Account info
Email, display name, and the workspaces you belong to. Required to authenticate and route you to the right tenant.
Workspace data
Findings, resource snapshots, scan history, recommendations, comments, and assignments. Anything written through the app, scoped to your workspace.
AWS metadata
Read-only configuration metadata returned by authorized AWS APIs: instance types, regions, tags, attached policies, security group rules, IAM principals, and similar resource descriptors.
Cost and billing metadata
Cost and billing metadata returned by authorized read-only APIs, including Cost Explorer, Budgets, Savings Plans, Reserved Instances, and Cost Optimization Hub where enabled.
Operational telemetry
Error rates, scan latencies, retry counts, product-usage events, and timing of admin actions — processed by our analytics and error-monitoring subprocessors (listed below) to operate and improve the service. Telemetry never includes the contents of your findings or AWS resources.