Privacy Policy

Introduction

At NEXUS Verify, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our domain-specific AI platform for building material compliance verification.

By using our services, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number, company name, and job title
• Account Information: Username, password, and account preferences
• Professional Information: Industry role, project details, and compliance requirements
• Communication Data: Records of correspondence and support interactions

Platform Usage Data

When you use our compliance verification platform, we collect:

• Document Data: Building material specifications, compliance certificates, and verification requests
• Usage Analytics: Feature usage patterns, verification success rates, and platform performance metrics
• Technical Data: IP address, browser type, device information, and session data
• API Usage: Integration patterns and system interaction logs

How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: Process compliance verification requests and provide AI-powered document analysis
• Platform Enhancement: Improve our machine learning models and verification accuracy
• Account Management: Create and maintain user accounts, process authentication, and manage subscriptions
• Customer Support: Respond to inquiries, provide technical assistance, and resolve platform issues
• Analytics and Insights: Generate usage statistics and compliance trend analysis for platform optimization
• Legal Compliance: Meet regulatory requirements and industry standards for data processing
• Communication: Send service updates, compliance notifications, and relevant industry information

Data Sharing and Disclosure

We respect your privacy and do not sell your personal information. We may share your information in the following circumstances:

• Authentication Providers: When you use Google Sign-In or other OAuth providers, we share basic profile information (name, email) with these services as required for authentication
• Platform Partners: With building material platform partners for integrated compliance services
• Service Providers: With trusted third-party vendors who assist in platform operations (cloud hosting, analytics, customer support)
• Compliance Databases: With relevant certification bodies and databases for verification purposes
• Legal Requirements: When required by law, court order, or government request
• Business Protection: To protect our rights, property, or safety, or that of our users and partners
• Business Transfers: In connection with mergers, acquisitions, or asset sales

Data Security

We implement comprehensive security measures to protect your information:

• Encryption: Data is encrypted in transit and at rest using industry-standard protocols
• Access Controls: Strict authentication and authorization mechanisms for system access
• Infrastructure Security: Secure cloud hosting with regular security assessments
• Compliance Standards: Adherence to SOC 2, ISO 27001, and relevant industry security frameworks
• Regular Audits: Periodic security reviews and vulnerability assessments
• Employee Training: Comprehensive data security training for all personnel

Data Retention

We retain your information for as long as necessary to:

• Provide our compliance verification services
• Maintain accurate verification records and audit trails
• Comply with legal and regulatory requirements
• Resolve disputes and enforce agreements
• Improve our AI models and platform capabilities

Verification data and compliance records may be retained for extended periods to support ongoing project compliance and regulatory requirements.

Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request access to your personal information
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal information (subject to legal and business requirements)
• Portability: Request transfer of your data to another service provider
• Restriction: Request limitation of processing activities
• Objection: Object to certain types of data processing
• Opt-out: Unsubscribe from marketing communications

Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Maintain user sessions and authentication
• Remember user preferences and settings
• Analyze platform usage and performance
• Provide personalized compliance recommendations

You can control cookie settings through your browser preferences, though this may affect platform functionality.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses for international transfers
• Adequacy decisions by relevant data protection authorities
• Appropriate technical and organizational measures

Third-Party Authentication

We offer Google Sign-In and other OAuth authentication options for your convenience. When you use these services:

• Your authentication is handled directly by the third-party provider (e.g., Google)
• We receive only basic profile information (name, email, profile picture) that you authorize
• We do not store your third-party account passwords
• Your use of third-party authentication services is subject to their respective privacy policies
• You can revoke access permissions at any time through your third-party account settings

For Google Sign-In users, please review Google's Privacy Policy for information about how Google handles your data.

Children's Privacy

Our services are designed for business and professional use. We do not knowingly collect personal information from children under 13 years of age. If we become aware of such collection, we will take steps to delete the information promptly.

Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes through:

• Email notifications to registered users
• Prominent notices on our platform
• Updates to our website and documentation

Your continued use of our services after such changes constitutes acceptance of the updated policy.