Nexurion Privacy Notice

Last Updated: February 2, 2026

Nexurion LLC (“Nexurion,” “we,” “us,” or “our”) is committed to protecting the privacy and security of personal information. This Privacy Notice explains how we collect, use, disclose, and otherwise process personal information when you access or use our website, services, communications, and related activities that link to this Privacy Notice (collectively, the “Services”).

This Privacy Notice does not apply to third-party websites, platforms, or services that may be linked from our Services. We encourage you to review the privacy practices of those third parties independently.

Our Role as Data Processor vs. Data Controller

Nexurion primarily operates as a data processor, meaning we process personal information on behalf of our clients in accordance with their instructions and applicable data processing agreements. In these engagements, our clients act as the data controllers and determine the purposes and means of processing personal data.

In limited circumstances, Nexurion acts as a data controller, meaning we independently determine how and why personal information is processed (for example, when operating our website, managing marketing activities, handling vendor relationships, or processing employment applications).

This Privacy Notice applies only to personal information processed by Nexurion in its role as a data controller. It does not apply to personal information processed on behalf of our clients. For questions regarding how a Nexurion client processes your personal data, please refer to that client’s privacy notice directly.

Updates to This Privacy Notice

We may update this Privacy Notice periodically to reflect changes in our practices, technologies, or legal obligations. Updates will be posted on our website and become effective upon publication. Your continued use of the Services constitutes acceptance of the revised Privacy Notice.

What Is Personal Information?

“Personal Information” means information that identifies, relates to, describes, or can reasonably be linked to an identifiable individual or household. This includes direct identifiers (such as name or email address) and indirect identifiers (such as IP address or device identifiers), where reasonably linkable.

An identifiable individual (“Data Subject”) may be identified directly or indirectly by reference to identifiers such as name, identification number, online identifier, location data, or factors specific to physical, economic, professional, or social identity.

Personal Information We Collect

a. Information You Provide Directly

We collect personal information that you voluntarily provide when you:

  • Contact us or request information
  • Engage our Services
  • Register for events, webinars, or mailing lists
  • Apply for employment or contracting opportunities
  • Communicate with us via email, phone, forms, or social media

This may include:

  • Name, email address, phone number
  • Company name, title, and business contact details
  • Billing and payment contact information
  • Communications, inquiries, and feedback

We do not intentionally collect sensitive personal information unless required by law or explicitly provided in an employment or contractual context.

b. Information Collected Automatically

When you access our Services, we automatically collect certain technical and usage information, including:

  • IP address
  • Browser type and operating system
  • Device identifiers
  • Referring URLs
  • Pages viewed and interaction timestamps
  • Approximate geographic location

This information does not typically identify you directly and is used to maintain security, improve performance, and understand service usage.

c. Information from Third Parties

We may receive personal information from:

  • Business partners and referral sources
  • Service providers and analytics platforms
  • Publicly available sources
  • Background check providers (for employment or contractor vetting)

How We Use Personal Information

We process personal information for the following purposes, depending on your interaction with us:

  • Service Delivery: To provide, manage, and support our Services
  • Communications: To respond to inquiries and provide administrative updates
  • Marketing: To send newsletters, event invitations, or relevant updates (subject to your preferences)
  • Business Operations: Billing, vendor management, analytics, and internal reporting
  • Security & Fraud Prevention: Protecting our Services and users
  • Legal & Compliance: Meeting regulatory, contractual, and legal obligations
  • Employment & Recruitment: Processing applications and managing workforce relationships

Where required by law, we rely on consent. Otherwise, processing is based on contractual necessity, legitimate interests, or legal obligations, balanced against individual rights.

Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Operate and secure our website
  • Remember preferences
  • Analyze usage and performance
  • Improve marketing effectiveness

We may allow trusted third-party providers to use cookies for analytics and advertising. You can manage cookie preferences through your browser settings or our cookie banner where applicable.

Analytics Tools

We use analytics tools (such as Google Analytics or similar services) to understand how users interact with our website. These tools collect usage data such as pages visited, session duration, and device characteristics.
You may opt out of analytics tracking by:

  • Adjusting browser settings
  • Using available opt-out tools provided by analytics vendors
  • Disabling analytics may limit certain site functionality but will not prevent access to our Services.

Disclosure of Personal Information

We may share personal information with:

  • Service Providers and Vendors: Hosting, analytics, CRM, payment processing, and security services
  • Business Partners: Where necessary for joint or co-branded offerings
  • Affiliates: Entities under common control with Nexurion
  • Legal Authorities: When required by law or to protect legal rights
  • Business Transactions: In connection with mergers, acquisitions, or asset sales
  • With Your Consent: Where you explicitly authorize disclosure

All service providers are contractually obligated to protect personal information and process it only as instructed.

Subprocessors

Nexurion engages vetted third-party subprocessors to support delivery of our Services. We maintain oversight of subprocessors and require contractual safeguards consistent with data protection obligations. Subprocessor changes may occur as business needs evolve.

Data Retention

We retain personal information only as long as necessary to fulfill the purposes described in this Privacy Notice, unless a longer retention period is required by law.
Retention decisions consider:

  • Nature and sensitivity of the data
  • Risk of harm from unauthorized disclosure
  • Legal, regulatory, and contractual obligations

When no longer required, personal information is securely deleted or anonymized.

Information Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, loss, or misuse. These measures include access controls, encryption, and secure infrastructure.
No system is completely secure. You use our Services at your own risk. Where legally required, we will notify affected individuals of data breaches in accordance with applicable laws.

International Data Transfers

Nexurion is based in the United States. Where personal information is transferred internationally, we implement appropriate safeguards to ensure compliance with applicable data protection laws.

Children’s Privacy

Our Services are not directed to individuals under 18 years of age, and we do not knowingly collect personal information from children. If we become aware of such collection, we will promptly delete the information.

Your Privacy Rights

Depending on your location, you may have rights including:

  • Access to personal information
  • Correction of inaccurate data
  • Deletion of personal information
  • Restriction or objection to processing
  • Data portability
  • Withdrawal of consent

Requests may require identity verification and are handled in accordance with applicable law.

U.S. State Privacy Rights

Residents of certain U.S. states may have additional rights under state privacy laws, including the right to opt out of targeted advertising or certain data sharing practices. We honor Global Privacy Control (GPC) signals where required. Where required by law, individuals may opt out of targeted advertising by enabling Global Privacy Control (GPC) signals or by contacting us at privacy@nexurion.io.

Do-Not-Track Signals

At this time, there is no universally accepted standard for Do-Not-Track signals, and we do not respond to them. This may change if standards are adopted.

Contact Us

If you have questions or wish to exercise your privacy rights, contact us at:
Nexurion LLC
Privacy Officer / Data Protection
Contact
Email: privacy@nexurion.io
Website: https://www.nexurion.io