Privacy Policy
BlueCloud complies with all data protection and privacy laws generally applicable to BlueCloud’s provision of BlueCloud Cloud Services and is committed to safeguarding the privacy of all our business processes. This policy sets out how we will treat your personal information.
Scope and acceptance
This Privacy Policy applies to all business processes in BlueCloud and to all BlueCloud websites, domains, mobile solutions, cloud services and communities as well as BlueCloud- branded websites and third-party social networks (e.g. Facebook) (BlueCloud Sites). Any specific appendices for our cloud services will be found in the Terms of Service or equivalent for the service in question.
The Privacy Policy provides information about data processing carried out by BlueCloud when BlueCloud determines the purpose and means of the processing (BlueCloud as data controller), and data processing we do on behalf of our Customers based on their instructions (the Customer as data controller and BlueCloud as data processor).
Personal Data is any information that can directly or indirectly identify a living individual, such as an email address, street address, phone number or IP-address. Processing your Personal Data is necessary for us to serve you or our Customers. By providing us with your Personal Data, you accept the practices and terms described in this Privacy Policy. Please do not use BlueCloud Sites or provide your Personal Data if you do not agree.
Whose data we process BlueCloud process data about contact persons and software users among our Customers, including persons representing potentially new Customers that approach us via BlueCloud Sites or other channels. Our policy in these regards is to be found in the data controller section below.
We also process data about our Customers’ employees and other persons’ data of which the Customer controls. Our policy in these regards is to be found in the data processor section. In this policy data subjects may also be referred to as persons or you.
Data Protection Officer
BlueCloud’s Data Protection Officer can be reached at the following address:
BlueCloud Australia Pty Ltd
Attn: Compliance Officer
Suite 86, Level 4
89-97 Jones Street
Ultimo, NSW 2007, Australia
Email: privacy@bluecloudtech.com
Collection and use of personal data
To manage our Customer relations in general and to meet our Customer commitments, BlueCloud requires some information about you in your role as Customer contact person or user of a service. We also collect data about suppliers and partners for the following purposes:
a) Perform deliveries in accordance with a customer agreement
b) Offer support to users of our services
c) Improve the quality of our services and BlueCloud Sites
d) Detect and prevent security threats and perform maintenance and debugging
e) Prevent abuse of our software and services
f) Communicate information that is relevant for our deliveries and our customer relations in general
g) Process orders, invoicing, payments and other financial follow up of Customers
h) Payment of services purchased through BlueCloud Sites
Processing according to the above listed purposes (a to h) is necessary for us to manage our customer relations. Therefore, BlueCloud does not, as additional ground ask for your consent to process your Personal Data. We do not consider that the processing disadvantages you in any way. We will also collect information about you as a contact person or user of a service. We collect and use Personal Data mainly to perform direct sales, direct marketing and customer service, including:
i) To manage your access to our web-based services (cloud services)
j) Send you marketing communications which you have requested. These may include information about our products and services, events, activities, and promotions of our associated partners’ products and services. This communication is subscription based and requires your consent.
k) Send you information about the products and services that you have purchased from us or are related to the services you are already using
l) Perform direct sales activities in cases where legitimate and mutual interest is established.
m) Provide you content and venue details on a webinar or event you signed up for.
n) Reply to a ‘Contact me’ or other web forms you have completed on one of our BlueCloud websites (e.g. to download a whitepaper).
The basis for BlueCloud’s processing of Personal Data for the above purposes (i) is necessary for the performance of a contract to which you are party or in order to take steps at your request prior to entering into a contract. Your consent may be given freely on BlueCloud Sites when applicable. Please note that the collection of individual Personal Data is required to gain user access to many of our programs and services and to access the information you have requested.
In general, BlueCloud collects data directly from you or other persons linked to the Customer company where you are employed. These persons may be a manager or colleague. If the Customer you work for purchases BlueCloud services via a BlueCloud partner company, we may collect information about you from the partner company.
We collect your Personal Data when you interact with us in person, through correspondence, by phone, by social media, or through our websites.
We will also, with your consent, use cookies and other tracking technology when you use BlueCloud Sites to optimize your experience of these. Please see the paragraph describing automatic data collection tools for more information about these technologies and your rights in this context.
In some cases, we may also collect information about you from other legitimate sources if you have given your consent that the party collecting the Personal Data may share this with others. These sources may be third-party data aggregators, BlueCloud’s marketing partners, public sources or third-party social networks. BlueCloud will be able to combine Personal Data about you obtained from one source with data obtained from another source. This gives us a more complete picture of you as contact person, which also gives us the possibility of serving you in a more relevant way with a greater degree of personalisation.
Automatic data collection tools
BlueCloud uses a variety of technologies to collect information about your movements on the web as well as interest and preferences you freely have made available.
BlueCloud uses digital marketing software that use cookies in order to recognize a return visitor as a unique user. The cookies placed by this software are readable only by the vendor of the software, and cookies cannot access, read or modify any other data on your computer. We do link the information we store in cookies to any personally identifiable information you submit while on our site.
Google
Google Analytics
: This cookie allows us to see information on user Website activities including, but not limited to page views, source and time spent on a Website. The information is depersonalized and is displayed as numbers, meaning it cannot be tracked back to individuals. This will help to protect your privacy. Using Google Analytics, we can see what content is popular on our Website, and strive to give you more of the things you enjoy reading and watching.
Google Analytics Remarketing
: Places cookies on your computer which means that after you leave our website, Google can show you advertisements about BlueCloud that you might be interested in, based on your previous behaviour on our website. This information is not personally identifiable.
Google Ads
: By using code from Google Ads, we can see which pages helped lead to contact form submissions. This allows us to make better use of our paid search budget. This information is not personally identifiable.
Google Ads Remarketing
: Places cookies on your computer which means that after you leave our website Google can show you advertisements about BlueCloud that you might be interested in, based on your previous behaviour on our website. This information is not personally identifiable.
You can prevent the information generated by the Google cookie about your use of our Sites from being collected and processed by Google in the future by downloading and installing Google Analytics Opt-out Browser Add-on for your current web browser. This Add-on is available at
https://tools.google.com/dlpage/gaoptout
Below is a list of the cookies used on our website.
| NAME |
COOKIE TYPE |
PURPOSE |
DURATION |
| _ga |
Performance, Analytics |
Used to distiguish users |
2 years |
| _gid |
Performance, Analytics |
Used to distiguish users |
24 hours |
| _gat |
Performance, Analytics |
Used to throttle request rate. If Google Analytics is deployed via Google Tag Manager, this cookie will be named _dc_gtm_<property-id>.
|
1 minute |
| AMP_TOKEN |
Performance, Analytics |
Contains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.
|
30 seconds to 1 year |
| _gac_<property-id> |
Performance, Analytics |
Contains campaign related information for the user. If you have linked your Google Analytics and Google Ads accounts, Google Ads website conversion tags will read this cookie unless you opt-out.
|
90 days |
| UserMatchHistory |
Analytics |
LinkedIn Ads ID syncing
|
30 days |
| li_sugr |
Analytics |
Browser Identifier
|
3 months |
| li-oatml |
Analytics |
Member indirect indentifier for conversion tracking, retargeting, analytics
|
1 months |
| li_fat_id |
Analytics |
Member indirect indentifier for conversion tracking, retargeting, analytics
|
1 months |
There are several different ways in which you can accept or reject some or all cookies on our site. Some of the most common methods of doing so are described below.
You are welcome to block the use of some or all the cookies we use on our website. However, please be aware that doing so may have an impact on our site’s performance and its functionality or may even render some or all of it unusable.
You should also know that clearing all cookies from your browser will also delete any cookies that are storing your preferences, for example, whether you have accepted cookies on a website or any cookies that are blocking other cookies.
You can find more detailed information about cookies and changing your browser settings by visiting www.allaboutcookies.org
Accepting or rejecting cookies
Browser settings
You can accept or reject some or all cookies (for example, blocking all third-party cookies) by changing your browser settings. If you need assistance to do this, the links below provide information on how to adjust your browser settings for some of the most commonly used web browsers:
Google Chrome:
https://support.google.com/chrome/answer/95647?hl=en-GB
Mozilla Firefox:
https://support.mozilla.org/en-US/kb/delete-browsing-search-download-history-firefox?redirectlocale=en-US&redirectslug=Clear+Recent+History
Microsoft Internet Explorer:
https://support.microsoft.com/en-us/help/278835/how-to-delete-cookie-files-in-internet-explorer
Apple Safari:
https://support.apple.com/kb/PH5042?locale=en_US
Some browsers, such as Chrome and Firefox, allow you to adjust your settings to browse in ‘incognito’ mode, limiting the amount of data placed on your machine and automatically deleting any persistent cookies placed on your device when you finish your browsing session. There are also many third-party applications which you can add to your browser to block or manage cookies.
Clearing existing cookies
To clear cookies that have already been placed on your browser, you should select the option to clear your browsing history and ensure that the option to delete or clear cookies is included when you do so.
Google Ad settings
You can manage and opt out of personalisation of advertisements by Google by visiting Google’s ad settings page here and by unticking the button entitled ‘Also use Google Account activity and information to personalize ads on these websites and apps and store that data in your Google Account’; and switching the ‘Ads Personalisation’ setting off (i.e. by ensuring the switch at the top of the page is set to the left/grey and not the right/blue).
Alternatively, you can install a free browser plugin here:
https://support.google.com/ads/answer/7395996
Google Analytics Opt-out Browser Add-on
You can opt out of Google Analytics tracking by installing the browser add-on which is available here:
http://tools.google.com/dlpage/gaoptout
Processing of personal data
The type of data that BlueCloud processes about you may be:
- Your own and the Customer’s contact details such as name, address, telephone number and email.
- Information about date of birth, age and gender
- Employment information about you at the customer company such as job title, position including preferences and interests in professional context
- Feedback, comments or questions about BlueCloud as a supplier, or concerning our services
- Content you have uploaded such as photos and video
- Unique user information such as login ID, username, password and security question
- Financial information such as credit card information
- Traffic information as provided by your web browser such as browser type, language and the address of the website from which you arrived and other traffic information such as IP address
- Clickstream behaviour such as which links you click and when
- Other Personal Data contained in your profile on third-party social networks (Facebook etc.) which you have approved to share.
- Call Data Records
- We may also in some cases compare a collected IP address with a geographic map service to derive your general location.
you make a post, comment or similar on any public forum or BlueCloud Site, such information can be read and used by anyone with access to the site and used for purposes over which neither BlueCloud nor you have control. BlueCloud is not responsible for any information you submit on such forums or BlueCloud Sites. BlueCloud will not post any comment, testimonial or similar made by you without your prior consent.
Your rights
Access and rectification
You have the right to request a copy of your Personal Data. You may send us a request for this. You also have the right to request that BlueCloud corrects any inaccuracies in your Personal Data. If you have an account with BlueCloud for a BlueCloud Site, this can usually be done through the appropriate “your account” or “your profile” section(s) on the BlueCloud Site (if available) or inside your BlueCloud cloud service. To manage subscription settings for BlueCloud Newsletters, please click the “Manage my subscription” link at the bottom of the emails you receive. Alternatively, you can send us a request to rectify your data.
Right to erasure (‘right to be forgotten’)
If you no longer have any business with BlueCloud, you can send us a request to delete your data.
Right to opt-out of marketing communications
You have the right to opt-out of receiving marketing communications from BlueCloud and can do so by:
(a) Following the instructions for opt-out in the relevant marketing communication, or
(b) Contacting us via e-mail at privacy@bluecloudtech.com
Please note that even if you opt-out from receiving marketing communications, you may still receive administrative communications from BlueCloud, such as order confirmations and notifications about your activities.
BlueCloud as a data processor
BlueCloud provides different services to our Customers. These services involve processing of the Customers’ data and may include processing of Personal Data. The purpose of this processing is determined by our Customers and not by BlueCloud. The Customer is then the data controller for the data subject’s data. BlueCloud does in such cases act as a data processor and process the data on behalf of and according to instructions given by the Customer. When acting as data processor, BlueCloud is in accordance with General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) committed to enter into a data processing agreement (DPA) with the Customer. The Customer has agreed and guaranteed that:
- The Customer is the owner of or otherwise has the right to transfer the data to BlueCloud for processing and has the responsibility for the accuracy, integrity, content, reliability and legality of the Personal Data
- It is the Customer’s duty as data controller to notify, to the extent required by applicable law, the relevant supervisory authorities and/or the data subject in the event of any breach or unauthorized disclosure of Personal Data
- Customer complies with applicable legal requirements for privacy, data protection, and confidentiality of communications related to its use of BlueCloud Cloud Services
Customer Data Processing
When acting as data processor, BlueCloud is responsible for providing technical and organizational security measures to safeguard your privacy on behalf of our Customer – the data controller.
As a data processor, BlueCloud will not process Personal Data in any other manner or for any other purpose than authorized in the agreement with the data controller. Customer Data will be used only to provide Customers with support related to the BlueCloud Cloud Services. This may include troubleshooting aimed at preventing, detecting and repairing problems affecting the operation of the BlueCloud Cloud Services and the improvement of features that involve the detection of, and protection against, emerging and evolving threats to End-Users (such as malware or spam).
Data subjects having questions, comments, claims or any other issues regarding their Personal Data that BlueCloud is a data processor for, must submit these to the data controller.
As a data processor, BlueCloud will not give any data subjects access to their Personal Data without instructions given by the data controller to do so.
If governmental authorities or the police request disclosure of Personal Data, BlueCloud will redirect the request to the data controller. As part of this effort, BlueCloud may provide Customer’s basic contact information to the contacting agency.
BlueCloud will provide non-public information about internal systems and routines for data processing to Customers and collaboration partners upon request and NDA.
Customer Data – Individuals’ Rights
The GDPR provides the following rights for individuals:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling
For the Term of the Agreement for the BlueCloud Cloud Services BlueCloud will, as necessary under General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), either: (1) provide Customer with the ability to safely access, correct, delete, or download Customer Data, or (2) make such access, corrections, deletions, or download on Customer’s behalf.
Customer Data Processing Locations
BlueCloud runs on Amazon AWS servers around the world and in locations specified by the Customer as part of their operating requirements. More on data processing by Amazon AWS can be found here:
https://aws.amazon.com/blogs/security/aws-gdpr-data-processing-addendum/
Sub-Processors
BlueCloud may hire other companies to provide limited services on its behalf, such as providing specific modules or extensions to the Services. Any such Sub-Processor will be permitted to obtain Customer Data only to deliver the Services BlueCloud has retained them to provide, and they are prohibited from using Customer Data for any other purpose. BlueCloud remains responsible for its Sub-Processors compliance with the obligations of the Agreement. Any Sub-Processors to whom BlueCloud transfers Customer Data will have entered into written agreements with BlueCloud requiring that the Sub-Processor provides at least the same level of privacy protection with respect to Personal Data received from BlueCloud as is required by the relevant General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) principles.
Transfer of Customer Data
Customer Data that BlueCloud processes on Customer’s behalf may be transferred to and stored and processed in our different global location where BlueCloud or its Affiliates or Sub-Processors maintain facilities, or only within specific locations for customers required to do so, e.g. only within EU/EEA to meet GDPR requirements. Customer appoints BlueCloud to perform any such transfer of Customer Data to any such country and to store and process Customer Data in order to provide the BlueCloud Cloud Services.
BlueCloud will not transfer to any third-party (not even for storage purposes) Personal Data Customer provided to BlueCloud through the use of the BlueCloud Cloud Services unless agreed upon in the Agreement between Customer and BlueCloud.
BlueCloud Personnel
BlueCloud personnel will not process Customer Data without authorization. BlueCloud personnel are obligated to maintain the confidentiality of any Customer Data and this obligation continues even after their engagement ends.
BlueCloud stores your data in secure operating environments that are only accessible to BlueCloud employees and Sub-Processors on a need-to-know basis. BlueCloud also follows generally accepted industry standards in this respect.
