Skip to main content
NexusNao

Legal

Privacy Policy

How NexusNao collects, uses and protects personal information.

Last updated: 18 July 2026

[Placeholder: this policy is a working draft. Have it reviewed by legal counsel and adjusted to your jurisdictions before publishing as final.]

Who we are

NexusNao (“we”, “us”) operates this website. Contact details for privacy matters: hello@nexusnao.com and Shahrah-e-Faisal, Karachi.

Information we collect

We collect only what we need to respond to you and run this site:

  • Contact form submissions: name, work email, company, phone (optional), project details and how you found us.
  • Analytics data (only with your consent): anonymised usage statistics such as pages visited and approximate region.
  • Technical logs required to operate and secure the service (IP address, request metadata), retained briefly.

How we use it

  • To respond to enquiries and manage prospective projects.
  • To improve the website based on aggregated, consented analytics.
  • To protect the service from abuse (rate limiting, spam prevention).

Legal bases

Where GDPR or similar regulation applies, we process enquiry data on the basis of legitimate interest / pre-contractual steps, and analytics data only on the basis of consent.

Sharing

We do not sell personal data. Data is shared only with processors needed to operate the site — hosting (Cloudflare Pages). Contact enquiries are drafted in your email client and sent to us directly; we do not use a third-party form email provider.

Retention

Enquiry data is kept while relevant to a potential or active engagement and then deleted. [Placeholder: specific retention periods.]

Your rights

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict or port your personal data, and to withdraw consent at any time. Contact hello@nexusnao.com to exercise them. You may also lodge a complaint with your supervisory authority.

Security

We apply appropriate technical and organisational measures: encrypted transport, least-privilege access, input validation and no sale or secondary use of your data.