StorageOS understands that your privacy is important to you and that you care about how your information is used and shared online. We respect and value the privacy of everyone who visits Our Site and will only collect and use information in ways that are useful to you and in a manner consistent with your rights and our obligations under the law.
When we refer to ‘we’ (or ‘our’ or ‘us’), that means StorageOS Inc. and all its wholly owned subsidiaries, or collectively as our ‘Group’).
For European Union data protection purposes we are registered as a Data Controller with the Information Commissioner under reference number ZA187011.
This policy does not extend to any websites that are linked to from Our Site (whether We provide those links or whether they are shared by other users). We have no control over how your data is collected, stored or used by other websites and We advise you to check the privacy policies of any such websites before providing any data to them.
We collect personal data of our clients, suppliers, business contacts, shareholders and website users. Except for certain information that is required by law, your decision to provide any personal data to us is voluntary. You will therefore not be subject to adverse consequences if you do not wish to provide us with your personal data.
However, please note that if you do not provide certain information, we may not be able to accomplish some or all of the purposes outlined in this privacy statement, and you may not be able to use certain tools and systems which require the use of such personal data.
If you provide us with personal data of another person (for instance, a potential employee/referral), you are responsible for ensuring that such person is made aware of the information contained in this privacy statement and that the person has given you his/her consent for sharing the information with us.
When you visit our websites, meet us or use our services, we collect personal data. Where we collect personal data, we’ll only process it:
The ways we collect it can be broadly categorized into the following:
When you visit or use some parts of Our Site or services, or meet us, we might ask you to provide personal data to us. For example, we ask for your contact information when you enroll for an Account, respond to a job application or an email offer, join us on social media, take part in training and events, contact us with questions or request support. If you don’t want to provide us with personal data, you don’t have to, but it might mean you can’t use some parts of Our Site or services.
We collect some information about you automatically when you visit Our Site or use our services, such as your IP address and device type. We also collect information when you navigate through Our Site, including what pages you have visited. This information helps our understanding of how you’re using Our Site and services so that we can continue to provide the best experience possible.
The majority of information we collect, we collect directly from you. Occasionally we might collect personal data about you from other sources, such as publicly available materials including from third-party data aggregators, publishers or trusted third parties like our support, marketing, research, or events partners. We use this information to supplement the personal data we already hold about you.
Depending upon your communication with us and your use of Our Site and services, We may collect some or all of the following data:
Please note that our products provide functionality to enable you to store data on your own managed environment. At no time do we have access to that data. It is only in relation to the personal data referred to above that we hold and to which this policy applies.
Any financial information such as debit and credit card details are collected by a third party provider who has in place industry standard encryption and protection provisions.
We use your data to provide the best possible products and services to you. This includes: You always have the right to stop receiving (aka “opt-out”) of various communications from Us at any time, by:
Note: It may not be possible to completely stop all communications in order for us to continue to manage your Account and any of our obligations to you.
Legitimate Interests: This means the interest of ours as a business in conducting and managing StorageOS to enable us to provide to you StorageOS services and offer the most secure experience. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests. We do not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
Fulfilling Contracts: This means processing your data where it is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract.
Our Legal Obligations: This means processing your personal data where it is necessary for compliance with a legal or regulatory obligation that we are subject to.
We utilize publicly accessible social media, message boards, blogs, and community forums (e.g. Slack, LinkedIn, Twitter, Facebook, Instagram, MeetUp). Your enrolment and use of these and similar services is always optional and at your own discretion. Please keep in mind that if you directly disclose any information through these public message boards, blogs, or forums, this information could be collected and used by others. Lastly, we may not have the ability to delete publicly accessible posts and data made by yourself should you request this of Us.
We may transfer personal data to with other companies in Our Group, our service providers, professional advisors, public and governmental authorities or third parties in connection with a (potential) corporate or commercial transaction. Such third parties may be located in other countries. Before we do so, we shall take the necessary steps to ensure that your personal data will be given adequate protection as required by relevant data privacy laws and Our internal policies.
Unless you are otherwise notified, any transfers of your personal data from within the European Economic Area (EEA) to third parties outside the EEA will be based on an adequacy decision or are governed by the standard contractual clauses. Any other non-EEA related transfers of your personal data will take place in accordance with the appropriate international data transfer mechanisms and standards.
We may share your data with other companies in Our Group, including Our subsidiaries.
We may sometimes contract with third parties to supply services to you on Our behalf. These may include payment processing, help desk & support, delivery of goods, search engine facilities, advertising and marketing. In some cases, the third parties may require access to some or all of your data. Where any of your data is required for such a purpose, We will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, Our obligations, and the obligations of the third party under the law.
We may compile statistics about the use of Our Site including data on traffic, usage patterns, user numbers, sales and other information. All such data will be anonymized and will not include any personally identifying information. We may from time to time share such data with third parties such as prospective investors, affiliates, partners and advertisers. Data will only be shared and used within the bounds of the law.
In certain circumstances We may be legally required to share certain data held by Us, which may include your personal information, for example, where We are involved in legal proceedings, where We are complying with the requirements of legislation, a court order, or a governmental authority. We do not require any further consent from you in order to share your data in such circumstances and will comply as required with any legally binding request that is made of Us.
We will retain your personal data only for as long as is necessary. We maintain specific records management and retention policies and procedures, so that personal data are deleted after a reasonable time according to the following retention criteria:
Data security is of great importance to Us, and to protect your data We have put in place suitable physical, electronic and managerial procedures to safeguard and secure data collected through Our Site.
Notwithstanding the security measures that We take, it is important to remember that the transmission of data via the internet may not be completely secure and that you are advised to take suitable precautions when transmitting to Us data via the internet.
Upon request We will provide you with information about whether we hold any of your Personal Information. If you provide us with your Personal Information, you have the following rights with respect to that information:
You may also wish to sign up to one or more of the preference services operating in the UK: The Telephone Preference Service (“the TPS”), the Corporate Telephone Preference Service (“the CTPS”), and the Mailing Preference Service (“the MPS”). These may help to prevent you receiving unsolicited marketing. Please note, however, that these services will not prevent you from receiving marketing communications that you have consented to receiving.
To exercise any of these rights, please contact us at firstname.lastname@example.org or by mail to 2 Minton Place, Victoria Road, Bicester, Oxfordshire, OX26 6QB. We will respond to your request to change, correct, or delete your information within a reasonable timeframe (e.g. within 1 month) and notify you of the action we have taken.