This Privacy Statement (‘Statement’) is an elaborative description of how Cloud4C collects, shares and/or processes the personal data that is shared by individuals or organizations and also serves as an explainer on the privacy related rights pertaining to personal data.
Cloud4C, its affiliates and subsidiaries (hereinafter collectively referred to as ‘Cloud4C’) understand and value the importance of protecting the personal data that the User shares with Cloud4C.
This Statement is applicable to all users of the Cloud4C website, Cloud4C’s Customers who avail Cloud4C’s services, its Vendors, persons/individuals who participate in any marketing/recruitment activities, events etc. hosted by Cloud4C and also to all persons/stakeholders who are involved in any transaction with Cloud4C where there is any use/collection/sharing of personal information (hereinafter collectively referred to as the ‘User’).
The personal data that Cloud4C collects about the User:
Cloud4C does not and will not collect any personal data about the User unless such User provides it to Coud4C voluntarily. Cloud4C collects information during User’s interactions with Cloud4C, whether through business related interactions or online, including through Cloud4C’s websites that is necessary to conduct its business, to provide the services to the customers, as part of business operations and optimisation of its service offerings.
Cloud4C may collect, use, store and transfer different kinds of personal data which have been grouped together as follows:
- Identity Data: including first name, last name.
- Contact Data: including address, email address, and telephone numbers.
- Marketing and Communications Data: including User’s preferences in receiving marketing from Cloud4C (including authorised third parties) and User’s communication preferences.
- Public PII is easily accessible from public sources like phonebooks, the Internet, and corporate directories Visiting Cards, Business telephone number and Business mailing or email address.
How is the User’s personal data collected?
Generally, Cloud4C collects personal information related to employees, customers and representatives when they decide to interact with us, or avail services or express an interest or apply for a position. The kind of data that Cloud4C collects and/or has visibility/access to, depends solely on the context and the nature of User’s interaction with Cloud4C and in case of Cloud4C’s customers, the nature service offering that such customer avails from Cloud4C. Cloud4C do not solicit and/or collect any sort of personal information that is irrelevant/not necessary for the provision of services to the User. Cloud4C further declare that it does not participate in any sort of data mining activities whatsoever, with any third parties.
Purposes for which Cloud4C may use the personal data belonging to the User:
Cloud4C may use personal information for the following purposes only:
- To engage in activity in relation to Cloud4C’s member services. This may include sending updates, meeting invite and other information that may be of important.
- where anyone has applied for a position with Cloud4C, to review and process job application
- To comply with legal or regulatory obligations that Cloud4C are obliged to discharge.
- To verify identify and entitlements to Cloud4C’s products and services when the User contacts Cloud4C or access its services.
- To supply services and manage payments.
- To send statements and invoices, and collect payments.
- To provide commercial quotes.
- To provide technical and customer support.
- To obtain feedback on Cloud4C’s services.
- To provide improved website and product experience and communications informed by product subscriptions and/or data collected.
Cloud4C undertakes that Cloud4C uses personal data strictly in compliance with applicable laws.
Purposes for which Cloud4C may collect the personal data belonging to the User and the rationale behind such collection:
Cloud4C uses personal information only where required for specific purposes. The following table serves as an explainer for the purpose for which Cloud4C collects/uses of the personal data belonging to the User and the rationale behind such collection/use:
Purpose/Instance | Rationale |
---|---|
Managing Cloud4C’s contractual and/or employment relationship with the User. | Necessary for the performance of a contract to which User is a party. |
Recruitment. | As an employer, Cloud4C collects User’s personal information in order to manage and carry out the recruitment process and User’s employment with Cloud4C. |
Facilitating communication with the User (including in case of emergencies, and to provide User with requested information). | To ensure proper communication and emergency handling within the organization. This kind of collection includes collection of basic contact information of relevant stakeholders. |
Operating and managing Cloud4C business operations. | To ensure the proper functioning of Coud4C business operations and optimise Cloud4Cservice offerings. |
Complying with legal requirements. | This is a legitimate purpose as Cloud4C is bound by and is subject to all applicable laws and legal mandates. |
Monitoring User’s use of Cloud4C systems (including use of Cloud4C website ). | To avoid compliance related issues and protecting the standards of Cloud4Cservice offerings, ensuring that they meet the legal requirements and industry standards. |
Improving the security and functioning of Cloud4C website, networks and information. | To ensure that User receives an excellent user experience and Cloud4C networks and information are secure. |
Undertaking data analytics, i.e. applying analytics to business operations and data to describe, predict and improve business performance within Cloud4C and/or to provide a better user experience. | To ensure the proper functioning of Cloud4C business operations and optimise Cloud4C service offerings. |
Marketing Cloud4C products and services to User. | To ensure the proper functioning and growth of Cloud4C business operations. However, any kind of collection for this purpose will be subject to User’s consent and privacy rights. |
Customers billing address, email address, and telephone numbers and prospective clients information | For performance of contract. |
Purposes for which Cloud4C may share personal data belonging to the User:
Cloud4C shares the User’s personal data with the User’s consent and/or to carry out any transaction and/or provide any service that the User has authorized or requested. Cloud4C also shares any such personal data with its wholly owned subsidiaries and affiliates whenever necessary, to optimize Cloud4C’s service offerings.
Further, Cloud4C may also share User’s personal data with its vendors/suppliers/third parties wherever necessary on strict need to know basis, ensuring that such parties are bound by the privacy principles detailed herein and are bound by strict confidentiality obligations.
Lastly, Coud4C shares personal data when required by applicable laws/legal mandates and/or in order to respond to any legal process, including but not limited to protection of the rights and property of Cloud4C and its customers.
How Cloud4C protects personal data belonging to the User:
Cloud4C is committed to protecting its User’s personal data. Cloud4C has put in place safeguards including appropriate technologies, policies, and contractual arrangements, so that the data that Cloud4C possesses about the Users is protected from unauthorized access and improper use.
The safeguards Cloud4C have put in place to protect User’s personal data include the following Technical and Organizational Measures:
- Organizational management is responsible for the development, implementation, and maintenance of Cloud4C’s Privacy program.
- External Audits will be conducted annually once. Any gaps identified in the audit, will be addressed with corrective action for information security and the cloud operations.
- Maintain Information security policies and make sure that policies and measures are regularly reviewed and where necessary, improve them
- Communication with Cloud4C applications utilizes cryptographic protocols such as TLS to protect information in transit over public networks.
- Data security controls which include logical segregation of data, restricted (e.g. role-based) access is used.
- Logical access controls designed to manage electronic access to data and system functionality based on authority levels and job functions.
- Password controls designed to manage and control password strength, and usage including prohibiting users from sharing passwords.
- Physical Access Control:
- Unauthorized persons shall be prevented from gaining physical access to premises, buildings or rooms where data processing systems are located which process and/or use Personal Information.
- Measures: All Datacentres adhere to strict security procedures enforced by guards, surveillance cameras, access control mechanisms and other measures to prevent equipment and Datacentre facilities from being compromised. Only authorized representatives have access to systems and infrastructure within the Datacentre facilities. To ensure proper functionality, physical security equipment (e.g. cameras, etc.) are maintained on a regular basis. In detail, the following physical security measures are implemented at all Datacentres:
- Cloud4C protects its assets and facilities using the appropriate means based on a security classification conducted by security department.
- In general, buildings are secured through access control systems (smart card access system).
- Change management procedures and tracking mechanisms designed to approve and monitor all changes to Cloud4C technology and information assets.
- Incident / problem management procedures design to allow Cloud4C investigate, respond to, mitigate and notify of events related to Cloud4C technology and information assets.
- Vulnerability assessment, patch management, and threat protection technologies and scheduled monitoring procedures designed to identify, assess, mitigate and protect against identified security threats, viruses and other malicious code.
Network and Information Security
Cloud4C maintains a variety of physical, electronic, and procedural safeguards to protect personal information. Also, uses encryption technologies to protect account information when customers viewing the bill on Website or via email. Customers should be aware that Cloud4C has no control over the security of other sites on the Internet that they might visit, interact with to buy the products or services.
Customers should keep the user name, password or other access information safe to protect against unauthorized access to account information and services. And customers must adopt strong passwords that others may not guess easily.
User's rights pertaining to its personal data and privacy:
Subject to applicable laws, all Users have the following rights:
- Right to obtain information regarding the processing of personal information and access to the personal information which Cloud4C holds.
- Please note that there may be circumstances in which Cloud4C are entitled to refuse requests for access to copies of personal information as per applicable laws. In particular, information that is subject to legal professional privilege will not be disclosed other than to Cloud4C affiliates/subsidiaries and as authorised by such affiliates/subsidiaries.
- Right to request Cloud4C to correct any personal information if it is inaccurate or incomplete.
- Right to request Cloud4C to erase personal information in certain circumstances. Please note that there may be circumstances where Cloud4C may erase personal information but Cloud4C is legally entitled to retain it.
- Right to object to and request that Cloud4C restricts, its processing of personal information in certain circumstances. Again, there may be circumstances where the User objects to, or asks Cloud4C to restrict, it's processing of personal information but Cloud4C is legally entitled to refuse that request.
- Right to withdraw consent, although in certain circumstances it may be lawful for Cloud4C to continue processing without User consent if permissible under law.
- And any other rights that User may hold as the owner of such data as per applicable laws.
Content
All hosting services provided by Cloud4C may be used for lawful purposes only. Transmission, storage, or presentation of any information, data or material in violation of any Indian law is prohibited. This includes, but is not limited to copyrighted material, trade secret, material in our opinion is obscene, not in public interest, opposed to public policy or is an invasion of privacy of any person or entity.
All pornographic content and sex-related merchandising is prohibited on all Cloud4C servers. This includes sites that may infer sexual content or links to adult content elsewhere. Cloud4C will be the sole arbiter in determining violations of this provision. Also prohibited are sites that promote any illegal activity or present content that may be damaging to Cloud4C servers or any other server on the internet. Links to such materials are also prohibited. Examples of unacceptable content or links: Pirated software Hacker programs or archives Warez sites, Cloud4C will be the sole arbiter as to what constitutes a violation of this provision.
Materials and Products
- We will exercise no control whatsoever over the content of the information passing through the network or on the Customer's websites.
- We make no warranties or guarantees of any kind, whether expressed or implied for the service provided and also disclaims any warranty of merchantability or fitness for particular purpose and will not be responsible for any damages that may be suffered by the Customer, including loss of data resulting from delays, non- deliveries or service interruptions or gaps by any cause or errors or omissions of the Customer.
- Cloud4C is not responsible for any loss, erasure, or corruption of Customer's data or files whatsoever unless agreed otherwise
- Use of any information obtained by way of Cloud4C is at the Customer's own risk, and we specifically deny any responsibility for the accuracy or quality of information obtained through our services.
Changes to this Privacy Policy
Cloud4C reserves the right to amend, alter, or modify this Privacy Statement at any time in its sole and absolute discretion. Any amendment or modification is effective when posted on public domain and any use of Cloud4C services after the posting of a modification or amendment will be considered deemed acceptance of those modifications.
Webmaster
Any Security breaches, bugs and updates on the website, please inform the Webmaster.
This Privacy Statement (‘Statement’) is an elaborative description of how Cloud4C collects, shares and/or processes the personal data that is shared by individuals or organizations and also serves as an explainer on the privacy related rights pertaining to personal data.
Cloud4C, its affiliates and subsidiaries (hereinafter collectively referred to as ‘Cloud4C’) understand and value the importance of protecting the personal data that the User shares with Cloud4C.
This Statement is applicable to all users of the Cloud4C website, Cloud4C’s Customers who avail Cloud4C’s services, its Vendors, persons/individuals who participate in any marketing/recruitment activities, events etc. hosted by Cloud4C and also to all persons/stakeholders who are involved in any transaction with Cloud4C where there is any use/collection/sharing of personal information (hereinafter collectively referred to as the ‘User’).
The personal data that Cloud4C collects about the User:
Cloud4C does not and will not collect any personal data about the User unless such User provides it to Coud4C voluntarily. Cloud4C collects information during User’s interactions with Cloud4C, whether through business related interactions or online, including through Cloud4C’s websites that is necessary to conduct its business, to provide the services to the customers, as part of business operations and optimisation of its service offerings.
Cloud4C may collect, use, store and transfer different kinds of personal data which have been grouped together as follows:
- Identity Data: including first name, last name.
- Contact Data: including address, email address, and telephone numbers.
- Marketing and Communications Data: including User’s preferences in receiving marketing from Cloud4C (including authorised third parties) and User’s communication preferences.
- Public PII is easily accessible from public sources like phonebooks, the Internet, and corporate directories Visiting Cards, Business telephone number and Business mailing or email address.
How is the User’s personal data collected?
Generally, Cloud4C collects personal information related to employees, customers and representatives when they decide to interact with us, or avail services or express an interest or apply for a position. The kind of data that Cloud4C collects and/or has visibility/access to, depends solely on the context and the nature of User’s interaction with Cloud4C and in case of Cloud4C’s customers, the nature service offering that such customer avails from Cloud4C. Cloud4C do not solicit and/or collect any sort of personal information that is irrelevant/not necessary for the provision of services to the User. Cloud4C further declare that it does not participate in any sort of data mining activities whatsoever, with any third parties.
Purposes for which Cloud4C may use the personal data belonging to the User:
Cloud4C may use personal information for the following purposes only:
- To engage in activity in relation to Cloud4C’s member services. This may include sending updates, meeting invite and other information that may be of important.
- where anyone has applied for a position with Cloud4C, to review and process job application
- To comply with legal or regulatory obligations that Cloud4C are obliged to discharge.
- To verify identify and entitlements to Cloud4C’s products and services when the User contacts Cloud4C or access its services.
- To supply services and manage payments.
- To send statements and invoices, and collect payments.
- To provide commercial quotes.
- To provide technical and customer support.
- To obtain feedback on Cloud4C’s services.
- To provide improved website and product experience and communications informed by product subscriptions and/or data collected.
Cloud4C undertakes that Cloud4C uses personal data strictly in compliance with applicable laws.
Purposes for which Cloud4C may collect the personal data belonging to the User and the rationale behind such collection:
Cloud4C uses personal information only where required for specific purposes. The following table serves as an explainer for the purpose for which Cloud4C collects/uses of the personal data belonging to the User and the rationale behind such collection/use:
Purpose/Instance | Rationale |
---|---|
Managing Cloud4C’s contractual and/or employment relationship with the User. | Necessary for the performance of a contract to which User is a party. |
Recruitment. | As an employer, Cloud4C collects User’s personal information in order to manage and carry out the recruitment process and User’s employment with Cloud4C. |
Facilitating communication with the User (including in case of emergencies, and to provide User with requested information). | To ensure proper communication and emergency handling within the organization. This kind of collection includes collection of basic contact information of relevant stakeholders. |
Operating and managing Cloud4C business operations. | To ensure the proper functioning of Coud4C business operations and optimise Cloud4Cservice offerings. |
Complying with legal requirements. | This is a legitimate purpose as Cloud4C is bound by and is subject to all applicable laws and legal mandates. |
Monitoring User’s use of Cloud4C systems (including use of Cloud4C website ). | To avoid compliance related issues and protecting the standards of Cloud4Cservice offerings, ensuring that they meet the legal requirements and industry standards. |
Improving the security and functioning of Cloud4C website, networks and information. | To ensure that User receives an excellent user experience and Cloud4C networks and information are secure. |
Undertaking data analytics, i.e. applying analytics to business operations and data to describe, predict and improve business performance within Cloud4C and/or to provide a better user experience. | To ensure the proper functioning of Cloud4C business operations and optimise Cloud4C service offerings. |
Marketing Cloud4C products and services to User. | To ensure the proper functioning and growth of Cloud4C business operations. However, any kind of collection for this purpose will be subject to User’s consent and privacy rights. |
Customers billing address, email address, and telephone numbers and prospective clients information | For performance of contract. |
Purposes for which Cloud4C may share personal data belonging to the User:
Cloud4C shares the User’s personal data with the User’s consent and/or to carry out any transaction and/or provide any service that the User has authorized or requested. Cloud4C also shares any such personal data with its wholly owned subsidiaries and affiliates whenever necessary, to optimize Cloud4C’s service offerings.
Further, Cloud4C may also share User’s personal data with its vendors/suppliers/third parties wherever necessary on strict need to know basis, ensuring that such parties are bound by the privacy principles detailed herein and are bound by strict confidentiality obligations.
Lastly, Coud4C shares personal data when required by applicable laws/legal mandates and/or in order to respond to any legal process, including but not limited to protection of the rights and property of Cloud4C and its customers.
How Cloud4C protects personal data belonging to the User:
Cloud4C is committed to protecting its User’s personal data. Cloud4C has put in place safeguards including appropriate technologies, policies, and contractual arrangements, so that the data that Cloud4C possesses about the Users is protected from unauthorized access and improper use.
The safeguards Cloud4C have put in place to protect User’s personal data include the following Technical and Organizational Measures:
- Organizational management is responsible for the development, implementation, and maintenance of Cloud4C’s Privacy program.
- External Audits will be conducted annually once. Any gaps identified in the audit, will be addressed with corrective action for information security and the cloud operations.
- Maintain Information security policies and make sure that policies and measures are regularly reviewed and where necessary, improve them
- Communication with Cloud4C applications utilizes cryptographic protocols such as TLS to protect information in transit over public networks.
- Data security controls which include logical segregation of data, restricted (e.g. role-based) access is used.
- Logical access controls designed to manage electronic access to data and system functionality based on authority levels and job functions.
- Password controls designed to manage and control password strength, and usage including prohibiting users from sharing passwords.
- Physical Access Control:
- Unauthorized persons shall be prevented from gaining physical access to premises, buildings or rooms where data processing systems are located which process and/or use Personal Information.
- Measures: All Datacentres adhere to strict security procedures enforced by guards, surveillance cameras, access control mechanisms and other measures to prevent equipment and Datacentre facilities from being compromised. Only authorized representatives have access to systems and infrastructure within the Datacentre facilities. To ensure proper functionality, physical security equipment (e.g. cameras, etc.) are maintained on a regular basis. In detail, the following physical security measures are implemented at all Datacentres:
- Cloud4C protects its assets and facilities using the appropriate means based on a security classification conducted by security department.
- In general, buildings are secured through access control systems (smart card access system).
- Change management procedures and tracking mechanisms designed to approve and monitor all changes to Cloud4C technology and information assets.
- Incident / problem management procedures design to allow Cloud4C investigate, respond to, mitigate and notify of events related to Cloud4C technology and information assets.
- Vulnerability assessment, patch management, and threat protection technologies and scheduled monitoring procedures designed to identify, assess, mitigate and protect against identified security threats, viruses and other malicious code.
Network and Information Security
Cloud4C maintains a variety of physical, electronic, and procedural safeguards to protect personal information. Also, uses encryption technologies to protect account information when customers viewing the bill on Website or via email. Customers should be aware that Cloud4C has no control over the security of other sites on the Internet that they might visit, interact with to buy the products or services.
Customers should keep the user name, password or other access information safe to protect against unauthorized access to account information and services. And customers must adopt strong passwords that others may not guess easily.
User's rights pertaining to its personal data and privacy:
Subject to applicable laws, all Users have the following rights:
- Right to obtain information regarding the processing of personal information and access to the personal information which Cloud4C holds.
- Please note that there may be circumstances in which Cloud4C are entitled to refuse requests for access to copies of personal information as per applicable laws. In particular, information that is subject to legal professional privilege will not be disclosed other than to Cloud4C affiliates/subsidiaries and as authorised by such affiliates/subsidiaries.
- Right to request Cloud4C to correct any personal information if it is inaccurate or incomplete.
- Right to request Cloud4C to erase personal information in certain circumstances. Please note that there may be circumstances where Cloud4C may erase personal information but Cloud4C is legally entitled to retain it.
- Right to object to and request that Cloud4C restricts, its processing of personal information in certain circumstances. Again, there may be circumstances where the User objects to, or asks Cloud4C to restrict, it's processing of personal information but Cloud4C is legally entitled to refuse that request.
- Right to withdraw consent, although in certain circumstances it may be lawful for Cloud4C to continue processing without User consent if permissible under law.
- And any other rights that User may hold as the owner of such data as per applicable laws.
Content
All hosting services provided by Cloud4C may be used for lawful purposes only. Transmission, storage, or presentation of any information, data or material in violation of any Indian law is prohibited. This includes, but is not limited to copyrighted material, trade secret, material in our opinion is obscene, not in public interest, opposed to public policy or is an invasion of privacy of any person or entity.
All pornographic content and sex-related merchandising is prohibited on all Cloud4C servers. This includes sites that may infer sexual content or links to adult content elsewhere. Cloud4C will be the sole arbiter in determining violations of this provision. Also prohibited are sites that promote any illegal activity or present content that may be damaging to Cloud4C servers or any other server on the internet. Links to such materials are also prohibited. Examples of unacceptable content or links: Pirated software Hacker programs or archives Warez sites, Cloud4C will be the sole arbiter as to what constitutes a violation of this provision.
Materials and Products
- We will exercise no control whatsoever over the content of the information passing through the network or on the Customer's websites.
- We make no warranties or guarantees of any kind, whether expressed or implied for the service provided and also disclaims any warranty of merchantability or fitness for particular purpose and will not be responsible for any damages that may be suffered by the Customer, including loss of data resulting from delays, non- deliveries or service interruptions or gaps by any cause or errors or omissions of the Customer.
- Cloud4C is not responsible for any loss, erasure, or corruption of Customer's data or files whatsoever unless agreed otherwise
- Use of any information obtained by way of Cloud4C is at the Customer's own risk, and we specifically deny any responsibility for the accuracy or quality of information obtained through our services.
Changes to this Privacy Policy
Cloud4C reserves the right to amend, alter, or modify this Privacy Statement at any time in its sole and absolute discretion. Any amendment or modification is effective when posted on public domain and any use of Cloud4C services after the posting of a modification or amendment will be considered deemed acceptance of those modifications.
Webmaster
Any Security breaches, bugs and updates on the website, please inform the Webmaster.