Legal Clauses

Privacy Statement for Huawei Cloud Developer Platform

Privacy Statement for Huawei Cloud Developer Platform

Huawei Cloud Developer Platform (hereinafter referred to as "the Developer Platform",) is operated and provided by Huawei Cloud ("Huawei Cloud", "we", "us", or "our"). We understand how important your privacy is to you and fully respect it. Please carefully read this Privacy Statement ("Statement") before you submit your personal data to us. This Statement applies to https://developer.huaweicloud.com/intl/en-us/, and all services that contain or refer to this Statement (collectively “Services”).

This Statement describes how we collect, use and disclose your personal data, as well as our legal bases for processing, and the security measures implemented by us to protect your personal data. It also informs you about your rights in connection with your personal data, and other related information you need to know before you provide personal data to us. If Huawei Cloud needs to collect your personal data is not described in this Statement, or the collection of your personal data is beyond the claimed purposes and a direct or reasonable scope, we will provide a separate explanation through updates to this Statement, prompts on web pages, pop-up windows, internal messages, website bulletins, or other means.

You are not obliged to provide your personal data. However, if you do not provide your personal data, we may only be able to provide you with limited service within our Developer Platform or not answer your enquiries. If the processing of your personal data is necessary for the fulfilment of a contract between you and us and you do not provide the required information, we may discontinue our services. When using a specific service, you are advised to read the service statement or privacy notice in addition to this Statement.

Note: There are many services on the Developer Platform, and the content varies depending on services provided to you. This Statement is a general privacy statement applicable to the Developer Platform. We have the right to release separate privacy policies for specific products or services on the Developer Platform. You shall fully read and agree to the content of the separate privacy policies before using the specific products or services. If this Statement is inconsistent with applicable laws and regulations, the stricter requirements shall prevail.                                                    

We have created this Statement to help you understand:

  1. How We Collect Your Personal Data
  2. How We Process Your Personal Data
  3. How We Use Cookies and Similar Technologies
  4. How We Share Your Personal Data
  5. How We Protect Your Personal Data
  6. How Long We Retain Your Personal Data
  7. How to Exercise Your Rights
  8. How We Handle Personal Data of Children
  9. How Your Personal Data Is Transferred
  10. How We Update this Statement
  11. How to Contact Us

1. How We Collect Your Personal Data

1.1 Personal data means any information relating to identified or identifiable natural person, directly or indirectly, including information that can identify an individual when taken in combination with other information to which we have or are likely to have access.

1.2 We collect your personal data as set out in this Statement. Depending on your use of the Developer Platform, we collect the following personal data:

(a) Personal data provided when you enable our services on the Developer Platform, including your Huawei Cloud account name.

(b) Personal data provided when you perform developer real-name authentication, including your name, email address, country/region, mailing address, ID card number (or passport or driver's license number), and a scanned copy of your ID card, passport or driver's license.

(c) Personal data provided when you apply for application building and authentication, including your company name, your company contact information (such as name, position, email address or phone number) and your company Certificate issuer information (such as name, position, digital signature).

(d) Personal data provided when you join the Huawei Cloud Developer Program (HCDP), including your name, email address, phone number or your basic information (such as country/region, job Information, professional and education information) or your company name and your company contact information (such as name, position, email address or phone number).

(e) Personal data provided when you join the Huawei Cloud Developer Experts (HCDE), Huawei Cloud Developer Group (HCDG), or Huawei Cloud Student Developers (HCSD), including your name, email address, phone number, photo, certificate Information or your basic information (such as country/region, job information, professional and education information) or other information you provide to us.

(f) Personal data provided when you participate in activities or competitions, including your name, phone number, email address, mailing address, your basic information (such as country/region, job information, professional and education information) and your submission for the competition.

(g) Personal data provided when you participate in exams, courses, and exercises in the Developer Institute, including your exam, learning, and exercise information.

(h) Personal data provided when you contact us for support or help from us through the service ticket, including account name, phone number, email address and other information you submitted.

(i) Personal data provided when you participate in community (including forums, blogs and Cloud VOC) activities, including nickname, avatar, blogs, posts, comments, likes, and suggestions.

(j) Personal data provided when you claim benefits, including the name and email address of your contact person at Huawei Cloud, the Huawei Cloud account ID that will be using the coupons. If you need to use the coupons issued by Huawei Cloud, applicants of coupons shall be entitled to give you coupons to your Huawei Cloud account when you and/or applicants of coupons conclude this Statement with us.

(k) Personal data provided when you participate in the questionnaire survey, including your name, gender, year of birth, telephone number, email address, and basic information. (Country and region, job information, professional and educational information).

(l) Personal data obtained and collected automatically by us when you access the developer platform, including your browser history, access date and time, network link information (such as IP address).

2. How We Process Your Personal Data

We process your personal data for the following purposes:

(a) Identifying you as a developer and providing you with developer services, including learning, exchanges with other developers, competitions, and technical support and incentives for application certification and development

(b) Sending you notifications or marketing messages related to developer services by phone or email. If you do not wish to receive messages, you can disable them at Developer Center > My Settings > Notifications.

(c) Responding to your requests, inquiries, comments or suggestions about us.

(d) Evaluating and improving the Services through troubleshooting, internal audits, data analysis and research.

(e) Ensuring the security of the Services and our customers or users, executing and improving our loss prevention and anti-fraud programs.

(f) Complying with and enforcing applicable legal or regulatory requirements, or industry standards.

(g) Any other purposes which we may separately notify you and obtain your consent for.

We process your personal data on one or more of the following legal bases:

(a) As necessary to enter into a contract with you or a legal entity you represent, or to perform our contractual obligations, e.g. to provide services, to respond to requests from you, or to provide customer support;

(b) Where processing is based on our legitimate interests and those of third parties as described in this Statement;

(c) When necessary to comply with applicable law and relevant legal obligations;

(d) When you have given your consent.

3. How We Use Cookies and Similar Technologies

To ensure our services works correctly, we may at times place cookies on your computer or mobile device. Please see our Cookie Policy for details on the cookies and similar technologies we use and how they process your data.

 

4. How We Share Your Personal Data

Sharing means providing third parties with personal data, where such third parties would handle the personal data independently of us or on our behalf. We do not share your personal data with third parties without your consent, except in the following circumstances or as described in this Statement:

(a) Third parties under your instruction. We may share your personal data with your consent and/or in accordance with your instructions.

(b) For compliance, fraud prevention and security. We may share your personal data for complying with applicable laws and regulations and enforcing or applying our terms or agreements, for purpose of protecting rights or property of Huawei Cloud, our customers and/or the public. For example, we may share your personal data, when we believe sharing is necessary or appropriate to prevent or defend cyber threat, fraud, physical harm, or financial loss, or when it is in connection with an investigation of suspected or actual illegal activity.

(c) Affiliates. We may share your personal data with our affiliates including Huawei Cloud Computing Technologies Co., Ltd. located in China, for purposes of Services support and technical support or security support. Your personal data will be shared only for reasonable purposes and to the extent required by the Services.

(d) Public. In light of the nature of forum services provided by Huawei Cloud Developer Platform, your posts, comments, nickname and avatar will be shared publicly.

5. How We Protect Your Personal Data

We take the security of your personal data seriously. We take appropriate physical, organizational, and technical measures to protect your personal data. For example, we use encryption to ensure data confidentiality; we use protection mechanisms to prevent malicious data attacks; we deploy access control mechanisms to ensure that only authorized personnel can access your personal data; and we raise awareness among employees about the importance of protecting personal data through security and privacy protection training sessions. To this end, we take the following measures:

(a) Sets up privacy protection organization to identify and manage personal data protection risks.

(b) Adopts strict data security and personal data protection policies, in accordance with the risk of the categories of data processed. Develops security breach response and data breach process to reduce privacy and security risks brought by personal data breaches and guide relevant departments to handle personal data in compliance with laws and regulations.

(c) Holds security and privacy protection training courses, tests, and publicity activities to raise employees' personal data protection awareness.

(d) Takes reasonable and feasible measures to ensure that the personal data collected is minimal and relevant to what is necessary in relation to the purposes for which they are processed.

(e) Takes a range of measures such as an entrance and exit control, entrance guard systems and CCTV system to ensure the physical security of the data centers to prevent unauthorized persons from gaining access to data processing systems with which personal data are processed or used.

(f) Deploys access control mechanisms and implements hierarchical permission management on them based on service requirements and personnel levels to ensure that only authorized personnel can access personal data.

(g) Clearly defines and assigns cyber security roles and responsibilities, and implements separation of duties (SOD) based on a risk assessment to reduce risks to prevent data processing systems from being used by unauthorized persons.

(h) Encryption and pseudonymisation of personal data, as appropriate, using recommended industry standard protocols to prevent data breach and unauthorized access,

(i) Degausses the discarded storage media before returning to the warehouse to ensure that Software-based overwriting shall be performed on media prior to their disposal. In cases where this is not possible (CD’s, DVD’s, etc.) physical destruction shall be performed.

(j) Implements appropriate O&M security management and technical measures, including identity authentication and access control, change and event management, vulnerability management, configuration management, event logging and continuously monitor cyber security events and threats, detect exceptions in a timely manner, and proactively take measures to deal with them to ensure that personal data cannot be read, copied, altered or removed by unauthorized persons.

(k) Implements protection mechanisms such as DDoS protection to protect networks from attacks, develops vulnerability management policies, evaluation standards, and management processes to manage security vulnerabilities throughout the lifecycle. In addition, regularly runs vulnerability scanning programs to detect potential security vulnerabilities and promptly take countermeasures.

(l) Strictly selects business partners and service providers and incorporates personal data protection requirements into commercial contracts, audits, and appraisal activities.

Although we protect your personal data, you are responsible for safekeeping your login data including account name and passwords.

If you find your account name is used by others without your permission, please promptly notify us. You have the right to request us to suspend any unauthorized use of your Account.

In a word, Huawei Cloud is committed to protecting your personal data. Nevertheless, no security measure is perfect and no product, service, website, data transfer, computing system, or network connection is absolutely secure.

To cope with possible risks, such as personal data leakage, damage, and loss, Huawei Cloud has developed several mechanisms and control measures, clearly defined the rating standards of security incidents and vulnerabilities and corresponding processing procedures. Huawei Cloud has established a dedicated emergency response team to implement security planning, loss reduction, analysis, locating, and remediation, and to perform tracking operations with related departments based on security incident handling regulations and requirements.

6. How Long We Retain Your Personal Data

We will retain your personal data for no longer than is necessary for the purposes set out in this Statement, unless otherwise required by laws or requested by you. The data storage period may vary depending on the processing purpose and the relevant Service.

We will maintain your account information as long as is necessary for us to provide the Services to you or to perform our obligations or exercise our rights under agreements related to the Services. You can choose to close your Account. After you close your Account, we will stop providing you with the Services and delete your relevant personal data within reasonable time, provided that we are not required to continue to process certain of your personal data by law, e.g., for accounting or bookkeeping purposes or to perform our obligations or exercise our rights under agreements related to the services.

7. How to Exercise Your Rights

It is your responsibility to ensure that all personal data submitted to us is correct. We are dedicated to maintaining the accuracy and completeness of your personal data and keeping your personal data up-to-date based on the information you provide to us.

According to applicable laws and regulations of some countries and/or regions, data subjects may have rights to make requests (hereinafter referred to as “requests”) of accessing, correcting, deleting or erasing the personal data retained by us.

You can easily amend and control the personal data we hold about you as follows:

(a) Account information: If you want to add or update personal data related to your developer identity, please go to the Developer Center, and Log in My Settings > Developer Info.

(b) Cookies: Regarding the management of Cookies, please see our Cookie Policy .

You may have the following rights regarding your personal data under applicable laws:

(a) The right to access the personal data we hold about you and obtain copies thereof;

(b) the right to request us to update or correct your personal data;

(c) the right to request us to erase your personal data;

(d) the right to object to our processing of your personal data;

(e) the right to restrict our processing of your personal data;

(f) the right to obtain the personal data you provided to us in a structured, commonly used and machine-readable format and to have us transfer it to a third party of your choice (data portability); and

(g) the right to lodge a complaint with the competent data protection authority.

Please note that these rights are not absolute and may be restricted in accordance with applicable laws. If you need our assistance to exercise the rights above, please contact us as set out in “11. How to Contact Us” below.

Generally, we will respond to you within 30 days, unless otherwise required by applicable laws. Depending on the complexity of your requests, we may extend the period by a further two months. In this case, we will inform you of the extension and its reasons within one month of receiving your request. Please note that under some circumstances, for example where we cannot verify your identity, we may need to request additional information in order to verify your identity, otherwise we are prohibited by law from giving effect to your request, or your request exceeds your rights under applicable laws, we may refuse your request. In this case, we will inform you that your request is refused together with the reasons for our refusal.

You can withdraw your consent, without affecting the lawfulness of the processing activities based on the consent and prior to such withdrawal. Your right to withdraw consent can be exercised by setting privacy options on your Account or unsubscribing via link sent in an email/SMS/other message. Disabling related services or deleting your Account will be treated as withdrawal of consent, where consent is collected. You may also seek help by contacting us as set out under “11. How to Contact Us”.

You can delete your Account in the account-related services. After you delete your Account, we will stop providing services, and delete your personal data unless otherwise stipulated by law. Your Account cannot be restored after deletion. You need to register a new Account if you want to use related services again.

8. How We Handle Personal Data of Children

Our Services are only intended for adults. Minors are not allowed to create their user Account. If you’re a minor, you may use our Services only with the involvement of a parent or guardian.

9. How Your Personal Data Is Transferred

Your personal data is stored on a server located in Singapore, and we serve you through our global resources. In order to provide the Services to you, your personal data may be transferred to or accessed by countries/regions where Huawei Cloud, Huawei Cloud’s affiliates, Huawei Cloud’s partners are located. 

These countries/regions may have different data protection laws, which may impose less stringent data protection requirements. In such cases, we will ensure the transfer is in accordance with applicable laws and regulations (including by ensuring that overseas recipients are subject to confidentiality and data protection obligations where appropriate), as well as this Statement.

10. How We Update this Statement

We may update or modify this Statement from time to time according to changes in our Services or data processing. If we update this Statement, we will publish the latest version of the Statement on the Website or by otherwise notifying you. The modified terms will come into effect immediately upon posting or otherwise notified by us. You are encouraged to review this Statement periodically for any changes. We will always indicate the date the last changes were published.

11. How to Contact Us

Country/Region in Which You Are Registered

Data Controller (Entity You Have Contracted With)

Address

South Africa

Sparkoo Technologies South Africa (Pty) LTD.

Building 17 - Huawei Office Park, 124 Western Service Road, Woodmead - Johannesburg, Gauteng, 2191

Chile

Sparkoo Technologies Chile SpA

ROSARIO NORTE 530 OF 1101 LAS CONDES

Peru

Sparkoo Technologies PERU S.A.C.

Calle Las Begonias 415, Int. 2301, San Isidro, Lima 27, Perú

Brazil

Sparkoo Technologies Do Brasil Ltda.

Avenida Doutor Chucri Zaidan, S/N, conjunto 252, Edifício EZ Towers, Vila São Francisco, São Paulo/SP, CEP 04711-130

Thailand

Sparkoo Technologies (Thailand) Co., Ltd.

No. 9, G Tower Grand Rama 9, Room No. GN01-04, 35th Floor, Rama 9 Road, Huaykwang Sub-district, Huaykwang District, Bangkok Metropolis

Hong Kong

Sparkoo Technologies Hong Kong Co., Limited

7/F., Tower 6, The Gateway, No. 9 Canton Road, Tsimshatsui,Kowloon

Saudi Arabia

Sparkoo Technologies Arabia Co., Ltd.

C-Center, Prince Mohammed Road, PO Box 295320, Riyadh, the Kingdom of Saudi Arabia

Countries other than the above

Sparkoo Technologies Singapore Pte. Ltd.

1 Changi Business Park Ave 1 #05-01/06 Singapore 486058

Data controller: If there are any conflicts between the table and the contracting party displayed in the Account Center, the information set out in the Account Center shall prevail.

We have set up a dedicated personal data protection department (or data protection officer). If you have any questions, comments, or suggestions, please contact us or submitting them to our global offices. If you want to exercise your privacy rights, or wish to raise or consult us on any privacy issues please visit our Data Subject Right Portal. You can also contact us by email [email protected]. You can also raise a concern or lodge a complaint with a data protection authority or other official with jurisdiction.

 

Updated: November 21, 2023