Privacy Policy

Purpose

This Privacy Policy outlines how we protect your personal data, explains why and how we collect it, and details your rights regarding this information. We are committed to transparency in our data practices and compliance with applicable privacy laws.

Our Commitment to Privacy

We are dedicated to safeguarding your privacy and maintaining data integrity by:

• Keeping your personal data confidential and secure
• Never selling, renting, or lending your information to third parties for marketing purposes
• Respecting your communication preferences
• Providing you with control over your personal information
• Ensuring you have access to the data we hold about you

Scope

This Privacy Policy applies to all Nautical Nexus Pioneer services, products, and websites, except where specifically noted. It does not cover external websites accessed through links from our platform.

Data Controller

Nautical Nexus Pioneer Limited, registered in England and Wales (Company Number: [To be inserted]), with registered office at [UK Address to be inserted], is the data controller responsible for determining how and why your personal data is processed.

Why We Collect Personal Data

We collect and process personal data only for legitimate business purposes and in accordance with applicable data protection laws. We aim to collect the minimum information necessary for:

Core Business Functions:

• Identity verification and account security
• Processing transactions and service delivery
• Providing customer support and maritime compliance services
• Delivering vessel management platform functionality

Service Enhancement:

• Improving our products and service delivery
• Understanding user needs for better service customisation
• Recommending relevant features and services
• Responding to enquiries and technical support requests

Legal and Security Requirements:

• Preventing fraud and ensuring platform security
• Complying with maritime regulations and legal obligations
• Cooperating with law enforcement when legally required
• Maintaining audit trails for compliance purposes

We may use anonymised, aggregated data (where individual identity cannot be determined) for statistical analysis, service improvement, and marketing purposes. Such aggregated data is not considered personal data under applicable privacy laws.

Types of Personal Data We Collect

Depending on your interaction with our services, we may collect:

Contact and Identity Information:

• Names and job titles
• Business and postal addresses
• Email addresses and telephone numbers
• Vessel identification and operational details

Technical and Usage Information:

• IP addresses and device identifiers
• Browser types and configurations
• Website usage patterns and preferences
• Access logs and system performance data

Business and Transaction Data:

• Billing and payment information
• Service usage history and preferences
• Communication records and support interactions
• Compliance and audit documentation

Voluntary Information:

• Feedback and survey responses
• Professional certifications (when relevant to services)
• Industry-specific identifiers (when necessary for service delivery)

How We Collect Personal Data

We collect personal data through various legitimate means:

Direct Collection:

• Website registration and service sign-up processes
• Direct communications (email, phone, in-person meetings)
• Completion of forms and service requests
• Customer support interactions

Automated Collection:

• Website cookies and similar technologies (with your consent where required)
• Analytics tools to understand service usage patterns
• Technical logs for system performance and security monitoring

Third-Party Sources:

• Business contact databases (where lawfully obtained)
• Integration with your existing maritime management systems
• Industry directories and professional networks (with appropriate permissions)

We use cookies and similar technologies to enhance user experience and platform functionality. You can control cookie settings through your browser, though this may limit certain website features.

How We Share Personal Data

We do not sell personal data to third parties. We may share your information in the following limited circumstances:

Service Delivery:

• With authorised employees, contractors, and service providers who assist in delivering our services
• With third-party integrators when you request system connections (fuel management, navigation systems, etc.)
• With relevant maritime authorities when required for compliance purposes

Legal Requirements:

• When required by law, court order, or regulatory authority
• To protect our legal rights or investigate suspected fraud or security breaches
• To ensure public safety or protect other clients' legitimate interests

Business Transfers:

• In the event of merger, acquisition, or asset sale, personal data may be transferred to the acquiring entity under equivalent privacy protections

Data Retention and Deletion

We retain personal data only as long as necessary for:

• Delivering requested services and maintaining business relationships
• Meeting legal, regulatory, and compliance obligations
• Resolving disputes and enforcing agreements

When data is no longer needed, we securely delete or anonymise it in accordance with our data retention schedules and applicable legal requirements.

Security and International Transfers

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. This includes:

Technical Safeguards:

• Encryption for data in transit and at rest
• Access controls and authentication systems
• Regular security monitoring and vulnerability assessments
• Secure development practices and system architecture

Organisational Measures:

• Staff training on privacy and security practices
• Clear data handling procedures and access policies
• Regular audits and compliance reviews
• Incident response and breach notification procedures

Personal data may be processed in countries outside the UK/EEA where we or our service providers operate. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Adequacy decisions by relevant authorities
• Standard contractual clauses approved by data protection authorities
• Other legally recognised transfer mechanisms

Your Rights

Under applicable data protection laws, you have the following rights:

Access and Control:

• Request access to personal data we hold about you
• Request correction of inaccurate or incomplete information
• Request deletion of your personal data (subject to legal requirements)
• Request restriction of processing in certain circumstances

Data Portability and Objection:

• Receive your data in a portable format when technically feasible
• Object to processing for direct marketing purposes
• Object to processing based on legitimate interests
• Withdraw consent where processing is based on consent

To exercise these rights, contact our Data Protection Officer at privacy@nauticalnexuspioneer.com or write to us at our registered address. We will respond within the timeframes required by applicable law, typically within 30 days.

Age Restrictions

Our services are designed for business use and are not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors without appropriate parental consent. If we become aware of such collection, we will take steps to delete the information promptly.

Updates to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. Updated versions will be posted on our website with the effective date clearly indicated. We recommend reviewing this policy regularly to stay informed of any changes.

Contact Information

Legal Framework

• UK Data Protection Act 2018 and UK GDPR (for UK residents)
• EU General Data Protection Regulation (for EU residents)
• Other applicable privacy laws based on your location and our service delivery