This privacy policy (“Policy”) explains how Cloudeagle, Inc. or any of its affiliates or subsidiaries. (“We”, “Us”, “Our”, “Cloudeagle”) Processes Personal Data collected from natural persons as specified in the Clause 2, as a Controller (“You”).
1. DEFINITIONS
Terms not specifically defined herein shall have the meaning ascribed thereto in the Terms.
1.1. “Controller” means the natural or legal person, public authority, agency, or other body which alone or jointly with others, determines the purposes and means of the processing of Personal Data.
1.2. “End-User” means any person or entity with whom the Subscriber interacts using the Service(s).
1.3. “Personal Data” means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
1.4. “To Process/Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
1.5. “Processor” means a natural or legal person, public authority, agency, or other body which Processes Personal Data on behalf of the Controller.
1.6. “Service(s)” shall have the meaning ascribed to it in the Terms.
1.7. “Subscriber” means the natural or legal person that has subscribed to the Service(s) by agreeing to the Terms.
1.8. “Terms” means the Terms and Conditions made available at cloudeagle.ai/terms-and-conditions.
1.9. “User” means an employee, advisor, or agent of the Subscriber that has been authorized to access and use the Service on Subscriber’s behalf.
1.10. “Website(s)” means the websites owned and operated by Us including cloudeagle.ai
2.3. If You provide Us with any Personal Data relating to other individuals, You represent that You have the authority to do so, and where required, have obtained the necessary consent, and acknowledge that it may be used in accordance with this Privacy Policy.
2.4. In addition to the details provided in the table above, We may also share Your Personal Data with
a. Cloudeagle group entities and the companies that We will acquire in the future when they are made a part of Cloudeagle group entities to provide and improve Our Services
b. Third Parties involved in a Corporate Transaction: If Cloudeagle becomes involved in a merger, acquisition, or any form of sale of some or all its assets, then, in accordance with applicable laws, Cloudeagle will use reasonable efforts to notify You of any transfer of Personal Data to an unaffiliated third party.
c. Law enforcement authorities, government authorities, courts, dispute resolution bodies, regulators, auditors, and any party appointed or requested by applicable regulators to carry out investigations or audits of Our activities.
d. Professional advisors who advise and assist Us in enforcing Our contracts and policies, handling Our claims, effective management of Our company and in relation to any disputes We may become involved in.
3. LEGAL BASIS FOR PROCESSING
3.1. If You are a data subject from the European Economic Area, Our legal basis for collecting and using the Personal Data described above will depend on the Personal Data concerned and the specific context in which We collect it. We will normally collect Personal Data from You only where it needs it to perform a contract with You, where the Processing is in Our legitimate interests and not overridden by Your data protection interests or fundamental rights and freedoms, or where We have Your consent. In some cases, We may also have a legal obligation to collect Personal Data from You. If We Process Personal Data with reliance on Your consent, You may withdraw Your consent at any time.
3.2. If You have questions or need further information concerning the legal basis on which We collect and use Your Personal Data, please contact Us using the contact details provided under clause 12.
4. INTERNATIONAL TRANSFER
4.1. We mainly Process Personal Data in the United States of America. However, We may transfer Personal Data outside the United States of America for the purposes referred to in Clause 2. We will ensure that the recipient of Your Personal Data offers an adequate level of protection that is at least comparable to that which is provided under applicable data protection laws.
4.2. If You are a resident of the European Economic Area and when Your Personal Data is Processed outside EEA, We will ensure that the recipient of Your Personal Data offers an adequate level of protection, for instance by entering into standard contractual clauses for the transfer of Personal Data as approved by the European Commission (Article 46 General Data Privacy Regulation, 2016), or We will ask You for Your prior consent to such international data transfers.
5. RETENTION OF PERSONAL DATA
5.1. We retain the Personal Data collected where an ongoing legitimate business requires retention of such Personal Data.
5.2. In the absence of a need to retain Personal Data under Clause 5.1. above, We will either delete it or aggregate it, or, if this is not possible then We will securely store Your Personal Data and isolate it from any further Processing until deletion is possible.
6. SECURITY OF PERSONAL DATA
We use appropriate technical and organizational measures to protect the Personal Data that We collect and Process. The measures We use are designed to provide a level of security appropriate to the risk of Processing Your Personal Data. If You have questions about the security of Your Personal Data, please contact Us using the contact details provided under Clause 12.
7. YOUR RIGHTS
You are entitled to the following rights:
7.1. You can request Us for access and correction of Your Personal Data.
7.2. If We have collected and processed Your Personal Data with Your consent, then You can withdraw your consent at any time. Withdrawing Your consent will not affect the lawfulness of any processing We have conducted prior to Your withdrawal, nor will it affect Processing of Your Personal Data conducted in reliance on lawful processing grounds other than consent.
7.3. You have the right to complain to a data protection authority about Our collection and use of Your Personal Data. For more information, please contact Your local data protection authority.
7.4. You have the right to opt-out of marketing communications We send You at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing emails We send You. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please email Us at support@cloudeagle.ai.
7.5. If You are a resident of the EEA, UK, or Switzerland, You are also entitled to the following rights:
a. You can request Us for deletion and erasure of Your Personal Data.
b. You can object to the Processing of Your Personal Data, ask Us to restrict Processing of Your Personal Data or request portability of Your Personal Data.
7.6. If You seek to exercise Your rights under this clause, please contact Us at the details provided in clause 12. We will verify any requests before acting on the request and respond to all requests We receive from individuals wishing to exercise their data protection rights within a reasonable timeframe in accordance with applicable data protection laws
8. NOTICE FOR CALIFORNIA RESIDENTS
8.1. Clause 8 applies only to California residents and the Personal Information We collect as Business. “CCPA” means the California Consumer Privacy Act of 2018 as amended by the CPRA. “CPRA” means the California Privacy Rights Act. For the purposes of this section, the terms “Business”, “Business Purpose”, “Consumer” “Personal Information”, “Sale/Sell”, “Service Provider” and “Sensitive Personal Information” and “Share” shall have the meaning given to them under the CCPA.
8.2. The categories of Personal Information We have collected in the twelve (12) months prior to the Effective Date and that We may collect include:
a. Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, social security number, passport number, or other similar identifiers;
b. Signature, physical characteristics or description, telephone number, bank account number, credit card number, debit card number or any other financial information, medical information or health insurance information;
c. Protected classification characteristics under California or federal law such as gender and date of birth;
d. Internet or other electronic network activity information, including, but not limited to, browsing history, search history, and information regarding a consumer’s interaction with an internet website, application, or advertisement;
e. Geolocation data;
f. Audio, electronic, visual, thermal, olfactory, or similar information.
8.3. We have disclosed the categories of personal information listed in clause 8.2 above for a business purpose in the twelve (12) months prior to the Effective Date and may disclose such personal information to service providers or contractors or to any other third parties who support our business provided (a) they do not Sell or Share such personal information or (b) retain, use or disclose such information for any purpose other than for the specific purpose of performing the services specified in our contract with them or (c) combine such information with any other information received directly by them. We do not Sell or Share (as the terms are defined in the CPRA) the personal information We collect without providing You a right to opt out. We do not Sell or Share personal information of minors of at least the age of thirteen (13) but less than sixteen (16) years without receiving such minor’s consent or the consent of the minor’s guardian if the minor is less than thirteen (13) years. We have not Sold or Shared any personal information in the twelve (12) months prior to the Effective Date. We shall not disclose further the personal information collected for verification of a consumer’s request or retain it longer than it is necessary for the purpose of verification.
8.4. You are entitled to the following rights under the CCPA:
a. You can request Us to disclose details, and categories of Your Personal Information collected by Us;
b. You can request Us to disclose Your Personal Information collected twelve (12) months prior to the Effective Date, this right shall apply only to personal information collected after January 1, 2022;
c. You can request Us to disclose (i) Your Personal Information Sold or Shared and (ii) the service provider or contractor, or a third-party (as defined in the CPRA) to whom such information is Sold or Shared;
d. You can request Us to correct Your inaccurate Personal Information;
e. You have the right to request deletion of your personal information held by the Us or by Our service provider, contractor, or any other third party to whom We have disclosed personal information to. We shall hold a confidential record of all deletion requests for the purpose of preventing the selling of such personal information for which You have submitted a deletion request;
f. You have the right to opt out of any Sale or Sharing of Your Personal Information if any such sale or sharing occurs;
g. You can request us to limit the use of Your Sensitive Personal Information;
h. You can request the transfer of specific pieces of Your Personal Information to any other entity;
i. You have the right to not be discriminated against for exercising Your rights under CCPA;
j. California Consumers may make a request pursuant to their rights under the CCPA by contacting Us at the details provided in clause 12. We will verify any requests before acting on the request and respond to all requests We receive from individuals wishing to exercise their data protection rights within a reasonable timeframe in accordance with the CCPA. Consumers may also designate an authorised agent to exercise these rights on their behalf
9. COOKIE POLICY
9.1. Cookies are text files that are placed on Your computer to collect standard internet log information and visitor behaviour information by Us. When You visit the Website(s), We may collect Personal Data automatically from You through cookies or similar technology. We also set cookies to collect information that is used either in aggregate form to help Us understand how Our Website(s) is being used or how effective Our marketing campaigns are, to help customise the Website(s) for You or to make advertising messages more relevant to You.
9.2. Essential Cookies: We set essential cookies that enable core functionality such as security, network management, and accessibility. You may not opt-out of these cookies. However, You may disable these by changing Your browser settings, but this may affect how the Website(s) functions.
9.3. Analytics, Customisation and Advertising Cookies: We set these cookies to help Us improve Our Website(s) by collecting and reporting information on how You use it. The cookies collect information in a way that does not directly identify anyone.
9.4. When You visit the Website(s), a cookie banner will be displayed providing additional information about cookies and options to opt out of non-essential cookies as required by applicable laws.
10. PRIVACY OF CHILDREN
We recognize the importance of children's safety and privacy. We do not request, or knowingly collect, any Personal Data from children under the age of 18. If a parent or guardian becomes aware that his or her child has provided Us with Personal Data, they should write to us at the email address provided in Clause 12.
11. NOTICE TO END-USER AND OTHER EXCLUSIONS
11.1. Our Services are intended for use by enterprises. Except for the Personal Data collected from You for the purposes mentioned under clause 2, this Policy is not applicable to Our Processing of any Personal Data transmitted by the Subscriber as We will only act as a Processor of such Personal Data and such Processing will be governed by the Terms. Where the Services are made available to an End-User through a Subscriber, that enterprise is the Controller of the End User’s Personal Data. In such a case, the End User’s data privacy questions and requests should be submitted to the Subscriber in its capacity as a Controller. If the End User is an individual who interacts with the Subscriber using Our Services, the End User will be directed to contact Our Subscriber for assistance with any requests or questions relating to their Personal Data. We are not responsible for Subscriber’s privacy or security practices which may be different from this notice. Subscribers of Our Services are solely responsible for establishing policies for and ensuring compliance with all applicable laws and regulations, as well as any and all privacy policies, agreements, or other obligations, relating to the collection of Personal Data in connection with the use of Our Services by End Users.
11.2. Our Website(s) contain links to other websites. Our Policy applies only to our Website(s), so if You click on a link to another website, You should read their privacy policy. We encourage You to review the privacy statements of any such other websites to understand their Personal Data practices.
12. CONTACT INFORMATION
You may contact Our privacy officer if You have any enquiries or feedback on Our personal data protection policies and procedures, or if You wish to make any request, in the following manner:
Email Address: support@cloudeagle.ai