Nexum Logo

Privacy Policy

How Nexum Technologies Ltd collects, uses, and protects your information

Controller: Nexum Technologies Ltd ("Nexum", "we", "us"). Registered in England & Wales.

Contact: hello@nexumelite.com (privacy queries) | hello@nexumelite.com (contracts/rights)

This Policy covers (i) our public website(s) (the Site), (ii) our affiliate platform for publishers and advertisers (the Platform), and (iii) our tracking and attribution services (Attribution Services).

Roles: For Site visitors and Platform accounts, we act as controller. For end‑users whose interactions we measure for an advertiser, we generally act as the advertiser's processor (and in limited cases joint controller—responsibilities are allocated in our contracts).

Data We Process

Site Visitors

IP, user agent, cookie IDs, pages viewed, timestamps, referrers, consent signals (incl. GPC), approximate geolocation; contact data if you submit forms.

Account Holders (Publishers/Advertisers)

Name, business details, email, login, 2FA, payout/billing, tax/KYC where required, communications, login history/device data for security.

End‑users (Attribution Services)

Click/conversion IDs, campaign/ad IDs, timestamp, referrer/URL, user agent, IP‑derived geolocation, device/SDK IDs where enabled, fraud/IVT signals.

We do not intentionally collect special category data or children's data. See Section 12 below.

Purposes & Legal Bases (UK/EU)

  • Contract: deliver and support the Platform/Services; pay publishers; bill advertisers.
  • Legitimate interests: security/fraud prevention; analytics and service improvement; defending rights.
  • Consent: non‑essential cookies; certain marketing; end‑user measurement where the advertiser relies on consent.
  • Legal obligation: tax/AML/KYC; lawful requests.

Sharing

With advertisers/publishers (and their processors) to run programmes; with service providers (hosting, security, analytics, payments, KYC); with authorities when required; and in corporate transactions. We do not sell personal data in the ordinary sense; where US law defines "sale/share," you may opt out (Section 10).

International Transfers

We process in the UK/EEA and elsewhere using adequacy decisions, SCCs with the UK IDTA/Addendum, and (where relevant) certified recipients under the EU‑U.S. Data Privacy Framework/UK Extension. Supplementary measures are applied where appropriate.

Retention

  • Accounts & billing: life of account + up to 6 years.
  • Click/conversion logs: 12–24 months.
  • Fraud/abuse signals: up to 5 years.
  • Support: 3 years after closure.
  • Cookies: per Cookie Notice/choices.

Security

We use access controls, encryption in transit, monitoring, and vendor due diligence. No method is 100% secure; enable 2FA and strong passwords.

Your Rights

UK/EEA residents: access, rectify, erase, restrict/object, portability; withdraw consent. US state residents: access, correct, delete, opt‑out of targeted advertising/sale/share; we honor supported GPC signals. For end‑user data we process for an advertiser, contact that advertiser; we will assist.

Children

Not directed to children; we do not knowingly collect data from under‑16s. Contact us to remove any such data.

Contact & Complaints

Email hello@nexumelite.com

Return to Nexum