• Information and Communications Technology
  • Cybersecurity


Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/16/2017
Next Certification Due Date: 7/13/2023
Data Collected: HR, NON-HR

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 11/25/2016
Next Certification Due Date: 7/13/2023
Data Collected: HR, NON-HR

Purpose of Data Collection

Personal Information Received from the EU/EEA and/or Switzerland: Personal information collected online and offline during certain business transactions and communications with Mandiant's customers and vendors. Personal data is transferred to Mandiant for purposes of marketing, facilitating transactions, provision of services, security, customer support, customer communications, improving Mandiant's products and services, auditing, data analysis and data storage. Human Resources data is transferred from Mandiant's international subsidiaries for the purpose of performing the employment relationship, in particular of conducting the human resources administration and financial management of Mandiant. Relevant Countries from which Personal Information is Received: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, United Kingdom.

Privacy Policy

HR Data

Mandiant Employee Privacy Policy

The policy regulates the collection and processing of employee's personal information and establishes guidelines how the organization safeguards employee's privacy.

Effective Date: 10/1/2021

Non-HR Data


The online privacy policy describes how Mandiant uses and protects customer's personal information to be shared for fulfilling requests for information on products and services, for responding to any complaints, for contacting our customers about offers and new products or for following up activities on marketing initiatives and to generally manage customer's relationship.

Effective Date: 10/1/2021

Verification Method


Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Mandiant, Inc. at:

Richard Weaver
Data Protection Officer
Mandiant, Inc.
11951 Freedom Drive, 6th Floor
Reston, Virginia 20190

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Mandiant, Inc. to your question or complaint, please contact the independent recourse mechanism listed below

Appropriate statutory body with jurisdiction to investigate any claims against Mandiant, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission