Privacy Policy

Last Updated: September 5, 2025

1. Introduction

Ascent Cloud Experts, LLC ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cloud consulting services and related services (collectively, the "Service").

            Important: By using our Service, you consent to the data practices described in this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not use our Service.
        

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

Contact Information: Name, email address, phone number, company name
Business Information: Company size, industry, current cloud infrastructure details
Project Data: Cloud migration plans, performance metrics, cost optimization data
Technical Data: AWS/Azure account information, infrastructure configurations
Usage Data: How you interact with our Service, features used, session duration

2.2 Automatically Collected Information

Device information (IP address, browser type, operating system)
Log data (access times, pages viewed, features used)
Cookies and similar tracking technologies
Authentication tokens and session data

2.3 Third-Party Information

Cloud Providers: AWS, Azure, GCP account information and usage data (with your explicit consent)
Authentication Providers: OAuth2 authentication data from cloud service providers

3. How We Use Your Information

3.1 Primary Purposes

Service Delivery: Provide personalized cloud consulting and migration services
Project Management: Track cloud migration progress and performance optimization
Cost Optimization: Analyze cloud usage and provide cost-saving recommendations
Technical Support: Customize solutions based on your infrastructure needs and business goals
Communication: Send project updates and consultation scheduling

3.2 Secondary Purposes

Service Improvement: Analyze usage patterns to enhance our Service
Research: Aggregate, anonymized data for cloud optimization research (with your consent)
Security: Protect against fraud, abuse, and security threats
Legal Compliance: Meet regulatory requirements and legal obligations

4. Information Sharing and Disclosure

4.1 We Do NOT Sell Your Personal Information

We do not sell, rent, or trade your personal information to third parties for monetary consideration.

4.2 Limited Sharing

We may share your information only in the following circumstances:

Service Providers: Trusted third parties who assist in operating our Service (AWS, Azure, GCP APIs)
Legal Requirements: When required by law, court order, or government request
Business Transfers: In connection with a merger, acquisition, or sale of assets
Consent: When you explicitly consent to sharing
Emergency: To protect the safety of users or the public

4.3 Data Processing Locations

Your data is processed and stored on secure AWS servers in the United States. We ensure appropriate safeguards are in place for international data transfers.

5. Data Security

5.1 Security Measures

Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
Access Controls: Role-based access with multi-factor authentication
Database Security: PostgreSQL with user isolation and automatic filtering
API Security: JWT token authentication with secure key management
Regular Audits: Security assessments and vulnerability testing

5.2 Data Retention

Active Clients: Data retained while your consulting engagement is active
Inactive Clients: Data deleted after 3 years of inactivity
Legal Requirements: Some data may be retained longer for legal compliance
Backup Data: Securely deleted within 30 days of project completion

6. Your Rights and Choices

6.1 Access and Control

You have the right to:

Access: Request a copy of your personal data
Correction: Update or correct inaccurate information
Deletion: Request deletion of your personal data
Portability: Export your data in a machine-readable format
Restriction: Limit how we process your data
Objection: Object to certain types of data processing

6.2 Account Management

Update your profile information through the Service
Modify your privacy preferences
Disconnect third-party integrations (Cloud provider APIs)
Delete your account and associated data

6.3 Communication Preferences

Opt out of marketing communications
Control project update notifications
Manage email frequency and content

7. Cookies and Tracking Technologies

7.1 Types of Cookies

Essential Cookies: Required for Service functionality and security
Authentication Cookies: Maintain your login session
Preference Cookies: Remember your settings and preferences
Analytics Cookies: Help us understand Service usage (anonymized)

7.2 Cookie Management

You can control cookies through your browser settings. However, disabling certain cookies may affect Service functionality.

8. Third-Party Services

8.1 Cloud Provider Integration

We integrate with AWS, Azure, and GCP to analyze your cloud infrastructure
We only access cloud data you explicitly authorize
You can revoke access at any time through your cloud provider's IAM settings
Each cloud provider's Privacy Policy applies to data processed by their services

8.2 AWS Services

We use AWS for secure data storage and processing
AWS maintains industry-standard security certifications
Data is processed according to AWS's data processing agreement

9. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

10. International Users

If you are accessing our Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using our Service, you consent to the transfer of your information to the United States.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated Privacy Policy on our website
Sending you an email notification
Displaying a notice in the Service

Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.

12. Compliance and Certifications

GDPR Compliant

CCPA Compliant

SOC 2 Type II

12.1 Regulatory Compliance

GDPR: European General Data Protection Regulation compliance
CCPA: California Consumer Privacy Act compliance
HIPAA: Health Insurance Portability and Accountability Act (for health data)
COPPA: Children's Online Privacy Protection Act compliance

13. Contact Information

Data Protection Officer: support@ascentcloudexperts.com

General Inquiries: support@ascentcloudexperts.com

Legal Requests: support@ascentcloudexperts.com

Mailing Address:
Ascent Cloud Experts, LLC
10820 S. Carbondale St.
Olathe, KS 66061
United States

14. Effective Date

This Privacy Policy is effective as of September 5, 2025, and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.