Cloudflare, Inc.

Active Participant

Industries

  • Information and Communications Technology

Participation

EU-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 11/9/2016
Next Certification Due Date: 10/17/2023
Data Collected: HR, NON-HR

Swiss-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 11/16/2017
Next Certification Due Date: 10/17/2023
Data Collected: HR, NON-HR

Purpose of Data Collection

We collect personal data of our customers for account management, billing, internal marketing (not third party marketing), fraud prevention purposes and provision of our Internet security services. Information we collect includes customer name, email address, IP address, billing information, and phone number. We may share such data with third parties who provide us with billing, marketing, account management tools, and other product support that enable us to provide the service to our customers. Personal data from visitors to our customers' networks or Internet properties is processed as part of the internet traffic logs we process on behalf of our customers (e.g., IP addresses) and also may be processed if our customers include such information in the data they insert into our network. For example, we may temporarily log such visitors' interactions with a website, such as IP address, country of origin, domain name and device type, to provide security services to our customers. We never request or intentionally process sensitive personal data, and deliberately limit our exposure to personal data.

Privacy Policy

HR Data

Cloudflare Employee Privacy Notice and Policy (Netherlands)
Description:

This privacy policy for employees, workers and contractors governs how we collect, process and disclose personal data that we collect during and after such individuals' working relationship with Cloudflare, in accordance with the General Data Protection Regulation (GDPR) relating to data protection. The policy also sets forth data subject access rights and information about enforcement should an employee have a complaint.

Effective Date: 3/23/2022
Cloudflare France SAS Employee Privacy Notice Policy
Description:

This privacy policy for employees, workers and contractors governs how we collect, process and disclose personal data that we collect during and after such individuals' working relationship with Cloudflare, in accordance with the General Data Protection Regulation (GDPR) relating to data protection. The policy also sets forth data subject access rights and information about enforcement should an employee have a complaint.

Effective Date: 10/27/2020
Cloudflare Germany GmbH Policy for Employees, Workers and Con
Description:

This privacy policy for employees, workers and contractors governs how we collect, process and disclose personal data that we collect during and after such individuals' working relationship with Cloudflare, in accordance with the General Data Protection Regulation. The policy also sets forth data subject access rights and information about enforcement should an employee have a complaint.

Effective Date: 1/11/2022
Cloudflare Ltd. (UK) Privacy Policy for Employees, Workers an
Description:

This privacy policy for employees, workers and contractors governs how we collect, process and disclose personal data that we collect during and after such individuals' working relationship with Cloudflare, in accordance with the General Data Protection Regulation (GDPR) and UK legislation relating to data protection. The policy also sets forth data subject access rights and information about enforcement should an employee have a complaint.

Effective Date: 1/11/2022
Cloudflare Portugal, Unipessoal Lda. Privacy Policy for Emplo
Description:

This privacy policy for employees, workers and contractors governs how we collect, process and disclose personal data that we collect during and after such individuals' working relationship with Cloudflare, in accordance with the General Data Protection Regulation. The policy also sets forth data subject access rights and information about enforcement should an employee have a complaint.

Effective Date: 3/10/2022

Non-HR Data

Document: Cloudflare Privacy Policy
Description:

This Cloudflare Privacy Policy outlines the information that Cloudflare, Inc. (“Cloudflare”, “we”, “us” or “our”) gathers, how we use that information, and the options you have to access, correct, or delete such information.

Effective Date: 4/1/2022

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Cloudflare, Inc. at:

Allison Schieber
Privacy Program Manager
Cloudflare, Inc.
101 Townsend St
San Francisco, California 94107-1934
aschieber@cloudflare.com
Phone: (737) 465-2609

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Cloudflare, Inc. to your question or complaint, please contact the independent recourse mechanism listed below


HR RECOURSE MECHANISM

EU Data Protection Authorities (DPAs)
Swiss Federal Data Protection and Information Commissioner (FDPIC)

NON-HR RECOURSE MECHANISM

TRUSTe


Appropriate statutory body with jurisdiction to investigate any claims against Cloudflare, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission