Get in touch

    info@nexasolutions.io

    Privacy Policy

    Last updated: 16 December 2024

    1. Who we are

    Nexa Solutions is an Irish-based AI automation and consulting business.

    For the purposes of the General Data Protection Regulation (GDPR), Nexa Solutions is the data controller where we decide how and why your personal data is processed.

    Contact details:

    Email: info@nexasolutions.io

    Website: https://www.nexasolutions.io

    2. What personal data we collect

    We only collect personal data that is necessary to operate our website, provide our services, and communicate with you.

    This may include:

    • Contact details such as name, email address, phone number, company name
    • Information you submit via contact forms, booking forms, or demo requests
    • Call recordings or call transcripts where you interact with an AI voice agent, if enabled
    • Website usage data such as IP address, browser type, device information, and pages visited
    • Business information provided during discovery calls or onboarding
    • Communications sent to us by email, phone, or messaging platforms

    We do not intentionally collect special category personal data.

    3. How we collect personal data

    We collect personal data when:

    • You submit a form on our website
    • You book a call or request a demo
    • You interact with one of our AI voice agents or chat systems
    • You contact us directly by email, phone, or social media
    • You browse our website, through cookies and analytics tools

    4. How we use your personal data

    We use personal data for the following purposes:

    • To respond to enquiries and provide requested information
    • To deliver AI automation, voice agent, and consulting services
    • To operate and improve our website and services
    • To provide demonstrations of our AI products
    • To manage client relationships and contractual obligations
    • To monitor and improve AI system performance and reliability
    • To comply with legal and regulatory obligations

    We do not sell personal data.

    5. AI and automated systems

    Some of our services use artificial intelligence, including AI voice agents and AI-assisted workflows.

    When you interact with these systems:

    • You may be informed that you are speaking with an AI system
    • Conversations may be processed to generate responses or route requests
    • Calls or transcripts may be stored temporarily for quality assurance, debugging, compliance, or training purposes
    • Personal data is not used to make legally significant or automated decisions about you

    Human oversight is always available, either directly or through review of system outputs.

    6. Legal basis for processing

    Under GDPR, we rely on the following lawful bases:

    • Consent, where you voluntarily submit information or interact with demos
    • Contract, where processing is required to deliver agreed services
    • Legitimate interests, such as improving our services, ensuring security, and responding to enquiries
    • Legal obligation, where required by law

    You may withdraw consent at any time where consent is the legal basis.

    7. Data sharing and processors

    We use trusted third-party service providers to operate our business. These providers process personal data on our behalf under contractual safeguards.

    This may include providers for:

    • Cloud hosting and infrastructure
    • Voice and telephony services
    • AI processing and model providers
    • Automation and workflow tools
    • CRM, analytics, and productivity tools

    Where data is transferred outside the European Economic Area, we rely on appropriate safeguards such as Standard Contractual Clauses.

    8. Data retention

    We retain personal data only for as long as necessary to fulfil the purposes outlined in this policy, including legal, accounting, and regulatory requirements.

    Call recordings or transcripts, where enabled, are retained for limited periods unless required longer for compliance or dispute resolution.

    9. Your rights

    You have the following rights under GDPR:

    • The right to access your personal data
    • The right to rectification of inaccurate data
    • The right to erasure, in certain circumstances
    • The right to restrict processing
    • The right to data portability
    • The right to object to processing
    • The right to lodge a complaint with the Data Protection Commission in Ireland

    To exercise your rights, contact us using the details above.

    10. Cookies and analytics

    We use cookies and similar technologies to operate our website and understand how visitors use it.

    You can manage cookie preferences through your browser settings.

    11. Security

    We take reasonable technical and organisational measures to protect personal data, including access controls, encryption where appropriate, and secure infrastructure.

    No system is completely secure, but we aim to minimise risk and respond promptly to incidents.

    12. Changes to this policy

    We may update this Privacy Policy from time to time. The latest version will always be published on our website with the updated date.

    13. Contact

    If you have any questions about this Privacy Policy or how we handle personal data, please contact:

    info@nexasolutions.io