Information We Collect On Our Corporate Website
In general, you may visit The Cloud Connectors’ website, https://thecloudconnectors.com/, without providing us with any directly identifiable personal data. However, we may collect indirectly identifiable (pseudonymous) information from you, which includes your IP address used to track unique visits to our site for analytic purposes. In order to grant you access to protected and secure resources we may collect your full name, postal address and email address, to fulfill your requests for information including white papers, allow you to download updates to our products, or participate in feedback surveys. In other instances, we may ask you to provide us with information such as your product interests so that we can send you only the information that is useful to you, including articles, newsletters, product and service alerts, new product and service announcements and event invitations. When we collect your personal data, we will inform you as to why we are asking for information and how the information will be used. However, please note that providing directly identifiable personal data is optional. When you receive your confirmation email or when you receive any email from The Cloud Connectors, you will be given instructions on how to remove yourself from the list. The Cloud Connectors’ accountability for personal data that it receives under the EU-US Privacy Shield framework and subsequently transfers internally or to a third party outside the European Economic Area (such as the United States) is described in further detail below. In particular, The Cloud Connectors remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless The Cloud Connectors proves that it is not responsible for the event giving rise to the damage.
Grounds For Using Data
The Cloud Connectors as Processor
When providing our software and providing The Cloud Connectors services to our corporate clients, The Cloud Connectors acts as a Data Processor. We need to collect and use personal data to enter into a contract with a client or to fulfill our contractual obligations. We may also use such data for our legitimate business interests to administer our platforms, provide access to interfaces and features, and to enforce our acceptable use policies and terms of service. To the extent our clients need to collect and share and allow us to process personal data of their employees and customers to enable our services, we will rely upon our clients to provide necessary privacy notices and to obtain required consents. As a Data Processor, The Cloud Connectors do not share data with third parties unless it is specifically required in our contract with our clients.
The Cloud Connectors as a Controller
Security and Retention
The Cloud Connectors takes commercially reasonable steps to ensure the ongoing confidentiality, integrity, availability and resilience of our systems and services processing your personal data. Notably, we implement comprehensive antivirus, anti-spam, and spyware protection for the servers along with an intrusion detection system, robust firewalls and alerts system in place.
Access and Your Right to Privacy
If you are our Client or prospect, you have enhanced rights under the GDPR. You may access, correct or request deletion of your personal data. The Cloud Connectors abides by the Data Subject Rights requests referenced within GDPR Articles 13-22 with respect to: • Right to be informed (about processing activities and applicable rights) • Right to access data (or obtain data being processed) • Right to rectify information (when outdated or incorrect) • Right to erasure (and to be publicly forgotten) • Right to object to processing (particularly activities based on consent) • Right to restrict processing (when processing is deemed to be unlawful) • Right to data portability (between proprietary systems in a common format) • Rights related to automated decision making (including decisions based on profiling activities) The Cloud Connectors has put into place operational processes to comply with all Data Subject Rights requests within 30 days when received, however we may need to verify certain Personal data fields to ensure we act upon the correct data. If your business contact information changes, or if you would like to modify or remove your details, or to exercise your other rights, please contact firstname.lastname@example.org. Additionally, The Cloud Connectors is required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
International Data Transfers
Notification of Changes
To contact The Cloud Connectors’ Data Protection Officer, please reach out to DataProtectionOfficer@thecloudconnectors.com. The Cloud Connectors believes that your data rights are important – to view The Cloud Connectors’ commitment to the General Data Protection Regulation (GDPR), please see the next section of this document. Effective: March 5, 2019
The Cloud Connector’s GDPR Commitment
Our Commitment to Protecting Your Data
At The Cloud Connectors we are committed to working with our customers to understand the General Data Protection Regulation (GDPR). The GDPR introduces enhanced data privacy laws to match the evolving technological landscape. These changes came into effect on May 25, 2018. Besides strengthening and standardizing data privacy across the EU nations, it requires new or additional obligations on all organizations that handle EU citizens’ personal data, regardless of where the organizations themselves are located. This page explains our approach to achieve GDPR compliance.
Preparing for the GDPR
Our team has working diligently to ensure that The Cloud Connectors is aligned with the new regulation. Measures to achieve this include: • Working with an external security advisory organisation. • Continuing to invest in our security infrastructure. • Making sure we have the appropriate contractual terms in place. • Ensuring we can support international data transfers by maintaining our Privacy Shield self-certifications, and by executing Standard Contractual Clauses through our updated Data Processing. • Confirming our policies include new tools for data portability and data management where necessary. • Ensuring that under all circumstances user consent for data processing meets the new requirements. • Reviewing breach notification procedures. • Reinforcing all data protection and retention processes. The Cloud Connectors will continue to monitor the guidance around GDPR compliance from official government regulatory bodies and will adjust our plans accordingly if any changes occur.
Our Security Infrastructure and Certifications
Protecting our customers’ information privacy is very important to us. Because we offer cloud-based products and are entrusted with some of our customers’ most valuable data, we have set high standards for security. We’re currently investing in several security certifications such as SOC 2. The Cloud Connectors has invested in building a robust security team. In accordance with GDPR requirements around security incident notifications, The Cloud Connectors will continue to meet its obligations and offer contractual assurances.
International Data Transfers: Privacy Shield and Contractual Terms
To comply with EU data protection laws around international data transfer mechanisms, we are self-certified under the E.U.-U.S. Privacy Shield. These frameworks were developed to establish a way for companies to comply with data protection requirements when transferring personal data from the European Union and the United Kingdom to the United States.
Data Portability Solutions and Data Management Tools
Customers have requested tools to help them comply with the GDPR. We understand our customers concerns and we are looking to offer data portability and personal data tools that assist with data exports. Information about the features and functionalities of these tools will be shared with you as it becomes available.
Fulfilling our privacy and data security commitments is important to us. This page will be revised to reflect GDPR-related information as it becomes available. Please get in touch if you have any questions related to how The Cloud Connectors is becoming compliant with the GDPR.