Privacy Policy

1. Introduction

EverythingCloud Technologies Inc. (“EverythingCloud”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal information and customer data. This Privacy Policy describes how we collect, use, disclose, store, and safeguard information when customers, users, and visitors access or use the EverythingCloud platform, website, APIs, integrations, and related services (collectively, the “Services”).

EverythingCloud provides enterprise cloud cost optimization, FinOps analytics, cloud governance, and infrastructure management solutions for organizations operating in public cloud environments including Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP).

By using the Services, you agree to the practices described in this Privacy Policy.

2. Information We Collect

We may collect and process the following categories of information:

A. Account and Business Information

  • Name
  • Business email address
  • Company name
  • Job title
  • Phone number
  • Billing and payment information
  • Account credentials and authentication details

B. Cloud and Infrastructure Data

When authorized by customers, EverythingCloud may access and process:

  • Cloud billing and usage data
  • Resource inventory and metadata
  • Subscription and tenant identifiers
  • Cost and consumption analytics
  • Security and operational telemetry
  • Tags, labels, and governance metadata
  • Optimization recommendations and scheduling configurations

EverythingCloud does not intentionally access or process customer application payloads, customer business content, or end-user files unless explicitly required for a supported feature.

C. Technical and Usage Information

We may automatically collect:

  • IP addresses
  • Browser type and version
  • Device identifiers
  • Operating system information
  • Log data
  • Session activity
  • Performance and diagnostic data
  • API usage metrics

D. Cookies and Similar Technologies

We use cookies and related technologies to:

  • Maintain secure sessions
  • Improve user experience
  • Analyze platform performance
  • Remember user preferences
  • Support authentication and security controls

Users may control cookie preferences through browser settings.

3. How We Use Your Information

We use information for legitimate business purposes including to:

  • Provide, operate, and maintain the Services
  • Authenticate users and secure accounts
  • Deliver cloud cost optimization insights and recommendations
  • Process transactions and billing
  • Monitor system health, availability, and security
  • Improve functionality, performance, and user experience
  • Respond to support requests and inquiries
  • Comply with legal obligations and contractual commitments
  • Detect, prevent, and investigate fraud, abuse, and security incidents
  • Communicate important operational or product-related notices

We do not sell personal information to third parties.

4. Legal Basis for Processing

Where applicable under GDPR or similar regulations, EverythingCloud processes personal data based on:

  • Contractual necessity
  • Legitimate business interests
  • Legal obligations
  • Customer consent where required

5. Cloud Provider and Microsoft Integrations

EverythingCloud integrates with third-party cloud providers and enterprise platforms including:

  • Microsoft Azure
  • Microsoft Entra ID (Azure AD)
  • Azure Cost Management APIs
  • Microsoft Graph APIs
  • Amazon Web Services (AWS)
  • Google Cloud Platform (GCP)

These integrations operate using customer-authorized permissions and API access granted by administrators.

EverythingCloud only accesses information necessary to provide requested Services and functionality.

6. Data Sharing and Disclosure

We may disclose information to:

A. Service Providers and Subprocessors

Trusted vendors and subprocessors that assist in:

  • Cloud hosting and infrastructure
  • Authentication and identity management
  • Payment processing
  • Analytics and monitoring
  • Customer support
  • Security operations
  • Communications and email delivery

All subprocessors are subject to contractual confidentiality and security obligations.

B. Legal and Regulatory Requirements

We may disclose information if required to:

  • Comply with applicable law
  • Respond to lawful requests
  • Protect the rights, security, or property of EverythingCloud, customers, or users
  • Investigate fraud or security incidents

C. Business Transactions

Information may be transferred during:

  • Mergers
  • Acquisitions
  • Financing events
  • Asset sales
  • Corporate restructuring

7. Data Security

EverythingCloud maintains administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, and destruction.

Security controls include:

  • Encryption in transit using TLS 1.2+
  • Encryption at rest where applicable
  • Multi-factor authentication (MFA)
  • Role-based access controls
  • Security monitoring and logging
  • Vulnerability management
  • Disaster recovery and backup procedures
  • Regular security assessments and audits

EverythingCloud maintains SOC 2 Type II compliance for applicable systems and operational controls.

No system or method of transmission over the Internet can be guaranteed to be completely secure.

8. Data Retention

EverythingCloud retains information only for as long as necessary to:

  • Provide the Services
  • Fulfill contractual obligations
  • Resolve disputes
  • Enforce agreements
  • Comply with legal and regulatory requirements

Customer data is deleted or anonymized following account termination and applicable retention periods, unless retention is required by law or contract.

9. International Data Transfers

EverythingCloud operates in Canada and may process or store information in other jurisdictions where our service providers or infrastructure providers operate.

By using the Services, customers acknowledge that information may be transferred across international borders, including to countries with different data protection laws.

Where required, EverythingCloud implements appropriate safeguards for cross-border data transfers.

10. Customer Rights and Privacy Choices

Subject to applicable law, individuals may have rights to:

  • Access personal information
  • Correct inaccurate information
  • Delete personal information
  • Restrict or object to processing
  • Request portability of personal data
  • Withdraw consent where processing is based on consent

Requests may be submitted to:
[email protected]

11. Business Use Only

The Services are intended for business and organizational use and are not directed toward children or individuals under the age required by applicable law to provide consent.

EverythingCloud does not knowingly collect personal information from children.

12. Third-Party Services

The Services may contain integrations or links to third-party platforms and services. EverythingCloud is not responsible for the privacy or security practices of third parties.

Customers are encouraged to review the privacy policies of integrated providers.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in Services
  • Legal or regulatory requirements
  • Security practices
  • Operational changes

Updated versions will be posted on our website with a revised “Last Updated” date.

14. Contact Information

If you have questions regarding this Privacy Policy or our privacy practices, please contact:

EverythingCloud Technologies Inc.
Suite 710, 530 8th Ave SW
Calgary, Alberta T2P 3S8
Canada

Email: [email protected]