Personal Data Protection

In accordance with the requirements of the GDPR and AbsCloud’s lawful right to collect and process personal data, we kindly ask you to review the following terms and conditions governing the processing, use, and protection of your personal data.

1. Purpose of Processing Personal Data
AbsCloud uses the provided personal data to carry out its regulated activities related to providing company services and for fulfilling the company's marketing and advertising objectives.

AbsCloud collects and processes personal data solely for the purposes of performing its legitimate business activities, including the provision of its services, fulfillment of contractual obligations, and for marketing and promotional purposes directly related to the company’s operations.

2. Methods of  Data Collection
AbsCloud processes personal data only on the basis of the data subject’s explicit consent. Personal data may be collected through: Voluntary submission via AbsCloud’s official website, in sections clearly indicating the purpose of data collection (e.g. newsletter subscription, service inquiry, or analysis request); Data is also provided on physical documents when concluding contracts with our clients.

3. Use of Collected Personal Data
The personal data provided shall be used exclusively for: preparing and sending personalized electronic communications and individual offers; issuing invoices and notifications related to AbsCloud’s services and activities;

4. Data Retention Period
AbsCloud retains collected personal data for the following periods:
- For individuals without contractual relations: up to three (3) years;
- For individuals with contractual relations: up to three (3) years following the termination of
the contractual relationship.
- Upon expiration of the retention period, all personal data shall be securely deleted or
destroyed.

5. Rights of Data Subjects
Every individual who has provided personal data to AbsCloud has the following rights:
-Right to access and rectification – to request updates or corrections to their personal data at any time;
- Right to object and restriction of processing – to request that their data no longer be
processed;
- Right to erasure (“right to be forgotten”) – to request the permanent deletion of their personal data from AbsCloud’s records;
 

6. Data Security, Storage, and Access Control
AbsCloud collects, processes, and stores all personal data lawfully, fairly, and transparently, in strict compliance with GDPR principles and its internal Information Security and Privacy Policy. AbsCloud does not disclose, share, or sell personal data to third parties. Personal data is stored electronically on secure technical media owned by AbsCloud, while all physical documents containing personal data are kept in locked, access-controlled storage.

Security Measures Implemented

To ensure the highest level of data protection, AbsCloud has implemented the following
technical and organizational measures:

Daily data backups and archiving on all company servers to prevent loss or deletion of information

Multi-layered data protection systems ensuring integrity and confidentiality;
 

Location and Access to Servers and Stored Data:

- All servers are located in specialized facilities with physical security.
- Physical access to servers is monitored and controlled by video surveillance.
- Access to server rooms is regulated through an electronic access control system and
traditional mechanical locks.
- Physical access to servers is permitted only to authorized personnel, after approval by a
supervisor. Each unlocking of a server cabinet requires approval by at least two
individuals.

AbsCloud Company Systems Provide Additional Security:

- Administrative access to your servers is protected by both a password and at least a 2048-bit encryption key
- Every administrative action on the server can be tracked in full detail (each keystroke is recorded).
- Backup and Disaster Recovery (BDR) servers located in a separate data center, over
300 km away from the primary one, in a different seismic zone and powered by a different
energy provider.

- Continuous operation and data access are guaranteed even in case of power failure,through dual power supplies, UPS systems, and generators.
- Continuous operation and data access are guaranteed even in case of internet outage, through multiple independent Internet providers.

Awareness and Notification in Case of a Breach

AbsCloud’s monitoring systems provide real-time supervision of server operations and processes, enabling the detection of unauthorized access or compromise attempts. In such events, AbsCloud takes immediate preventive and corrective actions and promptly notifies the affected individuals.All communication with virtual servers is encrypted via SSL certificates to ensure secure data transmission and prevent interception.

Procedure in Case of a Data Breach

In the event of a personal data breach, theft, or unauthorized disclosure, AbsCloud shall promptly notify all affected individuals. This obligation does not apply if appropriate technical and organizational measures have been implemented to render the data unintelligible to unauthorized persons

Please also review AbsCloud’s General Terms and Conditions.
Terms and Conditions