Last modified: 15th October 2020
Below we provide the following information:
This Policy only applies to personal data and other information collected by us from (i) visitors to our website and (ii)Customers that use our Services. While providing our Services to Customers, we may receive information related to the Customers’ Users, and other third parties.
When providing our Services to Customers, we may need to receive information related to the Customers’ Users, and other third parties. When a Customer chooses to use our services, we strictly follow the Customer’s instructions in collecting and processing the Customer’s website data in accordance with the specific services that the Customer has chosen.
Please note that in relation to the processing of these personal data, the Customer is considered as the data controller and Cludo is considered as a data processor.
Cludo may collect and process the following categories of personal data from the end users of the service:
Cludo may collect and process the following categories of personal data from our customers or its employees
a) Purposes for processing
The purposes for which we use your personal data may differ based on the services we provide and the type of communication between us.
The main purposes include using personal data to:
b) Legal basis for processing
Our legal basis for processing personal data is that: i) the processing is necessary to perform a contract with you or in preparation of entering a contract with you, ii) we must comply with various legal obligations and requirements, and iii) it is in our legitimate interests and these interests are not overridden by the interests or fundamental rights and freedoms of the data subject.
These legitimate interests include being able to communicate with you, manage our business operations and IT-infrastructure, manage complaints and queries, prevent and detect crime, process payments, ensure network and information security, improve our products and services. We collect search statistic of our Customers’ users to improve our search platform, and in this case the data processing will be performed until the termination of the agreement between the Customer and Cludo. This is not an exhaustive list.
We transfer data to our service providers (such as IT-service provider and payment provider) as necessary to provide any service that you have requested or authorised and to complete transactions.
We disclose data when required by law or to respond to legal process; to prevent and detect crime and maintain the security of our Services; and to protect the rights or property of Cludo.
We may also disclose your personal data with other parties in connection with corporate transactions: in the event of a merger, reorganisation, acquisition, joint venture, assignment, spin-off, transfer or sale or disposition of all or any portion of our business, including in connection with any bankruptcy or similar proceedings.
We may publish search-trends in the market (only anonymised aggregated data is used).
List of third parties (Sub-processors)
Cludo works with certain third parties to provide specific functionality within the Services. These providers are the Sub-processors set forth below. In order to provide the relevant functionality these Sub-processors access Service Data. Their use is limited to the indicated Services.
The following is an up-to-date list of the names and locations of the Sub-processors:
|Company||Location of entity||Location of data||Purpose of the data processing||Type of data collected|
|Amazon Web Services AWS||EU and US||EU or US||Data hosting provider||End user's data and Customer's data|
6. International Transfers
If we transfer our personal data to a third country outside of the EEA, we will comply with all applicable laws in respect of such transfer, including making sure that your personal data is kept secure, and ensure that appropriate safeguards are in place to ensure that at least one of the following safeguards is implemented:
Cludo securely stores your data on Amazons AWS servers, the top provider of cloud services in the world. They are certified for, among others, ISO 9001, 27001, 27017, 27018, SOC I, SOC II and SOC III.
In principle, the host servers on which Cludo processes and stores its databases are located:
The Client can request Cludo to not use the default location by sending us a request on email@example.com.
Cludo will retain your personal data for the period necessary to fulfill purposes outlined in this Policy including mandatory registration and documentation requirements, unless longer retention period is required or permitted by law.
You can set your browser not to accept cookies by activating the appropriate setting in the browser. However, in a few cases, some of our website features may not function as a result.
Cludo Security Information
We have implemented technical and organizational security measures designed to secure your Personal Data from accidental loss and from unauthorized access, use, alteration and disclosure. This includes encryption of data and use of pseudonymisation whenever applicable.
Cludo takes reasonable measures to protect the website from computer virus, worms, Trojan horses or other threats. However, please note that no website, internet transmission, computer system or wireless connection is completely secure, and Cludo disclaims any responsibility for or liability related to loss due to harmful programs received from the website or by means of files downloaded from the website.
How is integrity of personal data stored or processed in the relevant system achieved?
How the confidentiality of personal data is ensured?
Cludo would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:
This section provides additional details about the personal information we collect about California consumers and the rights afforded to them under the California Consumer Privacy Act or “CCPA.”
Subject to certain limitations, the CCPA provides California consumers the right to request to know more details about the categories or specific pieces of personal information we collect (including how we use and disclose this information), to delete their personal information, to opt out of any “sales” that may be occurring, and to not be discriminated against for exercising these rights.
California consumers may make a request pursuant to their rights under the CCPA by contacting us at firstname.lastname@example.org. We will verify your request using the information associated with your account, including email address. Government identification may be required. Consumers can also designate an authorized agent to exercise these rights on their behalf.
To the extent prohibited by applicable law, Cludo does not allow use of our Services and Website by anyone younger than 16 years old. If you learn that anyone younger than 16 has unlawfully provided us with personal data, please contact us and we will take steps to delete such information.
If you have questions or complaints regarding this Policy or about the Cludo’s privacy practices, please contact us by email at email@example.com, or at:
2450 København, Denmark
If you wish to make a complaint about our processing of your personal data, please contact us as indicated above, as it gives us an opportunity to fix the problem. You may also lodge a complaint with the Danish Data Protection Agency (“Datatilsynet”), Borgergade 28, 5., 1300 Copenhagen K, Denmark.