Privacy Policy

The Company offers a platform for its users to connect and share relevant information with each other (hereafter, the “Platform”). The Platform is available at the following url address https://raincloud.network

Please read this Privacy Policy ("this Policy") prior to the use of any services offered through the Platform which shall be subject to a successful registration of a user account (hereafter, the “Users”).

The Company uses a solution called “Hivebrite”, which enables the import and export of user lists and data, the management of content and events, the organization of emailing campaigns and opportunity research and sharing as well as the management of funds and contributions of any kind.

In this regard, as a data controller, the Company is particularly aware and sensitive with regard to the respect of its Users privacy and personal data protection. The Company commits to ensure the compliance of the processing it carries out as data controller in accordance with the applicable provisions of the “Loi n°78-17 dated January 6, 1978, relative à l’informatique, aux fichiers et aux libertés” and the EU Regulation EU 2016/679 regarding data protection dated April 27, 2016.

In order to do so, the Company has put in place this Policy which guarantees an optimal level of protection of its Users’ data.

1. COLLECTED PERSONAL DATA

1.1. When subscribing on the Platform

When subscribing on the Platform, the User is informed that its following personal data is collected:

· “Identity Data” may include forenames and last name, personal or job title and position, location, social media accounts, profile picture, or similar identifiers;

· “Contact Data” may include physical address, email address, and telephone number;

· “Transaction Data” may include requests for products and services you have made to us, or in relation to products or services that we have supplied to you;

· “Experience Data” may include university education, professional experience, and CV;

· “Technical Data” may include internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system, platform and other technology on the devices used to access this Website;

· “Your Company Data” may include company name, company description, company size, company website, company industry, company product development stage, company last funding round, company total funding amount, company currently raising, company key investors, company headquarter country, company deck;

· “Matchmaking Data” may include why you are interested in joining the Platform, elaboration on why you are interested in joining the Platform, which industries the people you want to connect with come from, top 5 wishlist of companies you want to connect with;

· “Events Data” may include events you have attended, events you are interested in attending, and events you will be attending;

· “Usage Data” may include enquiries submitted by you, information supplied, and how you use our website;

· “Marketing Data” may include details on any preference that you have advised us of in relation to marketing communications from us;

The User warrants to only provide accurate, exhaustive, and regularly updated data regarding its identity, its content and any information in general. Under no circumstances shall the Company be liable for any data that is illegal contrary to public order provisions.

In the event the User does not consent to the collection of the above-mentioned data, it shall be informed that it cannot have access to the Platform.

1.2. During the use of the Platform

The User may validly publish, at its own initiative, any content on the Platform which shall be kept by the Company:

· “Identity Data” may include forenames and last name, personal or job title and position, location, social media accounts, profile picture, or similar identifiers;

· “Contact Data” may include physical address, email address, and telephone number;

· “Experience Data” may include university education, professional experience, and CV;

· “Your Company Data” may include company name, company description, company size, company website, company industry, company product development stage, company last funding round, company total funding amount, company currently raising, company key investors, company headquarter country, company deck;

· “Matchmaking Data” may include why you are interested in joining the Platform, elaboration on why you are interested in joining the Platform, which industries the people you want to connect with come from, top 5 wishlist of companies you want to connect with;

· “Events Data” may include events you have attended, events you are interested in attending, and events you will be attending.

The User warrants not to publish any content which contains, including but not limited to, any remarks/images/pictures, contrary to applicable legislation and regulations, to public order and good morals, or affecting the rights of third parties, including but not limited to:

· Identity fraud of a third person;

· Remarks/publish pictures or images that are violent, defamatory, offensive, malicious, obscene, inciting to discrimination or hatred, racist, xenophobic, anti-Semitic, condoning or approving war crimes, inciting to committing a crime, offense, act of terrorism, or contrary to the security of minors;

· Counterfeiting the intellectual property rights of a third person;

· Commercial canvassing or elements that could be qualified as unfair competition.

The User indemnifies the Company against (and to the extent applicable to its subcontractors) and hold the Company harmless from all losses and damages that may arise from any non-compliance of this policy by the User.

In any event, the Company shall not be liable for the content, accuracy, or up-to-date state of the information freely published by the User.

The User consents that, following the publication of the content, its information will become public on the Platform and that as such, same information will be published, modified, translated, reproduced in any form and accessible, saved and reproduced by other Users and the Company.

In most cases, Users post contents without previous moderation from the Company. The Company does not alter the content or information of the User, except under exceptional circumstances. The Company reserves its right to, without prior consent, unanimously, freely delete or amend the content or information posted on the Platform by the User, without prejudice to the Users. 

In the case where the content posted on the Platform is in violation (or there is a suspected violation) with then-current privacy policy, applicable law or the rights of third parties, any person can inform the Company of the existence of such content at the following address: [email protected]

The User is informed that the Company does not collect any particularly sensitive data within the meaning of applicable legislation and regulations.

1.3. Cookie data

The Company informs the User that KIT UNITED, as well as its subcontractors, uses a tracking technology on its terminal such as cookies whenever the User navigates on the Platform.

A cookie is a message that, subject to the User settings, is sent to its terminal when the User navigates on a website. The aim is to collect data regarding the internet navigation of the User to send tailor-made services to its terminal (computer, mobile phone or tablet).

The cookies that are sent to the User’s terminal are detailed under Article 2.

The purpose of the process of the data collected through the cookies and the settings of such processing is detailed under Article 9.

2. THE PURPOSE OF THE DATA PROCESSING

The Company and its subcontractors collect, process and host personal data that are freely transferred by the User when accessing the services proposed by the Platform.

Collected Data

Purpose of the processing

When subscribing on the Platform:

· “Identity Data” may include forenames and last name, personal or job title and position, location, social media accounts, profile picture, or similar identifiers;

· “Contact Data” may include physical address, email address, and telephone number;

· “Your Company Data” may include company name, company description, company size, company website, company industry, company product development stage, company last funding round, company total funding amount, company currently raising, company key investors, company headquarter country, company deck;

· “Matchmaking Data” may include why you are interested in joining the Platform, elaboration on why you are interested in joining the Platform, which industries the people you want to connect with come from, top 5 wishlist of companies you want to connect with;

· Access to the Platform;

· Creation of a user account;

· Access for the User to all functionalities of the Platform, meaning: posting content, joining events, joining and participating in forums and groups, messaging other users, creating company profiles;

· Management of requests to access, amend, delete, limit and oppose.

When using the Platform:

· “Identity Data” may include forenames and last name, personal or job title and position, location, social media accounts, profile picture, or similar identifiers;

· “Contact Data” may include physical address, email address, and telephone number;

· “Experience Data” may include university education, professional experience, and CV;

· “Your Company Data” may include company name, company description, company size, company website, company industry, company product development stage, company last funding round, company total funding amount, company currently raising, company key investors, company headquarter country, company deck;

· “Matchmaking Data” may include why you are interested in joining the Platform, elaboration on why you are interested in joining the Platform, which industries the people you want to connect with come from, top 5 wishlist of companies you want to connect with;

· “Events Data” may include events you have attended, events you are interested in attending, and events you will be attending;

· The use and feeding of the Platform;

· Sending invitations for events organized by the Company or other Users, if the User has accepted to receive such invitations;

· Sending offers from the Company or its partners if the User has accepted to receive such offers.

Cookies, trackers:

· Add to calendar 

· Keep active session 

· The user/admin ID 

· User first connexion 

· Identify the user session

· Admin ID 

· User search 

· Google analytics #1, #2, #3 #4.

· LinkedIn

· Improve the quality of the services proposed by the Platform;

· Improve the usage functionalities of the Platform;

· Create statistics regarding the effective use of the Platform;

· Enable the User not to have to reconnect to the Platform for every new navigation on the Platform;

· Invite the User to events organized by the Platform;

· Create statistics regarding the different levels of activity on the Platform. The cookies cannot allow to identify the User;

· Enable the synchronization of the User’s LinkedIn profile;

· Manage banking transactions.

The Company only collects and processes the User’s personal data for the purpose for the optimal implementation and use of the Platform that is put at its disposal.

3. USER’S CONSENT TO THE COLLECTION OF DATA

The Company informs the User that no personal data within the meaning of applicable legislation and regulations shall be collected without the prior explicit consent of the User.

The User should review and agree to be bound by the provisions of this Policy prior to applying for a user account on the Platform.

The Company and its subcontractors commit to a lawful and fair collection of the User’s data, in full transparency and in compliance with the rights conferred to the User pursuant to applicable legislation and regulations.

4. LENGTH OF DATA RETENTION

The Company informs the User that the data is retained only during the length of the User’s subscription on the Platform.

Following the termination of said subscription, the data collected upon the subscription as well as the content published by the User on the Platform shall be deleted after a period of one (1) year.

In accordance with application legislation, cookie data will be automatically deleted thirteen (13) months following their placing on the User’s terminal.

Finally, the data regarding the identification of the Users in case of exercise of their rights pursuant to Article 6 shall be retained for (i) one (1) year in case of exercise of their access or rectification rights and (ii) three (3) years in case of exercise of their opposition right.

5. OBLIGATIONS OF THE COMPANY

As data controller and in accordance with applicable legislation and regulations, the Company commits to:

· Only collect the Users’ data for the strict purpose as described under article 2 of then-current privacy policy;

· Keep a processing register;

· Put in place all necessary technical and organizational appropriate measures in order to ensure the security, confidentiality, integrity, availability and the resilience of the process systems and services;

· Limit the access to the Users’ data to the persons duly authorized to this effect;

· Increase awareness and train staff members regarding the processing of personal data;

· Guarantee to the Users their rights regarding the access, portability, erasure, rectification and opposition in relation to the collection and processing of their data;

· Notify the competent supervisory authority of any security breach presenting a serious risk regarding the rights and liberties of the Users within 72 hours of the occurrence of such a breach;

· Proceed with the deletion of the Users’ data in the event of an absence of any contact with the Company for a period of three (3) years;

· Only subcontract the processing of the Users’ data to KIT UNITED which, as subcontractor, has put all necessary technical and organizational measures in order to guarantee the security, confidentiality, integrity, availability and resilience of the processing systems and services.

For any additional information on KIT UNITED, you can consult the webpage available at the following address: www.hivebrite.com.

Notwithstanding the foregoing, the Company reserves the right to appoint another or additional subcontractors to perform services in relation to the handling of the data so collected via the Platform as provided for in this policy.

6. EXERCISE OF THE USERS’ RIGHTS

The User is duly informed that it disposes at any time, meaning prior to, during or following the processing of data, to a right to access, copy, rectify, oppose, port, limit and delete its data.

The User can exercise its rights by sending an email to [email protected] provided that the User justifies its identity.

In addition, in the event the User considers that its rights have not been respected, the User of which the personal data is collected can file a reclamation before the competent supervisory authority. For any additional information, you can review your rights on the websites of the competent authorities.

The competent supervisory authorities are listed on the following website:

http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.

7. HOSTING OF THE USERS’ PERSONAL DATA

The personal data collected by the Company is hosted by the following service providers:

Host

Nature of the hosting

Google Cloud Platform

Gordon House. 4 Barrow St.

Dublin, Ireland

Privacy policy:

https://cloud.google.com/security/privacy/

Hosting of all data and content produced/provided by the User, as well as images, profile pictures and backups

Amazon AWS

38 avenue John F. Kennedy,

L-1855, Luxenbourg

Privacy policy:

https://aws.amazon.com/compliance/gdpr-center/

8. DATA BREACH

In case of breach of its systems, or theft, deletion, loss, alteration, disclosure, unauthorized access, or any other malicious act, the Company commits, in the event the said breach presents a serious risk regarding the rights and freedoms of the Users, to notify the Users, within a period of seventy two (72) hours as of the occurrence of the breach, of (i) the nature of the breach, (ii) the probable consequences of the malicious act, (iii) the appropriate measures proposed to remedy the malicious act.

The malicious act presenting a serious risk regarding the rights and freedoms of the Users shall be notified to the competent supervisory authority.

The User is duly informed that the Company shall not be liable in case of breach of IT security which can cause damages to computer equipment, as well as in case of breach or malicious act by a third party targeting the system or the Platform.

9. COOKIE MANAGEMENT CONFIGURATION AND OTHER DATA

The User’s consent is requested through a banner at the bottom of the Platform homepage.

In case of consent, the User’s internet navigator shall automatically transmit to the Company the data collected and detailed under Article 1.2.

The User is informed that the cookies and trackers will be automatically deleted following a period of thirteen (13) months.

The User may at all times configure its navigator in order to prevent the creation of cookie files.

However, certain functionalities of the services proposed by the Platform may not function properly without cookies. In addition, even if most navigators are configured by default and accept the creation of cookie files, the User has the possibility to choose to accept the creation of all cookies other than the functional cookies or to systematically decline them or to choose the cookies it accepts depending on the issuer by configuring the following settings:

· Internet Explorer:

o  Click on the settings menu, followed by “Internet Options”;

o  Under the “General” tab on the upper-left hand side, scroll down to “Browsing history”;

o  Check the "Temporary Internet files and website files," "Cookies and website data," "History," and "Download History" boxes;

o  Click on “Delete”;

o  Close out of Internet Explorer and reopen it for changes to take effect.

· Firefox:

o  Click on your Tools bar;

o  Click on “Preferences”;

o  On the menu to the right, select "Privacy";

o  Under the “history option”, there is a shortcut titled "clear your recent history", click on that;

o  Select only the top four options and hit clear now.

· Safari:

o  Click on “Safari” in the top left corner of the finer bar;

o  Click on “Preferences”;

o  Click on the “Privacy” tab;

o  Click on “Manage Website Data”;

o  Click on “Remove All”;

o  Click “Remove Now”.

· Google Chrome:

o  Click the Tools menu;

o  Click on “More tools”;

o  Clear browsing data;

o  At the top, choose a time range.

o  To delete everything, select “All time”;

o  Next to "Cookies and other site data" and "Cached images and files", check the boxes;

o  Click on “Clear data”.

In order to configure the data settings, please find below the recommendations of the Company:

 

Data collected for the following purposes:

Settings

General data enabling the proper functioning of the Platform and the improvement of the services proposed by the Platform.

Data that is essential for the provision of services by the Company, non-configurable.

Data regarding the management of payment services proposed by the Platform, delinquencies and litigation.

Data that is essential for the provision of services by the Company, non-configurable.

Data enabling the creation of User files;Mailing of commercial offers, advertisements or newsletters of the Company and/or its commercial partners if this has been accepted by the User.

Management by the User in its login area;Unsubscribing to newsletters / commercial offers by clicking on the appropriate link; Request for deletion of the data base of the Company by writing to the following address [email protected] and subject to providing a proof of identity.

Compilation of statistics with the purpose of improving the functioning of the Platform notably by analysing the traffic of the Platform (modules which are more or less consulted, preferred routes, level of activity depending on the day of the week et hour of the day, etc.) and by adapting the Platform according to the needs and tastes of the Users (recognition of the User when it accesses the Platform).

Clearance of cookie history in the navigator pursuant to the above instructions; Using the “incognito mode” whilst navigating;Request for deletion of the data base of the Company by writing to the following address [email protected] and subject to providing a proof of identity.

Management of requests to access, rectify, delete, limit and oppose.

Request for deletion of the data base of the Company by writing to the following address [email protected] and subject to providing a proof of identity.

10. PERSONS AUTHORIZED TO ACCESS THE USERS’ DATA

The data of the Users is accessible only to the persons duly authorized to do so by the Company for administrative or maintenance purposes of the Platform to the exclusion of any commercial use, and if applicable, in order to enforce the rights exercised by the Users regarding their data (in particular the right to access, rectify, oppose, port and to be forgotten).

The Company informs the User that, except for hosting and payment services, it uses the following subcontractor:

The company KIT UNITED for its HIVEBRITE solution, a French société par actions simplifiée with a capital of 284.280,00 Euros, registered with the Paris Companies register under the number 75339171300017, having its registered office at 8, rue de la Grande Chaumière, 75008 – Paris.

Especially in light of any future developments of the applicable legislation and regulations, the Company reserves its right to unilaterally modify this Policy and commits to duly inform you if any such modification occurs.