Privacy Policy of cloud-cm.com

This application collects personal data from its users.

Users may be subject to different protection standards, so broader standards may apply to some of them. Users can contact the Provider to learn more about these standards.

This document can be printed for storage purposes using the “Print” command in the browser.

Provider and Data Controller

Cloud Companion
Schwalbenweg 16, 12529 Schönefeld

Provider’s email address: info@cloud-cm.com

Types of Data Collected

Among the personal data that this application processes by itself or through third parties are: Trackers; Usage Data; Number of Users; Session Statistics; City; Browser Information; Device Information.

Complete details on each type of personal data processed are provided in the relevant sections of this privacy policy or by specific explanation texts displayed prior to data collection.
Personal data may be freely provided by the user or, in the case of usage data, collected automatically when using this application.
Unless otherwise specified, all data requested by this application is mandatory. If the user refuses to provide the data, it may make it impossible for this application to provide its services. In cases where this application specifically states that certain data is voluntary, users are free not to provide this data without consequences to the availability or the functioning of the service.
Users who are uncertain about which personal data is mandatory are welcome to contact the Provider.
Any use of cookies – or other tracking tools – by this application or by the owners of third-party services used by this application serves the purpose of providing the service requested by the user, in addition to any other purposes described in this document and in the Cookie Policy.

Users are responsible for any third-party personal data obtained, published, or shared through this application and confirm that they have the third party’s consent to provide the data to the Provider.

Method and Place of Data Processing

Processing Methods

The Provider processes user data in a proper manner and takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the data.
Data processing is carried out using computers or IT-based systems according to organizational procedures and practices that are specifically geared toward the stated purposes. In addition to the Controller, other persons may also operate this application internally (human resources, sales, marketing, legal department, system administrators) or externally—if necessary, appointed by the Controller as Processors (such as providers of technical services, delivery companies, hosting providers, IT companies, or communication agencies)—and thus have access to the data. An up-to-date list of these parties can be requested from the Provider at any time.

Place

The data is processed at the Provider’s place of business and at all other locations where the parties involved in data processing are located.

Depending on the user’s location, data transfers may involve transferring the user’s data to a country other than their own. To learn more about where such transferred data is processed, users can consult the section containing detailed information on the processing of personal data.

Storage Duration

Unless otherwise specified in this document, personal data is processed and stored for as long as required by the purpose for which it was collected, and may also be retained due to a legal obligation to be fulfilled or based on the user’s consent.

Purposes of the Processing

Personal data about the user is collected so that the Provider can provide the service and also fulfill its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its users or third parties), and detect malicious or fraudulent activities. In addition, data is collected for the following purposes: Analytics.

Users can find further detailed information on these processing purposes and on the personal data used for each purpose in the section “Detailed information on the processing of personal data” in this document.

Detailed Information on the Processing of Personal Data

Personal data is collected for the following purposes using the following services:

Analytics

By means of the services listed in this section, the Provider can monitor and analyze data traffic and can track user behavior.

Google Analytics (Universal Analytics) with IP Anonymization (Google Ireland Limited)

Google Analytics (Universal Analytics) is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the collected data to track and examine how this application is used, to compile reports on its activities, and to share them with other Google services.
Google may use the collected data to contextualize and personalize the ads of its own advertising network.
IP anonymization is activated on this website, so that the IP address of users is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before transmission. In exceptional cases only, the full IP address is sent to a Google server in the U.S. and shortened there.

Further information on Google’s use of data can be found in Google’s Partner Policy.

Processed personal data: Usage Data; Trackers.

Place of processing: Ireland – Privacy Policy – Opt Out.

Google Analytics (Universal Analytics) (Google Ireland Limited)

Google Analytics (Universal Analytics) is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the collected data to track and examine how this application is used, to compile reports on its activities, and to share them with other Google services.
Google may use the collected data to contextualize and personalize the ads of its own advertising network.

Further information on Google’s use of data can be found in Google’s Partner Policy.

Processed personal data: Usage Data; Trackers.

Place of processing: Ireland – Privacy Policy – Opt Out.

Google Analytics – Collection of Granular Location and Device Data (Google Ireland Limited)

Google Analytics on this application has enabled granular data collection that collects location and device data by region. It allows the owner to create and analyze user reports based on these metrics.

Processed personal data: Number of Users; Browser Information; Device Information; Usage Data; Session Statistics; City; Trackers.

Place of processing: Ireland – Privacy Policy.

Google Analytics 4 (Google Ireland Limited)

Google Analytics 4 is a web analytics service provided by Google Ireland Limited (“Google”).
Google uses the collected data to track and examine how this application is used, to compile reports on its activities, and to share them with other Google services.
Google may use the collected data to contextualize and personalize the ads of its own advertising network. In Google Analytics 4, IP addresses are used at the time of collection and then deleted before being stored in a data center or on a server. Users can learn more by reviewing Google’s official documentation.

Further information on Google’s use of data can be found in Google’s Partner Policy.

Processed personal data: Number of Users; Usage Data; Session Statistics; Trackers.

Place of processing: Ireland – Privacy Policy – Opt Out.

Cookie Policy

This application uses trackers. Further information can be found in the Cookie Policy.

Further Information for Users in the European Union

This section applies to all users in the European Union under the General Data Protection Regulation (GDPR”) and supersedes any other possibly conflicting or divergent information in this privacy policy for these users. More detailed information on the categories of processed data, the purposes of processing, the categories of recipients of personal data, if any, and other information about personal data can be found in the section “Detailed information on the processing of personal data” in this document.

Legal Basis of Processing

The Provider may only process users’ personal data if one of the following applies:

Users have given their consent for one or more specific purposes.
Data collection is necessary for the fulfillment of a contract with the user and/or for pre-contractual measures related thereto.
Processing is necessary to fulfill a legal obligation to which the Provider is subject.
Processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Provider.
Processing is necessary for the purposes of the legitimate interests pursued by the Provider or a third party.

In any case, the Provider is happy to clarify the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual requirement or a requirement necessary to enter into a contract.

Further Information on Storage Duration

Therefore, the following applies:

Personal data collected for the purposes of fulfilling a contract between the Provider and the user will be retained until the contract has been fully performed.
Personal data collected to protect the Provider’s legitimate interests will be retained for as long as necessary to fulfill these purposes. Users can obtain more detailed information about the Provider’s legitimate interests in the relevant sections of this document or by contacting the Provider.

Furthermore, the Provider is permitted to store personal data for a longer period if the user has given consent to such processing, as long as this consent is not withdrawn. In addition, the Provider may be required to retain personal data for a longer period if this is necessary to comply with a legal obligation or by order of an authority.

After the retention period has expired, personal data will be deleted. Therefore, the right of access, the right to erasure, the right to rectification, and the right to data portability cannot be exercised after the retention period has expired.

Users’ Rights under the General Data Protection Regulation (GDPR)

Users may exercise certain rights regarding their data processed by the Provider.

Within the limits of the law, users have the right to do the following:

Withdraw their consent at any time. If the user has previously given consent to the processing of their personal data, they may withdraw their own consent at any time.
Object to the processing of their data. Users have the right to object to the processing of their data if it is carried out on a legal basis other than consent.
Obtain information about their data. Users have the right to know if the data is being processed by the Provider, to receive information about certain aspects of the processing, and to obtain a copy of the data.
Verify and seek rectification. Users have the right to verify the accuracy of their data and ask for it to be updated or corrected.
Restrict the processing of their data. Users have the right to restrict the processing of their data. In this case, the Provider will not process the data for any purpose other than storing it.
Have their personal data deleted or otherwise removed. Users have the right to ask the Provider to delete their data.
Receive their data and have it transferred to another controller. Users have the right to receive their data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transferred to another controller without any hindrance.
Lodge a complaint. Users have the right to lodge a complaint with the competent supervisory authority.

Users also have the right to be informed about the legal basis of data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Provider to safeguard their data.

Details about the Right to Object to Processing

If personal data is processed in the public interest, in the exercise of an official authority vested in the Provider, or for the purposes of the legitimate interests pursued by the Provider, a user may object to such processing by providing a ground related to their particular situation to justify the objection.

Users are informed that they can object to the processing of personal data for direct marketing purposes at any time, free of charge and without providing any justification. If a user objects to processing for direct marketing purposes, the personal data will no longer be processed for these purposes. Whether the Provider processes personal data for direct marketing purposes can be found in the relevant sections of this document.

How to Exercise These Rights

All requests to exercise user rights can be directed to the Provider via the contact details provided in this document. These requests can be made free of charge and will be addressed by the Provider as early as possible and always within one month, providing the legally required information to the users. The Provider communicates any rectification or erasure of personal data or restriction of processing to each recipient to whom personal data has been disclosed, if there are any. This is unless it proves impossible or involves a disproportionate effort. The Provider shall inform the user about those recipients if the user requests it.

Further Information on the Collection and Processing of Data

Legal Action

The user’s personal data may be used by the Provider for legal purposes in court or in the stages leading to possible legal action arising from improper use of this application or the related services.
The user declares to be aware that the Provider may be required to reveal personal data upon request of public authorities.

Additional Information about the User’s Personal Data

In addition to the information contained in this privacy policy, this application may provide the user with additional contextual information concerning particular services or the collection and processing of personal data upon request.

System Logs and Maintenance

For operation and maintenance purposes, this application and any third-party services may collect files that record interaction with this application (System logs) or use other personal data (such as the IP Address) for this purpose.

Information Not Contained in This Privacy Policy

More details concerning the collection or processing of personal data may be requested from the Provider at any time. Please see the contact information at the beginning of this document.

Changes to This Privacy Policy

The Provider reserves the right to make changes to this privacy policy at any time by giving notice to its users on this page and possibly within this application and/or—so far as technically and legally feasible—sending a notice to users via any contact information available to the Provider. Users are strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

Should the changes affect processing activities performed on the basis of the user’s consent, the Provider shall collect new consent from the user, where required.

Definitions and Legal References

Personal Data (or Data)

Any information that directly, or in connection with other information, allows for the identification of a natural person.

Usage Data

Information that this application (or third-party services used by this application) automatically collects, for example: the IP addresses or domain names of the computers used by users who use this application, the URI (Uniform Resource Identifier) addresses, the time of the request, the method used to send the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s response (successful outcome, error, etc.), the country of origin, the features of the browser and operating system utilized by the user, various time details per visit (e.g., how much time was spent on each page within the application), and information about the path followed within the application, specifically the sequence of pages visited, as well as other information about the operating system of the user’s device and/or the user’s IT environment.

User

The person using this application who, unless otherwise specified, coincides with the Data Subject.

Data Subject

The natural person to whom the personal data refers.

Processor (or Data Processor)

A natural or legal person, public authority, agency, or other body that processes personal data on behalf of the Controller, as described in this privacy policy.

Controller (or Provider, also sometimes referred to as Owner)

The natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data, including the security measures concerning the operation and use of this application. Unless otherwise specified, the Controller is the natural or legal person through which this application is offered.

This Application

The hardware or software tool by which the user’s personal data is collected and processed.

Service

The service provided by this application as described in the relative Terms (if available) and on this website/application.

European Union (or EU)

Unless otherwise stated, all references made in this document to the European Union include all current member states of the European Union and the European Economic Area (EEA).

Cookie

Cookies are trackers consisting of small sets of data stored in the user’s browser.

Tracker

The term “tracker” refers to any technology—for example, cookies, unique identifiers, web beacons, embedded scripts, e-tags, or fingerprinting—by which users can be tracked, for instance by enabling access to or storage of information on the user’s device.

Legal Notice

This privacy policy only relates to this application, unless stated otherwise in this document.