Privacy Policy
Effective date: 2026-05-04 · Last updated: 2026-05-04
Sample document. This is placeholder content for development. Replace with reviewed legal text and a real DPO/data-protection contact before going to production.
1. What this policy covers
This Privacy Policy describes how CloudSnap ("we", "us") collects, uses, and protects personal data when you use our service. It applies to anyone with a CloudSnap account, MSSP staff, and super-admins.
2. Personal data we collect
- Account data — name, email, role, tenant assignment, sign-in history, session metadata.
- Authentication metadata — Microsoft Entra / Google OAuth claims (oid, tenant id, email), magic-link token records (hashed), CSRF tokens, IP and user-agent at sign-in.
- Operational data — actions you take in the app (snapshots taken, rollbacks initiated, cloud accounts onboarded), surfaced in the audit log.
- Cloud-account metadata — connection metadata for the cloud accounts you onboard (subscription IDs, account aliases, storage account names). Cloud credentials are stored encrypted.
3. What we do NOT collect
- The contents of your snapshots (those live in the storage account you onboard; we never read them outside your authorised actions).
- Browser browsing history outside of CloudSnap.
- Payment card data (handled by our payment processor; we receive only a redacted reference).
4. How we use it
- To operate the service — sign you in, run snapshots, surface drift, render UI.
- To secure the service — detect abuse, enforce rate limits, audit access.
- To communicate with you — transactional emails (magic-link sign-in, security alerts) via our email provider (Resend). We do NOT send marketing emails without consent.
- To improve the service — aggregated, de-identified usage analytics.
5. Legal basis (GDPR)
For EU/UK users we rely on: (a) contract for account + service operation; (b) legitimate interest for security + abuse prevention; (c) consent for marketing communications you explicitly opt into.
6. Data sharing
- Sub-processors: Microsoft Azure (hosting + auth), Resend (transactional email), and the cloud providers you onboard (Azure / AWS / GCP / OCI / Entra) — only for the data you explicitly direct us to send to them.
- MSSP partners: if you are a customer managed by an MSSP, the MSSP's authorised staff may view your tenant. Every MSSP impersonation event is recorded in the audit log.
- Super-admins: CloudSnap operators have administrative access for support and abuse handling. Access is audited.
- We do NOT sell personal data.
7. Data retention
- Account data: kept for the lifetime of the account + 30 days after deletion.
- Audit log: retained 1 year by default; configurable per tenant.
- Magic-link tokens: deleted within 1 day of expiry.
- Snapshots: retention is set per schedule (default 30 days, max 365).
8. Security
CloudSnap encrypts data in transit (TLS 1.2+) and at rest (AES-256). Cloud credentials and email API keys are stored encrypted using application-level keys held in Azure App Service configuration. Access to production systems is gated by SSO + MFA and recorded in the audit log.
9. Your rights
Depending on your jurisdiction you may have the right to: access, correct, delete, export, or restrict the use of your personal data. To exercise any of these, email privacy@cloudsnap.local. We respond within 30 days.
10. International transfers
CloudSnap is hosted in the United States and may transfer data internationally. EU/UK transfers rely on the European Commission's Standard Contractual Clauses where applicable.
11. Children
CloudSnap is not intended for children under 16. We do not knowingly collect personal data from children.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be notified via email and posted on this page.
13. Contact
Questions about this Privacy Policy? Email privacy@cloudsnap.local.