Qualys Privacy Statement Highlights

Version 2.4 – Effective November 9, 2015

Validate TRUSTe privacy certification

This Privacy Statement Highlights provides a high-level summary of Qualys' entire Privacy Statement. Qualys provides these highlights as a convenience to you but should not be considered the full Privacy Statement of Qualys.


Qualys®, Inc. (Qualys) is committed to providing you with excellent service for its Qualys services ("Services"). Qualys adheres to the EU Safe Harbor Privacy Principles with respect to certain personal data that it receives about European Union residents in the course of providing Qualys services. Please read about Qualys' participation in Safe Harbor.

Websites Covered

This Privacy Statement applies to Qualys Websites that link to this Privacy Statement:;;;;;;;;;;;;;; and (collectively referred to as "Qualys Websites").

Qualys Websites may contain links to other websites. Qualys is not responsible for the information practices or the content of such other websites. Qualys encourages you to review the privacy statements of other websites to understand their information practices.

Statistical Information About Your Visit

When you visit Qualys Websites, our systems collect personal information (in the manner described above) and statistical or non-personally identifiable information about your visit to our sites (e.g. IP address, pages visited, origin of visitor domains, and types of browsers used). However, unless you actively submit personal information, we do not typically identify you via the non-personally identifiable information. Notwithstanding the foregoing, to the extent permitted by applicable law, we reserve the right to combine non-personally information with personal information that you have actively submitted.

Qualys Supported Blogs and Forums

If you use a blog or forum, or other chat tool on a Qualys Website, you should be aware that any personally identifiable information you submit there can be read, collected, or used by other users of these forums, and could be used to send you unsolicited messages. Qualys is not responsible for the personally identifiable information you choose to submit in these forums. You are also responsible for using these forums in a manner consistent with the applicable Terms of Use or other terms and conditions set forth on the relevant forum site.

Your Ability to Opt-Out of Further Notifications

From time-to-time, we notify visitors to Qualys Websites of new products, announcements, upgrades and updates unless you have opted out of these notices. If you would like to opt-out of being notified, please contact us at the address given at the end of this Privacy Statement.

If you would like to change your preferences online, please visit Please be aware that you may not opt out of receiving information regarding the security, initial use, expiration, product enhancement or migration of our products or services.

Our Security Procedures

We consider the protection of all personal information we receive from Qualys Website visitors and customers as critical. Please be assured that we have security measures in place to protect against the loss, misuse, and alteration of any personal information we receive from you. As with any transmission over the Internet, however, there is always some element of risk involved in sending personal information. In order to try to minimize this risk, we encrypt all information that you submit in ordering our services using the Secure Sockets Layer (SSL) protocol. Our security procedures are also subject to at least an annual SSAE 16 or industry standard alternative audit by an internationally-recognized accounting firm.

EU Safe Harbor

Qualys self-certifies in compliance with the Safe Harbor Privacy Principles published by US Department of Commerce ("Safe Harbor Principles") with respect to personal data about individuals in the EEA that subsidiaries, customers, suppliers and other businesses in the EEA send to Qualys. Read about Qualys' participation in EU Safe Harbor.

Update on EU Safe Harbor November 2015

On October 6, 2015, the European Court of Justice ("ECJ") has determined that the Safe Harbor Framework does not provide a valid legal basis for transfers of personal data from Europe to the US. In the process of delivering our services, Qualys collects very little Personally Identifiable Information (PII). Despite the ECJ Ruling, Qualys believes that EU-US Safe Harbor Framework and Safe Harbor Principles, established by the European Commission and the U.S. Department of Commerce to facilitate transfers of personal data from the EU, has been an important mechanism for global enterprises to adhere to their privacy compliance requirements. Nevertheless, in an effort to help ensure that Qualys customers can continue to transfer personal data from the EU to the US, when requested, Qualys will include the Model Contracts into our existing and future agreements.  

In the meantime, the US Department of Commerce has advised U.S. companies that they will continue to administer the Safe Harbor Framework while the European Commission and U.S. Department of Commerce negotiate necessary changes and updates to the Safe Harbor Framework ("Safe Harbor 2.0").  As a result, Qualys will continue to maintain compliance with the Safe Harbor Principles while these negotiations continue.

Qualys will share any additional information as it becomes available. If you have specific questions not addressed here, please contact your Technical Account Manager.

How to Contact Qualys

If you have questions or would like additional information about Qualys' Privacy Statement, please contact Qualys at 1600 Bridge Parkway, Redwood City, CA 94065, telephone: 650.801.6100, or fax: 650.801.6101.

Qualys Solutions
Qualys Community
Free Trial & Tools
Free Trial

Nothing to install!

1 (800) 745 4355