Privacy Policy

Last updated on 06 Aug 2025

Welcome to NXT Enterprises (“NXT”, “we”, “us”, “our”). This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our websites, use our products (including the NXT modules for Contracts, Orders, Payments, and Liquidity), or interact with us in any way.

This Policy also explains choices and rights available to you. If you have questions, contact us at office@nexitynetwork.org.

1) What This Policy Covers

  • Visitors to our websites and pages.

  • Users of NXT products and services (including test environments and demos).

  • Individuals who communicate with us (support, sales, events, or marketing).

  • Processing we perform as a controller (e.g., our website, accounts, billing).
    When we process personal data on behalf of enterprise customers, we act as a processor; in those cases, the customer’s privacy notice controls.

2) Information We Collect

2.1 Information you provide

  • Account and profile data (name, email, password, company, role).

  • Business and verification data (KYC/KYB information, IDs or license details where required by law or by a customer’s compliance program).

  • Transaction and deal data you enter into NXT (counterparties, terms, documents, comments, milestones).

  • Support, feedback, and communications.

  • Marketing preferences and content you submit in forms.

2.2 Information collected automatically

  • Device and usage data (IP address, browser type, pages viewed, time on page, referring URLs).

  • Diagnostic and performance logs, crash data, security telemetry.

  • Cookies and similar technologies (see Section 8).

2.3 Wallets, banking, and on‑chain data

  • Public blockchain identifiers (wallet addresses, transaction hashes) when you connect a wallet or interact with smart contracts.

  • Limited bank/payment metadata where required to enable fiat rails or settlement (e.g., masked account references, payout status).

  • We never store private keys and do not take custody of user funds.

2.4 Information from partners

  • Identity verification and sanctions screening providers.

  • Payment processors, banks, stablecoin issuers, and liquidity partners.

  • Analytics, fraud prevention, and risk‑scoring services.

3) How We Use Information

We use personal information to:

  • Provide and secure the services – create accounts, authenticate users, operate smart‑contract workflows, enable settlement, and prevent abuse.

  • Comply with law and risk controls – KYC/KYB, sanctions screening, anti‑fraud, reporting, and audit trails.

  • Improve and personalize – product analytics, feature performance, user experience, and recommendations.

  • Communicate – product updates, security notices, and support responses; marketing communications where permitted (you can opt out).

  • Enterprise operations – billing, account management, and contract administration.

  • R&D and statistics – aggregate and de‑identify data to analyze product performance, liquidity demand, and reliability.

Legal bases (GDPR/UK GDPR)

We rely on one or more of: performance of a contract, legitimate interests (e.g., security, product improvement), compliance with legal obligations, and consent (where required).

4) How We Share Information

We share personal information only with:

  • Service providers and processors acting on our instructions (cloud hosting, analytics, support, verification, payments).

  • Banks, payment networks, stablecoin issuers, and liquidity partners to execute settlements or provide working capital where you request or use those features.

  • Enterprise customers (when we act as processor) in line with their instructions.

  • Counterparties you transact with when required by the workflow (e.g., contract terms, milestones, status).

  • Authorities or third parties when required by law, to protect rights and safety, or to enforce agreements.

  • Business transfers (e.g., merger or acquisition) where permitted by law.

We do not sell personal data. We do not share personal data for cross‑context behavioral advertising.

5) On‑Chain Specifics (Important)

  • Public ledgers are immutable. Content written to a blockchain (e.g., wallet address, smart‑contract interactions, transaction hashes) may be publicly viewable and cannot be altered or deleted by NXT.

  • We minimize on‑chain personal data (e.g., using hashes or references), but you should avoid placing personal information into fields that will be recorded on‑chain.

  • For off‑chain copies or metadata under our control, you can exercise rights in Section 10.

6) Data Retention

We retain information for as long as necessary to provide services, meet legal, tax, audit, and compliance requirements, resolve disputes, and enforce agreements. Where feasible, we minimize, anonymize, or aggregate data when retention is no longer required. On‑chain records persist indefinitely.

7) Security

We use administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit, access controls, logging, and vulnerability management. No system is perfectly secure; if we believe the security of your data has been affected, we will notify you where required.

8) Cookies and Similar Technologies

We use:

  • Essential cookies to enable core functionality (authentication, security).

  • Analytics cookies to understand usage and improve performance.

  • Preference/marketing cookies where permitted.

You can manage cookies in your browser or via our cookie controls. Disabling certain cookies may limit functionality.

9) Third‑Party Services and Links

Our services may link to or integrate with third‑party sites, wallets, banks, or platforms. Their practices are governed by their own policies. Please review them before providing information.

10) Your Rights

Depending on where you live, you may have the right to:

  • Access the personal data we hold about you.

  • Correct inaccurate or incomplete data.

  • Delete your data (subject to legal/contractual limits and excluding immutable on‑chain records).

  • Restrict or object to certain processing.

  • Portability – receive your data in a structured, commonly used format.

  • Withdraw consent where processing is based on consent.

  • Complain to a supervisory authority (e.g., in the EEA/UK).

California residents may also request to know, delete, and correct certain information and to opt out of “selling” or “sharing” (we do not sell or share personal data as defined by California law). We will not discriminate against you for exercising your rights.

To exercise any rights, email office@nexitynetwork.org. We may ask you to verify your identity before responding.

11) International Data Transfers

We operate globally. Your information may be processed outside your jurisdiction. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) to protect personal data transferred internationally.

12) Children’s Privacy

Our services are not directed to individuals under 18. If you believe a minor has provided us personal information, contact office@nexitynetwork.org so we can take appropriate action.

13) Automated Decisions

We may use automated systems for fraud prevention, risk assessment, or routing workflows. These do not produce legal or similarly significant effects without human involvement. You can request human review where applicable by contacting us.

14) Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will provide notice (for example, on our website or within the product). Continued use of the services after changes are effective means you accept the updated Policy.

15) Contact Us

Questions, requests, or complaints about privacy?
Email: office@nexitynetwork.org