Privacy Policy

Last Updated: April 22, 2025

It is Nexara’s policy to respect your privacy regarding any information we may collect during our sales, website marketing, service delivery and billing processes. Accordingly, we have developed this privacy policy in order for you to understand how we collect, use, communicate, disclose, and otherwise make use of personal information. We have outlined our privacy policy below.

1. Purpose

This policy outlines Nexara's commitment to protecting the privacy and security of personal data in compliance with ISO 27001 standards.

2. Scope

This policy applies to all employees, contractors, and third-party service providers who handle personal data on behalf of Nexara.

3. Policy Statement

Nexara is committed to ensuring the confidentiality, integrity, and availability of personal data. We will:

Collect and process personal data lawfully, fairly, and transparently.
Limit the collection of personal data to what is necessary for the specified purposes.
Ensure personal data is accurate and kept up to date.
Retain personal data only for as long as necessary.
Implement appropriate technical and organizational measures to protect personal data.

4. Data Collection and Use

Personal data will be collected for specified, explicit, and legitimate purposes.
Data subjects will be informed about the purposes of data collection and their rights.
Personal data will not be used for purposes other than those for which it was collected, except with the data subject's consent.

5. Data Security

Access to personal data will be restricted to authorized personnel only.
Personal data will be protected against unauthorized access, disclosure, alteration, and destruction.
Regular risk assessments and audits will be conducted to ensure data security measures are effective.

6. Data Subject Rights

Data subjects have the right to access, rectify, erase, and restrict the processing of their personal data.
Data subjects can exercise their rights by contacting Nexara's Data Protection Officer (DPO).

7. Data Breach Response

In the event of a data breach, Nexara will promptly assess the impact and take appropriate measures to mitigate the breach.
Data subjects and relevant authorities will be notified of the breach as required by law.

8. Responsibilities

All employees and contractors are responsible for adhering to this policy.
The DPO is responsible for overseeing data protection compliance and addressing data protection queries.

9. Commitment

We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.
Before or at the time of collecting personal information, we will identify the purposes for which information is being collected.
We will collect and use personal information solely for fulfilling those purposes specified by us and for other ancillary purposes, unless we obtain the consent of the individual concerned or as required by law.
Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-to-date.
We will protect personal information by using reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.
We will make readily available to customers information about our policies and practices relating to the management of personal information.
We will only retain personal information for as long as necessary for the fulfilment of those purposes.

We are committed to conducting our business in accordance with these principles to ensure that the confidentiality of personal information is protected and maintained. Nexara may change this privacy policy from time to time at Nexara’s sole discretion.

The policy shall be reviewed and updated at least annually by the Managing Director.