- Do you use firewalls?
- Do you maintain an approved Password Policy?
- Do you maintain an approved Risk Management Policy?
- Do you maintain an approved Internal Audit Policy?
- Does the audit function have independence from the lines of business?
Risk Profile
We have secure, reliable hosting that customers can depend on. We are happy to provide details about our risk mitigation practices and recovery objectives upon request.
Trust Center Updates
Datadog's Response to Alert Notification Email Delivery Disruption
What Happened
The domain dtdg.co (used to send certain Datadog notification emails, including Monitor Alerting notifications from alert@dtdg.co) was added to a small number of spam-reputation blocklists. This caused a subset of outbound emails from alert@dtdg.co to be silently rejected, dropped or marked as spam by recipient mail servers that consult these blocklists, without generating a bounce notification back to Datadog or to the sender.
This was an external deliverability issue, not a compromise of Datadog systems. We can confirm this incident did not involve unauthorized access to Datadog infrastructure, and no customer data was accessed or exposed as a result.
What Datadog Has Done To Address This Issue
Our team identified the root cause of dtdg.co being added to these blocklists. We engaged directly with the spam list providers to request delisting, and cleared the sending IPs that had been flagged. Email delivery from alert@dtdg.co has been restored, and we have validated that outbound notifications are again being delivered successfully.
Next Steps for Customers
-
Check your notification history within Datadog for the affected window (approximately July 7th–July 9th) to confirm whether expected alert@dtdg.co notifications were received
-
Confirm that dtdg.co is not independently blocklisted on your own mail infrastructure or spam-filtering tools, which could cause continued delivery issues on your end even though the upstream blocklisting has been resolved
-
Add dtdg.co as part of your allowlist within your mail infrastructure
- Note–customers using EU or Govcloud sites should consider adding dtdg.eu and/or ddgov-gov.com to this allow list
- Note–customers using EU or Govcloud sites should consider adding dtdg.eu and/or ddgov-gov.com to this allow list
-
If email is your only configured notification channel for critical alerts, consider configuring a secondary notification channel (e.g., Slack, PagerDuty, webhook) as a resilience measure against future email-deliverability disruptions
Next Steps for Datadog
To reduce the risk of a similar disruption recurring, we have committed to the following near-term actions:
-
Adding protection mechanisms to our email/alerting systems and product, to reduce the risk of alert/notification emails from being dropped, silently rejected or marked as spam
-
Augmenting our email reputation monitoring infrastructure to more proactively detect if/when Datadog’s sending domains are still blocked
If you have any further questions, our Support team is here to help.
Datadog's Response to Phishing Emails Sent via Trial Accounts
Datadog has identified a campaign where trial accounts were abused to send spam and phishing emails in breach of our Terms of Service. The accounts responsible have been terminated, and we have implemented controls to block monitor notifications from being sent to recipients outside the sending organization. We will continue to detect and respond to further attempts and are actively refining our controls to prevent unauthorized activity.
No Datadog customer data was exposed and no action is needed on your end.
If you received one of these emails, please disregard and delete it. Do not interact with any links it contains. If you clicked a link or took any action, we recommend reporting it to your organization's IT or security team.
FedRAMP® High Certification
We're pleased to announce that Datadog for Government has achieved FedRAMP High certification, the U.S. federal government's most rigorous authorization for cloud service providers handling sensitive, unclassified data.
For details on what this means for your organization and our ongoing commitment to trust and accountability, please see our press release and blog post.
Datadog's Response to the CopyFail Linux Kernel Local Privilege Escalation (CVE-2026-31431)
We are aware of the recently disclosed Linux kernel local privilege escalation vulnerability, CVE-2026-31431, nicknamed "CopyFail," for which a working public exploit was published on April 30, 2026. Upon disclosure, Datadog's security team immediately launched an investigation to assess our exposure across our products and infrastructure.
From our investigation, we have identified no impact to Datadog's services or customer data. Datadog has multiple defense in depth measures in place to guard against this class of vulnerability, including hardened execution environments for untrusted workloads.
No action is required from customers at this time.
If you have any questions or concerns, please reach out via your Customer Success Manager, Account Executive, or through Support channels.
Datadog Security
SOC 2 Update
We're pleased to announce that our Datadog, Cloudcraft, and Eppo SOC 2 Type II reports are available on our Trust Center.










