Privacy Policy

Introduction

GridHub Nexis Ltd ("we", "our", or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website gridhubnexis.pro, use our services, or interact with us in any way.

We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and the Data Protection Act 2018. Our registered office is located at Grafton Street 190, Cork T05 6044, Ireland.

Data We Collect

The data we collect depends on how you interact with our services. We may collect and process the following categories of personal information:

Information You Provide Directly

• Contact Information: Name, email address, phone number, company name, and postal address when you contact us or request information about our services
• Communication Data: Any information you provide when you communicate with us via email, phone, or our contact forms
• Service Data: Information related to your use of our CRM software and services, including project data, client information, and business metrics
• Support Data: Information provided when you request technical support or customer service assistance

Information We Collect Automatically

• Website Usage Data: Information about how you use our website, including pages visited, time spent on pages, and navigation patterns
• Device Information: Information about your device, browser type, operating system, and IP address
• Cookies and Tracking Technologies: Data collected through cookies, web beacons, and similar technologies as described in our Cookie Policy

How We Use Your Information

We use the information we collect for various purposes, including to provide, maintain, and improve our services. The specific ways we use your data include:

Service Provision

• To provide and maintain our CRM software and related services
• To process and respond to your enquiries and service requests
• To communicate with you about our services, including updates and support
• To provide technical support and customer service

Business Operations

• To improve our website, software, and services based on your feedback and usage patterns
• To conduct analytics and research to better understand our customers' needs
• To ensure the security and integrity of our systems and data
• To comply with legal obligations and enforce our terms of service

Marketing and Communications

With your consent, we may use your information to send you marketing communications about our services, industry insights, and company updates. You can opt out of marketing communications at any time by following the unsubscribe instructions in our emails or contacting us directly.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you have given clear consent for us to process your personal data for specific purposes
• Contract: When processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract
• Legal Obligation: When we need to process your data to comply with legal obligations
• Legitimate Interests: When processing is necessary for our legitimate business interests, provided these do not override your fundamental rights and freedoms

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties except as described in this policy. We may share your information in the following circumstances:

Service Providers

We may share your information with trusted third-party service providers who assist us in operating our website, conducting our business, or serving our customers. These parties are contractually obligated to keep your information confidential and use it only for the specific services they provide to us.

Legal Requirements

We may disclose your information when required by law, regulation, legal process, or governmental request, or when we believe disclosure is necessary to protect our rights, property, or safety, or that of others.

Business Transfers

In the event of a merger, acquisition, or sale of all or part of our business, your information may be transferred as part of that transaction, subject to appropriate confidentiality protections.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

• Service Data: Retained for the duration of your service agreement plus up to 7 years for legal and regulatory compliance
• Contact Information: Retained for up to 3 years after last contact unless you request deletion
• Marketing Data: Retained until you withdraw consent or up to 2 years of inactivity
• Website Usage Data: Typically retained for up to 2 years for analytics purposes

We regularly review our data retention practices and delete or anonymise personal data when it is no longer needed.

Your Rights

Under GDPR and Irish data protection law, you have the following rights regarding your personal data:

• Right of Access: You can request information about the personal data we hold about you
• Right to Rectification: You can request correction of inaccurate or incomplete personal data
• Right to Erasure: You can request deletion of your personal data in certain circumstances
• Right to Restrict Processing: You can request that we limit how we use your personal data
• Right to Data Portability: You can request a copy of your personal data in a structured, machine-readable format
• Right to Object: You can object to our processing of your personal data for certain purposes
• Right to Withdraw Consent: Where we rely on consent, you can withdraw it at any time

To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request within one month of receipt.

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication procedures
• Staff training on data protection and security practices
• Incident response procedures for data breaches

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but are committed to using industry-standard practices to protect your information.

International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we transfer your data outside the EEA, we ensure appropriate safeguards are in place, such as:

• European Commission adequacy decisions
• Standard contractual clauses approved by the European Commission
• Binding corporate rules or certification schemes

Children's Privacy

Our services are not directed to children under the age of 16, and we do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes your acceptance of the updated policy.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please contact us:

Supervisory Authority

If you believe that our processing of your personal data violates data protection law, you have the right to lodge a complaint with the Irish Data Protection Commission: