Privacy Policy

Privacy Policy

Effective Date: 1/17/2025

Who We Are

NexSecure Solutions is committed to safeguarding your privacy. Our website address is: http://nexsecuresolutions.com. This privacy policy outlines how we collect, use, and protect the information provided by visitors, clients, and users of our services.

Data Collected During Website Visits

  • Comments: When visitors leave comments, we collect the data shown in the comments form, as well as the visitor’s IP address and browser user agent string to help detect spam.

How We Use Your Data

We use the data collected to:

  1. Provide a seamless and secure user experience.
  2. Improve our services and website functionality.
  3. Detect and prevent fraudulent or malicious activity.
  4. Communicate updates, promotions, or other relevant information (if consented to).

Who We Share Your Data With

We do not sell or rent your data to third parties. However:

  • Comments may involve automated spam detection services.
  • For operational purposes, third-party service providers (e.g., hosting, analytics) may process your data under strict confidentiality agreements.

Cookies:

  • Comments: If you leave a comment, you may opt-in to save your name, email, and website in cookies for convenience.
  • Embedded Content: Articles may include embedded content from other websites, which may collect data and track interactions independently of NexSecure Solutions.

Data Management During Client Engagements

  • Data Retention: All client data collected during engagements will be retained only for the duration of the engagement and deleted upon completion, unless otherwise required by legal or contractual obligations.
  • Confidentiality: All client data will remain strictly confidential. Our team adheres to strict non-disclosure agreements (NDAs) to protect sensitive information.
  • Data Access:
    • Only authorized personnel will have access to client data during engagements.
    • Access is controlled, logged, and monitored to ensure compliance with internal and external standards.

Data Ownership

Clients retain full ownership of their data. NexSecure Solutions will not repurpose, share, or sell client data without explicit written consent.

Compliance with Regional Privacy Laws

NexSecure Solutions adheres to relevant regional and international privacy laws, including:

  • General Data Protection Regulation (GDPR) for EU clients.
  • California Consumer Privacy Act (CCPA) for California-based clients.
  • Health Insurance Portability and Accountability Act (HIPAA) for clients in regulated industries.

Third-Party Vendor Risk

  • Third-party tools and vendors used during engagements are vetted for compliance with industry standards.
  • Any client data shared with third-party tools is minimized and secured.

Security Standards and Technologies

We employ state-of-the-art technologies and adhere to the highest security standards to protect client data, including:

  • Encryption: All client data is encrypted during storage and transmission.
  • Multi-Factor Authentication (MFA): Access to sensitive systems is secured with MFA.
  • Endpoint Protection: Systems are equipped with advanced endpoint detection and response tools.
  • Network Monitoring: Continuous monitoring of networks for unauthorized access or anomalies.
  • Compliance Frameworks: Adherence to NIST Cybersecurity Framework (CSF) and ISO 27001 standards.

FAQ

1. How long is my data retained? Client data is retained only for the duration of the engagement and deleted upon its conclusion, except where legally required.

2. Who can access my data? Only authorized NexSecure personnel with strict access controls.

3. Can I request my data to be deleted? Yes, clients can request data deletion at any time unless retention is required by law or contract.

4. How do you ensure data security? Through encryption, MFA, continuous monitoring, and adherence to industry frameworks like NIST and ISO 27001.

5: Do you share information about previous client engagements?  No, we do not share the names, identities, or details of any previous client engagements. We prioritize confidentiality and ensure that all client information remains secure and private. This commitment is integral to our ethical practices and the trust our clients place in us.