Nexumia – Global Privacy Policy

Last updated: December 22, 2025

Company: Nexumia

Website: https://nexumia.com

Contact Email: thevandieg@nexumia.com

1. Introduction

This Privacy Policy explains how Nexumia (“we”, “our”, “us”) collects, uses, shares, and protects personal information when you visit nexumia.com, create an account, or use any of our applications, software, or services (“Services”).

We operate globally and comply with major privacy regulations, including:

  • GDPR (European Union)
  • CCPA/CPRA (California)
  • LFPDPPP (Mexico – ARCO rights)
  • LGPD (Brazil)
  • Other international data-protection laws

By using Nexumia, you agree to this Privacy Policy.

2. Data We Collect

We collect information in the following categories:

A. Information You Provide

  • Name
  • Email address
  • Authentication data (Google or email-based login)
  • Account details and profile settings
  • Payment information (processed securely by Stripe; we do not store credit card numbers)
  • Feedback, support messages, or uploaded content

B. Information We Collect Automatically

  • IP address
  • Device identifiers
  • Browser information
  • Usage patterns and interactions
  • Referrals and cookies
  • Log files and diagnostic data

C. Information From Third Parties

We may receive data from:

  • Google (Google OAuth login)
  • Stripe (payment status, customer ID, purchase history)
  • Analytics providers (traffic, engagement, performance metrics)

3. How We Use Your Information

We use personal information for:

  • Creating and managing your Nexumia account
  • Providing access to application features
  • Processing payments and subscriptions through Stripe
  • Authenticating logins (Google, email)
  • Improving performance, analytics, and user experience
  • Sending service updates, necessary notifications, and transactional emails
  • Protecting against fraud or misuse
  • Complying with legal obligations
  • With consent, sending marketing or promotional content

4. Legal Bases (GDPR)

We process personal data under the following lawful bases:

  • Contract: To provide Nexumia’s Services you signed up for
  • Consent: For cookies, analytics, and marketing (where required)
  • Legitimate Interest: Security, fraud prevention, product improvement, internal analytics
  • Legal Obligation: Tax, billing, compliance, and regulatory requirements

5. How We Share Information

We may share data with:

Service Providers

  • Stripe (payments)
  • Hosting & cloud providers
  • Analytics providers
  • Email service providers

Legal Reasons

  • To comply with applicable laws
  • To respond to legal process
  • To protect users, Nexumia, or the public

Business Transfers

If Nexumia is involved in a merger, acquisition, or sale, data may be transferred as part of that transaction.

We do not sell personal information as defined under CCPA/CPRA.

6. International Data Transfers

Nexumia operates globally. Your data may be processed outside your home country, including in the United States or other regions.

Where required, we rely on:

  • Standard Contractual Clauses (SCCs)
  • Equivalent international safeguards
  • Technical protections (encryption, pseudonymization, access control)

7. Data Retention

We retain personal data only as long as necessary to:

  • Provide Services
  • Maintain your account
  • Meet legal, accounting, and tax requirements
  • Resolve disputes
  • Improve platform performance

If you close your account, we delete or anonymize your data unless we must retain some information for legal compliance.

8. Your Rights

Your privacy rights depend on your location, and Nexumia supports the broadest standards globally.

EU / GDPR Rights

  • Access your data
  • Correct inaccurate data
  • Delete your data
  • Withdraw consent
  • Data portability
  • Object or restrict processing

California (CCPA/CPRA) Rights

  • Right to know what data is collected
  • Right to request deletion
  • Right to opt out of sale/sharing
  • Right to non-discrimination

Mexico (LFPDPPP – ARCO Rights)

  • Access
  • Rectification
  • Cancellation
  • Opposition

Brazil (LGPD) Rights

  • Confirmation of processing
  • Correction or deletion
  • Anonymization
  • Data portability
  • Review of automated decisions

To exercise any rights, email: thevandieg@nexumia.com

We may verify your identity before fulfilling requests.

9. Cookies & Analytics

Nexumia uses cookies and tracking technologies to:

  • Maintain session and login
  • Analyze performance
  • Improve features
  • Understand user behavior
  • Personalize experience

You can disable cookies in your browser, but some features may not work correctly.

10. Payments (Stripe)

All payments are processed by Stripe, which is certified PCI-DSS Level 1.

We do not store:

  • Credit card numbers
  • CVV codes
  • Full billing details

We only store:

  • Stripe customer ID
  • Payment status
  • Subscription details

11. Children’s Privacy

Nexumia is not intended for children under 13 or any higher age required by local law.

We do not knowingly collect personal data from minors.

12. Security Measures

We implement industry-standard security, including:

  • Encryption in transit
  • Secure authentication (Google, email)
  • Role-based access controls
  • Regular monitoring
  • Secure infrastructure and backups

No system is 100% secure, but we take all reasonable measures to protect your data.

13. Changes to This Policy

We may update this Privacy Policy periodically.

The “Last updated” date at the top indicates the most recent version.

Significant changes will be communicated as required.

14. Contact Us

For any privacy-related questions or requests: