Privacy Policy

1. Introduction & Scope

NextFlowHub ("Company," "we," "us," "our") operates the website and analytics platform located at nextflowhub.digital (the "Site"). This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our websites, applications, and services (collectively, the "Services").

We are committed to protecting your privacy and ensuring transparent data practices. This policy applies to all visitors and users of our Services.

2. Information We Collect

A. Information You Provide Directly

• Contact Information: Name, email address, phone number, company name, job title, and professional details when you contact us or request information.
• Account Information: Username, password, and authentication details if you create an account.
• Service Usage Data: Information you upload, input, or generate through our analytics platform.
• Communication Data: Content of messages, emails, support tickets, and feedback you provide.
• Payment Information: Billing address and payment details (processed securely by third-party providers).

B. Information Collected Automatically

• Usage Data: Pages visited, features used, time spent, clicks, and interactions with our Services.
• Device Information: Browser type, operating system, device type, IP address, and device identifiers.
• Location Data: Approximate location based on IP address (not precise GPS).
• Cookies & Similar Technologies: See our Cookie Policy for details.
• Analytics Data: Behavioral patterns and preferences through analytics tools.

C. Information from Third Parties

• Business data from public sources for verification and compliance purposes.
• Information from integrated third-party services and platforms.

3. How We Use Your Information

We use collected information for the following purposes:

• Service Delivery: Providing, maintaining, and improving our analytics platform and services.
• Communication: Responding to inquiries, sending service updates, and providing customer support.
• Account Management: Creating and managing your account, authentication, and security.
• Analytics & Research: Understanding usage patterns and improving our Services.
• Marketing: Sending promotional content (with your consent and option to unsubscribe).
• Compliance: Complying with legal obligations, resolving disputes, and enforcing agreements.
• Security: Detecting fraud, preventing abuse, and protecting against security threats.
• Personalization: Customizing user experience based on preferences and behavior.

4. Data Sharing & Third Parties

We may share your information with:

• Service Providers: Cloud infrastructure providers, payment processors, analytics vendors, and customer support platforms.
• Business Partners: Authorized resellers and integration partners for service delivery.
• Legal Requirements: Law enforcement, courts, and regulatory authorities as legally required.
• Business Transfers: Parties involved in mergers, acquisitions, or asset sales.
• With Your Consent: Other parties with your explicit permission.

We do not sell or rent your personal information to third parties for their marketing purposes.

5. Data Retention

We retain personal information as long as necessary to:

• Provide Services and maintain your account
• Fulfill legal, regulatory, and contractual obligations
• Resolve disputes and enforce agreements

Retention periods vary based on the type of data and its purpose. You can request deletion of your data subject to legal retention requirements.

6. Your Privacy Rights

A. GDPR Rights (EU/EEA Residents)

• Right to access your personal data
• Right to rectify inaccurate information
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

B. Vietnam PDPA Rights

• Right to access personal information
• Right to correct and update information
• Right to withdraw consent
• Right to deletion (with limited exceptions)

To exercise these rights, contact us at support@nextflowhub.digital with your request. We will respond within 30 days.

7. Data Security

We implement comprehensive security measures to protect your information:

• SSL/TLS encryption for data in transit
• AES-256 encryption for sensitive data at rest
• Regular security audits and vulnerability assessments
• Multi-factor authentication for account protection
• Access controls and role-based permissions
• Secure data centers with redundancy and backups

While we employ industry-standard security, no system is completely secure. We cannot guarantee absolute security of your information.

8. International Data Transfers

Your information may be transferred to, stored in, and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws than your home country. By using our Services, you consent to such transfers. We implement appropriate safeguards including Standard Contractual Clauses (for GDPR compliance).

9. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the information promptly. If you believe we have collected information from a minor, please contact us immediately.

10. Cookie Policy

Please refer to our Cookie Policy for detailed information about cookies and similar tracking technologies we use.

11. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Updated" date. Your continued use of our Services after changes constitutes acceptance of the revised policy. We encourage you to review this policy regularly.

12. Contact Us

For privacy-related questions, data subject requests, or concerns about our data practices:

• Email: privacy@nextflowhub.digital
• Mailing Address: NextFlowHub, 365 Cach Mang Thang Tam Street, District 3, Ho Chi Minh City, Vietnam
• Phone: +84 (0) 28 3825 0125

We will address all privacy inquiries within 30 days. EU/EEA residents also have the right to lodge complaints with their local data protection authority.