CloudHealth by VMware collects and processes machine level metadata. That includes DNS and IP addresses provided via API by the Cloud Provider(s). If a client deems that information sensitive, it can be ignored for processing purposes. The only other PII data collected by the platform includes a users’ Name, Email Address, and title (optional) for the purposes of the user logging into the platform.

Where will PII (Personally identifiable information) be processed?

CloudHealth does not process PII, it uses a user’s email address for the purpose of logging into the platform.

Will data be transferred out of the UK? 

CloudHealth data currently resides in AWS data-centres in the US – Primary location in US East, North Virginia, Backup location in US West, Oregon.

Will data be encrypted in transit? 
Yes. Data in transit is encrypted using TLS 1.2.

Will data be encrypted at rest? 
Yes. Datastores use 256-bit AES encryption for customer data at rest. Backup data is bulk encrypted with AES256.

List all third parties involved in delivery of products/services (AWS)

CloudHealth does not engage 3^rd parties to deliver their services.