Privacy Policy
Last modified: 15th October 2020
Cludo values the privacy of its Customers and its Customers’ Users. Data protection and confidentiality is a high priority for Cludo. This Privacy Policy explains how information about you is collected, used and disclosed by Cludo when we process personal data as part of our Services or when you otherwise interact with us.
Below we provide the following information:
This Policy only applies to personal data and other information collected by us from (i) visitors to our website and (ii)Customers that use our Services. While providing our Services to Customers, we may receive information related to the Customers’ Users, and other third parties.
When providing our Services to Customers, we may need to receive information related to the Customers’ Users, and other third parties. When a Customer chooses to use our services, we strictly follow the Customer’s instructions in collecting and processing the Customer’s website data in accordance with the specific services that the Customer has chosen.
Please note that in relation to the processing of these personal data, the Customer is considered as the data controller and Cludo is considered as a data processor.
Our use of personal data on behalf of our Customers is governed by our contract with that Customer, our general data processing terms and conditions and the Customer’s own privacy policy.
Cludo may collect and process the following categories of personal data from the end users of the service:
Cludo may collect and process the following categories of personal data from our customers or its employees
a) Purposes for processing
The purposes for which we use your personal data may differ based on the services we provide and the type of communication between us.
The main purposes include using personal data to:
b) Legal basis for processing
Our legal basis for processing personal data is that: i) the processing is necessary to perform a contract with you or in preparation of entering a contract with you, ii) we must comply with various legal obligations and requirements, and iii) it is in our legitimate interests and these interests are not overridden by the interests or fundamental rights and freedoms of the data subject.
These legitimate interests include being able to communicate with you, manage our business operations and IT-infrastructure, manage complaints and queries, prevent and detect crime, process payments, ensure network and information security, improve our products and services. We collect search statistic of our Customers’ users to improve our search platform, and in this case the data processing will be performed until the termination of the agreement between the Customer and Cludo. This is not an exhaustive list.
We transfer data to our service providers (such as IT-service provider and payment provider) as necessary to provide any service that you have requested or authorised and to complete transactions.
We disclose data when required by law or to respond to legal process; to prevent and detect crime and maintain the security of our Services; and to protect the rights or property of Cludo.
We may also disclose your personal data with other parties in connection with corporate transactions: in the event of a merger, reorganisation, acquisition, joint venture, assignment, spin-off, transfer or sale or disposition of all or any portion of our business, including in connection with any bankruptcy or similar proceedings.
We may publish search-trends in the market (only anonymised aggregated data is used).
List of third parties (Sub-processors)
Cludo works with certain third parties to provide specific functionality within the Services. These providers are the Sub-processors set forth below. In order to provide the relevant functionality these Sub-processors access Service Data. Their use is limited to the indicated Services.
The following is an up-to-date list of the names and locations of the Sub-processors:
Company | Location of entity | Location of data | Purpose of the data processing | Type of data collected |
---|---|---|---|---|
Amazon Web Services AWS | EU and US | EU or US | Data hosting provider | End user's data and Customer's data |
6. International Transfers
If we transfer our personal data to a third country outside of the EEA, we will comply with all applicable laws in respect of such transfer, including making sure that your personal data is kept secure, and ensure that appropriate safeguards are in place to ensure that at least one of the following safeguards is implemented:
Cludo securely stores your data on Amazons AWS servers, the top provider of cloud services in the world. They are certified for, among others, ISO 9001, 27001, 27017, 27018, SOC I, SOC II and SOC III.
In principle, the host servers on which Cludo processes and stores its databases are located:
The Client can request Cludo to not use the default location by sending us a request on privacy@cludo.com.
Cludo will retain your personal data for the period necessary to fulfill purposes outlined in this Policy including mandatory registration and documentation requirements, unless longer retention period is required or permitted by law.
We use cookies on our website to help optimise and enhance your experience. You can read more about the use of cookies in our Cookie Policy, which you can find at the following link: Cludo Cookie Policy.
You can set your browser not to accept cookies by activating the appropriate setting in the browser. However, in a few cases, some of our website features may not function as a result.
Cludo Security Information
We have implemented technical and organizational security measures designed to secure your Personal Data from accidental loss and from unauthorized access, use, alteration and disclosure. This includes encryption of data and use of pseudonymisation whenever applicable.
Cludo takes reasonable measures to protect the website from computer virus, worms, Trojan horses or other threats. However, please note that no website, internet transmission, computer system or wireless connection is completely secure, and Cludo disclaims any responsibility for or liability related to loss due to harmful programs received from the website or by means of files downloaded from the website.
How is integrity of personal data stored or processed in the relevant system achieved?
How the confidentiality of personal data is ensured?
Our web site may contain links to other websites not operated or controlled by Cludo (third party sites). We are not responsible for the content of third party sites or for the procedures such third parties have for the collection and processing of personal data. When you visit third party websites, you should therefore make sure to read the website owner's privacy policy and other relevant policies.
Cludo would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:
If you would like to exercise any of these rights, or if you have any questions regarding the content of this Privacy Policy, please contact us at privacy@cludo.com.
This section provides additional details about the personal information we collect about California consumers and the rights afforded to them under the California Consumer Privacy Act or “CCPA.”
For more details about the personal information we have collected over the last 12 months, including the categories of sources, please see the Section 3 above “What data do we collect?”. We collect this information for the business and commercial purposes described in the Section 4 above “How we your data”. We share this information with the categories of third parties described in the Section 5 above “Transfer and disclosure of personal data to third parties (Sub-processors)”. Cludo does not sell (as such term is defined in the CCPA) the personal information we collect (and will not sell it without providing a right to opt out). Please note that we do use third-party cookies for our advertising purposes as further described in our Cookie Policy.
Subject to certain limitations, the CCPA provides California consumers the right to request to know more details about the categories or specific pieces of personal information we collect (including how we use and disclose this information), to delete their personal information, to opt out of any “sales” that may be occurring, and to not be discriminated against for exercising these rights.
California consumers may make a request pursuant to their rights under the CCPA by contacting us at privacy@cludo.com. We will verify your request using the information associated with your account, including email address. Government identification may be required. Consumers can also designate an authorized agent to exercise these rights on their behalf.
To the extent prohibited by applicable law, Cludo does not allow use of our Services and Website by anyone younger than 16 years old. If you learn that anyone younger than 16 has unlawfully provided us with personal data, please contact us and we will take steps to delete such information.
This Policy may be updated from time to time to reflect changing legal, regulatory or operational requirements. If we make changes, we will notify you by revising the date at the top of this Privacy Policy. Depending on the specific amendments, we may provide you with additional notice prior to the change becoming effective. Please review this Privacy Policy from time to time to stay updated on any changes. Your continued use of our services constitutes your agreement to the updated Privacy Policy on a prospective basis.
If you have questions or complaints regarding this Policy or about the Cludo’s privacy practices, please contact us by email at privacy@cludo.com, or at:
Cludo ApS
Frederikskaj 4
2450 København, Denmark
If you wish to make a complaint about our processing of your personal data, please contact us as indicated above, as it gives us an opportunity to fix the problem. You may also lodge a complaint with the Danish Data Protection Agency (“Datatilsynet”), Borgergade 28, 5., 1300 Copenhagen K, Denmark.