Privacy Policy

Cloud Commerce Ventures > Privacy Policy

1. Introduction & Our Commitment

Welcome to CloudCommerce Ventures LLC (“CloudCommerce Ventures,” “we,” “us,” or “our”). As a California Limited Liability Company located at 16980 Nisqualli Rd Apt G208, Victorville, CA 92395, we provide expert digital services focused on designing, building, managing, and optimizing e-commerce businesses through advanced cloud technologies (our “Services”). Our operations are primarily conducted through our website, commerceventures.cloud (the “Website”).

We understand that you care about how your personal information is used and shared, and we take your privacy seriously. This Privacy Policy outlines our practices concerning the collection, use, disclosure, and protection of Personal Information. It applies to information we process through our Website, during our sales and marketing activities, when you engage our Services, and in our general business operations.

We are committed to handling Personal Information responsibly and in compliance with applicable data protection laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and strive to uphold global best practices.

By using our Website or Services, you signify your understanding and agreement with the terms of this Privacy Policy.

2. Our Role: Data Controller and Data Processor

It is important to understand our role in processing Personal Information, which can vary:

  • Data Controller: CloudCommerce Ventures acts as the Data Controller when we determine the purposes and means of processing Personal Information. This primarily applies to:
    • Information we collect from visitors to our Website.
    • Information related to our business contacts, prospective clients, and current clients (e.g., contact details, contractual information, billing data).
    • Information used for our own marketing, operational, and administrative purposes.
  • Data Processor (Service Provider): When our clients (“Clients”) use our Services to build or manage their e-commerce platforms, they entrust us with data related to their own customers, transactions, and operations (“Client Data”). When we process this Client Data on behalf of and under the specific instructions of our Clients, we act as a Data Processor (or “Service Provider” under the CCPA). In these situations, our Client is the Data Controller and is responsible for determining the purposes and legal basis for processing that data. Our processing of Client Data is governed strictly by our contractual agreements (Service Agreements, Scopes of Work, and Data Processing Addendums) with those Clients.

This Privacy Policy primarily describes our practices as a Data Controller, though it provides general information on how we handle data as a Processor. If you are an end-customer of one of our Clients, please refer to their privacy policy or contact them directly regarding your data.

3. Information We Collect

We collect Personal Information in several ways:

a. Information You Provide Directly:

  • Contact & Inquiry Data: When you contact us via forms on our Website, email (consult@commerceventures.cloud or other addresses), or phone, we collect information such as your name, email address, phone number, company name, job title, and the content of your message.
  • Client Onboarding & Contract Data: When you engage our Services, we collect business contact details, information needed for contracts (Service Agreements/SOWs), and billing/payment information.
  • Support & Communication Data: We collect information when you interact with our support or project management teams, including communication logs and details of the issues addressed.

b. Information Collected Automatically (Website Usage):

  • Log Files & Analytics: Like most websites, we automatically collect technical information when you visit our Website. This includes your IP address, browser type and version, device type, operating system, time zone setting, referral source, pages visited, time spent on pages, and clickstream data. We use tools like server logs and analytics platforms (e.g., Google Analytics) for this.
  • Cookies & Similar Technologies: We use cookies, web beacons, and other tracking technologies to operate the Website, understand user behaviour, enhance user experience, and analyze our marketing efforts. Please see Section 7 for more details.

c. Information Processed as a Processor (Client Data):

  • As mentioned, we process Client Data solely on behalf of our Clients. The specific types of Personal Information within Client Data depend entirely on the Client’s e-commerce platform and its use but may include names, addresses, email addresses, phone numbers, purchase histories, Browse behaviour, and other details of their end-customers. We only access and process this data as necessary to perform the contracted Services and as per the Client’s instructions.

4. How We Use Your Information

Our use of Personal Information depends on our role:

a. As a Data Controller:

  • Providing Website Functionality: To operate, maintain, and secure our Website.
  • Responding to You: To answer your inquiries, provide quotes, and communicate about potential projects.
  • Delivering Services: To manage our contracts, provide project updates, deliver our Services, and manage billing.
  • Providing Support: To offer technical and client support.
  • Marketing & Promotion: To send you information about our Services, industry insights, or events, where permitted by law and/or with your consent. You can opt-out at any time.
  • Improving Our Services: To analyze usage trends, conduct research, and enhance our Website and Service offerings.
  • Ensuring Security: To detect and prevent fraud, security breaches, and illegal activities.
  • Meeting Legal Obligations: To comply with applicable laws, regulations, and legal processes.

b. As a Data Processor:

  • Our sole purpose is to provide the Services to our Clients according to their written instructions and our contractual agreements. This may include hosting, development, data migration, analytics processing, security monitoring, and technical support related to their e-commerce platforms. We do not use Client Data for our own independent purposes.

5. Legal Basis for Processing (GDPR)

For individuals in the European Economic Area (EEA) or UK, our legal bases for processing Personal Information as a Controller are:

  • Performance of a Contract: Processing is necessary to enter into or perform a contract with you.
  • Legitimate Interests: Processing is necessary for our legitimate interests (e.g., operating our business, marketing, security), provided these interests are not overridden by your rights.
  • Consent: You have given us clear consent for a specific purpose (e.g., marketing emails).
  • Legal Obligation: Processing is necessary for us to comply with the law.

6. How We Share Your Information

We value your privacy and limit sharing. We may share Personal Information in these situations:

  • With Service Providers / Sub-processors: We use third-party vendors to assist us (e.g., cloud hosting – AWS/Azure/GCP, CRM, analytics tools, payment processors, project management software). These providers are contractually obligated to protect the data and only use it for the services they provide to us.
  • With Clients (as a Processor): We share Client Data back with the respective Client or with third parties as directed by that Client.
  • For Legal Compliance: We may disclose information if required by law, court order, or governmental authority, or to protect our legal rights or the rights of others.
  • During Business Transfers: If we undergo a merger, acquisition, or sale of assets, your information may be transferred as part of the deal, subject to confidentiality measures.
  • With Your Consent: We may share your information with other third parties if you give us explicit consent.

We do not sell Personal Information collected by us as a Data Controller. We only “share” data as defined under CCPA (e.g., via certain analytics cookies) and provide opt-out rights.

7. Cookies and Your Choices

We use cookies to enhance functionality, analyze performance, and for marketing. You can manage your cookie preferences through your browser settings or via any consent management tool we may deploy on our Website. Note that blocking some cookies may impact Website functionality.

8. Data Security

We implement robust technical and organizational security measures designed to protect Personal Information from unauthorized access, use, alteration, or destruction. These include encryption, access controls, network security measures, regular security assessments, and employee training. However, no internet transmission or electronic storage is 100% secure, so we cannot guarantee absolute security. We contractually require our Clients to implement appropriate security for the data they control.

9. Data Retention

We retain Personal Information only for as long as needed to fulfill the purposes for which it was collected, or as required by our legal obligations, contractual agreements, and legitimate business needs. We retain Client Data according to the terms of our agreement with each Client.

10. Your Privacy Rights (CCPA & GDPR Focus)

You may have certain rights regarding your Personal Information, depending on your location. These can include:

  • Right to Know/Access: Request details about the data we hold and how we use it.
  • Right to Delete: Request deletion of your data (subject to exceptions).
  • Right to Correct: Request correction of inaccurate data.
  • Right to Opt-Out: Opt-out of the “sale” or “sharing” of your data (as defined by CCPA).
  • Right to Limit Use (Sensitive Data): Limit the use of sensitive personal information.
  • Right to Non-Discrimination: Not be penalized for exercising your rights.
  • Right to Data Portability (GDPR): Receive your data in a usable format.
  • Right to Object/Restrict (GDPR): Object to certain processing.

How to Exercise Your Rights: To exercise your rights as a data subject for information we control, please contact us at privacy@commerceventures.cloud. We will need to verify your identity. If your request relates to Client Data (data processed on a Platform we built for a Client), please contact the Client directly, as they are the Data Controller. We will assist our Clients in responding to such requests as required by our contracts.

11. Children’s Privacy

Our Website and Services are not intended for individuals under 16 years of age. We do not knowingly collect Personal Information from children under 16. If you believe we have, please contact us.

12. International Data Transfers

We are based in the United States. If you provide us with Personal Information, it will be processed in the US. We take steps to ensure that international data transfers comply with applicable laws, using mechanisms like Standard Contractual Clauses where required, especially when acting as a Processor for international Clients.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post the revised version on our Website and update the “Effective Date.” We encourage you to review it periodically.

14. Contact Us

For questions about this Privacy Policy or our data practices, please contact us:

CloudCommerce Ventures LLC Attn: Privacy Officer 16980 Nisqualli Rd Apt G208 Victorville, CA 92395 Email: privacy@commerceventures.cloud