Privacy Policy

Introduction

At Nexus AI, we recognize that privacy is not merely a legal obligation, it is a foundational principle of trust with our clients. This Privacy Policy explains, in clear and enforceable terms, how we collect, use, store, share, and protect your information when you engage with our automation and website design services. Our approach ensures compliance with major privacy frameworks including GDPR (European Union) and CCPA (California, U.S.), while maintaining transparency and accountability.

1. Types of Data Collected

We categorize data collection into three primary classes:

1.1 Personal Data

• Name, email, phone number, billing address

• Company information, job title, and professional contact details

• Account credentials for service access

1.2 Technical Data

• IP addresses, device identifiers, browser type, operating system

• Log files, session durations, clickstream data

1.3 Behavioral Data

• Service usage patterns (e.g., features accessed, project workflows)

• Interaction with our website, communications, and marketing engagement

Legal Rationale: Defining data types explicitly allows us to clarify processing purposes, meet transparency requirements under GDPR Articles 5 & 13, and provide precise CCPA disclosures.

2. Purpose and Legal Basis for Data Processing

We process your data for the following purposes, under relevant legal bases:

• Service Delivery: To provide, maintain, and improve our automation and website design services. (Contractual necessity under GDPR Article 6(1)(b))

• Client Communication: To respond to inquiries, support requests, and project updates. (Legitimate interest under GDPR Article 6(1)(f))

• Marketing & Analytics: To send promotional content or improve our services, only with consent where required. (Consent under GDPR Article 6(1)(a))

• Legal Compliance: To satisfy tax, contractual, or regulatory obligations. (Legal obligation under GDPR Article 6(1)(c))

• Call-Out Box: Clients may withdraw consent for marketing communications at any time via our unsubscribe options or by contacting privacy@[yourdomain].com.

3. Third-Party Data Sharing

We share data under the following conditions:

• Vendors and Service Providers: Including cloud hosting, analytics, payment processing, and project management platforms, strictly under contractual data protection obligations.

• Affiliates: Where joint services require sharing of technical or transactional data.

• Legal Obligations: When required by law, regulation, court order, or government authority.

Rationale: This explicit disclosure preempts liability for inadvertent or mandatory disclosures while maintaining operational flexibility.

4. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to enhance website functionality, analyze usage, and deliver personalized experiences.

• Types: Essential, Performance, Functional, and Targeting/Advertising cookies.

• User Choice: Visitors can opt-in/opt-out via our cookie consent banner or browser settings.

Call-Out Box: Disabling cookies may limit website functionality, but will not restrict essential service access.

5. Data Storage and Security

Storage Locations: Secured servers within the EU and U.S., compliant with GDPR and CCPA cross-border requirements.

Retention Periods:

• Active client records: 7 years post-service completion

• Marketing data: Until consent withdrawal or 3 years of inactivity

Security Measures:

• Encryption at rest and in transit

• Access control and regular vulnerability assessments

• Incident response protocols

Rationale: Explicit retention periods and technical safeguards satisfy legal requirements and reduce exposure to data breach liabilities.

6. User Rights

You are entitled to the following rights under GDPR, CCPA, and other applicable frameworks:

• Access: Request a copy of your personal data.

• Correction: Rectify inaccurate or incomplete data.

• Deletion: Request erasure of personal data, subject to contractual or legal retention requirements.

• Restriction: Limit processing for specific purposes.

• Data Portability: Receive data in a structured, machine-readable format.

• Opt-Out: Refuse marketing communications and automated profiling.

How to Exercise Rights: Submit a request via privacy@[yourdomain].com with proof of identity.

7. Dispute Resolution and Governing Law

Governing Law: This Privacy Policy and all related disputes are governed by the laws of State of Connecticut, USA unless otherwise required by local law.

Dispute Resolution: Parties will first attempt to resolve disputes through mediation. If unresolved, disputes may be escalated to binding arbitration or courts of competent jurisdiction.

Rationale: Clear dispute resolution language mitigates litigation risk and aligns with enforceable legal standards globally.

8. Changes to this Privacy Policy

We may update this Policy periodically to reflect changes in legal requirements or business practices. Clients will be notified via website notice or direct communication where required.

We build the system. You run the business.

Phone: (203) 896-0492

Privacy Policy

Introduction

1. Types of Data Collected

We categorize data collection into three primary classes:

1.1 Personal Data

• Name, email, phone number, billing address

• Company information, job title, and professional contact details

• Account credentials for service access

1.2 Technical Data

• IP addresses, device identifiers, browser type, operating system

• Log files, session durations, clickstream data

1.3 Behavioral Data

• Service usage patterns (e.g., features accessed, project workflows)

• Interaction with our website, communications, and marketing engagement

Legal Rationale: Defining data types explicitly allows us to clarify processing purposes, meet transparency requirements under GDPR Articles 5 & 13, and provide precise CCPA disclosures.

2. Purpose and Legal Basis for Data Processing

We process your data for the following purposes, under relevant legal bases:

• Service Delivery: To provide, maintain, and improve our automation and website design services. (Contractual necessity under GDPR Article 6(1)(b))

• Client Communication: To respond to inquiries, support requests, and project updates. (Legitimate interest under GDPR Article 6(1)(f))

• Marketing & Analytics: To send promotional content or improve our services, only with consent where required. (Consent under GDPR Article 6(1)(a))

• Legal Compliance: To satisfy tax, contractual, or regulatory obligations. (Legal obligation under GDPR Article 6(1)(c))

• Call-Out Box: Clients may withdraw consent for marketing communications at any time via our unsubscribe options or by contacting privacy@[yourdomain].com.

3. Third-Party Data Sharing

We share data under the following conditions:

• Vendors and Service Providers: Including cloud hosting, analytics, payment processing, and project management platforms, strictly under contractual data protection obligations.

• Affiliates: Where joint services require sharing of technical or transactional data.

• Legal Obligations: When required by law, regulation, court order, or government authority.

Rationale: This explicit disclosure preempts liability for inadvertent or mandatory disclosures while maintaining operational flexibility.

4. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to enhance website functionality, analyze usage, and deliver personalized experiences.

• Types: Essential, Performance, Functional, and Targeting/Advertising cookies.

• User Choice: Visitors can opt-in/opt-out via our cookie consent banner or browser settings.

Call-Out Box: Disabling cookies may limit website functionality, but will not restrict essential service access.

5. Data Storage and Security

Storage Locations: Secured servers within the EU and U.S., compliant with GDPR and CCPA cross-border requirements.

Retention Periods:

• Active client records: 7 years post-service completion

• Marketing data: Until consent withdrawal or 3 years of inactivity

Security Measures:

• Encryption at rest and in transit

• Access control and regular vulnerability assessments

• Incident response protocols

Rationale: Explicit retention periods and technical safeguards satisfy legal requirements and reduce exposure to data breach liabilities.

6. User Rights

You are entitled to the following rights under GDPR, CCPA, and other applicable frameworks:

• Access: Request a copy of your personal data.

• Correction: Rectify inaccurate or incomplete data.

• Deletion: Request erasure of personal data, subject to contractual or legal retention requirements.

• Restriction: Limit processing for specific purposes.

• Data Portability: Receive data in a structured, machine-readable format.

• Opt-Out: Refuse marketing communications and automated profiling.

How to Exercise Rights: Submit a request via privacy@[yourdomain].com with proof of identity.

7. Dispute Resolution and Governing Law

Governing Law: This Privacy Policy and all related disputes are governed by the laws of State of Connecticut, USA unless otherwise required by local law.

Dispute Resolution: Parties will first attempt to resolve disputes through mediation. If unresolved, disputes may be escalated to binding arbitration or courts of competent jurisdiction.

Rationale: Clear dispute resolution language mitigates litigation risk and aligns with enforceable legal standards globally.

8. Changes to this Privacy Policy

We may update this Policy periodically to reflect changes in legal requirements or business practices. Clients will be notified via website notice or direct communication where required.

Quick Links

Support

Contact Details