Cookies, Privacy & GDPR

Plainly & briefly: We collect data trough analytics software such as Google Analytics. We do this in order to improve the user experience on our website (and our clients websites). The data collected is anonymous and we CANNOT identify you with it. You can always remove cookies that are stored in your computer and browser.


This page describes how we use cookies on cloudrepublic.com and how we handle personal information. When you visit cloudrepublic.com you agree to this.

A cookie is a digital footprint that is saved in your browser. Cookies are used on virtually all websites today. All websites within the EU that use cookies are required to inform visitors of this. A cookie is not a software and does not contain any viruses.

You can always remove cookies that are stored in your computer.

Cookies make it possible for Cloud Republic to record statistics on how users interact with the site. We use these statistics to make the site more user friendly, showcase relevant products and to optimize our ads through Google and other third-party services. With the help of cookies, Cloud Republic can give the user a better experience and display the information most relevant to you.

You can see what cookies and third-party services Cloud Republic and our collaborators use below.

Google Analytics

What is Google Analytics?

Google Analytics is a web analytics service that tracks and reports website traffic.

What it collects:

  • Page information such as the URL the user is visiting and the page title.
  • Browser information such as the browser name, size of the browser window, screen resolution, if Java is enabled or not and what Flash version the user has.
  • User information. Location (based on IP adress) and language (derived from the browser settings).

Why we collect it:

  • Better understand how our customers interact with our services.
  • Provide an improved user experience.
  • Integration with other tools from Google.

Security measures on provider’s end:

  • Many of Googles services are encrypted using SSL.
  • Offering of two step verification when you access your Google Account, and a Safe Browsing feature in Google Chrome.
  • Information collection, storage and processing practices, including physical security measures, are reviewed to guard against unauthorized access to systems.
  • Access to personal information is restricted to Google employees, contractors and agents who need to know that information in order to process it, and are subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.

Where the data is stored:

  • Google owns and operates data centers in multiple locations around the world. Read more about the data centers and their locations here.

Data Processing Agreement (DPA):

  • Cloud Republic has taken necessary steps towards entering into agreement with Google’s Data Processing Amendment. Details on the process can be found here.

GDPR compliance:

  • Google is taking necessary steps towards becoming compliant under the EU’s General Data Protection Regulation (GDPR). Read more about Google’s compliance efforts here.

You can read about Google’s policies in full here.

Hotjar

What is Hotjar?

Hotjar is a powerful tool that reveals the online behavior and voice of our users. By combining both A) Analysis and B) Feedback tools, Hotjar gives us the ‘big picture’ of how to improve our site’s user experience and performance/conversion rates.

The Analysis tools allow us to measure and observe user behavior, see what users do, while the Feedback tools allow us to hear what our users have to say, the Voice of User.

What it collects:

  • IP-address
  • Screen resolution
  • Device type (desktop/tablet/mobile)
  • Geographical location
  • Language settings
  • Mouse and keyboard events
  • Referring URL domain
  • Pages visited
  • Date and time when the pages are visited

Why we collect it:

  • It enables us to make data driven decisions
  • Improve the user experience
  • To validate potential issues
  • To understand user behavior

Security measures on provider’s end:

Hotjar has taken necessary steps towards ensuring data security and privacy in the following areas:

  • Data storage
  • Visitor privacy
  • Data collection and transmission
  • Data access and authentication
  • Data access and backup
  • Compliance, certifications and audit reports

Hotjar’s documentation on the matter can be read in full here.

Where the data is stored:

  • Hotjar uses Amazon Web Services (AWS) as their hosting provider. Specifically the “eu-west 1 datacenter” which is located in Ireland, Europe. Exact locations of AWS data centers can be found here: AWS Global Infrastructure

Data Processing Agreement (DPA):

  • Cloud Republic has taken necessary steps towards entering into agreement with Hotjar’s Data Processing Agreement. The contract can be found here.

GDPR compliance:

  • Hotjar is taking necessary steps towards becoming compliant under the EU’s General Data Protection Regulation (GDPR). Read more about Hotjar’s compliance efforts here.

You can read about Hotjar’s privacy policies in full here.

Salesforce

What is Salesforce?

Salesforce is a CRM software. It allows us to have a centralized management of our client contact details and other important information that is required for us to efficiently serve our clients and prospects.

What it collects:

  • Email address
  • Form submission (the information you enter into forms that you submit)

Why we collect it:

  • To meet and exceed our lead generation goals
  • Ability to align with and empower our sales team
  • To centralize our marketing and sales tools

Security measures on provider’s end:

  • Strong password – Passwords must be at least eight characters long and consist of a combination of uppercase and lowercase letters, numbers, and special characters.
  • Password expiration – You can set passwords to expire every 90 days.
  • IP location based login protection – You can require users to activate their location by clicking an activation link an a system-generated email from Pardot.
  • IP whitelisting – Only users who have whitelisted IP addresses can access the account.
  • Single sign-on (SSO) with Salesforce-SSO with your CRM helps you manage user access. You can also use additional controls that Salesforce provides for SSO, like SAML integration.

For more information, see Salesfoce Trust and Compliance documentation.

Where the data is stored:

  • Salesfoce uses Amazon Web Services (AWS) as their hosting provider. Exact locations of AWS data centers can be found here: AWS Global Infrastructure

More information on the infrastructure for Salesforce can be found here:

Infrastructure and Sub-processors for the Pardot Services

Data Processing Agreement (DPA):

  • Cloud Republic has taken necessary steps towards entering into agreement with Salesforce Data Processing Addendum. The contract can be found here.

GDPR compliance:

  • Salesforce is taking necessary steps towards becoming compliant under the EU’s General Data Protection Regulation (GDPR). Read more about Salesforce’s compliance efforts here.

You can read about Salesforce’s privacy policies in full here.

Optinmonster

What is Optinmonster?

OptinMonster is an online lead generation software It is a standalone application that integrates with our web platforms. The software is used to convert website visitors into subscribers and customers.

What it collects:

  • Standard account credentials (what you willingly submit)
  • Cookies
  • Aggregated statistics (behavior of users on the site)

Why we collect it:

  • To improve user retention with “exit-intent”
  • For clear results in A/B testing
  • To generate actionable insights

Security measures on provider’s end:

Optinmonster has taken an array of measures to ensure safety in using their service:

  • Many services are encrypted using SSL
  • Review of information collection, storage, and processing procedures, including physical security measures, to guard against unauthorized access to systems.
  • Access to personal information is restricted to Retyp employees, contractors, and agents who need to know that information in order to process it, and who are subject to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.

Where the data is stored:

The location in which data is stored is not mention in Optinmonster’s Privacy Policy or Terms of Service. However, this excerpt from their Privacy Policy may be of interest:

“Retyp discloses potentially personally-identifying and personally-identifying information
only to those of its employees, contractors and affiliated organizations that (i) need to know
that information in order to process it on Retyp’s behalf or to provide services available at Retyp’s websites, and (ii) that have agreed not to disclose it to others. Some of those employees, contractors and affiliated organizations may be located outside of your home country; by using Retyp’s websites, you consent to the transfer of such information to them.”

Data Processing Agreement (DPA):

Optinmonster’s Terms of Service constitute the entire agreement for usage of their services:

“YOU ACCEPT AND AGREE TO THIS AGREEMENT AND CONSENT TO RETYP’S PRIVACY POLICY LOCATED AT https://optinmonster.com/privacy/ (THE “PRIVACY POLICY”), BY DOING ANY ONE OF THE FOLLOWING ITEMS: (1) VISITING THIS SITE; (2) MAKING A PURCHASE OR SUBMITTING CONTENT THROUGH THE SITE; (3) COMPLETING THE ONLINE APPLICATION PROCESS BY CLICKING
A BOX INDICATING YOUR ACCEPTANCE; OR (4) BY EXECUTING A SUBSCRIPTION THAT REFERENCES THIS AGREEMENT.”

Optinmonster’s Terms of Service can be found here.

GDPR compliance:

Optinmonster is taking necessary steps towards becoming compliant under the EU’s General Data Protection Regulation (GDPR).

You can read about Optinmonster’s privacy policies in full here.

 

Internal cookies
We use cookies to control an array of functions on cloudrepublic.com. Amongst other things, cookies are used to register whether a pop-up has been closed previously so they aren’t shown to visitors who have chosen not to see them. If you decide to delete cookies you may receive pop-ups again on your next visit.

We don’t store payment information through cookies or by any other means.

General information on handling of personal data

We never collect any personal data without your consent, through registration, a purchase, by participating in a survey or similar. We collect information such as name, address, zipcode, e-mail, gender, age, interests or knowledge on certain subjects. If you want to know what information is stored about you at Cloud Republic, get in touch with us at info@cloudrepublic.com. The same applies if the information is incorrect or if you want your information deleted. You always have the right to know what information is stored on you according to the GDPR.

According to the GDPR, your information shall be handled responsibly. We store personal information on a computer with limited access in a locked space. We cannot guarentee 100% safety when data is being transferred online. There is a risk for unauthorized access when data is transferred electronically. Personal data is therefore submitted at your own risk.

Changes in our handling may become necessary in which case this page will be updated.

Owner
Cloud Republic AB
556979-1477
Karlavägen 64
114 49, Stockholm
Phone 08 – 611 11 90
info@cloudrepublic.com