ComplianceCheckup

Is Apptio GDPR Compliant?

Apptio privacy and compliance overview. Last scanned: 1 months ago.

Apptio scored 57/100 (grade D), indicating significant privacy issues. Key issues found: 153 tracking requests detected before consent. 3 accessibility violations detected (1 critical, 2 serious, 0 moderate). This is an automated technical assessment, not a legal compliance certification.

D

57/100

Privacy and compliance score

Scanned May 17, 2026 in browser mode.

Pre-consent tracking

0/23

153 tracking requests detected before consent.

Accessibility (WCAG 2.x AA)

7/15

3 accessibility violations detected (1 critical, 2 serious, 0 moderate).

Cookie consent banner

8/12

Consent banner detected (OneTrust) with partial reject effectiveness.

CCPA / CPRA disclosures

3/8

CCPA/CPRA partial: CCPA/CPRA language in privacy policy. CCPA/CPRA compliance requires more than disclosures. This score reflects observable signals only, not legal compliance.

DPA and sub-processor list

4/7

DPA reference found, but no sub-processor list detected.

Security headers

10/10

All four security headers present.

Privacy policy

10/10

Privacy policy found, substantial, recently updated, and covers user rights.

AI training stance

5/5

AI training opt-out disclosure found in privacy policy.

Hosting region disclosure

5/5

Data hosting region disclosed in privacy policy.

COPPA signal

5/5

COPPA language detected in privacy policy.

Does Apptio self-report SOC 2, HIPAA, or PCI compliance?

The following is based on Apptio's public documentation. ComplianceCheckup has not independently audited these claims.

StandardStatus
SOC 2Type II certified
HIPAANot publicly documented for Apptio
PCI DSSNot publicly documented for Apptio
GDPRSee scan results above
CCPASee scan results above

Frequently asked questions about Apptio compliance

Is Apptio GDPR compliant?

Apptio received a privacy grade of D (57/100) in our automated scan. 153 tracking requests detected before consent. 3 accessibility violations detected (1 critical, 2 serious, 0 moderate). For a complete GDPR assessment, consult a qualified privacy professional.

Does Apptio offer a Data Processing Agreement (DPA)?

Yes. Apptio provides a DPA linked in the Legal documents section above. Review it carefully and sign before transferring personal data.

Is Apptio SOC 2 certified?

Apptio holds a SOC 2 Type II certification.

What pre-consent tracking did we find on Apptio?

153 tracking requests detected before consent. Pre-consent tracking means scripts or cookies run before users accept or decline the cookie banner, which may violate GDPR Article 5(1)(a). ComplianceCheckup detected this via an automated headless browser scan.

What are Apptio's biggest privacy risks?

Based on our automated scan, the top areas of concern are: Pre-consent tracking, Cookie consent banner, CCPA / CPRA disclosures. 153 tracking requests detected before consent. These findings are automated and may not capture all risks.

How does Apptio handle CCPA?

CCPA/CPRA partial: CCPA/CPRA language in privacy policy. CCPA/CPRA compliance requires more than disclosures. This score reflects observable signals only, not legal compliance. CCPA requires businesses handling California residents' data to disclose data practices, honor opt-out requests, and support the Global Privacy Control (GPC) signal. Our scan checks for GPC support and CCPA-relevant cookie disclosures.

Not legal advice. The scan grade is an automated technical assessment and does not constitute legal or compliance advice. Self-reported claims have not been independently verified. Results may contain false positives or miss issues that cannot be detected programmatically. Consult a qualified attorney or compliance professional for your specific situation.