Privacy Policy

1. Introduction

Nest2App values your privacy. This Privacy Policy explains how we collect, use, and protect personal data when you use our services.

2. Data We Collect

• Account data: name, email, tenant affiliation
• Security data: login history, MFA usage, IP addresses
• Training data: module completions, scores, certificates
• Usage data: app interactions, device/browser info

3. How We Use Data

• Provide and improve our services
• Maintain compliance reporting for your organization
• Secure accounts and prevent fraud
• Meet legal and regulatory obligations

4. Legal Basis (GDPR)

We process data under contractual necessity, legitimate interest, and compliance with legal obligations.

5. Storage & Transfers

Data is stored securely in deployment models selected by your organization (e.g., DigitalOcean, S3-compatible storage). Cross-border transfers use lawful mechanisms.

6. Sharing

We do not sell personal data. We may share data with subprocessors that support hosting, logging, and analytics under appropriate agreements.

7. Your Rights

• Access, correction, deletion
• Portability
• Object to certain processing

8. Retention

We retain data only as long as necessary for compliance and contractual obligations.

9. Cookies & Similar Technologies

This section replaces the standalone Cookie Policy page.

We use cookies to operate and secure the service and to understand product usage. Optional analytics cookies are used only with your consent.

• Authentication cookies (keep you signed in)
• Security cookies (detect fraud or misuse)
• Analytics cookies (improve user experience)

You can manage cookies via your browser settings. Some features may not function if cookies are disabled. You can adjust preferences anytime using Cookie settings.

10. Contact

Questions or requests: privacy@nest2app.com