Data Controller
The website https://cloud-ident.net and all associated services are operated by:
| Agency | Cloud Ident |
| Website | https://cloud-ident.net |
| General Email | [email protected] |
| Privacy Email | [email protected] |
This Policy applies to your use of the cloud-ident.net website and all services provided by Cloud Ident, including our digital marketing services, client portal, and email communications. It does not apply to third-party websites or platforms that may be linked from our site.
By using our website or engaging our services, you confirm your acceptance of this Privacy Policy. If you do not agree to the processing of your data as described herein, please do not use the website or submit any personal information.
This Policy should be read together with our Cookie Policy and Terms of Service.
Applicable Law
Cloud Ident processes personal data in accordance with:
- Regulation (EU) 2016/679 — General Data Protection Regulation ("GDPR")
- ePrivacy Directive 2002/58/EC as amended
- Applicable national data protection laws of the jurisdiction in which we operate
We may update this Policy from time to time. Your continued use of the website or services after changes take effect constitutes acceptance of the revised Policy. The latest version will always be available at cloud-ident.net/privacy-policy.php.
Categories of Personal Data We Collect
We collect only the information necessary to provide our services and operate our website. By using the website or engaging our services, you consent to the collection and processing of your information as described in this Policy.
3.1 Data you provide directly
When you submit a contact form, free audit request, or service enquiry, we may collect:
- Full name
- Email address
- Company name and website URL
- Service requirements and budget range
- Any other information you voluntarily include in your message
- Records of consent (e.g. checkbox selections)
When you become a client, we additionally collect billing information, project briefs, and access credentials to third-party platforms (e.g. Google Analytics, Google Ads, Meta Business Manager) solely for the purpose of delivering the agreed services.
3.2 Data collected through email communications
When you interact with our marketing or service emails, we may collect:
- Email open events
- Link click interactions
- IP address
- Device type and browser type
- Approximate geographic region
- Date and time of interaction
3.3 Technical data collected automatically
When you visit our website, we may automatically collect certain technical information, including:
- IP address and approximate location
- Browser type, version, and language settings
- Operating system
- Pages visited, time on site, and navigation path
- Referring website or source
- Session duration and frequency of visits
This data is collected via cookies and similar tracking technologies. For full details, please refer to our Cookie Policy.
3.4 Client platform access data
When you grant Cloud Ident access to your advertising or analytics accounts as part of a service engagement, we process data from those platforms strictly for the purposes of campaign management, reporting, and optimisation. We do not store this data beyond what is necessary for service delivery and reporting.
3.5 Processing personal data of children
Our services are intended for businesses and adults aged 18 and over. Cloud Ident does not knowingly collect personal data from individuals under the age of 16. If you believe a child has submitted personal data to us, please contact [email protected] and we will delete it promptly.
Purposes of Processing
Cloud Ident uses your personal data only for the following purposes:
- Responding to enquiries, free audit requests, and service proposals
- Delivering contracted digital marketing services (SEO, PPC, SMM, content, link building, analytics)
- Sending service-related communications, project updates, and reports
- Sending marketing emails and newsletter content where you have opted in
- Measuring email campaign performance and improving deliverability
- Generating analytics and performance reports for client campaigns
- Operating, maintaining, and improving our website
- Preventing fraud and ensuring the security of our systems
- Complying with legal and regulatory obligations
- Internal business administration and record-keeping
We will not process your personal data for purposes incompatible with those described above without obtaining your additional consent.
Legal Basis for Processing
We process personal data fairly, transparently, and only with a valid legal basis under Article 6 GDPR:
| Processing Activity | Legal Basis |
|---|---|
| Sending marketing emails and newsletters | Article 6(1)(a) — Consent |
| Email open and click tracking | Article 6(1)(a) — Consent |
| Responding to enquiries and audit requests | Article 6(1)(b) — Pre-contractual steps |
| Delivering contracted services | Article 6(1)(b) — Performance of a contract |
| Client reporting and campaign analytics | Article 6(1)(b) — Performance of a contract |
| Website security and fraud prevention | Article 6(1)(f) — Legitimate Interest |
| Website analytics (aggregated) | Article 6(1)(f) — Legitimate Interest |
| Legal and regulatory compliance | Article 6(1)(c) — Legal obligation |
Where we rely on consent, you may withdraw it at any time by unsubscribing via the link in any email we send, or by contacting [email protected]. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal.
Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law:
| Data Type | Retention Period |
|---|---|
| Marketing contact data (email, name) | Until consent is withdrawn or unsubscribe is actioned |
| Email tracking identifiers | Up to 13 months |
| Consent records | Up to 6 years (legal compliance) |
| Unsubscribe suppression records | Indefinitely (to honour opt-out) |
| Client project and correspondence data | Up to 5 years from end of engagement |
| Billing and invoice records | Up to 7 years (legal / tax obligation) |
| Website analytics data (aggregated) | Up to 26 months |
Personal data that is no longer required will be securely deleted or anonymised. Inaccurate or incomplete data will be corrected or erased as soon as reasonably practicable.
Recipients of Personal Data
Cloud Ident does not sell your personal data. We may share your data with the following categories of recipients only where necessary:
7.1 Service Providers
Third-party service providers who assist us in operating our website and delivering services, including:
- Email delivery and marketing automation providers
- Web hosting and cloud infrastructure providers
- Analytics platforms (e.g. Google Analytics — aggregated/anonymised data)
- Advertising platforms (e.g. Google Ads, Meta — only your campaign data, not personal contact data)
- Project management and CRM tools
- Specialist contractors or freelancers engaged under confidentiality obligations
All third-party processors operate under data processing agreements and are required to maintain an adequate level of data protection.
7.2 Legal Obligations
We may disclose personal data if required to do so by law, court order, or legal process, or to protect the rights, property, or safety of Cloud Ident, our clients, or the public.
We do not sell your personal data. We do not share your personal contact data with third parties for their own direct marketing purposes without your explicit consent.
International Data Transfers
Personal data may be processed or stored in countries outside the European Economic Area (EEA). Cloud Ident will not transfer personal data of EEA residents outside the EEA without ensuring that your rights and freedoms as a data subject are adequately protected.
Where such transfers occur, they are carried out on the basis of one of the following:
- The EU–US Data Privacy Framework; or
- Standard Contractual Clauses (SCCs) approved by the European Commission; or
- An adequacy decision by the European Commission in respect of the destination country.
You may request information about the specific transfer mechanisms in place for any given processing activity by contacting [email protected].
Data Security
Cloud Ident applies appropriate technical and organisational measures to protect your personal data from unauthorised access, accidental loss, disclosure, alteration, or destruction. These measures include:
- Encryption of data in transit via TLS/HTTPS
- Access controls and role-based permissions for internal systems
- Secure credential management and two-factor authentication for client account access
- Regular security reviews and software updates
- Staff awareness of data protection obligations
- Confidentiality obligations for all contractors with data access
While we implement all reasonable security measures, no method of transmission over the Internet is 100% secure. You disclose personal information to us at your own risk, and we encourage you to take appropriate precautions when sharing sensitive business data.
For security enquiries, please contact [email protected].
Children's Data
Our website and services are intended for businesses and adults aged 18 and over. Cloud Ident does not knowingly collect personal data from individuals under the age of 16. If you have reason to believe that a child has provided personal data to us, please contact us immediately at [email protected] and we will take steps to delete such data without delay.
Your Rights
Under the GDPR and applicable national law, you have the following rights in relation to your personal data:
- Right of access — to obtain a copy of the personal data we hold about you, within one month of request.
- Right to rectification — to have inaccurate or incomplete personal data corrected.
- Right to erasure ("right to be forgotten") — to request deletion of your personal data where there is no longer a lawful basis for processing.
- Right to restriction of processing — to limit how we use your data in certain circumstances.
- Right to object — to object to processing based on legitimate interests, or to direct marketing at any time.
- Right to data portability — to receive your data in a structured, commonly used, machine-readable format.
- Right not to be subject to automated decision-making — including profiling with significant legal or similar effects.
- Right to withdraw consent — at any time, without affecting the lawfulness of processing carried out before withdrawal.
- Right to lodge a complaint — with your national data protection supervisory authority.
To exercise any of these rights, please send a request to [email protected]. We will respond within one month of receipt. We may request identity verification before processing your request.
If you are located in the EU and believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority, or with the authority of the EU member state where you reside or work.
Third-Party Links
Our website may contain links to third-party websites, tools, or platforms — including advertising networks, analytics providers, and partner sites. Cloud Ident is not responsible for the privacy practices, content, or data handling of such third parties.
Each third party is solely responsible for complying with applicable data protection laws. We encourage you to review the privacy policies of any third-party websites before providing personal information to them.
Links to third-party websites do not constitute an endorsement or recommendation of those sites by Cloud Ident.
Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will notify active contacts by email at least 14 days before the changes take effect.
The latest version of this Policy, including the effective date, will always be available at https://cloud-ident.net/privacy-policy.php.
Your continued use of the website or services after any changes constitutes acceptance of the updated Policy.