your jurisdiction’s age of majority (such that you are able to enter a contract), you should only use the Service with permission from your parent or guardian.
The Site and Service may link to third-party websites or platforms from companies other than Sentry, such as to relevant online resources, social media platforms, our partners’ websites, payment processors, and other third-party websites. We are not responsible for the privacy practices or content of such other websites. If you have any questions about how these other websites use your information, you should review their policies and contact them directly. We are not responsible for the actions of third parties.
We may update this policy from time to time in response to changing legal, regulatory, technical, or business developments. When we update this policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material changes to this policy if, and where, required by applicable data protection laws.
You can see when this policy was last updated by checking the date displayed at the top of this policy.
If you have any questions or concerns about our use of your personal information, please contact by sending us an email at compliance@sentry.io.
The data controller of your personal information is Functional Software, Inc. d/b/a Sentry. Our address is Functional Software, Inc., 45 Fremont Street, 8th Floor, San Francisco, CA 94105.
The Supplemental notice for California residents can be found here.