PRIVACY POLICY

Despite, or perhaps even because of, our rebelliousness, Cloud2 takes security and data protection extremely seriously. Protecting your privacy is very important to us and we want to store and handle your personal data responsibly and safely. On this page you will find information about how we collect and process your personal data.

Cloud2's personal data is processed in accordance with this Privacy Notice and applicable legislation, such as the General Data Protection Regulation ("GDPR") and national data protection legislation.

In summary we follow principles of ‘privacy by default’ and ‘privacy by design. We collect two types of data: data provided by people themselves and data collected through behaviour and analytics on various digital services. This information is collected to help us be more successful and to help people find us, for example as an employer or service provider. We have analyzed the risks of collecting and processing personal data and implemented adequate measures to protect your data. Processes have been adjusted to make sure data is never stored longer than necessary.

WHAT RIGHTS DO YOU HAVE?

Every person in the register has the right to check the information stored in the register and to demand the correction of any incorrect information or the completion of incomplete information. If a person wants to check the data stored about him or her or request a correction, the request must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limit set in the EU Data Protection Regulation (usually within one month).

A person in the register has the right to request the removal of his or her personal data from the register ("the right to be forgotten"). Data subjects also have other rights under the EU's General Data Protection Regulation, such as restricting the processing of personal data in certain situations. Requests must be sent in writing to the controller. If necessary, the controller may ask the applicant to prove his or her identity. The controller will respond to the customer within the time limit set in the EU Data Protection Regulation (usually within one month).

PURPOSES OF USE OF PERSONAL DATA

Cloud2 processes personal data in general for purposes related to the management of customer relationships and potential recruitments, such as payment control, to respond to inquiries and feedback sent by customers, to develop the service and business, and for statistical purposes. In addition, personal data is collected either as a customer, job applicant or as a person interested in our operations in general when registering and during the employment and customer relationship

Our personal data files contain the following personal data:

Personal data: first name and last name, company and title

Contact information: street address, postal code, city, e-mail, phone number

Job-related information: Employer, title, license information, username

Interests: Demographic information, e.g. interest in a particular technology or event or similar.

Other information related to the customer or job applicant relationship or digital services: IP address, IDs and profiles in different services, information about ordering and using services, contacts and communications.

DATA SOURCES

The information stored in the register is obtained from the customer, for example, from messages sent via web forms, e-mail, telephone, social media services, contracts, customer meetings, analytics and other situations in which the customer discloses their information.

HOW YOUR INFORMATION IS USED

The register is handled with care and the data processed by the information systems is protected appropriately. When register data is stored on Internet servers, the physical and digital security of their hardware is taken care of appropriately. The controller ensures that the stored data, server access rights and other information critical to the security of personal data are treated confidentially and only by the employees whose job description it belongs to.

Data is not regularly disclosed to other parties. Information may be published or disclosed to third parties to the extent agreed with the person.

LEGAL BASIS

The legal basis for the processing of personal data under the EU's General Data Protection Regulation is
- consent of the person (documented, voluntary, individualized, informed and unambiguous)
- a contract to which the data subject is a party
- the legitimate interest of the controller (e.g. customer relationship, employment relationship, membership, event visit).

DATA CONTROLLER AND CONTACT INFORMATION

Name: Cloud2 Oy

Address: Insinöörinkatu 12 00880 Helsinki

Representative: DPO / Joni Kiukas

E-mail address: dpo@cloud2.fi

Tel: +358 45 8469 688