Posted: August 1st, 2020
Effective: August 1st, 2020
Thanks for using SHIELD Cloud! Here we describe how we collect, use, and handle your personal data when you use our websites, software, and services (“Services”).
What & Why
We collect and use the following information to provide, improve, protect, and promote our Services.
Account information. We collect, and associate with your account, the information you provide to us when you do things such as sign up for your account, upgrade your plan, and set up two-factor authentication (such as your name, email address, phone number, payment info, and physical address).
Your Snapshot Archives. Our Services are designed as a simple and personalized way for you to store your data, and code (“Your Snapshot Archives”). To make that possible, we store, process, and transmit Your Snapshot Archives as well as information related to it.
Marketing. Users who receive marketing materials can opt out at any time. If you don't want to receive a particular type of marketing material from us, click the “unsubscribe” link in the corresponding emails.
We sometimes contact people who don't have a SHIELD Cloud account. For recipients in the EU, we or a third party will obtain consent before reaching out. If you receive an email and no longer wish to be contacted by SHIELD Cloud, you can unsubscribe and remove yourself from our contact list via the message itself.
Bases for processing your data. We collect and use the personal data described above in order to provide you with the Services in a reliable and secure manner. We also collect and use personal data for our legitimate business needs. To the extent we process your personal data for other purposes, we ask for your consent in advance or require that our partners obtain such consent.
Is the information shared?
We may share information as discussed below, but we won't sell it to advertisers or other third parties.
Others working for and with Stark & Wayne, LLC. SHIELD Cloud uses certain trusted third parties (for example, providers of customer support and IT services) for the business purposes of helping us provide, improve, protect, and promote our Services. These third parties will access your information to perform tasks on our behalf, and we'll remain responsible for their handling of your information per our instructions.
Law & Order and the Public Interest. We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to: (a) comply with any applicable law, regulation, legal process, or appropriate government request; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of SHIELD Cloud or our users; (d) protect SHIELD Cloud's rights, property, safety, or interest; or (e) perform a task carried out in the public interest.
Stewardship of your data is critical to us and a responsibility that we embrace. We'll abide by the following government request principles when receiving, scrutinizing, and responding to government requests (including national security requests) for your data:
- Be transparent
- Fight blanket requests
- Protect all users, and
- Provide trusted services.
Security. We have a team dedicated to keeping your information secure and testing for vulnerabilities. We continue to work on features to keep your information safe in addition to things like encryption of snapshot archives in-flight and at rest. We deploy automated technologies to detect abusive behavior that may harm our Services, you, or other users.
User Controls. You can access, amend, download, and delete your personal information by logging into your SHIELD Cloud account and going to your account settings page.
Retention. When you sign up for an account with us, we'll retain information you store on our Services for as long as your account exists or as long as we need it to provide you the Services. If you delete your account, we'll initiate deletion of this information and snapshot archive data within 30 days of account deletion. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements.
Around the world. To provide you with the Services, we may store, process, and transmit data in the United States and locations around the world—including those outside your country.
EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield. When transferring data from the European Union, the European Economic Area, the United Kingdom, and Switzerland, SHIELD Cloud relies upon a variety of legal mechanisms, including contracts with our customers and affiliates. SHIELD Cloud complies with the EU-U.S. and Swiss–U.S. Privacy Shield Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the European Union, the European Economic Area, the United Kingdom, and Switzerland to the United States.
Your Control and Access of Your Data
You have control over your personal data and how it's collected, used, and shared. For example, you can:
Delete Your Snapshot Archives in your SHIELD Cloud account. You can learn more about how to delete snapshot archives saved on SHIELD Cloud here.
Change or correct personal data. You can manage your account and the content contained in it, as well as edit some of your personal data, through your account settings page
Access and take your data elsewhere. You can access your personal data from your SHIELD Cloud account and you can download a copy of Your Snapshot Archives in a machine readable format.
Object to the processing of your personal data. Depending on the processing activity, you can request that we stop or limit processing of your personal data.
If you would like to submit a data access request, request that your personal data be deleted, or object to the processing of your personal data, please email us at firstname.lastname@example.org.
If we're involved in a reorganization, merger, acquisition, or sale of our assets, your data may be transferred as part of that deal. We'll notify you (for example, via a message to the email address associated with your account) of any such deal and outline your choices in that event.
Have questions or concerns about SHIELD Cloud, our Services, and privacy? Contact our Data Protection Officer at email@example.com.
Frequently Asked Questions
How long does SHIELD Cloud keep my snapshot archives after I delete my account?
When you delete your SHIELD Cloud account, we will initiate deletion of the snapshot archives stored on our Services within 30 days.
What are SHIELD Cloud's lawful bases for processing my data?
SHIELD Cloud processes your data (1) to provide the SHIELD Cloud Services to you pursuant to our contract with you; (2) in furtherance of its legitimate interests in operating our Services and business; and (3) with your consent. In some cases, SHIELD Cloud may process your data to comply with applicable law, legal process, or regulation; protect any person from death or serious bodily injury; or to carry out a task in the public interest.
Examples of SHIELD Cloud processing your data to provide you with the SHIELD Cloud Services include:
- Providing, updating, maintaining, and protecting our Services and business. For example, we host your data system configurations,back them up, and restore them when you ask us to.
- Troubleshooting issues you may encounter with the SHIELD Cloud Services. If you contact us with questions or concerns about the Services, we may use your personal information to respond.
- Billing, account management, and administrative purposes. If you sign up for a trial or purchase a paid SHIELD Cloud plan, we may collect and process payment information, including your name, credit or debit card information, billing address, and details of your transaction history.
- Sending you emails and other communications. We may contact you about important changes to our Services and Service-related notices. These communications are considered part of the SHIELD Cloud Services and you may not opt out of them.
Examples of SHIELD Cloud processing your data in furtherance of its legitimate interests in operating our Services and business include:
- Understanding how you use our Services and improving them.
- Promoting SHIELD Cloud Services that are most relevant to your interests.
- Investigating and preventing security issues and abuse of the SHIELD Cloud Services or SHIELD Cloud users.
Examples of SHIELD Cloud processing your data with your consent include:
- Sending you marketing materials about our Services. If you do not wish to receive these materials, simply click the Unsubscribe link in any email, or update your preferences in your SHIELD Cloud account.
- Connecting your SHIELD Cloud account with other third party services via SHIELD Cloud APIs.
- Collecting feedback from you to improve our Services and develop new features.
How does SHIELD Cloud collect and use my usage information?
We collect information about how you use the Services, including actions you take in your SHIELD Cloud account, to efficiently and reliably provide the SHIELD Cloud Services. We also use such information to improve our Services and develop new features, protect SHIELD Cloud users, and, in some instances, promote the SHIELD Cloud Services. For example, to provide the SHIELD Cloud Service and help you optimize storage or backups, we analyze your usage activity to recommend additional configurations or features that you might find most relevant and important. To improve our Services, we collect information about how you interact with our Services to understand what features are most useful to you and improve them. To protect SHIELD Cloud users, we analyze things like IP addresses, and login history to detect and respond to abusive behavior. To promote SHIELD Cloud Services, we will, in some instances, analyze information about users' activity and level of engagement with our Services—such as how many systems they've connected to their SHIELD Cloud account and how much storage space they've used.
How does SHIELD Cloud use my personal information for machine learning and algorithmic analysis?
SHIELD Cloud collects and processes your personal data using algorithmic analysis or machine learning technologies to provide, improve, protect, and promote the SHIELD Cloud Services:
- Provide SHIELD Cloud Services. We use machine learning technology to make it easier for you to configure, find, protect, and restore data to your data systems. For example, we analyze your account activity and usage history to suggest additional configurations or features that you might find most relevant, predict and auto-correct search queries to help you find what you're looking for, and troubleshoot issues you may be experiencing with the SHIELD Cloud Services.
- Protect SHIELD Cloud Services. We use algorithmic analysis on things like your IP address, login history, and account changes (such as email address and password changes) to detect and respond to abusive behavior and content on our Services.
- Improve SHIELD Cloud Services. SHIELD Cloud uses algorithmic analysis and machine learning to improve the SHIELD Cloud Services and develop new features. For instance, we analyze information about how you interact with the Services to optimize the design of our user interface, and develop new ways to streamline your workflow.
- Promote SHIELD Cloud Services. We will, in some instances, use algorithmic analysis to identify users' activity and level of engagement with our Services by looking at things like how many data systems they've connected to their SHIELD Cloud account, how much storage space they've used, and how many data protection actions they've taken.
What trusted third parties does SHIELD Cloud share my personal information with?
In order to provide, improve, protect, and promote our Services, SHIELD Cloud shares your personal information with trusted third parties, as well as other SHIELD Cloud Companies.
Trusted third parties are companies or individuals that SHIELD Cloud engages to provide, improve, protect, and promote SHIELD Cloud Services. For example, trusted third parties may access your information to provide data storage services, IT services, or customer support services, but will only do so to perform tasks on SHIELD Cloud's behalf. SHIELD Cloud remains responsible for the handling of your information per our instructions. Trusted third parties include:
- Stark & Wayne, LLC
- ActiveCampaign, LLC
- Google LLC
- Zendesk, Inc.
How do I request deletion of, or object to or limit the use of, my personal data?
You can request that we stop, limit our use of, or delete your personal data in certain circumstances—for example, if we have no lawful basis to keep using your data, or if you think your personal data is inaccurate.
If your account information is inaccurate, you can update or delete it at any time by signing in to your account and going to your account page. You can also delete your SHIELD Cloud account at any time (but don't forget that if you do, your data will be gone forever).
If you believe that SHIELD Cloud has no lawful basis for using your personal data, believe there are other inaccuracies in your personal data, or wish to object to the use of your personal data or request deletion of your personal data, please let us know by contacting us at firstname.lastname@example.org and we'll look into it. We will not discriminate against you for exercising any of these rights.
How can I access my personal data?
You can access the snapshot archives and configuration metadata stored in your SHIELD Cloud account at any time.
If you would like to submit a data access request, please write us at email@example.com with the words “Data Access Request” in the subject or body of your message, and we will get back to you promptly.
What categories of personal information are included in the information SHIELD Cloud collects and discloses to trusted third parties?
“Account information” means information about your account. This includes your identifying information, which could be your real name, alias, unique personal identifier, or online identifier, and it could also include other personal information like your postal address, Internet Protocol address, email address, account name, profile picture or other similar identifiers. “Account information” could also include commercial information, such as your purchasing or consuming history or tendencies.
“Your snapshot archives” are what you decide to backup via your SHIELD Cloud account.
“Usage information” includes information relating to your use of the Services. Because SHIELD Cloud provides online services, this may include internet or other electronic network activity information, such as information regarding your interaction with websites, applications, or advertisements.
“Device information” refers to information about the particular devices you use to access the Services, which may include Usage information or device-specific information, such as an online identifier or Internet Protocol address, or geolocation data.
“Cookies and other technologies” refers to technologies like cookies and pixel tags. These technologies can lead to the collection of online identifiers, Internet Protocol address, or other similar identifiers, as well as Usage information.
SHIELD Cloud has collected and disclosed the categories described above to trusted third parties in the preceding 12 months.