top of page
Please note that this Privacy Policy applies to personal data that is collected and processed by Cloudmaven ERP., having its registered seat at Zunstrasse 11, 8152 Opfikon-Glattbrugg, Switzerland ("CLOUDMAVEN", "we", "our" or "us"). CLOUDMAVEN, as a data controller, collects and processes personal data referring to interactions on the Website (as defined in Section 1 of the Terms of Use). This Privacy Policy describes how CLOUDMAVEN uses and protects any information that you give us. We believe in full transparency, which is why we keep our Privacy Policy simple and easy to discern.Privacy Policy 2 We strongly urge you to read this Privacy Policy and ensure that you simply fully understand and comply with it. If you do not agree to this Privacy Policy, please do not access or otherwise use the Website. Any capitalized but undefined term in this Privacy Policy shall have the meaning given to it in the Definitions section of the Terms of Use.
Contents
Anchor 1
Definitions
Definition
When we say "you", "your" or "Data Subject" we mean any natural person that shares personal data with us via Website. When we say "processing" we mean any operation or set of operations which is performed on personal data or sets of personal data. This includes activities such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
When we say "personal data" or "data" we mean any information referring to an identified or identifiable natural person; an identifiable natural person is one who can be identified, either directly or indirectly. Therefore, data about a company or any legal entity is not considered to be personal data but registering on behalf of a legal entity may include sharing personal data. As an example, the data in reference to one-person companies may constitute personal data where it allows the identification of a natural person. The principles also apply to any or all personal data regarding natural persons within the course of professional activity, for instance the staff of a corporation or organization, business e-mail addresses like "firstname.surname@company.com". This Privacy Policy does not apply to information from which no individual can reasonably be identified (anonymized information).
When we say "Data Processors" or "processor" we mean any natural or legal person who processes the data on behalf of the Data Controller. In some cases, CLOUDMAVEN may be a Data Processor and in others, Data Controller (as further explained in Section 2. Additionally, we may use the services of assorted service providers to process your data more effectively. In such cases, they are either our processors or sub-processors. When we say "cookies" we mean small pieces of information stored on your device (computer or mobile device). This information is used to trace your use of the Website and to compile statistical reports on website activity. When we say "consent" we mean your explicit consent on the processing of personal data. Persons who are 15 years of age or older may give free consent to the processing of their personal data.
data controller or data processor
Data Controller or Data Processor?
In reference to your personal data processed on or via the Website, CLOUDMAVEN may be either a Data Controller or Data Processor. When CLOUDMAVEN acts within the capacity of a Data Controller, CLOUDMAVEN determines the needs and means of the processing of personal data. The aim of data processing is the reason why we process your personal data. The table in Section 4 of the Privacy Policy presents the purposes and legal basis for data processing. In such cases, CLOUDMAVEN is accountable for your personal data. This Privacy Policy contains information on processing your data in the capacity of a Data Controller. Should you have any inquiries, or you wish to exercise any of the rights of a Data Subject stipulated in Section 10, please contact us:
Cloudmaven ERP
Zunstrasse 11, 8152 Opfikon-Glattbrugg Switzerland
Email: info@cloudmaven.com
Please also note that we do not collect your personal data if you are End User of Server MavenApps Time Tracking. In this case, Client (the company that has MavenApps Time Tracking installed on their server) is responsible for your personal data. If you represent a User that falls under the scope of application of the GDPR, you will have to sign the Data Protection Addendum to these Terms of Use ("DPA"), with CLOUDMAVEN as a Data Processor based outside the EEA. The DPA includes the Standard Contractual Clauses adopted by the European Commission, as applicable, and reflects the Parties' agreement with respect to the terms governing the processing of personal data under the MAVENAPPS TIME TRACKING's Terms of Use. Signing the DPA are considered as an amendment to the Agreement (within the meaning of Section 1 of the Terms of Use) and will be considered to form a part of the Agreement.
WHAT DATA DO WE COLLECT ABOUT YOU AND WHEN?
What Data do we collect about you and when?
We may collect and receive information about you in various ways:
(i) Information you provide through the utilization of the Service (for example, by creating the account on MavenApps Time Tracking).
(ii) Information you choose to provide through getting iny touch with us via info@cloudmaven.com
(iii) Information we collect through the utilization of cookies in accordance with our Cookie Policy (for example, your time zone).
Why do we process Personal Data and for how long?
Why do we process PD and for how long
What do we not do?
What do we not do
CLOUDMAVEN WILL NEVER:
— Sell any reasonably personal information or data
— Disclose this information to marketers or third parties not specified in Section 7
— Process your data in any way other than stated in this Privacy Policy.
Personal Data Security
Personal Data Security
We take administrative, technical, organizational and other measures to make sure the suitable level of security of personal data we process. Upon assessing whether a measure is adequate and which level of security is suitable, we consider the character of the personal data we are processing and the nature of the processing operations we perform, the risks to which you are exposed by our processing activities, the prices of the implementation of security measures and other relevant matters within the particular circumstances.
Some of the measures we apply include access authorization control, information classification (and handling thereof), protection of integrity and confidentiality, data backup, firewalls, encoding and other appropriate measures. We equip our staff with the appropriate knowledge and understanding of the importance and confidentiality of your personal data security.
With whome do we share your PD
With whom do we share your Personal Data?
CLOUDMAVEN utilizes external processors for certain processing activities. We use information audits to spot, categorize and record all personal data that is processed outside the organization, so that the data, processing activity, processor and legal basis are all recorded, reviewed and simply accessible. We have strict due diligence procedures and measures in place and review, assess and background check all processors prior to forming a business relationship. We obtain company documents, certifications, references and make sure that the processor is adequate, appropriate and effective for the task we are employing them for. We audit their processes and activities before contract and through the contract period to confirm compliance with the data protection regulations and review any codes of conduct that oblige them to substantiate compliance.
This is the list of processors and sub-processors with whom we share your personal data:
PROCESSOR | ROLE | Seat |
|---|---|---|
Netsuite | Cloud ERP | USA |
Deskpro, Inc. | Email and Chat support | USA |
Microsoft, Inc. | Email service based on Cloud | USA |
Amazon Web Service, Inc. | Cloud Infrastructure (IaaS) | Europe |
We may also share your personal data with our outside accountants, legal counsels and auditors.
International transfer of your Personal Data
International transfer of your PD
We may transfer your personal data to countries apart from the one you reside in. On condition that we follow internal rules for the protection of personal data that are stricter than the applicable law (see Section 22 of the Terms of Use), in these cases, we transfer your personal data only:
1. To the countries within the EEA;
2. To the countries which ensure an adequate level of protection;
3. To the countries which do not belong to those specified under item 1. and 2, but only by applying the appropriate safeguard measures.
How long do we keep your data?
How long do we keep your data
The period for which we store your personal data depends on a respective purpose for the processing of personal data, as explained thoroughly in Section 4. We retain personal data for as long as we reasonably require it for legal or business purposes. In determining data retention periods, we take into consideration the applicable law (see Section 22 of the Terms of Use), contractual obligations, and the expectations and requirements of our Users. When we no longer need personal information, or when you request us to delete your information, where this can be legal, we will securely delete or destroy it.
However, as an exception to the retention periods in Section 4 the data may be processed to see, pursue or defend claims and counterclaims.
Your Rights
Your right
Given that transparency is one of our cornerstone principles, we grant Data Subjects certain rights in relation to their personal data. These rights may be exercised by the Data Subject when CLOUDMAVEN operates as a Data Controller.
RIGHT OF ACCESS
You can send us an inquiry for a duplicate of the personal data we hold about you. We have ensured that appropriate measures have been taken to produce such in an exceedingly concise, transparent, intelligible and simply accessible form, using clear and plain language. Such information is provided in writing free of charge. It should be provided by other means when authorized by the Data Subject and with prior verification as to the subject's identity. Information is provided to the Data Subject at the earliest convenience, but at a maximum of 30 days from the date the request was received. Where the retrieval or provision of data especially complex or is subject to a legitimate delay, the period could also be extended by two further months where necessary.
RIGHT TO CORRECTION OF YOUR PERSONAL DATA
If the personal data we have about you is wrong, you have got the right to request that we correct those data. Where notified of inaccurate data by the Data Subject, we will rectify the error within 30 days and inform any third party of the rectification if we have got the personal data in question to them.
RIGHT TO ERASURE
You have the proper to request from us that your personal data is deleted in certain circumstances including: — The personal data are not any longer needed for the aim for which they were collected;
— You withdraw your consent (where the processing was based on consent);
— You object to the processing and no overriding legitimate grounds are justifying us processing the personal data;
— The personal data have been unlawfully processed; or
— To comply with a legal obligation. However, this right does not apply where, for example, the processing is necessary:
— To comply with a legal obligation; or
— For the establishment, exercise or defence of legal claims.
RIGHT TO RESTRICTION OF PROCESSING
If the accuracy of the personal data is contested, you consider the processing is unlawful but you do not want it erased, we no longer need the personal data but you require it for the establishment, exercise or defense of legal claims or you have objected to the processing and verification, you can exercise your right to the restriction of processing.
RIGHT TO DATA PORTABILITY
Where you have provided personal data to us, you have the right to receive such personal data back in an exceedingly structured, commonly used and machine readable format, and to have those data transmitted to a third-party Data Controller without hindrance but in each case only where:
— The processing is administrated by automated means; and
— The processing is predicated on your consent or the performance of a contract with you.
RIGHT TO WITHDRAW THE CONSENT
If you have got provided your consent to the collection, processing and transfer of your personal data, you have got the right to fully or partly withdraw your consent. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) to which you originally consented unless there is another legal ground for the processing.
RIGHT TO LODGE A COMPLAINT
If you have any concerns or requests in relation to your personal data, please contact us at info@cloudmaven.com and we will respond as soon as possible but not later than within 30 days.
Changes to Privacy Policy
Changes to privacy policy
We reserve the right to alter Privacy Policy from time to time at our sole discretion. If we make any changes, we will publish the new rules on this web page and, if we have your e-mail, we will notify you directly. Where you have previously consented to our Privacy Policy, your continued use of the Website after we make changes is deemed to be acceptance of the updated rules.
If you have any questions concerning the Terms and Conditions, please contact Cloudmaven's Customer Service by visiting the Contact section of our website or use the chatbox available on the bottom right of the page.
Thank you for reading our Terms.
© Cloudmaven ERP.
bottom of page