2. Collected data when using the website
3. Collected data in connection with a user account
A new user account is created using an existing user account with a service that is intended for use on multiple websites and for registration with multiple services, such as an Amazon or GitHub account (“authentication service”). We always store collected data in encrypted form, using encryption with AES-256 or a similarly secure algorithm. If data has to be made searchable in order to ensure the functionality of the CloudCaptain service, it is also stored as a cryptographically secure hash. The key is never stored in the database. The data can only be encrypted and decrypted by the CloudCaptain service.
3.1. Data collection during initial log-in
3.2. Data collection for the deployment of instances
To deploy bootable apps (machine images), virtual machines or other instances (jointly referred to as “instances”) on a hosting or cloud service provider (“service provider”) that is supported by us, you will need to provide us with the relevant credentials. You can enter these yourself in the administrative section of your CloudCaptain account on the CloudCaptain website. We store and use the data in order to access your account with your service provider and to transfer, execute and manage the instances there.
3.3. Data collection when updating or entering a billing address
When entering your billing address, we store your company name, company address, your EU Reverse Charge VAT ID and the EU Reverse Charge VAT ID validation, if applicable.
3.4. Data collection for a credit card saved as means of payment
If you enter your credit card details as means of payment, we store the last four digits of the credit card number, the owner as stated on the credit card, as well as the month and year that the credit card expires. The complete credit card details are saved in PCI compliant form by the company FastSpring (https://fastspring.com/), who process payment transactions on our behalf.
4. Data collected in connection with CloudCaptain Client and deploying instances
For each case of deploying a new instance with a service provider, the application is first registered with the service provider according to the service provider’s mechanisms. The data provided by the service provider that is required for operating and monitoring the instance is stored by CloudCaptain to enable it to provide the services offered.
CloudCaptain offers an email newsletter. If you subscribe to this newsletter, you agree that CloudCaptain GmbH may send you email advertising for CloudCaptain or other offers from CloudCaptain GmbH to the email address registered in your user account. You can un-subscribe from the email newsletter at any time. You will find details on how to do this in each email newsletter.
You may object to the use of your data at any time with future effect by contacting us using the details below. Please note that CloudCaptain only collects, stores and processes the data that is necessary for operating the service. If you object to the use of your data, use of the service will be restricted or not at all possible.
When the user’s web browser communicates with the CloudCaptain dashboard, an encrypted cookie is sent to determine the identity of the user. This cookie is also stored locally on the user’s computer in encrypted form. Likewise, the browser also automatically sends a user agent header by default. The browser automatically sends this header as soon as a connection has been established. This is not specific to CloudCaptain. This header contains various information which is transmitted to us by your browser, such as the type and version of the operating system or the type and version of the browser. When CloudCaptain Client communicates with the CloudCaptain dashboard, a user agent header is also sent, similar to the web browser. It contains the type and version of the operating system, the type and version of the client, the version of Java Runtime and which Build Tool version was used (for Build Tool Plugin only).
8. Right to information
Under the German Federal Data Protection Act (Bundesdatenschutzgesetz), you have a right to obtain information regarding your stored data free of charge, as well as a right to amend, block or delete this data.
9. Google Analytics
This website uses Google Analytics, a web analysis tool of Google Inc. (“Google”). Google Analytics uses so-called “cookies”, which are text files that are stored on your computer to help analyze how you use the website.
The information gathered by the cookie on how you use this website is usually transferred to a Google server in the USA and stored there. In case IP-anonymization is activated on this website, your IP address will however be truncated by Google in advance within the area of the member states of the European Union or in the other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the complete IP address be transmitted to a Google server in the USA and truncated there. On behalf of the operator of this website, Google uses this information to evaluate your use of the website in order to compile reports on website activity and to provide other services for the operator of the website that relate to use of the website and the internet. The transmitted IP address from your browser as part of the Google Analytics service will not be associated with other Google data.
You can disable the storage of cookies by adjusting your browser software; we would however like to point out that it may be that you cannot use all features of this website to the full extent. You can also disable the tracking of data that is generated by the cookies regarding your use of the website (incl. your IP address) by Google and prevent Google from processing this data by downloading and installing the browser add-on that is available from the following link (http://tools.google.com/dlpage/gaoptout?hl=de).
For any questions regarding the collection, processing or use of your personal data, as well as to request information on, to amend, block or delete data and to withdraw granted consent, please contact: CloudCaptain GmbH, Scwedenstr. 9/Gebäude 1, 13359 Berlin, Germany
This document is available in German and other languages. The other languages have been translated from German. Much attention has been paid to transferring the meaning to the other language as precisely as possible. However, only the German version shall be binding. It shall take precedence in case of doubt or conflict. The German version is available at https://cloudcaptain.sh/privacy_de.