DigiCert Privacy Policy

TRUSTe online privacy certification


DigiCert, Inc. is committed to protecting the privacy of its customers and website visitors. As a result, DigiCert has developed this privacy policy to inform its website visitors and customers about DigiCert's practices regarding data collection and use.

Non-Personal Information

DigiCert, like most website operators, uses cookies and web beacons to automatically gather, analyze, and store non-personal information about website visitors. Non-personal information may include the visitor's IP address, browser type, ISP, referring page, operating system, date/time, and clickstream data. DigiCert uses third-party software to assist in collecting and analyzing this information. This information is used to improve DigiCert's service and enhance the experience of DigiCert's website visitors. Automatically collected non-personal information is not linked to personally identifiable information. Visit our Online Cookies and Privacy page for a list of cookies used on the DigiCert website.

Personal Information

In order to provide quality communication, DigiCert collects the name, organization, and email address of website visitors who voluntarily submit that information to download software or to submit sales or technical support questions. DigiCert also collects and stores personal information about its customers in order to provide requested products and services. This information is voluntarily submitted by the customer or is obtained from third party databases.

Regardless of the source, DigiCert protects personal information as confidential information except where the information is embedded in an issued digital certificate. This information is necessary for the digital certificate's operation and is considered public information. DigiCert's certificate profiles, available through DigiCert's online repository at http://www.digicert.com/ssl-cps-repository.htm, list the information embedded in each certificate type.

Updating Personal Information

Generally, a customer can review, delete inaccuracies and update personal information through its DigiCert account interface by clicking edit under the Account Profile tab. Alternatively, customers may make request changes to personal information by sending an email to support@digicert.com or by mailing DigiCert at the address listed in this policy. Emailed and mailed requests are subject to DigiCert's satisfaction about the authenticity of the request.

DigiCert retains information about customers while the customer’s account is active, while a certificate remains unexpired, and in accordance with industry standards. A customer may request account cancellation or request that DigiCert no longer provide services by emailing support@digicert.com. DigiCert may retain customer information after receiving a request to cancel services or disable account as necessary to comply with industry standards, legal obligations, resolve disputes, and enforce customer agreements.

Personal information embedded in a digital certificate cannot be directly edited. Customers wishing to update personal information in a digital certificate must submit a change request through the customer account. DigiCert may require that the updated information be verified for accuracy prior to accepting the change request. In addition, even if information is updated in DigiCert's databases, the information will generally not be updated in the issued digital certificate. If information embedded in a digital certificate needs updating, DigiCert may require revocation of the digital certificate.

Use of Information

Products and Services

DigiCert may use personal information to market, sell and provide its products and services, including using the information to validate the identity of the customer or to contact the customer in order to discuss support, renewal, and the purchase of products and services.

DigiCert may allow its business partners to assist in providing requested products and services. All DigiCert business partners are required to keep personal information confidential and are only allowed to use the information to the extent necessary to provide the requested products and services.

Live Chat Sales/Support

DigiCert utilizes a live chat tool for assisting our customers with sales questions and technical support needs; in addition to the customer's name and email address (for purposes of communication), this tool collects information in accordance with "Information automatically collected by DigiCert Sites" above.


DigiCert may send out promotional emails (such as a newsletter) to individuals who provide personal information and have not opted-out of DigiCert's mailing list. These emails may include beacons that communicate information about the email back to DigiCert. This communication allows DigiCert to gauge the effectiveness of its advertising and marketing campaigns. Recipients may opt-out of receiving promotional communication from DigiCert by following the instructions provided in each promotional email or by emailing privacy@digicert.com.

DigiCert also sends out advisory emails. Advisory emails are related to the primary purpose for which the information was collected and are used to respond to inquiries, provide support and validation services, provide upgrade information and security updates, and inform the customer about ordered products and services. Because advisory emails contain essential information related to the use and security of DigiCert's products and services, customers may not unsubscribe from advisory emails.

DigiCert may use third parties, with which it has a confidentiality agreement, to send promotional or advisory emails. However, DigiCert restricts its partners from sending spam associated with DigiCert's site, brand, or products. A customer receiving an unsolicited email related to DigiCert's products and services should forward the entire message and headers to legal@digicert.com.

Third Parties

DigiCert never sells personal information to third parties. DigiCert may provide personal information to third parties (such as web host provider or affiliated party) if the information owner consents to the distribution.

DigiCert uses a third party to process credit card payments and may provide credit card numbers and identifying financial data directly to the third party credit card processor. These companies do not retain, share, store, or use personally identifiable information for any other purposes. DigiCert does not permanently store any provided credit card information.

DigiCert also uses a third party to provide its chat-based support. The support software allows users to input information, including an email address, to request support and clarify their problem. The software provider does not share inputted information with anyone other than DigiCert.

DigiCert may disclose information when required by law or when disclosure is necessary to protect DigiCert's rights and/or comply with a judicial proceeding, court order, or legal process.


With prior permission from the customer, DigiCert displays personal testimonials of satisfied customers on its website in addition to other endorsements. Customers wishing to update or delete a testimonial may contact DigiCert at support@digicert.com.

Social Media Widgets

The DigiCert website includes social media features, such as a Facebook “Like” button and widgets, such as a share button or interactive mini-programs. These features may collect the user’s IP address, may collect the pages visited on DigiCert’s site, and may set a cookie to enable the feature to function properly. Social media features are either hosted by a third party or hosted directly on DigiCert’s site. Interactions with these features are governed by the privacy policy of the corresponding social media company.


The security of personal information is of the utmost importance to DigiCert. DigiCert only transmits personal information using secure socket layer technology (SSL). To learn more about SSL, follow this link http://www.digicert.com/ssl.htm.

DigiCert follows generally accepted industry standards to protect personal information during transmission and storage. Unfortunately, no method of transmission over the Internet or electronic storage is 100% secure. While DigiCert strives to use commercially acceptable standards to protect personal information, DigiCert cannot guarantee absolute security.

Safe Harbor Compliance

DigiCert complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce, including the Privacy Principles of Notice, Choice, Onward Transfer, Access, Security, Data Integrity, and Enforcement and the Frequently Asked Questions (the “Safe Harbor Frameworks”). DigiCert is subject to the jurisdiction of the Federal Trade Commission of the United States, and our failure to comply with this Privacy Policy or the Safe Harbor Frameworks is actionable under Section 5 of the Federal Trade Commission Act.

TRUSTe Licensee Statement

DigiCert, Inc. has been awarded TRUSTe's Privacy Seal signifying that this privacy policy and practices have been reviewed by TRUSTe for compliance with TRUSTe's program requirements including transparency, accountability and choice regarding the collection and use of personal information. The TRUSTe program covers only information that is collected through the www.digicert.com site.

TRUSTe's mission, as an independent third party, is to accelerate online trust among consumers and organizations globally through its leading privacy Trustmark and innovative trust solutions. If you have questions or complaints regarding our privacy policy or practices, please contact us at privacy@digicert.com. If you are not satisfied with our response you can contact TRUSTe here.


This privacy policy is supplemental to any agreement that exists between a customer and DigiCert and does not alter any agreed upon terms. In case of a conflict, the terms agreed to by DigiCert and the customer take precedence over this privacy policy. In addition, this privacy policy does not apply to any downloadable software provided through DigiCert's websites.

Third party sites may link to or from DigiCert websites. DigiCert is not responsible for the privacy practices or the content of those other websites.


DigiCert may modify its privacy policy and related practices at any time. DigiCert will notify interested parties of material changes by either posting a notice on its home page or by emailing affected individuals. Visitors and customers should check the DigiCert website regularly to be aware of changes. Revisions to the privacy policy are effective 30 calendar days after being posted (for posted notices) or 14 days after the notice is sent (for email notice).


Please contact DigiCert with any questions or concerns about this privacy policy:

By mail:

DigiCert, Inc.
2600 West Executive Parkway
Suite 500
Lehi, Utah 84043

By phone or fax:

Toll Free: 1-800-896-7973 (US & Canada)
Direct: 1-801-701-9600
Fax Toll Free: 1-866-842-0223 (US & Canada)
Fax Direct: 801-705-0481

By email:


For assistance with technical difficulties, including problems with accessing or using your customer account, please email support@digicert.com.

Effective Date of Privacy Policy

Effective Date: 08/15/2013
Last Updated: 07/05/2013

DigiCert Legal Repository

The DigiCert Legal Repository is available at: DigiCert Legal Repository