Privacy Policy
We understand the importance of the confidentiality and integrity of the personal data we have. The Cloudcomputing privacy policy ensures to our employees, customers, suppliers, website visitors, and all stakeholders that we work every day to have an adequate level of security in terms of confidentiality, integrity, availability, and resilience of information assets, personal data of Cloudcomputing and processing of personal data, against all threats it could face. Cloudcomputing establishes, implements, operates, monitors, reviews, maintains, and improves data protection based on a documented approach to risk activity and compliance with all requirements of the General Data Protection Regulation (GDPR). We periodically update this Privacy Policy.
What are our privacy objectives?
- Ensure continuity of critical business activities;
- Ensure that all confidential information and personal data processed and stored by our company is of absolute integrity;
- Ensure that all information relevant to the organization will be monitored and stored according to procedures for maintaining appropriate confidentiality;
- Provide a choice of appropriate and proportionate security controls to protect the assets.
Who is responsible for our personal data treatment processes?
Everyone who works for or with Cloudcomputing has some responsibility for ensuring data is collected, stored, and handled appropriately. Each team handling personal data must ensure that it is handled and processed in line with this policy and internal data protection processes and procedures. However, these people have key areas of responsibility: Our Board is ultimately responsible for ensuring that Cloudcomputing meets its legal obligations. Our Data Protection Officers are responsible for:
- Keeping the Board updated about data protection responsibilities, risks, and issues;
- Reviewing all data protection procedures and related policies in line with an agreed schedule;
- Arranging data protection training and advice for the people covered by this policy;
- Handling data protection questions from staff and anyone else covered by this policy;
- Dealing with requests from data subjects to see the data Cloudcomputing holds about them;
- Checking and approving any contracts or agreements with third parties that may handle the company’s personal data.
Other departments assigned by DPOs execute some of these tasks.
What type of personal data could we collect?
The processes of processing of personal data identified were:
- Recruitment data treatment (all the personal data managed during the recruitment phase);
- Employee data treatment (all personal data from Cloudcomputing employees);
- Projects with personal data treatment (all personal data collected, managed, and stored during project or product development);
- Website visitor’s data treatment (all personal data collected from our website).
How will we ensure the security of personal data?
We use various security measures to help protect and maintain your personal information’s security, integrity, and availability from loss, misuse, unauthorized access, disclosure, alteration, or destruction. Logical security measures, such as the use of firewalls and detection of intrusion, the existence of a policy of access to information and logging; Physical security measures, among which a strict access control to the physical facilities of the Cloudcomputing by employees, partners, and visitors, as well as very restricted access permanently monitored to the essential technological infrastructures; Other measures such as mask, encryption, pseudonymization and anonymisation of personal data, as well as a set of measures which aim to realize the principle of privacy by design and by default. When Cloudcomputing uses subcontractors or third parties, they shall be compliant with the applicable legislation and ensure that: (i) the sharing of personal information and data follows the legal regulations in force, (ii) the subcontractors or third parties are contractually obliged to observe the obligations of confidentiality and ensure the security of personal data, which, to that end, not be able to use such data for any other purposes, for their benefit or third parties, nor to correlate them with other available data. Compliance with information security and data privacy policies is subject to scrutiny, audits, and controls. A demanding awareness program of information and training for Cloudcomputing employees and partners further complements it.
What are the data subject rights?
Whenever we process personal data, we take reasonable steps to ensure that personal data is kept accurate and up-to-date for the purposes for which it was collected. We will allow the data subject to exercise his rights for all of the personal data processes described above. According to the GDPR, data subjects have the following rights related to their personal data:
- Right to access: GDPR obliges Cloudcomputing to provide data subjects with access to their personal data;
- Right to rectification: Data subjects are entitled to require Cloudcomputing to rectify any errors in their personal data;
- Right to erasure (the “right to be forgotten”) – Data subjects are entitled to require Cloudcomputing to delete their personal data if the continued processing of those data is not justified;
- Right to portability: Data subjects have the right to transfer their personal data between companies;
- Right to withdraw the consent: Data subjects can withdraw their consent anytime.
If you want to exercise any of these rights, please email [email protected]. We will analyze it and respond within one (1) month, notifying you of our actions. The exercise of these rights is subject to certain exceptions intended to safeguard the public interest (prevention or detection of crimes) or our interest (maintaining professional secrecy).
Do we transfer personal data to other third parties?
Cloudcomputing will only use the data for specified purposes for all defined personal data processes. We will never use the data for other purposes or provide your personal information to any third party without requesting prior consent. We never sell personal information.
Does the visit to this site collect any personal data?
You are free to explore the websites without providing any information about yourself. When you visit specific landing pages, we request that you provide some personal information about yourself, and we collect this information in our database. Suppose you provide us with your personal information about yourself or any other data. In that case, you entirely agree to the rules of this Privacy Policy and the data practices described in it. If you disagree with the data practices described, you should not submit any information to us. We may collect and process information about your visit to this website, such as the pages you visit, the website you came from, and some of the searches you perform. We use such information to help improve the site’s contents and compile aggregate statistics about individuals using our site for internal market research. We may install “cookies” that collect the user’s domain name, your internet service provider, your operating system, and the date and time of access. A “cookie” is a small information sent to your browser and stored on your computer’s hard drive. Cookies do not damage your computer. You can set your browser to notify you when you receive a “cookie,” enabling you to decide whether you want to accept it. If you do not want us to install cookies, please email us at [email protected]. We want to inform you, however, that if you do not accept it, you may not be able to use all of the functionality of your browser software.
If you have questions about data privacy, who should you contact?
If you have any questions or complaints about using your personal data, please email [email protected].
Other contacts: Data Protection Officer (Cloudcomputing): Email: [email protected]