Last updated: 08/01/2026
This Privacy Notice explains how Bloom Cloud Limited (“we”, “us”, “our”) collects, uses, stores, and protects personal data when you access or use our website, cloud platforms, and software-as-a-service offerings (together, the “Services”). It applies to users in the United Kingdom, the European Union / European Economic Area (EU/EEA), and globally.
We are committed to complying with applicable data protection laws, including the UK GDPR, EU GDPR, and other relevant international privacy regulations.
Bloom Cloud Limited is the data controller for the personal data processed through the Services.
Company name: Bloom Cloud Limited
Registered office: C/O Charnwood Accountants The Point, Granite Way, Mountsorrel, Loughborough, Leicestershire, LE12 7TZ
Company number: 09255644
Email: management@bloomcloud.co.uk
Where Bloom Cloud Limited processes personal data on behalf of customers as part of providing Cloud or SaaS services, we act as a data processor, and our customers act as the data controllers.
This Privacy Notice applies to: - Visitors to our website - Prospective customers and business contacts - Users of our SaaS and cloud services - Representatives of our customers, suppliers, and partners
It does not apply to personal data processed by our customers within their own use of our SaaS platforms, which is governed by the relevant Data Processing Agreement (DPA) and the customer’s own privacy notices.
Name
Business email address
Telephone number
Company name and role
Account registration details
Billing and payment-related contact details
Support requests and communications
Any other information you choose to provide via forms, onboarding, or correspondence
When providing our cloud services, we may process personal data uploaded or generated by our customers (“Customer Data”). The nature of this data is determined by the customer and may include personal data relating to their end users.
We process Customer Data only in accordance with our customers’ instructions and the applicable contract.
When you use our website or Services, we may collect:
IP address
Device identifiers
Browser type and version
Operating system
Usage data, logs, and performance metrics
Pages viewed, access times, and referring URLs
This data is collected using cookies, SDKs, logs, and similar technologies.
We use personal data for the following purposes:
To provide, operate, and maintain our SaaS and cloud services
To create and manage user accounts
To deliver customer support and service communications
To process payments and manage subscriptions
To improve performance, security, and functionality
To monitor usage and prevent fraud or misuse
To send service-related notices and updates
To send marketing communications (where permitted)
To comply with legal, regulatory, and contractual obligations
We rely on the following lawful bases depending on context:
Contractual necessity – to provide the Services or perform a contract
Legitimate interests – to operate, improve, and secure our business and Services
Consent – for cookies, analytics, and marketing communications where required
Legal obligation – to meet statutory or regulatory requirements
For users outside the UK/EU, we process personal data in accordance with applicable local laws and recognised privacy principles.
We may share personal data with:
Cloud hosting providers and infrastructure partners
Analytics, monitoring, and security service providers
Payment processors and billing partners
Customer support and CRM providers
Professional advisers (legal, financial, insurance)
Regulators, courts, or authorities where required by law
All third parties are bound by contractual obligations to protect personal data and use it only for authorised purposes.
As a global cloud service provider, personal data may be transferred and processed outside the UK or EEA.
Where required, we rely on appropriate safeguards, including: - UK adequacy regulations - EU adequacy decisions - Standard Contractual Clauses (SCCs) - International Data Transfer Agreements (IDTAs)
We retain personal data only for as long as necessary for the purposes described in this Privacy Notice, including:
The duration of customer contracts
Legal, accounting, or compliance obligations
Dispute resolution and enforcement of agreements
Customer Data is retained and deleted in accordance with the applicable contract and Data Processing Agreement.
Subject to applicable law, you may have the right to:
Access your personal data
Correct inaccurate or incomplete data
Request deletion of your data
Restrict or object to processing
Receive a copy of your data (data portability)
Withdraw consent at any time
UK and EU users also have the right to lodge a complaint with their supervisory authority, such as the UK Information Commissioner’s Office (ICO) or their local EU data protection authority.
Requests can be made using the contact details in section 1.
We use cookies and similar technologies to:
Ensure the website and Services function correctly
Improve performance and security
Analyse usage and traffic
Remember user preferences
Deliver marketing content where permitted
Cookies may be strictly necessary, functional, analytical, or marketing cookies.
Detailed information about cookies, their purposes, and how to manage preferences is provided in our Cookie Notice, which forms part of this Privacy Notice.
We implement appropriate technical and organisational security measures designed to protect personal data, including:
Encryption in transit and at rest
Access controls and authentication
Monitoring and logging
Regular security testing
Despite these measures, no system can be completely secure.
This Privacy Notice should be read alongside our Website Terms & Conditions, SaaS Terms of Service, and Data Processing Agreement, which together govern your use of our Services.
In the event of any conflict, the relevant contractual terms shall prevail.
We may update this Privacy Notice from time to time to reflect changes in law, technology, or our practices. Updates will be posted on this page and, where appropriate, notified to users.
If you have questions or concerns about this Privacy Notice or our data practices, please contact us using the details in section 1.
If you are not satisfied with our response, you may lodge a complaint with the appropriate data protection authority.