Skip to main content

Privacy Policy

Version 1.0 · Last updated: January 4, 2026

Introduction

Cloud Cerebro Inc. ("Cloud Cerebro," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website at cloudcerebro.com (the "Site") and use our services.

This policy applies to all visitors, users, and others who access our Site or services. By using our Site, you agree to the collection and use of information in accordance with this policy.

Effective Date: January 4, 2026

1. Data Controller

The data controller responsible for your personal data is:

Cloud Cerebro Inc.

Toronto, Ontario, Canada

Email: contact@cloudcerebro.com

2. Information We Collect

2.1 Information You Provide Directly

When you interact with our Site, you may provide us with:

  • Contact Information: Name, email address, phone number, company name, and job title when you fill out our contact form or request a demo.
  • Communication Data: Messages, inquiries, and feedback you send us through our forms or email.
  • Demo Scheduling: Name, email, phone, company, preferred date/time, timezone, and any notes you provide.

2.2 Information Collected Automatically

When you visit our Site, we may automatically collect:

  • Device Information: Browser type, operating system, device type, and screen resolution.
  • Usage Data: Pages visited, time spent on pages, click patterns, and navigation paths (only with your consent).
  • IP Address: Your IP address, which may be anonymized for analytics purposes.

2.3 Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.

3. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

Purpose Legal Basis
Responding to inquiries Legitimate interest / Contract performance
Analytics (with consent) Consent
Essential website functionality Legitimate interest
Legal compliance Legal obligation

4. Your Rights Under PIPEDA (Canada)

Under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), you have the right to:

  • Access your personal information held by us
  • Challenge the accuracy and completeness of your information
  • Withdraw consent to collection, use, or disclosure (subject to legal restrictions)
  • File a complaint with the Office of the Privacy Commissioner of Canada

To exercise these rights, contact us at contact@cloudcerebro.com.

Office of the Privacy Commissioner of Canada

30 Victoria Street, Gatineau, Quebec K1A 1H3

Toll-free: 1-800-282-1376

Website: www.priv.gc.ca

5. How We Use Your Information

We use the information we collect to:

  • Respond to your inquiries and provide customer support
  • Schedule and conduct product demonstrations
  • Improve our website and services through analytics
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and enforce our terms

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

5.1 Service Providers (Subprocessors)

Third-party vendors who assist us in operating our website and providing our AI services. For a complete list, please see our Subprocessors page.

  • AI Model Providers: OpenAI, Anthropic, and AWS Bedrock for AI processing capabilities (United States)
  • Cloud Infrastructure: Customer-selected cloud provider based on deployment requirements
  • Google Analytics (GA4): Website analytics (with your consent)

5.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights and safety.

7. International Data Transfers

Your information may be transferred to and processed in countries outside your country of residence. Our AI model providers (OpenAI, Anthropic, AWS Bedrock) primarily operate infrastructure in the United States.

6.1 Transfer Destinations

Data may be transferred to:

  • United States: AI model providers (OpenAI, Anthropic) and analytics services
  • Customer-Selected Regions: For enterprise deployments, infrastructure can be provisioned in your preferred region (AWS, GCP, or Azure regions)

6.2 Transfer Safeguards

For transfers from the European Economic Area (EEA), UK, or Switzerland to countries not recognized as providing adequate protection, we implement:

  • Standard Contractual Clauses (SCCs): EU Commission-approved clauses incorporated into our Data Processing Addendum
  • Supplementary Measures: Encryption in transit (TLS 1.3) and at rest (AES-256), access controls, and audit logging
  • Transfer Impact Assessments: Conducted as required by applicable law
  • Subprocessor Agreements: Data processing terms with all service providers

For enterprise customers requiring specific data residency, we offer deployment options that keep data within your chosen geographic region. See our Data Processing Addendum for more information.

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

Data Category Retention Period
Contact form submissions 3 years from submission
Demo scheduling data 1 year from scheduled date
Analytics data (Google Analytics) 26 months (Google default)

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Right to Access

Request a copy of your personal data we hold

Right to Rectification

Request correction of inaccurate data

Right to Erasure

Request deletion of your personal data

Right to Restrict Processing

Limit how we use your data

Right to Data Portability

Receive your data in a structured format

Right to Object

Object to processing based on legitimate interests

Right to Withdraw Consent

Withdraw consent at any time

Right to Complain

Lodge a complaint with a supervisory authority

To exercise any of these rights, please contact us at contact@cloudcerebro.com. We will respond within 30 days.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know: What personal information we collect and how we use it
  • Right to Delete: Request deletion of your personal information
  • Right to Opt-Out: Opt out of the sale or sharing of personal information
  • Right to Non-Discrimination: Not be discriminated against for exercising your rights

We do not sell or share your personal information as defined by the CCPA/CPRA.

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Encryption in Transit

TLS 1.3 for all data transmission

Encryption at Rest

AES-256 encryption for stored data

Access Controls

Role-based access management

Audit Logging

Comprehensive activity monitoring

Data Breach Notification

In the event of a breach of security safeguards involving your personal information that creates a real risk of significant harm, we will notify you as soon as feasible, report to the Office of the Privacy Commissioner of Canada as required by PIPEDA, and maintain records of the breach.

12. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately at contact@cloudcerebro.com.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we may also send you an email notification. We encourage you to review this policy periodically.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact our privacy team.

contact@cloudcerebro.com