We have designed our contracting process to be as simple as possible in order to accelerate your journey to using Splunk solutions and unleashing the power of your data. Splunk terms are balanced and specifically drafted to reflect our offerings and business practices. We continuously benchmark against industry standards and listen to our customers to provide the terms and protections that are most meaningful to the marketplace. Our experts are available to answer questions and facilitate the most efficient path to an agreement without modifying our terms.
Here, you can read all about our General Terms, Specific Offering Terms, Privacy Terms and Data Security Terms.
Our Splunk General Terms (SGT) is what you need, whether you are buying a Splunk Cloud Platform solution, our on-premises products, support or implementation services. It’s a single set of terms that applies across all our offerings so you contract with Splunk just once!
Some of our offerings have additional terms that supplement our General Terms. The Specific Offering Terms are part of your Splunk agreement so you can enjoy new and additional Splunk products and services simply by sending your order, without having to sign a new agreement with Splunk. Discover the specific details relevant to the offering you purchase in our Specific Offering Terms.
Splunk uses GDPR as its global standard for its Data Protection program. We offer a Data Processing Addendum (DPA) that complies with the requirements for a data processor under GDPR and which relies on the Standard Contractual Clauses for data transfers from the EEA/EU to the U.S. You can download an exemplar copy of our DPA or execute the DPA via DocuSign here.
Our DPA is tailored to reflect how we offer our products and services and is scaled to meet the needs of all customers. For this reason, we are unable to modify our DPA.
For more information regarding Splunk’s privacy and security compliance programs, see Splunk Protects.
Specific questions regarding the transfer of personal data from the EEA/EU to the U.S. under the Standard Contractual Clauses as discussed in Schrems II are addressed in our white paper.
Splunk maintains a robust security program designed to protect the confidentiality, integrity and availability of your data. Splunk Cloud Platform has been certified by independent third-party auditors to meet SOC 2 Type II and ISO 27001 security standards. In addition, we offer a Level 1 PCI-DSS certified premium environment for customers that plan to ingest cardholder data, and a HIPAA-certified premium environment for customers that plan to ingest PHI.
We have developed comprehensive security addenda for our offerings. These documents are incorporated by reference into your General Terms, as applicable. Our security measures align to the security standards in the applicable Security Addendum (below) and are designed to reflect the manner in which we provide our offerings. As such, Splunk is unable to make changes to these security terms.
Additional Resources
Data Privacy. Security. Compliance.These matter to you and they are imperative to us.
Splunk’s prior agreements can be found here: Software License Agreement and Splunk Cloud Terms of Use