Other Covered Entities

OneLogin, Inc.


  • Information and Communications Technology
  • Cybersecurity


Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 6/7/2017
Next Certification Due Date: 1/3/2019
Data Collected: NON-HR

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 1/4/2017
Next Certification Due Date: 1/3/2019
Data Collected: NON-HR

Purpose of Data Collection

OneLogin collects the following personal information when a customer registers for the OneLogin Service; first name, last name, and email address. After registration the customer administrator, as acting data controller, can add other personal information of their end users into the OneLogin Solution to enable those end users to use the Service. OneLogin does not collect end user information without consent or direction of the customer administrator. OneLogin uses a third party to perform credit card processing for those customers that pay for the paid subscription tiers of the Service. OneLogin does not retain credit card information.

Privacy Policy

Non-HR Data


This is the privacy notice that are working on publishing today. It will also include the following intro text: Update: We've submitted an application to participate in the Privacy Shield framework for personal data transfers from the EU to the US, and have updated this Privacy Notice to reflect our application. This Privacy Notice has already been reviewed by TRUSTe as described below.

Effective Date: 9/6/2016

Verification Method

Outside Compliance Review

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact OneLogin, Inc. at:

Alvaro Hoyos
OneLogin, Inc.
100 California Street, Suite 900
San Francisco, California 94111

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from OneLogin, Inc. to your question or complaint, please contact the independent recourse mechanism listed below


Appropriate statutory body with jurisdiction to investigate any claims against OneLogin, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission