Privacy Policy

This Privacy Policy explains how NEXENTA LTD (“we”, “us”, or “our”) may collect, use, and protect your personal data when you use our website nexentaltd.com or contact us. This Policy applies to any personal data you share with us directly or that we collect in connection with your interactions with us.

By using our website or submitting information to us, you agree to the processing of your data in accordance with this Policy. If you do not agree with this Policy, please do not use our website or provide your personal data.

Data controller and contact

NEXENTA LTD is the data controller for the personal data described in this Policy:

NEXENTA LTD

85 Great Portland Street, London, England, W1W 7LT

Email: info@nexentaltd.com

If you have any questions, requests, or concerns regarding your personal data, you may contact us using the details above.

What personal data we collect

We may collect and process the following categories of personal data:

Contact and identification information. Name, job title, company, email address, phone number, and any other contact details you provide when submitting an enquiry, request, or message via our website or other channels.
Business‑related information. Information about your organisation, role, projects, requirements, budget, timelines, and other business‑related details shared during discussions or written correspondence.
Technical and usage information. Basic technical data about your device and browser, IP address, and interactions with our website (e.g., pages visited, navigation patterns) where necessary for the operation, security, and improvement of our site. This information is collected in a way that aims to respect your privacy and is not combined with other personal data except where required or justified by applicable law.

We do not generally collect special categories of personal data (e.g., racial or ethnic origin, political opinions, religious beliefs, biometric data) unless you explicitly provide such information to us, and in such cases, we will only process it where you have given clear consent or where we have another legal basis to do so under applicable data protection law.

How we use your personal data

We process your personal data for the following purposes:

To respond to your enquiries and provide requested information. This includes answering your questions, providing quotes, proposals, and other information related to our services.
To deliver and manage our services. If you engage our services, we may use your data to support project delivery, communicate with you, and issue invoices or billing‑related information where appropriate.
To improve our website and services. We may analyse how visitors use our website in order to improve its usability, performance, and relevance.
For security and fraud prevention. We may process your data to protect our systems and services against unauthorised access, misuse, or fraudulent activity.
For legitimate business interests. We may process certain data for our legitimate interests, such as managing our relationship with you, maintaining records, and using your contact details for occasional updates or offers that relate to our services, provided that these interests do not outweigh your rights and freedoms under applicable law.

We will only process your personal data if we have a lawful basis to do so, such as:

Your consent (where applicable and clearly obtained).
The performance of a contract or pre‑contractual measures.
Compliance with legal obligations.
Protection of vital interests.
The performance of tasks in the public interest (where applicable).
Legitimate business interests, where appropriate and not overridden by your rights.

Lawful bases and your rights

Depending on the context and your jurisdiction, you may have certain rights in relation to your personal data, including the right to:

Access your personal data.
Request correction or updating of inaccurate or incomplete information.
Request erasure of your data where no longer necessary for the purposes for which it was collected, and where there is no overriding legal basis for retention.
Restrict processing in certain circumstances (e.g., where you contest accuracy, or where processing is unlawful).
Object to processing based on legitimate interests, including direct marketing.
Request data portability for data you have provided to us in a structured, commonly used, machine‑readable format, where applicable.
Withdraw consent at any time, where processing is based on consent.

We will respond to your requests in accordance with applicable law and within the timeframes required by such law. In some cases, we may need to retain certain information for legal, security, or regulatory reasons, or to defend our rights.

Sharing of personal data

We may share your personal data with:

Third‑party service providers. Organisations that support our operations, such as email providers, hosting providers, communication tools, and other technical partners. We ensure that such providers process your data only on our instructions and in accordance with applicable data protection requirements.
Professional advisors. Legal, accounting, or other professional advisors as necessary to support our business operations or comply with legal obligations.
Regulatory or law enforcement authorities. Where required by law, in the context of investigations, or to protect our legal rights.

We do not sell your personal data to third parties. Any sharing is limited to what is necessary for the purposes described above and in line with this Policy and applicable law.

Transfers of personal data

In some cases, your personal data may be transferred to countries outside the United Kingdom or the European Economic Area (EEA), including to third‑party service providers. In such cases, we will use appropriate safeguards, such as standard contractual clauses or other mechanisms approved under applicable data protection law, to ensure that your data continues to be protected at a level comparable to that in the UK and EEA.

Data retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

Responding to and managing your enquiries and, if applicable, delivering our services.
Maintaining accurate business and financial records.
Complying with legal, tax, or regulatory requirements.
Ensuring security and fraud prevention.

The specific retention period will depend on the purpose and legal basis of the processing. Once data is no longer required, it will be securely deleted or anonymised where appropriate.

Cookies and similar technologies

We may use cookies and similar technologies on our website to support its operation, understand usage, and improve performance. Detailed information about the types of cookies we use, their purposes, and how you can manage your preferences will be set out in our separate Cookies Policy. The Cookies Policy explains how we obtain consent where required and how you can change or withdraw your consent at any time.

For more information about cookies, please see our Cookies Policy, which is incorporated into this Privacy Policy by reference.

Security of personal data

We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect your data against unauthorised or unlawful processing, accidental loss, destruction, or damage. These measures may include encryption, access controls, and other safeguards appropriate to the nature, scope, and purposes of the processing.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

Links to other websites

Our website may contain links to third‑party websites that are not operated by us. If you follow a link to another site, please read its privacy policy, as we are not responsible for the practices of external websites or the content they provide.

Children’s information

Our website and services are not directed at children, and we do not knowingly collect personal data from children under the age of 16. If you become aware that a child has provided us with personal data, please contact us so that we can take appropriate steps.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. The latest version will be published on our website with the date of the last update. Your continued use of our website or engagement of our services after such changes are published will constitute your acceptance of the revised Policy.

If you have any questions, or wish to exercise any of your data protection rights, please contact us: