All you need to know about data processing at Mend.io

The following applies to our personal data processing with respect to our customers’ data:

1. Processing

2. PERSONAL DATA WE COLLECT AND DATA SUBJECTS.

3. OUR ROLE AS DATA CONTROLLER/ DATA PROCESSOR

4. DATA RETENTION.

We keep audit logs for a time period of 90 days and backups for a time period of 30 days. All data is deleted following termination of the customer’s subscription. For additional information – see our Data Retention and Archiving Policy at:Β https://www.mend.io/data-retention-and-archiving-policy/

5. PROCESSING BY THIRD PARTIES AND DATA TRANSFER.

6.  PSEUDONYMIZATION AND DATA MINIMIZATION.

We have invested significant resources and implemented technical and organizational measures to minimize the personal data we process and ensure that we only process the data necessary for the specific purpose. We pseudonymize the customer’s contributing developers’ emails. Once pseudonymized, the emails cannot be re-identified by Mend.io.

7. DATA SUBJECT REQUESTS. 

8. DATA PROTECTION SECURITY MEASURES.

9. ABOUT OUR PRIVACY TEAM

As a privacy-first organization, Mend.io takes great pride of its data protection practices. Our privacy team includes experienced and certified privacy experts, as well as external reputable data protection law firms and experts. We are monitoring changes in global data protection regulations as applicable to Mend.io and assessing our compliance, and when necessary, implementing required steps and procedures on an-ongoing basis.  For additional information see our Privacy Policy at: https://www.mend.io/privacy-policy/.