範圍
上海速融網絡科技有限公司(北京世紀互聯寬帶數據中心有限公司的關聯公司,下(xià)稱“世紀互聯”或“我們”)運營的在線服務包括:(1)Microsoft Azure;(2)Microsoft Office 365;(3)Microsoft Dynamics 365; (4) Microsoft Power Platform 以及 (5) Microsoft Intune(下(xià)稱“在線服務”)。世紀互聯運營的在線服務是基于微軟技術的雲服務,由位于中華人民共和(hé)國(不包括香港特别行政區(qū)、澳門(mén)特别行政區(qū)以及台灣地區(qū),以下(xià)簡稱“中國”) 的世紀互聯數據中心運營并銷售。本隐私聲明(míng)适用(yòng)于上(shàng)述在線服務以及顯示或鏈接至本隐私聲明(míng)的任何其它的世紀互聯服務。關于特定功能(néng)的更多信息,請(qǐng)參閱服務說明(míng)或服務文(wén)件。
通過在線服務,您可以購買、訂閱或使用(yòng)世紀互聯或具有不同隐私實踐的第三方提供的産品和(hé)服務。您使用(yòng)其他(tā)産品和(hé)服務以及您提供給第三方的任何信息将适用(yòng)該第三方的隐私聲明(míng)和(hé)政策。
終端用(yòng)戶須知(zhī):本隐私聲明(míng)适用(yòng)于世紀互聯所提供在線服務的客戶和(hé)潛在客戶。本隐私聲明(míng)中所有提到(dào)的“您”或“您的”均指世紀互聯的客戶。這(zhè)些(xiē)客戶可能(néng)使用(yòng)在線服務以開(kāi)發并向其終端用(yòng)戶提供自(zì)有服務。世紀互聯在此類情形下(xià)收集或處理(lǐ)的任何信息均由我們基于我們客戶的利益代爲處理(lǐ),該信息的收集和(hé)使用(yòng)由客戶控制。終端用(yòng)戶應将與隐私相關的請(qǐng)求直接提交給向其提供服務的實體。如果終端用(yòng)戶使用(yòng)其所在組織(如雇主或學校)提供的電子郵件地址訪問在線服務,與該電子郵件地址相關的域的所有者可能(néng):(1)對(duì)終端用(yòng)戶的服務賬戶具有控制權和(hé)管理(lǐ)權;且(2)可訪問和(hé)處理(lǐ)終端用(yòng)戶數據,包括終端用(yòng)戶通信和(hé)文(wén)件的内容。終端用(yòng)戶使用(yòng)在線服務可能(néng)受其所在組織的政策(如有)約束。我們僅在與客戶約定範圍内對(duì)客戶的隐私相關實踐承擔責任。
我們如何收集和(hé)使用(yòng)您的數據
個人信息的定義
“個人信息”是指以電子或其他(tā)方式記錄的能(néng)夠單獨或與其他(tā)信息結合識别特定自(zì)然人身份或反映特定自(zì)然人活動的各種信息。在本隐私聲明(míng)中,個人信息可能(néng)包括您在管理(lǐ)員入口中指定的賬戶管理(lǐ)員的管理(lǐ)員數據、實名認證數據,包含姓名、支付工(gōng)具的賬号、賬單地址的付款數據、您在我們的網站(zhàn)、營銷活動、及任何調查或問卷中提交的注冊數據、以及包含聯系方式與認證信息的支持數據等。
“個人敏感信息”是指一旦洩露、非法提供或濫用(yòng),容易導緻個人聲譽、身心健康受到(dào)損害、歧視(shì)性待遇或可能(néng)危害人身和(hé)财産安全的個人信息。在本隐私聲明(míng)中,個人敏感信息可能(néng)包括管理(lǐ)員數據、實名認證數據、付款數據、包含個人電話(huà)号碼、電子郵件地址、身份證件和(hé)支付工(gōng)具的賬号、安全碼和(hé)交易記錄的注冊數據、以及包含聯系方式與認證信息的支持數據等。
我們會(huì)在下(xià)述場景中收集和(hé)使用(yòng)您的數據,其中可能(néng)會(huì)涉及個人信息。如果我們收集您的個人信息超出下(xià)述聲明(míng)的範圍,或使用(yòng)您的個人信息超出與收集時(shí)所聲稱的目的具有直接或合理(lǐ)關聯的範圍,我們将于收集或使用(yòng)您的個人信息前,再次通知(zhī)您并征得您的明(míng)示同意。
客戶數據
客戶數據是指您通過使用(yòng)在線服務向我們提供或以您的名義向我們提供的所有數據,包括所有文(wén)本、音(yīn)頻、軟件或圖像文(wén)件。例如,客戶數據包括您在在線服務中上(shàng)傳的供存儲或處理(lǐ)的數據以及您或您的終端用(yòng)戶在在線服務中上(shàng)傳的供托管的應用(yòng)程序。這(zhè)不包括配置、技術設置或服務記錄信息,或下(xià)述管理(lǐ)員數據、實名認證數據和(hé)付款數據。
我們僅爲提供在線服務或與之相兼容的目的使用(yòng)客戶數據。這(zhè)可能(néng)包括改進底層技術、預防性地排除故障、監測或修複影響在線服務運行的問題、以及改進監測和(hé)防範對(duì)用(yòng)戶的新生或衍生威脅(如惡意軟件或垃圾郵件)的功能(néng)等。
我們僅将客戶數據存儲在位于中國的數據中心。在有限的情形下(xià),當有必要對(duì)客戶支持事(shì)故進行故障排查或解決技術問題時(shí),世紀互聯可能(néng)根據可适用(yòng)的法律法規授權其位于中國境外(wài)的某一關聯方、供應商、或分包商訪問客戶數據。世紀互聯将根據可适用(yòng)的法律法規監督此類訪問,并在解決問題後終止此類訪問。
管理(lǐ)員數據
管理(lǐ)員數據是指在注冊、購買或管理(lǐ)在線服務時(shí)提供的有關管理(lǐ)員(包括賬戶聯系人和(hé)訂閱管理(lǐ)員)的信息,包括姓名、地址、電話(huà)号碼和(hé)電子郵件地址。
我們使用(yòng)管理(lǐ)員數據以完成您要求的交易、管理(lǐ)您的賬戶、改善在線服務以及監測并防止欺詐行爲。
我們可能(néng)會(huì)聯系您,以提供關于新訂閱、賬單和(hé)重要在線服務更新的信息(包括安全或其他(tā)技術問題的信息)。根據您客戶協議(yì)中的描述,在收到(dào)第三方關于您使用(yòng)服務的詢問時(shí),我們也(yě)可能(néng)聯系您。在使用(yòng)在線服務中或服務後的合理(lǐ)期限内,您将無法退訂這(zhè)些(xiē)消息。根據您的聯系方式偏好(hǎo),我們也(yě)可能(néng)通過電話(huà)或電子郵件聯系您,以提供有關其他(tā)産品和(hé)服務的信息和(hé)要約,或者請(qǐng)求您提供反饋。您可以在适用(yòng)的在線服務賬戶信息中管理(lǐ)您的聯系方式偏好(hǎo)或退訂此類消息。
實名認證數據
我們會(huì)依據可适用(yòng)的法律法規進行實名制管理(lǐ)。實名認證數據是指您在實名認證時(shí)提供的企業營業執照、管理(lǐ)員手機号碼或身份證掃描件。如您不提供上(shàng)述信息,将無法完成實名認證,因而可能(néng)無法使用(yòng)在線服務。
爲了(le)驗證實名認證數據的準确性和(hé)完整性,我們可能(néng)将您提供的信息與合法存有您信息的機構進行驗證核對(duì)。
付款數據
當您在線采購時(shí),您将被要求提供付款信息,其中包括您的支付工(gōng)具賬号,您的姓名和(hé)賬單地址,以及與您支付工(gōng)具有關的安全碼和(hé)其他(tā)金(jīn)融數據(“付款數據”)。
我們除使用(yòng)付款數據完成交易外(wài),也(yě)将使用(yòng)付款數據監測并防止欺詐行爲。
當您使用(yòng)經認證的付款數據時(shí),我們将保存該數據以幫助您在将來(lái)完成交易時(shí)不必再次提供該信息。但(dàn)是,我們不會(huì)以此方式保存與您支付工(gōng)具有關的安全碼。
支持數據
支持數據是我們在您提交支持請(qǐng)求或運行自(zì)動故障檢測器時(shí)收集的信息,包括有關硬件、軟件的信息以及與支持事(shì)故相關的其他(tā)詳細信息,例如:聯系方式或認證信息、聊天會(huì)話(huà)個性化設置、出錯及診斷期間有關機器和(hé)應用(yòng)程序狀況的信息、有關軟件安裝和(hé)硬件配置的系統和(hé)注冊數據以及錯誤追蹤文(wén)件。
我們将通過電話(huà)、電子郵件或在線聊天提供支持服務。經您允許,我們可能(néng)會(huì)通過遠程訪問臨時(shí)操作(zuò)您的機器。由專業支持人員進行的通話(huà)、在線聊天或遠程訪問可能(néng)會(huì)被記錄和(hé)/或監控。對(duì)于遠程訪問,您還可在操作(zuò)結束後查看(kàn)記錄。您可以在任何時(shí)間選擇終止即時(shí)聊天或遠程訪問。我們按照本隐私聲明(míng)中的規定使用(yòng)支持數據。此外(wài)也(yě)将其用(yòng)于解決您的支持事(shì)故和(hé)培訓用(yòng)途。
支持服務結束後,我們可能(néng)會(huì)向您發送有關您的體驗和(hé)服務内容的調查問卷。如果您不願接受調查問卷,可以通過電子郵件頁腳鏈接退訂或通過世紀互聯提供的其他(tā)通訊方式聯系支持部門(mén)退訂。
我們如何使用(yòng) Cookies 和(hé)類似技術
一些(xiē)在線服務網站(zhàn)會(huì)使用(yòng) Cookies。Cookies 是由網絡服務器存儲在設備硬盤上(shàng)的小(xiǎo)文(wén)本文(wén)件。我們可能(néng)會(huì)使用(yòng)Cookies 和(hé)類似技術(如網站(zhàn)信标)來(lái)存儲用(yòng)戶的偏好(hǎo)和(hé)設置以防止欺詐行爲、認證用(yòng)戶以及收集有關在線服務的操作(zuò)信息。除在您訪問我們網站(zhàn)時(shí)世紀互聯可能(néng)設置的 Cookies 以外(wài),爲我們提供一定服務(例如站(zhàn)點分析)的第三方也(yě)可能(néng)在您訪問世紀互聯站(zhàn)點時(shí)在您硬盤上(shàng)設置一定的 Cookies。
您可以通過改變浏覽器的設置拒絕或管理(lǐ) Cookies。請(qǐng)您注意,如果停用(yòng) Cookies,您可能(néng)無法享受到(dào)最佳的在線服務體驗,某些(xiē)在線服務也(yě)可能(néng)無法正常使用(yòng)。
本地軟件
在線服務的一些(xiē)功能(néng)可能(néng)允許或要求您安裝或運行本地軟件(例如,代理(lǐ)、Azure Stack 軟件等)。這(zhè)些(xiē)軟件可能(néng)會(huì)從(cóng)您的本地環境中收集數據以提供您需要的在線服務。本地代理(lǐ)還可能(néng)收集診斷數據并發送給我們(包括我們的關聯方、境内或境外(wài)的供應商或分包商),以運行和(hé)改善在線服務。關于代理(lǐ)的更多信息,請(qǐng)參閱相關服務文(wén)件。
我們如何存儲您的個人信息
您的個人信息将存儲在中國境内。如有必要,您的個人信息可能(néng)會(huì)依據您的授權或可适用(yòng)的法律法規被傳輸至境外(wài)。
在您使用(yòng)在線服務期間,我們持續存儲您提供的個人信息。您注銷賬号後,我們将根據相關法律法規的要求保留您的個人信息,但(dàn)我們不會(huì)在此期間使用(yòng)或處理(lǐ)您的信息;上(shàng)述保留期滿後,我們将立即對(duì)您的信息進行删除或匿名化處理(lǐ)。
當我們終止某項在線服務或停止運營時(shí),我們将通過電子郵件或公告通知(zhī)您,并在終止該項在線服務或停止運營後對(duì)您的相關個人信息進行删除或匿名化處理(lǐ)。
我們如何共享、轉讓和(hé)公開(kāi)披露您的信息
除非經您指示,或根據與您簽署的客戶協議(yì)或本隐私聲明(míng)中的描述,或根據可适用(yòng)的法律法規,我們不會(huì)向世紀互聯及其關聯方以外(wài)的任何第三方公開(kāi)披露、轉讓或共享客戶數據、管理(lǐ)員數據、實名認證數據、付款數據、或任何其它個人信息(“您的信息”)。
我們會(huì)不時(shí)委托中國境内或境外(wài)的其他(tā)公司爲我們提供技術支持或服務(如客戶支持)。我們可能(néng)允許這(zhè)些(xiē)公司在其開(kāi)展工(gōng)作(zuò)的必要範圍内獲取您的信息。這(zhè)些(xiē)信息主要包括爲提供技術支持或服務的各種技術信息,僅在極少數情況下(xià)涉及到(dào)您的個人信息。如确有必要由境外(wài)的供應商或分包商獲取您的個人信息,我們的客戶支持人員将向您說明(míng)相關情況,并事(shì)先征得您的同意。我們要求這(zhè)些(xiē)接收您個人信息的公司必須對(duì)您的信息保密,并禁止将其用(yòng)于爲世紀互聯提供服務之外(wài)的其他(tā)目的。
如必須向第三方披露客戶數據,除非法律禁止,我們将采取商業上(shàng)合理(lǐ)的努力事(shì)先告知(zhī)您相關披露情況。如果第三方就您使用(yòng)在線服務的行爲向我們投訴(例如聲稱關于您或您的終端用(yòng)戶有侵權行爲),我們可能(néng)會(huì)要求該第三方直接與您聯系,并可能(néng)會(huì)向該第三方提供您的基本聯系方式。
爲防止欺詐行爲或爲進行付款交易,世紀互聯可能(néng)會(huì)與中國境内或境外(wài)的第三方共享管理(lǐ)員數據或付款數據。目前,此類境外(wài)分包商的數據存儲在美(měi)國等其他(tā)國家或地區(qū)。我們要求此類第三方對(duì)您的信息保密,并不得将您的信息用(yòng)于其他(tā)目的。我們要求此類第三方采取充分的安全措施,以确保您的個人信息得到(dào)不低(dī)于在中國境内的保護。
您可以通過在線服務購買、訂閱或使用(yòng)世紀互聯以外(wài)的其他(tā)公司的服務、軟件和(hé)内容(“第三方産品”)。如果您選擇購買、訂閱或使用(yòng)第三方産品,我們可能(néng)會(huì)向第三方提供您的管理(lǐ)員數據或付款數據以使第三方能(néng)夠向您提供其産品(并根據您的聯系方式偏好(hǎo),向您發送促銷信息)。上(shàng)述信息及您對(duì)第三方産品的使用(yòng)将适用(yòng)第三方所适用(yòng)的隐私聲明(míng)和(hé)政策。
除法律法規另有規定外(wài),在沒有您事(shì)先書面指令的情況下(xià),我們不會(huì)對(duì)您終端用(yòng)戶所提出的數據保護和(hé)隐私要求做出實質回應。
當發生收購、兼并、重組等類似交易時(shí),如涉及到(dào)個人信息的轉讓,我們會(huì)向您告知(zhī)有關情況。持有您個人信息的承繼公司将繼續履行本隐私聲明(míng)項下(xià)的責任和(hé)義務。如果該公司變更使用(yòng)您個人信息的目的,則其應當就該變更再次取得您的明(míng)示同意。
在共享、轉讓或公開(kāi)披露您的個人信息時(shí),我們會(huì)征得您的同意,以下(xià)情形除外(wài):
- 與國家安全和(hé)國防直接相關的;
- 與公共安全、公共衛生、重大(dà)公共利益直接相關的;
- 與刑事(shì)偵查、起訴、審判、判決執行等直接相關的;
- 出于維護您或他(tā)人的生命、财産等重大(dà)合法權益但(dàn)又很(hěn)難得到(dào)本人同意的;
- 您自(zì)行向社會(huì)公衆公開(kāi)的個人信息;以及
- 從(cóng)合法公開(kāi)披露的信息中收集個人信息的,如合法的新聞報(bào)道(dào)或者政府公開(kāi)的信息。
我們如何保護您的個人信息
我們緻力于保護您的個人信息安全。我們使用(yòng)各種安全技術和(hé)流程來(lái)幫助保護您的個人信息,使其免遭未經授權的訪問、使用(yòng)或洩露。例如,我們将您的個人信息存儲在位于受控場所的計(jì)算(suàn)機系統中,并限制這(zhè)些(xiē)系統的訪問。在存儲和(hé)傳輸您的個人信息時(shí),我們将采取加密等相應的安全措施。
如發生個人信息安全事(shì)件,世紀互聯将按照法律法規的要求以推送通知(zhī)或公告等形式及時(shí)通知(zhī)您,向您告知(zhī)安全事(shì)件的基本情況和(hé)可能(néng)的影響、我們已采取或将要采取的處理(lǐ)措施、您可自(zì)主防範和(hé)降低(dī)風(fēng)險的建議(yì)、對(duì)您的補救措施等。
如發生網絡安全事(shì)件,我們會(huì)按照網絡安全事(shì)件應急預案采取相應的補救措施,并按照相關法律法規向有關主管部門(mén)報(bào)告。
您如何管理(lǐ)您的個人信息
我們爲您提供了(le)管理(lǐ)個人信息的方法。您可以在您的管理(lǐ)員入口的賬戶信息中查詢、管理(lǐ)您的管理(lǐ)員數據、實名認證數據及付款數據。但(dàn)出于安全性和(hé)身份識别的考慮或根據法律法規的規定,您可能(néng)無法修改注冊時(shí)提供的初始注冊信息,如實名認證數據。
如您對(duì)于管理(lǐ)個人信息有其他(tā)疑問或者需求,請(qǐng)聯系客戶支持人員。如果您選擇删除您的個人信息或改變授權的範圍,可能(néng)導緻我們無法爲您提供某些(xiē)在線服務。例如,删除付款數據或聯系方式的詳細信息,您将難以完成支付和(hé)接受相應的在線服務。
除非法律法規另有規定,如果我們決定響應您的删除請(qǐng)求,我們也(yě)會(huì)通知(zhī)從(cóng)我們這(zhè)裏獲得您的個人信息的供應商或分包商,要求其及時(shí)删除。
爲保障安全,在響應您根據本部分管理(lǐ)個人信息的請(qǐng)求時(shí),我們可能(néng)會(huì)先驗證您的身份。我們會(huì)在驗證您的身份後,及時(shí)響應您的上(shàng)述請(qǐng)求,并于三十天内或法律法規規定的期限内做出答(dá)複及合理(lǐ)解釋,或者告知(zhī)您解決糾紛的外(wài)部途徑。
盡管有上(shàng)述約定,但(dàn)根據法律法規,在以下(xià)情形我們可能(néng)無需響應您提出的上(shàng)述請(qǐng)求,包括但(dàn)不限于:
1) 與個人信息控制者履行法律法規規定的義務相關的;
2) 與國家安全、國防安全直接相關的;
3) 與公共安全、公共衛生、重大(dà)公共利益直接相關的;
4) 與犯罪偵查、起訴、審判和(hé)執行判決等直接相關的;
5) 個人信息控制者有充分證據表明(míng)個人信息主體存在主觀惡意或濫用(yòng)權利的;
6) 出于維護個人信息主體或其他(tā)個人的生命、财産等重大(dà)合法權益但(dàn)又很(hěn)難得到(dào)本人同意的;
7) 響應個人信息主體的請(qǐng)求将導緻個人信息主體或其他(tā)個人、組織的合法權益受到(dào)嚴重損害的;
8) 涉及商業秘密的。
遵守法律
您知(zhī)曉,根據中國法規:
• 互聯網信息服務提供者不得制作(zuò)、複制、發布或散播含有以下(xià)内容(“禁止内容”)的信息。以下(xià)内容屬禁止内容:
o 反對(duì)憲法所确定的基本原則的;
o 危害國家安全,洩露國家秘密,颠覆國家政權,破壞國家統一的;
o 損害國家榮譽和(hé)利益的;
o 煽動民族仇恨、民族歧視(shì),破壞民族團結的;
o 破壞國家宗教政策,宣揚邪教和(hé)封建迷信的;
o 散布謠言,擾亂社會(huì)秩序,破壞社會(huì)穩定的;
o 散布淫穢、色情、賭博、暴力、兇殺、恐怖或者教唆犯罪的;
o 侮辱或者诽謗他(tā)人,侵害他(tā)人合法權益的;
o 含有法律、行政法規禁止的其他(tā)内容的。
• 若互聯網信息服務提供者發現(xiàn)其網站(zhàn)傳輸的信息屬于禁止性内容的,應當立即停止傳輸,保存有關記錄,并向國家有關機關報(bào)告。
您進一步同意:
• 若您使用(yòng)在線服務開(kāi)展業務或運營組織須經相關政府機構許可或批準,您應當取得該等相關許可或批準,包括但(dàn)不限于:
o 若您的網站(zhàn)提供非經營性互聯網信息服務,您應當在政府機構辦理(lǐ)非經營性網站(zhàn)的備案;
o 若您的網站(zhàn)提供經營性互聯網信息服務,您應當從(cóng)政府機構取得經營性網站(zhàn)的 VAT 許可證。
• 若您爲一家使用(yòng)在線服務的互聯網信息服務提供商,您應當記錄提供的信息及其發布時(shí)間、互聯網地址或域名,并在相關政府機構依法調查時(shí),協助提供上(shàng)述信息。
• 您在注冊在線服務時(shí)必須提供您的真實身份和(hé)聯系方式,如信息發生變更的,應立即在管理(lǐ)員入口進行更新。我們将通過上(shàng)述信息聯系到(dào)您,詳見本隐私聲明(míng)中的規定。您保證您所提供的信息是真實、完整和(hé)有效的,否則您将承擔全部後果。
試用(yòng)期
試用(yòng)是爲了(le)在購買前檢測在線服務而提供的。在試用(yòng)期結束後,世紀互聯可以暫時(shí)保留在試用(yòng)在線服務期間所收集的信息,以便在您日後決定購買在線服務時(shí)改善您的客戶體驗。但(dàn)是,在試用(yòng)期結束後,您的信息可能(néng)随時(shí)從(cóng)在線服務中删除。
預覽發行
預覽版、測試版或其他(tā)預發行服務(“預覽”)是世紀互聯提供的爲了(le)在正式發行前獲得用(yòng)戶反饋的選擇性評估版本的在線服務。本部分描述了(le)針對(duì)預覽的不同或附加的條款:
安全:我們會(huì)盡最大(dà)努力在預覽中爲您的個人信息提供安全措施,但(dàn)這(zhè)些(xiē)安全措施與目前典型線上(shàng)服務中的安全措施相比可能(néng)會(huì)有不同之處。
未成年人保護
如您是18歲以下(xià)的未成年人,請(qǐng)務必要求您的監護人仔細閱讀本隐私聲明(míng),并請(qǐng)您在征得您的監護人同意的前提下(xià)使用(yòng)我們的在線服務或向我們提供您的信息。
本隐私聲明(míng)的更改
我們将不時(shí)更新我們的隐私聲明(míng)以響應的法律法規要求、用(yòng)戶反饋以及我們在線服務的變化。當我們發布更改的隐私聲明(míng)時(shí),我們将修訂隐私聲明(míng)頂部“最後更新”的日期。如果本隐私聲明(míng)或世紀互聯使用(yòng)您的信息的方式有實質性變更,我們将在該等變更生效前通過發布該等變更的通知(zhī)或直接向您發送通知(zhī)告知(zhī)您。我們鼓勵您定期審閱您使用(yòng)的産品和(hé)服務的隐私聲明(míng)以了(le)解世紀互聯會(huì)如何保護您的信息。
如何聯系我們
世紀互聯歡迎您的評論。如果您認爲世紀互聯未遵守其隐私或安全承諾,或者您需要我們的更多幫助,請(qǐng)通過客戶服務熱線(400-089-0365)聯系我們。
我們設立了(le)個人信息保護專員。
我們的郵寄地址爲:
中華人民共和(hé)國,北京市朝陽區(qū)酒仙橋路6号院電子城(chéng)·國際電子總部6号樓12-13層 100015
上海速融網絡科技有限公司(北京世紀互聯寬帶數據中心有限公司的關聯公司)
我們将在驗證您的身份後30天内予以回複。
Privacy Statement for Online Services Operated by 21Vianet
Updated: December 1, 2020
Scope
Online services operated by Shanghai Blue Cloud Technology Co., Ltd. (“21Vianet”, “we”, or “us”), an affiliate of Beijing 21Vianet Broadband Data Center Co., Ltd., include (1) Microsoft Azure; (2) Microsoft Office 365 ; (3) Microsoft Dynamics 365; (4) Microsoft Power Platform; and (5) Microsoft Intune(“Online Services”). The Online Services operated by 21Vianet are cloud services based on Microsoft’s technology but operated and sold by 21Vianet from data centers located in the People’s Republic of China (excluding Hong Kong and Macau Special Administrative Regions and Taiwan, referred to below as “China”). This Privacy Statement applies to the use of the Online Services and any other 21Vianet services that display or link to this Privacy Statement. For more information about the functionality of particular features, please review the service description or service documentation.
The Online Services may enable you to purchase, subscribe or use other products and services from 21Vianet or third parties with different privacy practices. Your use of other products and services, and any data you provide to a third party is governed by their privacy statements and policies.
Notice to End Users: This Privacy Statement is written for customers and potential customers of the Online Services operated by 21Vianet (collectively referred to as our “Customers”). All references to “you” or “your” in this privacy statement are to 21Vianet customers, who, in turn, may use the Online Services to develop and host their own services for their end users. Any data 21Vianet collects or handles in such circumstances is processed by us on behalf of our customer, who controls the collection and use of the data. End users should direct privacy-related requests to the entity providing them with service. If an end user accesses the Online Services using an email address provided by his or her organization (e.g., employer or school), the owner of the domain associated with the email address may: (i) have control and power of administration over the end user’s service account; and (ii) access and process end-user data, including the content of end-user’s communications and files. The end user’s use of the Online Services may be subject to the organization’s policies (if any). We are only responsible for the Customer’s privacy-related practices within the scope agreed with the Customer.
How We Collect and Use Your Data
Definition of Personal Data
Personal Data refers to all kinds of data recorded via electronic means or otherwise that can be used to identify a particular natural person or to reflect the particular natural person’s activities, whether on its own or combined with other data. For the purpose of this Privacy Statement, Personal Data may include the administrator data of the account administrator you specify in the administrator portal, Real-Name Authentication Data, the name, the number of the payment instrument, the billing address in the Payment Data, the registration data you submit on our website, in our marketing events, or for any survey or questionnaire, as well as the contact and verification information in support data, etc.
Sensitive Personal Data is a subset of Personal Data that can easily lead to damage of personal reputation, physical and mental health, or discriminatory treatment, and may endanger the safety of people and property if it is revealed, illegally provided, or abused. For the purpose of this Privacy Statement, Sensitive Personal Data may include Administrator Data, Real-Name Authentication Data, Payment Data, registration data which includes personal phone number, e-mail address, identification and payment instrument account numbers, security code, transaction record, support data which includes contact and verification information, etc.
We collect and use your data in the following scenarios, which may involve Personal Data. If we collect your Personal Data beyond the scope of the following statement, or use your Personal Data beyond the scope directly or reasonably associated with the stated purpose at the time of collection, we will inform you again and obtain your express consent before collecting or using your Personal Data.
Customer Data
Customer Data is all the data, including all text, sound, software or image files that you provide, or are provided on your behalf, to us through your use of the Online Services. For example, Customer Data includes data that you upload for storage or processing in the Online Services and applications that you or your end users upload for hosting in the Online Services. It does not include configuration, technical settings, or support ticket information, or Administrator Data, Real-Name Authentication Data, and Payment Data indicated below.
We only use Customer Data to provide the Online Services and for purposes compatible with providing the Online Services. This may include improvement of underlying technology, troubleshooting aimed at preventing, detecting and repairing problems affecting the operation of the Online Services and the improvement of features that involve the detection of, and protection against, emerging and evolving threats to the user (such as malware or spam).
Customer Data will only be stored in data centers located in China. In limited circumstances, when it is necessary to troubleshoot customer support incidents or solve technical problems, 21Vianet may authorize an affiliate, supplier, or subcontractor located outside the territory of China to access the Customer Data according to applicable laws and regulations. 21Vianet will supervise such access and terminate such access when the problem is resolved in accordance with applicable laws and regulations.
Administrator Data
Administrator Data is the data about administrators (including account contact and subscription administrators) provided during sign-up, purchase, or administration of the Online Services, such as name, address, phone number, and e-mail address.
We use Administrator Data to complete the transactions you request, administer your account, improve the Online Services, and detect and prevent fraud.
We may contact you to provide information about new subscriptions, billing and important updates about the Online Services, including information about security or other technical issues. We may also contact you regarding third-party inquiries we receive regarding your use of the Online Services, as described in your customer agreement. You will not be able to unsubscribe from these communications during the reasonable period within or after the Online Services. Subject to your contact preferences, you may also be contacted, by phone or e-mail, regarding information and offers about other products and services or to request your feedback. You may manage your contact preferences or unsubscribe such communications in your account profile for the applicable Online Service.
Real-Name Authentication Data
We implement real-name management in accordance with applicable laws and regulations. Real-Name Authentication Data refers to your business license, administrator’s mobile phone number, or the scanned copy of ID card provided by you during real-name authentication. If you do not provide the above data, you will not be able to complete the real name authentication and may not be able to use the Online Services.
In order to verify the accuracy and completeness of the Real-Name Authentication Data, we may verify the data provided by you with agencies that legally store your data.
Payment Data
When you make online purchases, you will be asked to provide payment data, which includes your payment instrument number, your name and billing address, and the security code associated with your payment instrument and other financial data (“Payment Data”).
We use Payment Data to complete transactions, as well as for the detection and prevention of fraud.
When you use authenticated Payment Data, we will store that data to help you complete future transactions without your having to provide the data again. We do not, however, retain the security code associated with your payment instrument in this manner.
Support Data
Support Data is the data we collect when you submit a support request or run an automated fault detector, including data about hardware and software, and other details related to support incidents, such as contact or verification information, chat session personalization, data about the conditions of the device and application during the period of error and diagnostics, system and registration data regarding software installation and hardware configuration, and error tracking files.
Support services can be provided by phone, email or online chat. With your permission, we may temporarily manipulate your machine through Remote Access. Calls, live chat, or Remote Access by professional support staff may be recorded and/or monitored. For Remote Access, you can also view the record after the operation has ended. You can choose to terminate live chat or Remote Access at any time. We use Support Data in accordance with this Privacy Statement, and we also use it to resolve your support issues and for training purposes.
After the support experience is over, we may send you a questionnaire about your experience and service content. If you are unwilling to participate in the survey, you may unsubscribe through the footer link in the email or contact the support department through other communication methods provided by 21Vianet to unsubscribe.
How We Use Cookies and Similar Technologies
Some Online Services’ websites use “Cookies”, which are small text files placed on a device’s hard drive by a web server. We may use Cookies and similar technologies such as web beacons for storing users’ preferences and settings, to prevent fraud, authenticate users and collect operational data about the Online Services. In addition to the Cookies we may set when you visit our websites, third parties that provide certain services on our behalf, such as site analytics, may also set certain Cookies on your hard drive when you visit our sites.
You may object or manage Cookies by changing the settings on your browser. However, please note that if you stop using Cookies, you may not enjoy the best service experience, and some of our Online Services may not function properly.
Local Software
Some features of the Online Services may enable or require that you install or run local software (e.g., agents, Azure Stack software, etc.). Such software may collect data from your local environment in order to provide the Online Services that you have requested. Local agents may also collect diagnostic data that will be sent to us (including our affiliates, and domestic or overseas suppliers or subcontractors) for operating and improving the Online Services. For more information about agents, please consult the relevant service documentation.
How We Store Your Personal Data
Your Personal Data will be stored in China. If necessary, your Personal Data may be transferred overseas upon your authorization or in accordance with applicable laws and regulations.
During your use of the Online Services, we retain the Personal Data you provided. After you close your account, in accordance with relevant laws and regulations, we will retain your Personal Data, but we will not use or process your Personal Data during this period; upon expiry of the aforementioned retention period, we will immediately delete or anonymize your data.
When we terminate an Online Service or operation, we will notify you by e-mail or announcement, and delete or anonymize your relevant Personal Data upon such termination.
How We Share, Transfer, and Disclose Your Data
We will not disclose or transfer Customer Data, Administrator Data, Real-Name Authentication Data, Payment Data, or any other Personal Data (“your data”) to, or share your data with, any third party apart from 21Vianet and its affiliates except as you direct, or as described in your customer agreement or this Privacy Statement, or pursuant to applicable laws and regulations.
- We contract with other companies within or outside China from time to time to provide technical support or services (such as customer support) on our behalf. We may provide these companies with access to your data where necessary for their engagement. This data mainly includes various technical data for providing technical support or services, and in rare cases involves your Personal Data. If it is really necessary to have your Personal Data accessed by an overseas supplier or subcontractor, our customer support personnel will explain the relevant information to you and obtain your prior consent. These companies are required to maintain the confidentiality of your data and are prohibited from using it for any purpose other than that for which they are engaged by 21Vianet.
- If it is strictly necessary to disclose Customer Data to a third party, we will use commercially reasonable efforts to notify you in advance of the disclosure unless legally prohibited. Should a third party contact us with a complaint about your use of the Online Services (for example, allegation of infringement by you or your end user), we may ask the third party to contact you directly and may provide your basic contact data to the third party.
- 21Vianet may share Administrator Data or Payment Data with third parties within or outside China for the purpose of fraud prevention or to process payment transactions. Currently, the data of such overseas subcontractors are stored in the US and other countries or regions. The third parties are required to keep your data confidential and are prohibited from using it for other purposes. They are required to take adequate security measures to ensure that your Personal Data receives the level of protection no less than that in China.
- The Online Services enable you to purchase, subscribe to, or use services, software, and contents from companies other than 21Vianet (“Third Party Offerings”). If you choose to purchase, subscribe to, or use a Third Party Offering, we may provide the third party with your Administrator Data or Payment Data to enable the third party to provide its offering to you (and subject to your contact preferences, send you promotional communications). That data and your use of a Third Party Offering will be governed by the privacy statement and policies applicable to the third party.
- We will not substantively respond to data protection and privacy requests from your end users without your prior written instruction, unless required by applicable laws and regulations.
- If your Personal Data has to be transferred due to acquisitions, mergers, reorganizations, or similar transactions, we will notify you. The succeeding company that holds your Personal Data will continue to perform the responsibilities and obligations under this Privacy Statement. If the succeeding company modifies the purpose of using your Personal Data, it should acquire your explicit consent again with regard to such modification.
- We may not need to obtain your explicit instruction when sharing, transferring or disclosing your Personal Data under the following circumstances:
-
- circumstances directly related to national security and national defense;
- circumstances directly related to public security, public health and significant public interests;
- circumstances directly related to criminal investigation, prosecution, trial, execution of a sentence, etc.;
- for securing significant lawful interests, such as your or other person’s life, property, etc., but only where it is difficult to acquire the consent from the data subject;
- where you have already publicly disclosed your Personal Data; and
- where we collect your Personal Data from the information that is lawfully disclosed to the public, such as from legitimate news report or information published by the government.
How We Protect Your Personal Data
We are committed to protecting your Personal Data. We use a variety of security technologies and procedures to help protect your Personal Data from unauthorized access, use, or disclosure. For example, we store your Personal Data on computer systems located in controlled locations and restrict access to these systems. When storing and transmitting your Personal Data, we will take appropriate security measures such as encryption.
In the event of Personal Data security incidents, 21Vianet will promptly notify you via push notifications or announcements in accordance with the requirements of applicable laws and regulations, informing you of the basic circumstances and possible impacts of the security incidents, the measures we have taken or will take, advice for you on self-prevention and mitigation of risks, remedial measures for you, etc.
In the event of a cyber security incident, we will follow the emergency response plan for cyber security incidents, take appropriate remedial measures, and report to the competent authorities in accordance with relevant applicable laws and regulations.
How You Can Manage Your Personal Data
We provide you with ways to manage your Personal Data. You can access and manage your Administrator Data, Real-name Authentication Data, and Payment Data in the account information of your administrator portal. However, for security and identification considerations or as required by applicable laws and regulations, you may not be able to modify the initial registration information provided at the time of registration, such as Real-Name Authentication Data.
If you have other questions or needs for managing Personal Data, please contact customer support. If you choose to delete your Personal Data or change the scope of the authorization, it may result in our failure to provide certain Online Services for you. For example, deleting Payment Data or contact details will make it difficult for you to complete payments and receive corresponding Online Services.
If we decide to respond to your request for deletion, we will also notify the supplier or subcontractor who has obtained your Personal Data from us and request them to delete your Personal Data in a timely manner, unless otherwise required by applicable laws and regulations.
To ensure security, we may ask you to verify your identity first in response to your request to manage Personal Data under this section. We will timely respond to your request above after verifying your identity, and reply or make reasonable explanations to you within 30 days or the time limit stipulated by applicable laws and regulations, or inform you about the external approaches you may choose to resolve the disputes.
Notwithstanding the above, pursuant to applicable laws and regulations, we may not need to respond to your requests under the following circumstances, including but not limited to:
- related to the performance of the obligations specified in laws and regulations by the personal data subject;
- directly related to national security and national defense security;
- directly related to public security, public health and major public interests;
- directly related to criminal investigation, prosecution, trial and enforcement of judgments;
- personal data controller has sufficient evidence indicating that the personal data subject has subjective malicious intention or abuses his rights;
- it is for the purpose of safeguarding the major legitimate rights and interests of the personal data subject or other individuals including life and property, but it is impossible to get his consent; and
- responding to the request of personal data subject will result in serious damage to the legitimate rights and interests of personal data subject or other individuals and organizations.
Compliance with Law
You acknowledge that under Chinese regulations:
- An Internet information service provider shall not produce, reproduce, publish, or disseminate information that includes the following content (“Prohibited Content”). Prohibited Content is content that:
-
- is against the basic principles determined by the Constitution;
- impairs national security, divulges State secrets, subverts State sovereignty or jeopardizes national unity;
- damages the reputation and interests of the State;
- incites ethnic hostility and ethnic discrimination or jeopardizes unity among ethnic groups;
- damages State religious policies or that advocates sects or feudal superstitions;
- disseminates rumors, disrupts the social order or damages social stability;
- disseminates obscenity, pornography, gambling, violence, homicide and terror, or that incites crime;
- insults or slanders others or that infringes their lawful rights and interests; and
- is otherwise prohibited by laws or administrative regulations.
- If an Internet information service provider discovers that information distributed on its website falls within the scope of the Prohibited Content, it shall promptly terminate the distribution, keep relevant records, and report to relevant authorities.
You further agree that:
- If the business or organization you operate by using the Online Services is subject to permit or approval by relevant governmental authorities, you should obtain such relevant permit or approval, including but not limited to:
- if your website provides non-operational Internet information services, Customer will make the filing for the non-operational website with the governmental authority; and
- if your website provides operational Internet information services, you will obtain the VAT permit for operational website from the governmental authority.
- If you are an Internet information service provider using Online Services, you will keep records of the information provided, time of publishing and the Internet address or domain name, and assist in providing such information when inquired by related government authorities in accordance with applicable laws.
- You will provide your real identity and contact information when registering for the Online Services and promptly update that information in the administrator portal if there are any changes to the information. We will use this information to contact you, as detailed in this Privacy Statement. You warrant that the information you provide is true, complete, and valid; otherwise, you will bear all the consequences.
Trial Period
Trials are provided to examine Online Services prior to purchase. At the end of the trial period, 21Vianet can temporarily retain the data it collects during your Online Service trial to improve your customer experience when you decide to purchase the Online Services in the future. However, your data may be removed from the Online Services at any time after the trial period for the Online Service ends.
Preview Releases
Preview version, beta version, or other pre-release services (“Previews”) are optional evaluation versions of the Online Services offered by 21Vianet to obtain customer feedback prior to general release. This section describes the different or additional terms specific to Previews:
- Security: We will do our best to provide security measures for your data in the Previews, but these security measures may differ from the present security measures in typical Online Services.
Protection of Minors
If you are a minor under the age of 18, please be sure to ask your guardian to read the Privacy Statement carefully, and please use our Online Services or provide your data to us under the condition that you have obtained the consent of your guardian.
Changes to this Privacy Statement
We will update our Privacy Statement from time to time to reflect requirements of applicable laws and regulations, customer feedback and changes in our Online Services. When we post changes to the Privacy Statement, we will revise the “last updated” date at the top of the Privacy Statement. If there are substantial changes to the Privacy Statement or in how 21Vianet will use your data, we will notify you either by posting a notice or by directly sending you a notification about such changes before they take effect. We encourage you to periodically review the Privacy Statement for the products and services you use to learn about how 21Vianet protects your data.
How to Contact Us
21Vianet welcomes your comments. If you believe that 21Vianet is not adhering to its privacy or security commitments, or you need more help from us, please contact us through the customer support hotline 400-089-0365.
We have a personal data protection officer. Our mailing address is:
12-13F, Building 6, No.6, Jiuxianqiao Road, Beijing Electronics Zone, Chaoyang District, Beijing, 100015
Shanghai Blue Cloud Technology Co., Ltd, an affiliate of Beijing 21Vianet Broadband Data Center Co., Ltd.
We will respond to you within 30 days after the verification of your identity.