Cloudastructure Privacy Policy

 

The following describes Cloudastructure's ("Cloudastructure" or the "Company") privacy policy and the manner in which Cloudastructure handles information that it receives that may constitute either personal or sensitive information concerning individuals. Cloudastructure intent is to comply with all applicable legal and regulatory requirements of those jurisdictions in which it does business, including the Safe Harbor Principles of the European Union Directive on Data Protection. 


 

Collection of Commercial Information 

Cloudastructure collects certain information involuntarily from visitors to its website, including the IP address, time visited, pages viewed and related information. The Company also collects certain information voluntarily when someone sends a direct mail inquiry, an email or online registration, participates in seminars or webinars, or requests Company information at tradeshows. Examples of such information include individual names, telephone numbers, email addresses, Company name, person's title, and other personally identifiable information. Cloudastructure uses such information to monitor the performance, and improve the quality of, its website, respond to requests about the Company and its business, provide information about products and services, fulfill customer requests, marketing and other business purposes and to comply with various legal and/or regulatory requirements. The Company may share this information with business partners to respond to customer needs, or to engage in joint marketing activities. Cloudastructure may also share this information with third-party agents who may be acting on its behalf; e.g., providing notice of an upcoming webinar or tradeshow that may be of interest to the target audience, or during solicitation for business purposes. 


 

Service and IoT Information:

Configuration Information:  You will enter certain information other than Personal Information into Cloudastructure Services related to configuration and management of the Cloudastructure Services; by way of example, such information would include the time periods during which a given door may be opened ("Configuration Information").  

 

Device Information:  As part of the core functionality of the Cloudastructure Services, we will collect certain information from Cloudastructure Service hardware components, such as Cloud Door Controller and CVR’s.  This may include information about your network and the devices on it, as well as any custom add-ons that may be installed by you or your Installer, such as analog sensors ("Door Service Information").

 

Logged Information:  When you access Cloudastructure Door Service, we may automatically record certain information from your system by using different types of tracking technology ("Logged Information").  Logged Information may include Internet Protocol address ("IP Address"), a unique device or user ID, version of software installed, system type, the content and pages that you access on Cloudastructure Services, and the dates and times that you visit Cloudastructure Services. 


 

Video Information:

Recording and Live View: We may record and process video and/or audio recordings, subject to your instruction, configuration and settings. In addition, if you have the recording features enabled, we will capture, process and retain video and/or audio data recordings for the duration of your recording subscription period (for example 30 days) and you will be able to access those recordings using the Services during that time.

 

Facial Recognition and Object Tagging (Tagger): we will process face images and underlying face prints for the purpose of enabling the service to group the faces of those on your premises.  Depending on where you are located you may need to get explicit consent to scan the faces of people visiting. We will also index the video with all objects we can recognize in the video. Face and object data may be kept by us longer than the video retention period to improve the accuracy of the Machine Learning system. 


 

Cookies:

Cookies Information:  When you access Cloudastructure Door Service, we may send one or more cookies - small text files containing a string of alphanumeric characters - to your computer that will store certain information you enter into Cloudastructure Door Service ("Cookies Information").  Cloudastructure may use both session cookies and persistent cookies. A session cookie disappears after you close your browser. A persistent cookie remains after you close your browser and may be used by your browser on subsequent visits to Cloudastructure Door Service.  Persistent cookies can be removed. Please review your web browser "Help" file to learn the proper way to modify your cookie settings. 


 

Collection of Personal and Sensitive Information 

Cloudastructure collects personal information only directly from the individuals affected. Personal information is information that identifies a particular individual, and does not include aggregated, compiled or publicly available data. Personal information that is related to commercial purposes is used as described in the preceding section. Sensitive information is personal information that reveals a particular person's: (i) race; (ii) religion; (iii) ethnicity;(iv) sexual orientation; (v) political or philosophical beliefs; (vi) trade union membership; (vii) or information regarding a person's medical status or condition. Sensitive information is collected solely for employment-related and other internal business matters, as well as to comply with legal and regulatory obligations. 


 

Other Uses of Personal and Sensitive Information 

In addition to the uses described above, Cloudastructure will inform individuals of any other intended uses of their personal or sensitive information at the time such information is collected, or before such use is implemented, including disclosure to third parties that are not agents of Cloudastructure. The individual will have the ability to advise the Company if he/she does not consent to such intended or additional use (i.e., "opt-in"). For other personal or commercial information, the individual has the ability to advise the Company at any time that he/she no longer wishes to allow such intended or additional use (i.e., "opt-out"), again, including disclosure to third parties that are not agents of Cloudastructure. 


 

Data Security 

Cloudastructure will use reasonable methods to secure all personal and sensitive information by a variety of methods, including restricting access to such information only to those people who have a legitimate need to know in order to discharge their job responsibilities on behalf of Cloudastructure, securing access to the facility where the information is stored, and the use of technology and physical controls to secure the information. 


 

Use of Information by Third Parties That are Agents of Cloudastructure 

Cloudastructure will require that all third parties that are acting on behalf of Cloudastructure, and to which personal or sensitive information is provided, give Cloudastructure adequate assurances that they will safeguard all such information in a manner consistent with both this policy and the Safe Harbor Principles. 


 

Ability to Access and Correct Information 

Upon an individual's request, Cloudastructure will provide reasonable access to any personal or sensitive information it has about that person. Cloudastructure will also take reasonable steps to allow such individuals to correct, change, modify or delete any such information that is shown to be incorrect, inaccurate or incomplete. 


 

Resolving Disputes 

Cloudastructure will investigate any complaints about the use and disclosure of personal or sensitive information that are not in accordance with this policy. If Cloudastructure is unable to informally resolve any such matter to the individual's reasonable satisfaction, it will participate in the dispute resolution procedures of the legal or regulatory body having jurisdiction over the matter (e.g., the Federal Trade Commission), including, as appropriate, a panel established by the European Data Protection Authorities, so that disputes are resolved according to the Safe Harbor Principles. 


 

Enforcement and Compliance 

Cloudastructure will conduct regular audits to monitor compliance with this policy and will provide annual certifications to the U.S. Department of Commerce that it has done so. Violations of this policy will subject the violator to disciplinary action, up to and including termination. 


 

Changes 

Cloudastructure may amend or modify this policy from time to time by posting the amended or modified version on its website at www.cloudastructure.com. Amendments and modifications will be made in a manner so as to remain consistent with the Safe Harbor Principles. This policy may also be changed, or limited, to comply with legal or regulatory requirements, or as otherwise allowed or required by law. 


 

Contact Information 

Questions or comments about this policy, or concerns or complaints about possible violations, should be sent to: 

 

Cloudastructure, Inc. 

55 E 3rd Ave

San Mateo, CA 94401

 

Telephone: 650-644-4160

Email: info@cloudastructure.com