Privacy Policy

NexomateAI ("we," "us," or "our") collects information you provide directly to us when you:

• Create an account or profile on our platform
• Contact us through our website forms or email
• Subscribe to our newsletter or marketing communications
• Use our AI automation services, tools, or demos
• Request a consultation or quote for our services
• Participate in surveys, promotions, or events

Types of Personal Information:

• Contact Information: Name, email address, phone number, company name
• Account Information: Username, password, account preferences
• Professional Information: Job title, industry, company size, insurance agency details
• Usage Data: How you interact with our services, features used, pages visited
• Technical Data: IP address, browser type, device information, operating system
• Business Data: Information about your insurance agency operations shared during consultations

We use your personal information to:

• Provide, maintain, and improve our AI automation services
• Process your requests, transactions, and service inquiries
• Send you technical notices, updates, and security alerts
• Respond to your comments, questions, and support requests
• Provide personalized customer support and onboarding
• Develop new features and improve our AI models
• Send marketing communications (with your consent)
• Analyze usage patterns to optimize our platform
• Comply with legal obligations and regulatory requirements

Legal Basis for Processing (GDPR):

• Consent: When you opt-in to marketing communications
• Contract: To provide services you have requested
• Legitimate Interest: To improve our services and prevent fraud
• Legal Obligation: To comply with applicable laws

We do not sell, trade, or rent your personal information to third parties. We may share your information only in these limited circumstances:

• Service Providers: Trusted third-party vendors who help us operate our business (e.g., cloud hosting, analytics, payment processing)
• AI Model Providers: We may send anonymized or de-identified data to AI providers to process your requests — we never share personally identifiable information with AI model providers
• Legal Requirements: When required by law, subpoena, or to protect our legal rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Consent: When you explicitly agree to the sharing

All third-party service providers are contractually obligated to protect your information and use it only for the purposes we specify.

We implement appropriate technical and organizational security measures to protect your personal information:

• Encryption: All data in transit (TLS/SSL) and at rest is encrypted
• Access Controls: Role-based access limited on a need-to-know basis
• Regular Audits: Periodic security assessments of our systems
• Secure Infrastructure: Hosted on enterprise-grade cloud platforms with SOC 2 compliance
• Incident Response: Documented procedures for handling security breaches

While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to industry best practices.

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce our agreements

Retention Periods:

• Account Data: Until account deletion plus 30 days
• Contact Inquiries: 3 years from last contact
• Marketing Data: Until unsubscribe plus 1 year
• Service Data: Duration of service agreement plus 2 years
• Legal Records: As required by applicable law

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of your personal information
• Rectification: Correct inaccurate or incomplete information
• Erasure: Request deletion of your personal information
• Restriction: Limit how we process your information
• Portability: Receive your data in a machine-readable format
• Objection: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw previously given consent at any time

For California Residents (CCPA):

You have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.

To exercise any of these rights, please contact us using the information in the "Contact Us" section below.

We use cookies and similar tracking technologies to:

• Essential Cookies: Required for the website to function properly
• Analytics Cookies: Help us understand how visitors use our site (e.g., Vercel Analytics)
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of our website.

Our services may integrate with or contain links to third-party services. These include but are not limited to:

• AI model providers (OpenAI, Anthropic, Google)
• Cloud hosting providers (Vercel, AWS)
• Analytics services (Vercel Analytics)
• Communication tools (WhatsApp, email providers)

We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies.

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately and we will take steps to delete it.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.