Effective as of October 1, 2010
CloudPassage Inc. ("CloudPassage" or the "Company") is committed to protecting the privacy of your information. This Privacy Statement describes CloudPassage's Web site privacy practices.
1. Web Sites Covered
This Privacy Statement covers the information practices of Web sites that link to this Privacy Statement: http://www.cloudpassage.com, http://questions.cloudpassage.com, and http://blog.cloudpassage.com (collectively referred to as "CloudPassage's Web sites" or "the Company's Web sites").
CloudPassage's Web sites may contain links to other Web sites. CloudPassage is not responsible for the information practices or the content of such other Web sites. The Company encourages you to review the privacy statements of other Web sites to understand their information practices.
2. Information Collected
CloudPassage offers a variety of applications and services that are collectively referred to as the "Services." CloudPassage collects information from individuals who visit the Company's Web sites ("Visitors") and individuals who register to use the Services ("Customers").
When expressing an interest in obtaining additional information about the Services or registering to use the Services, CloudPassage requires you to provide the Company with personal contact information, such as name, company name, address, phone number, and email address ("Required Contact Information"). When purchasing the Services, CloudPassage requires you to provide the Company with financial qualification and billing information, such as billing name and address, credit card number, and the number of servers within the organization that will be using the Services ("Billing Information"). CloudPassage may also ask you to provide additional information, such as company annual revenues, number of employees, or industry ("Optional Information"). Required Contact Information, Billing Information, and Optional Information are referred to collectively as "Data About CloudPassage Customers."
As you navigate the Company's Web sites, CloudPassage may also collect information through the use of commonly-used information-gathering tools, such as cookies and Web beacons ("Web Site Navigational Information"). Web Site Navigational Information includes standard information from your Web browser (such as browser type and browser language), your Internet Protocol ("IP") address, and the actions you take on the Company's Web sites (such as the Web pages viewed and the links clicked).
3. Use of Information Collected
The Company uses Data About CloudPassage Customers to perform the services requested. For example, if you fill out a "Contact Me" Web form, the Company will use the information provided to contact you about your interest in the Services.
The Company may also use Data About CloudPassage Customers for marketing purposes. For example, the Company may use information you provide to contact you to further discuss your interest in the Services and to send you information regarding the Company and its partners, such as information about promotions or events.
CloudPassage uses credit card information solely to check the financial qualifications of prospective Customers and to collect payment for the Services.
CloudPassage uses Web Site Navigational Information to operate and improve the Company's Web sites. The Company may also use Web Site Navigational Information alone or in combination with Data About CloudPassage Customers to provide personalized information about the Company.
4. Web Site Navigational Information
CloudPassage uses commonly-used information-gathering tools, such as cookies and Web beacons, to collect information as you navigate the Company's Web sites ("Web Site Navigational Information"). This section describes the types of Web Site Navigational Information that may be collected on the Company's Web sites and how this information may be used.
If you have chosen to identify yourself to CloudPassage, the Company uses session cookies containing encrypted information to allow the Company to uniquely identify you. Each time you log into the Services, a session cookie containing an encrypted, unique identifier that is tied to your account is placed your browser. These session cookies allow the Company to uniquely identify you when you are logged into the Services and to process your online transactions and requests. Session cookies are required to use the Services.
CloudPassage uses persistent cookies that only the Company can read and use to identify browsers that have previously visited the Company's Web sites. When you purchase the Services or provide the Company with personal information, a unique identifier is assigned you. This unique identifier is associated with a persistent cookie that the Company places on your Web browser. The Company is especially careful about the security and confidentiality of the information stored in persistent cookies. For example, the Company does not store account numbers or passwords in persistent cookies. If you disable your Web browser's ability to accept cookies, you will be able to navigate the Company's Web sites, but you will not be able to successfully use the Services.
CloudPassage may use information from session and persistent cookies in combination with Data About CloudPassage Customers to provide you with information about the Company and the Services.
CloudPassage uses Web beacons alone or in conjunction with cookies to compile information about Customers and Visitors' usage of the Company's Web sites and interaction with emails from the Company. Web beacons are clear electronic images that can recognize certain types of information on your computer, such as cookies, when you viewed a particular Web site tied to the Web beacon, and a description of a Web site tied to the Web beacon. For example, CloudPassage may place Web beacons in marketing emails that notify the Company when you click on a link in the email that directs you to one of the Company's Web sites. CloudPassage uses Web beacons to operate and improve the Company's Web sites and email communications.
CloudPassage may use information from Web beacons in combination with Data About CloudPassage Customers to provide you with information about the Company and the Services.
When you visit CloudPassage's Web sites, the Company collects your Internet Protocol ("IP") addresses to track and aggregate non-personal information. For example, CloudPassage uses IP addresses to monitor the regions from which Customers and Visitors navigate the Company's Web sites.
CloudPassage also collects IP addresses from Customers whey they log into the Services as part of the Company's "Identity Confirmation" and "IP Range Restrictions" security features.
Third Party Cookies
From time-to-time, CloudPassage engages third parties to track and analyze usage and volume statistical information from individuals who visit the Company's Web sites. CloudPassage may also use other third-party cookies to track the performance of Company advertisements. The information provided to third parties does not include personal information, but this information may be re-associated with personal information after the Company receives it.
5. Public Forums, Community Sites, Refer a Friend, and Customer Testimonials
CloudPassage may provide bulletin boards, blogs, or chat rooms on the Company's Web sites. Any personal information you choose to submit in such a forum may be read, collected, or used by others who visit these forums, and may be used to send you unsolicited messages. CloudPassage is not responsible for the personal information you choose to submit in these forums.
Customers and Visitors may elect to use the Company's referral program to inform friends about the Company's Web sites. When using the referral program, the Company requests the friend's name and email address. CloudPassage will automatically send the friend a one-time email inviting him or her to visit the Company's Web sites. CloudPassage does not store this information.
CloudPassage posts a list of Customers and testimonials on the Company's Web sites that contain information such as Customer names and titles. CloudPassage obtains the consent of each Customer prior to posting any information on such a list or posting testimonials.
6. Sharing of Information Collected
CloudPassage may share Data About CloudPassage Customers with the Company's service providers so that these service providers can contact Customers and Visitors who have provided contact information on our behalf. CloudPassage may also share Data About CloudPassage Customers with the Company's service providers to ensure the quality of information provided. Unless described in this privacy statement, CloudPassage does not share, sell, rent, or trade any information provided with third parties for their promotional purposes.
From time to time, CloudPassage may partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly-offered product or service from CloudPassage, the Company may share Data About CloudPassage Customers collected in connection with your purchase or expression of interest with our joint promotion partner(s). CloudPassage does not control our business partners' use of the Data About CloudPassage Customers we collect, and their use of the information will be in accordance with their own privacy policies. If you do not wish for your information to be shared in this manner, you may opt not to purchase or specifically express interest in a jointly offered product or service.
CloudPassage uses a third-party service provider to manage credit card processing. This service provider is not permitted to store, retain, or use Billing Information except for the sole purpose of credit card processing on the Company's behalf.
CloudPassage reserves the right to use or disclose information provided if required by law or if the Company reasonably believes that use or disclosure is necessary to protect the Company's rights and/or to comply with a judicial proceeding, court order, or legal process.
7. International Transfer of Information Collected
To facilitate CloudPassage's global operations, the Company may transfer and access Data About CloudPassage Customers from around the world, including the United States. This Privacy Statement shall apply even if CloudPassage transfers Data About CloudPassage Customers to other countries.
8. Communications Preferences
CloudPassage offers Customers and Visitors who provide contact information a means to choose how the Company uses the information provided. You may manage your receipt of marketing and non-transactional communications by clicking on the "unsubscribe" link located on the bottom of the Company's marketing emails.
Additionally, you may send a request specifying your communications preferences to firstname.lastname@example.org. Customers cannot opt out of receiving transactional emails related to their account with CloudPassage or the Services.
9. Customer Data
CloudPassage Customers may electronically submit data or information to the Services for hosting and processing purposes ("Customer Data"). CloudPassage will not review, share, distribute, or reference any such Customer Data except as provided in the CloudPassage Master Subscription Agreement, or as may be required by law. In accordance with the CloudPassage Master Subscription Agreement, CloudPassage may access Customer Data only for the purpose of providing the Services, preventing or addressing service or technical problems, at a Customer's request in connection with customer support matters, or as may be required by law.
CloudPassage uses robust security measures to protect Customer Data from unauthorized access, maintain data accuracy, and help ensure the appropriate use of Customer Data. When the Services are accessed using Internet Explorer version 6.0 or later, Firefox version 2.0 or later, or Safari version 3.0 or later, Secure Socket Layer (SSL) technology protects Customer Data using both server authentication and data encryption. These technologies help ensure that Customer Data is safe, secure, and only available to the Customer to whom the information belongs and those to whom the Customer has granted access. CloudPassage also implements advanced security methods and hosts its Web sites in secure server environments that use firewalls, intrusion detection systems, and other advanced technology to prevent interference or access from outside intruders. Customers are responsible for maintaining the security and confidentiality of their CloudPassage usernames, passwords and API keys.
Because the Company uses the Services to maintain Data About CloudPassage Customers, this information is secured in the same manner as described above for Customer Data.
11. Changes to this Privacy Statement
CloudPassage reserves the right to change this Privacy Statement. CloudPassage will provide notification of the material changes to this Privacy Statement through the Company's Web sites at least thirty (30) business days prior to the change taking effect.
12. Contacting Us
Questions regarding this Privacy Statement or the information practices of the Company's Web sites should be directed to CloudPassage Privacy by mailing:
ATTN: Privacy Office,
153 Townsend Street, Suite 650
San Francisco, CA 94107