1. Data Collection
We collect personal data such as your name, email address, phone number, and other identifiers solely for the purpose of providing our IT services and software development solutions efficiently and effectively. Data is gathered through various touchpoints including our website contact form, service onboarding process, project communications, and client portal interactions.
We only collect the minimum data necessary to deliver the services you request and do not engage in indiscriminate data collection. All data collection activities are tied to a clearly defined business purpose. You will always be informed of what data we collect and why at the point of collection, and you retain the right to withdraw consent at any time.
2. Use of Data
Your personal data is used for account management, project communication, technical support, product and service improvement, and legal compliance. We use your contact information to respond to inquiries, send project updates, deliver invoices, and provide ongoing support for the services you have engaged. We may also use aggregated, anonymized data to analyze usage patterns and improve our offerings.
We never sell your personal data to third parties. We do not share your information with external parties except where required to deliver your project — such as with cloud hosting providers or payment processors — and all such third parties are bound by strict data processing agreements that limit their use of your data to the specific purposes for which it was shared.
3. Data Storage & Security
All client data is encrypted at rest and in transit, and stored securely on industry-standard cloud platforms with restricted, role-based access controls. Our infrastructure is hosted on reputable cloud providers that maintain enterprise-grade physical and logical security measures, ensuring your data is protected at every level.
We conduct regular security audits and vulnerability assessments to proactively identify and address potential risks. Access to client data is limited to authorized Nythova personnel on a strict need-to-know basis. Detailed access logs are maintained and reviewed periodically to ensure no unauthorized access occurs. In the event of a data security incident, we will notify affected parties promptly in accordance with applicable law.
4. Your Rights
You have the right to access, correct, delete, or restrict the use of your personal data at any time. As a data subject, you can request a copy of the data we hold about you, ask us to transfer it to another provider, or object to certain types of processing. To exercise any of these rights, please contact us at [email protected].
You can opt out of marketing communications at any time by clicking the unsubscribe link in any marketing email or by contacting us directly. Opting out of marketing does not affect our ability to send you essential transactional communications related to your active services. We aim to respond to all data rights requests within 30 calendar days of receipt, free of charge.
5. Policy Updates
This Data Protection Policy may be updated periodically to reflect changes in applicable law, our data practices, or our service offerings. When we make material changes to this policy, we will post the updated version on our website and update the "Last Updated" date. For significant changes, we may also notify clients directly via email to ensure you are fully informed.
We encourage you to review this policy regularly to stay informed about how we protect your personal data. Continued use of our website or services following a policy update constitutes acceptance of the revised terms. If you have questions about any changes or about this policy in general, please contact our data protection team at [email protected].
