Last updated: 08/01/2026
This Cookie Notice explains how Bloom Cloud Limited (“we”, “us”, “our”) uses cookies and similar technologies on our website and cloud service portals. This Cookie Notice should be read together with our Privacy Notice.
Cookies are small text files placed on your device when you visit a website or access an online service. We also use similar technologies such as local storage, pixels, and SDKs (together referred to as “cookies”).
Required for core functionality, including authentication, security, session management, and load balancing.
Enable enhanced functionality and personalisation, such as remembering preferences.
Help us understand usage patterns and improve performance. These cookies are used only with consent where required.
Used to deliver relevant marketing communications. These cookies are optional and subject to consent.
Strictly necessary cookies: legitimate interests
Functional, analytical, and marketing cookies: consent
You can manage cookie preferences via our cookie banner or browser settings. Disabling cookies may affect service functionality.
Last updated: 08/01/2026
These Website Terms & Conditions govern your use of the Bloom Cloud Limited website.
Bloom Cloud Limited is a company registered in England and Wales.
You agree not to misuse the website, introduce malicious code, or attempt unauthorised access.
All website content is owned by or licensed to Bloom Cloud Limited.
The website is provided on an “as is” basis. Nothing in these terms limits liability for death or personal injury caused by negligence, fraud, or any liability that cannot be excluded under law.
These terms are governed by the laws of England and Wales.
Last updated: 08/01/2026
These Cloud Services Terms of Service (“Terms”) govern access to and use of Bloom Cloud Limited’s infrastructure, cloud, and data centre services (the “Services”). They apply to business customers and authorised end users.
Bloom Cloud Limited provides infrastructure, compute, storage, networking, and related cloud services delivered through its own hardware, data centres, orchestration platforms, and operational systems.
Services may be provided on a paid subscription, usage-based, or free trial basis.
We may offer free trials for certain Services. Free trials are provided “as is”, may be limited in duration or functionality, and may be withdrawn at any time. No service level commitments apply during free trials.
Customers are responsible for: - Maintaining account security - Ensuring only authorised users access the Services - All activity conducted using their credentials.
Customers: - Retain all rights to Customer Data - Are solely responsible for the legality of Customer Data uploaded - Must ensure compliance with applicable laws, including data protection laws.
Fees are payable in accordance with agreed pricing.
Payments may be made by: - Bank transfer - Stripe or other payment service providers.
Failure to pay may result in suspension or termination of Services.
We aim to provide reliable Services but do not guarantee uninterrupted availability. Service levels, if any, will be set out in a separate SLA.
We may suspend or terminate Services for breach, non-payment, or security risk.
Liability is limited to the maximum extent permitted by law and, where applicable, capped at fees paid in the preceding 12 months.
These Terms are governed by the laws of England and Wales.
Last updated: 08/01/2026
This Data Processing Agreement (“DPA”) forms part of the contract between Bloom Cloud Limited (the “Processor”) and the customer (the “Controller”) in accordance with Article 28 UK GDPR and EU GDPR.
Processing relates to Customer Data uploaded to or generated through the Services for the duration of the Services agreement.
Provision of cloud infrastructure, hosting, storage, networking, and related services.
As determined and controlled by the Controller, including end users, employees, and customers.
Bloom Cloud Limited shall: - Process personal data only on documented instructions - Ensure confidentiality of personnel - Implement appropriate technical and organisational measures - Assist with data subject requests - Notify the Controller of personal data breaches without undue delay - Allow audits subject to reasonable notice
Bloom Cloud Limited operates its own infrastructure, hardware, orchestration systems, and data centres and implements security measures appropriate to the risks, including physical, technical, and organisational controls.
Bloom Cloud Limited does not rely on third-party hosting providers but may use limited sub-processors for ancillary services (e.g. payments, monitoring). Any sub-processors are subject to contractual data protection obligations.
Where Customer Data is transferred outside the UK or EEA, appropriate safeguards such as SCCs or UK IDTAs will apply.
Upon termination of the Services, Customer Data will be deleted or returned in accordance with the contract, unless retention is required by law.
This DPA is governed by the laws of England and Wales.
Controller: Customer
Processor: Bloom Cloud Limited
Subject matter: Processing of Customer Data in connection with the provision of cloud infrastructure and data centre services.
Duration: For the term of the Services agreement and any agreed retention period thereafter.
Nature of processing: Collection, storage, transmission, deletion, and other processing necessary to provide compute, storage, networking, and related infrastructure services.
Purpose of processing: Provision, maintenance, security, and support of the Services.
Types of personal data: As determined by the Controller, which may include identifiers, contact data, usage data, and other personal data uploaded by the Controller or its end users.
Categories of data subjects: End users, employees, contractors, customers, or other individuals determined by the Controller.
Bloom Cloud Limited implements appropriate measures to protect personal data, including:
Logical access controls and role-based access management
Encryption of data in transit and, where appropriate, at rest
Network segmentation and firewall protections
Monitoring, logging, and alerting
Secure configuration and vulnerability management
Confidentiality obligations for personnel
Security and data protection training
Incident response and breach notification procedures
Physical security controls at data centre facilities
Business continuity and disaster recovery planning
Measures are reviewed and updated periodically based on risk assessments.
Bloom Cloud Limited does not use third-party hosting providers. Approved sub-processors may include:
Payment processors (e.g. Stripe)
Financial institutions (banking services)
Monitoring, alerting, or security service providers
An up-to-date list of sub-processors will be made available upon request.
Last updated: 08/01/2026
This Service Level Agreement (“SLA”) applies to paid Cloud Services provided by Bloom Cloud Limited unless otherwise agreed in writing.
We target monthly service availability of 99.9%, excluding scheduled maintenance and force majeure events.
Scheduled maintenance will be notified in advance where reasonably practicable.
We will use reasonable efforts to respond to service incidents as follows:
Critical impact: prompt response
High impact: within business hours
Medium/low impact: best-efforts basis
Service credits, if applicable, will be set out in the customer’s contract or order form.
The SLA does not apply to: - Free trials - Customer misconfiguration - Customer-controlled software or data - Events outside our reasonable control
Last updated: 08/01/2026
This Acceptable Use Policy (“AUP”) governs use of Bloom Cloud Limited’s Services.
Customers and end users must not:
Use the Services for unlawful activities
Upload or distribute malware or malicious code
Attempt unauthorised access to systems or data
Interfere with network integrity or service availability
Use the Services to infringe intellectual property rights
Customers are solely responsible for all data and content uploaded to the Services.
We may suspend or terminate Services for violations of this AUP.
We may update this AUP from time to time. Continued use of the Services constitutes acceptance of the updated policy.