Privacy Policy

At NexusNova Technologies ("we", "our", or "us"), your privacy and the security of your personal data are of utmost importance to us. This Privacy Policy outlines our commitment to safeguarding the information you share with us when you interact with our company through any of our digital platforms or services.

This policy applies to all visitors, users, clients, and partners who access or engage with:

• Our official website at www.nexusnovcore.com,
• Any of our proprietary software platforms or SaaS solutions (such as EnforceCam),
• Our custom-developed mobile and web applications,
• Any support, consultation, or communication channels managed by NexusNova Technologies.

By accessing or using any of our services, you agree to the terms outlined in this Privacy Policy. We encourage you to read it carefully to understand how we handle your personal data — including what we collect, how we use it, the choices you have, and the measures we take to protect your information.

If you do not agree with the practices described in this policy, please do not use our services or provide personal information to us.

1. Scope of This Policy

This Privacy Policy governs how NexusNova Technologies collects, uses, stores, and protects personal data across all touchpoints where we interact with users, clients, and partners. It applies to anyone who engages with us, whether through browsing our website, using our software products, or participating in our projects and services.

Specifically, this policy covers:

a. The NexusNova Website

This includes all visitors to www.nexusnovacore.com When you browse our site, contact us via forms, or download materials, we may collect data such as your IP address, browser type, referral sources, interaction logs, and any personal details you provide (e.g., via contact or quote request forms).

b. Our Software Applications and SaaS Platforms

This includes all users of NexusNova-developed applications and platforms, such as EnforceCam or custom-built SaaS solutions for clients. Whether accessed via mobile, desktop, or API, we may collect user registration data, operational metrics, device information, location data, media uploads, usage logs, and other platform-specific inputs.

c. Our Services and Client Projects

This applies to individuals or organizations who engage us for custom software development, system integrations, UI/UX design, or any technical consultancy. In the course of delivering these services, we may collect and process contact information, business data, and other project-related inputs required to fulfill our contractual obligations.

d. Communications, Support Requests, and Interactions

This includes all interactions with our team — whether you call, email, chat, or engage us on social media. We may collect identifiers (e.g., name, email), inquiry details, and communication history for customer support, training, internal record-keeping, or service improvement.

This policy applies regardless of how you access our services — whether directly through our website, via third-party platforms integrated with our systems, or through one of our partner organizations.

2. Information We Collect

NexusNova Technologies collects various types of information to deliver and improve our services, ensure security, and provide personalized user experiences. The types of information we collect fall into three main categories:

a. Personal Information

This is information that can be used to identify you directly or indirectly. We may collect personal information through our website, platforms, onboarding processes, or during communication with our team.

Examples include:

• Full Name: Used for account creation, verification, and official communication.
• Email Address: Used for login credentials, notifications, technical support, marketing updates (if opted in), and service-related correspondence.
• Phone Number: Used for identity verification, two-factor authentication (where applicable), support communications, and service delivery coordination.
• Company/Organization Details (for B2B clients): Company name, address, tax ID, or registration number. Point of contact information. Organizational role and preferences for client servicing or project setup.
• Billing or Payment Information: Payment method details (e.g., bank info, credit card info — processed securely via payment gateways). Transaction records, invoices, and payment history. Tax and billing address details.

b. Technical Information

We automatically collect certain technical data about your device and how you interact with our website and platforms. This helps us analyze performance, detect anomalies, and improve user experience.

Examples include:

• IP Address: Used to determine location (e.g., for geofencing or analytics), prevent fraud, and ensure security.
• Device Information: Device type (mobile, tablet, desktop), Operating system and version, Device identifiers (e.g., UDID, MAC address where applicable)
• Browser Information: Browser type, version, language preference, Browser plug-ins or capabilities that affect how our services are rendered

c. Platform-Specific Data

When using our proprietary platforms (such as EnforceCam or custom SaaS solutions), we may collect specialized data relevant to the service offering and operational need. This may include:

• Camera and Surveillance Data: Video feeds, images, timestamps, and location metadata captured through EnforceCam-connected devices.
• Incident and Enforcement Records: Logs of flagged events, enforcement actions, audit trails, and operator annotations generated during platform use.
• User Activity and Session Data: Login history, session duration, feature usage patterns, and interaction logs within the platform.
• Location Data: GPS coordinates or geographic identifiers associated with monitored zones or deployed devices.
• API and Integration Data: Data exchanged between EnforceCam and third-party systems you have authorized to connect to the platform.

3. How We Use Your Information

We use the information we collect for a variety of business and operational purposes. These uses help us deliver secure, reliable, and customized digital experiences across our platforms, services, and client solutions.

a. Provide and Improve Our Products and Services

We use your information to deliver core functionalities across our web, mobile, and SaaS platforms, set up and manage your user account, process transactions, and incorporate feedback into platform improvements.

b. Respond to Inquiries or Support Requests

We collect contact and usage information to respond to inquiries, diagnose technical issues, provide onboarding support, and ensure a high standard of customer service.

c. Communicate with You

We may use your contact information to send you service-related notifications (e.g., account activity, system updates, billing alerts), product announcements, and — where you have opted in — marketing communications. You may opt out of non-essential communications at any time.

d. Ensure Security and Prevent Fraud

We use technical and behavioral data to detect and prevent unauthorized access, fraudulent activity, abuse of our platforms, and other security threats. This includes monitoring login patterns, flagging anomalous activity, and enforcing access controls.

e. Comply with Legal Obligations

We may process your data as required to comply with applicable laws, regulations, court orders, or government authority requests — including data protection laws such as the Nigeria Data Protection Act (NDPA) and any relevant international frameworks.

f. Analytics and Platform Optimization

We use aggregated and anonymized data to analyze usage trends, measure the effectiveness of features, and make informed decisions about future product development. This data does not identify individual users and is used solely to enhance the overall quality of our services.

4. Legal Basis for Processing

We collect and process your personal data only when we have a valid legal basis to do so. Depending on the nature of your interaction with NexusNova Technologies, we rely on one or more of the following legal bases:

a. Consent

We process your personal data when you freely give us permission to do so. This includes when you sign up for newsletters, fill out contact forms, participate in surveys, or agree to the use of cookies. Where consent is the basis for processing, you have the right to withdraw it at any time without affecting the lawfulness of processing carried out prior to withdrawal.

b. Contractual Necessity

We process personal data as necessary to enter into or perform a contract with you or your organization, such as when you engage us for software development services or use our SaaS platforms.

c. Legitimate Interests

In some cases, we process personal data based on our legitimate business interests, provided those interests are not overridden by your rights and freedoms. This includes activities such as improving our services, securing our platforms, conducting internal analytics, and preventing fraud. We assess and balance these interests against your privacy rights before relying on this basis.

d. Legal Obligation

We may process your personal data where necessary to comply with a legal or regulatory obligation to which NexusNova Technologies is subject — such as tax reporting requirements, court orders, or directions from data protection authorities.

5. How We Share Your Data

At NexusNova Technologies, we respect your privacy and are committed to handling your data with care and transparency. We do not sell your personal information to third parties. However, in the course of delivering our services and operating our platforms, we may share your data with trusted entities under specific conditions.

a. Service Providers

We partner with carefully vetted third-party service providers who support us in delivering and maintaining our products and services. These providers are only given access to the data necessary for them to perform their functions and are contractually obligated to protect your data in accordance with this policy. Examples include cloud hosting providers, payment processors, email delivery services, and analytics platforms.

b. Legal and Regulatory Requirements

We may disclose your personal data when required by law, regulation, legal process, or government authority — including to respond to court orders, subpoenas, or regulatory investigations. We will, where permitted, notify you of such disclosures.

c. Business Transfers

In the event of a merger, acquisition, restructuring, or sale of all or part of NexusNova Technologies' assets, your personal data may be transferred to the succeeding entity as part of that transaction. We will notify you via email or a prominent notice on our website prior to your data being transferred and becoming subject to a different privacy policy.

d. With Your Consent

In circumstances not described above, we will share your personal data with third parties only with your explicit prior consent. You may withdraw that consent at any time by contacting us using the details provided at the end of this policy.

6. Third-Party Services and Integrations

Some parts of our websites, platforms, or software applications may link to or integrate with services provided by third parties. These third-party services may collect information from you directly or through their integration with our platforms. NexusNova Technologies is not responsible for the privacy practices of these external services, and we encourage you to review their respective privacy policies before engaging with them.

Third-party integrations we may use include, but are not limited to:

• Cloud Infrastructure: Amazon Web Services (AWS) or similar providers for hosting, storage, and compute services.
• Payment Processors: Secure payment gateways for processing subscriptions and transactions. We do not store full card details on our own servers.
• Analytics Tools: Web analytics platforms to understand how users interact with our website and products.
• Communication Services: Email delivery and notification providers used to send transactional and support messages.
• Authentication Providers: Identity and access management services used to facilitate secure login.

Where these integrations involve the transfer of your personal data, we ensure that appropriate data processing agreements and safeguards are in place.

7. Data Retention

We retain your information only for as long as it is necessary to fulfill the purposes for which it was collected, or as required to comply with applicable laws, regulations, and contractual obligations. Our retention periods are determined by the following principles:

• Account Data: Retained for the duration of your active account relationship with us, and for a reasonable period thereafter to allow for account recovery or dispute resolution.
• Transaction and Billing Records: Retained for a minimum of seven (7) years in compliance with financial record-keeping obligations.
• Support and Communication Logs: Retained for up to three (3) years to support ongoing service delivery and internal quality reviews.
• Platform Usage and Surveillance Data (EnforceCam): Retained in accordance with the terms agreed upon with each client organization and applicable regulatory requirements. Clients are responsible for configuring retention periods within the platform settings where this option is available.
• Marketing Data: Retained until you opt out or withdraw consent, after which it is promptly deleted or anonymized.

When personal data is no longer required, we securely delete or anonymize it in a manner that prevents unauthorized recovery or reconstruction.

8. Data Security

At NexusNova Technologies, the security of your data is a top priority. We implement a comprehensive set of technical, administrative, and organizational safeguards to protect the confidentiality, integrity, and availability of the personal and operational data we process.

a. Encryption

All sensitive data is encrypted in transit using secure protocols such as HTTPS/TLS to prevent interception during communication. Where applicable, data is also encrypted at rest using strong encryption algorithms.

b. Access Controls

Access to personal data is restricted on a need-to-know basis. We enforce role-based access controls (RBAC) across our internal systems and platforms, and require multi-factor authentication (MFA) for privileged accounts. All staff with access to personal data are trained on data protection obligations.

c. Monitoring and Auditing

We continuously monitor our systems for unauthorized access, anomalies, and potential security incidents. Audit logs are maintained for critical operations, and periodic security reviews and vulnerability assessments are conducted to identify and remediate risks proactively.

d. Incident Response

In the event of a data breach or security incident that poses a risk to your rights and freedoms, we will notify the relevant data protection authority and affected individuals in accordance with applicable legal requirements. We maintain a documented incident response plan and conduct regular drills to ensure readiness.

While we take every reasonable precaution to protect your data, no method of transmission over the internet or electronic storage is entirely secure. We cannot guarantee absolute security but are committed to responding swiftly and transparently to any incident that occurs.

9. Your Rights

We respect your privacy and are committed to giving you control over your personal information. Subject to applicable data protection laws, including the Nigeria Data Protection Regulation (NDPR) and any other regional or international regulations that may apply, you have the following rights regarding your data:

a. Right to Access

You have the right to request a copy of the personal data we hold about you. This includes the categories of personal information collected, the purposes for processing, and third parties with whom your data may have been shared.

b. Right to Rectification

If you believe that any personal data we hold about you is inaccurate, incomplete, or out of date, you have the right to request that we correct or update it promptly.

c. Right to Erasure

You have the right to request the deletion of your personal data where it is no longer necessary for the purposes for which it was collected, where you have withdrawn consent, or where we have no overriding legitimate grounds to retain it. Certain legal obligations may prevent full deletion in some cases, and we will inform you accordingly.

d. Right to Restrict Processing

You may request that we limit how we use your personal data in certain circumstances — for example, while the accuracy of your data is being contested, or where you have objected to processing and we are assessing whether our legitimate interests override yours.

e. Right to Data Portability

Where processing is based on your consent or on a contract, and is carried out by automated means, you have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to request that we transmit it to another service provider where technically feasible.

f. Right to Object

You have the right to object to the processing of your personal data where we rely on legitimate interests as our legal basis. You also have the right to object to direct marketing at any time, and we will comply without requiring justification.

g. How to Exercise Your Rights

To exercise any of the rights described above, please contact our Data Protection team at nexusnovatech1@gmail.com. We will respond to all verifiable requests within thirty (30) days. We may need to verify your identity before processing your request. There is no fee for exercising your rights, unless requests are manifestly unfounded or excessive, in which case we may charge a reasonable administrative fee or decline to act on the request.

10. Cookies and Tracking Technologies

Our website and services may use cookies and other tracking technologies (such as web beacons, pixels, and local storage) to enhance your experience, monitor performance, and deliver personalized content.

a. What Are Cookies?

Cookies are small data files stored on your device (computer, tablet, smartphone) when you visit a website. They help websites remember information about your visit — like your language preferences, login status, and browsing behavior.

b. Types of Cookies We Use

• Strictly Necessary Cookies: Essential for the website to function correctly. These cannot be disabled as they enable core features such as authentication, session management, and security.
• Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymized data on page visits, time on page, and error reports. This helps us improve website performance.
• Functional Cookies: Allow the website to remember your preferences (such as language or region) to provide a more personalized experience.
• Targeting and Advertising Cookies: Used to deliver relevant content and advertisements based on your interests. These may be set by us or by third-party advertising networks we work with.

c. Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to block or delete cookies, or notify you before a cookie is stored. Please note that disabling certain cookies may affect the functionality of our website or platforms. For more information on managing cookies, refer to your browser's help documentation or visit www.allaboutcookies.org.

11. International Data Transfers

NexusNova Technologies is headquartered in Nigeria, but our services and infrastructure may be accessed or utilized globally. As a result, your personal data may be transferred to, stored in, or processed in a country other than your own — including countries that may not offer the same level of data protection as your home jurisdiction.

Where such transfers occur, we take steps to ensure that your data remains protected to a standard consistent with this Privacy Policy and applicable data protection laws. Safeguards we use may include:

• Entering into standard contractual clauses or data processing agreements with receiving parties that obligate them to maintain appropriate data protection standards.
• Transferring data only to countries or entities that have been assessed as providing adequate protection for personal data.
• Applying additional technical and organizational measures (such as encryption) where necessary to mitigate transfer risks.

By using our services, you acknowledge that your information may be processed and stored in other countries. If you have questions about international transfers or wish to obtain further information about the safeguards we use, please contact us at nexusnovatech1@gmail.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our business practices, technologies, legal requirements, or for other operational reasons.

When we make material changes to the policy, we will:

• Post the updated version on this page
• Update the "Last Updated" date at the top of the policy
• Provide additional notice (such as email or platform notification) if the changes significantly affect your rights or how we process your personal data

We encourage you to review this Privacy Policy regularly to stay informed about how we are protecting your information. Your continued use of our website or services after any changes have been made constitutes your acceptance of the updated Privacy Policy.

If you do not agree with the updated terms, you should discontinue use of our services and may contact us to exercise your data rights as outlined in this policy.

13. Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or the way NexusNova Technologies handles your personal data, you are welcome to reach out to us. We are committed to addressing your inquiries promptly and transparently.

We aim to respond to all privacy-related correspondence within 30 days of receipt. For complex or sensitive requests, this period may be extended by an additional two months, in which case we will inform you of the extension and the reasons for it.

If you are dissatisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction. In Nigeria, this is the Nigeria Data Protection Commission (NDPC).