Nexus Grid GDPR Compliance | Data Protection Commitments

The Nexus Grid Data Processing Agreement outlines how we process and protect personal data in compliance with GDPR Compliance and global security requirements.

GDPR Compliance Statement

This Nexus Grid GDPR Compliance statement explains how we collect, use, and protect personal data. We follow the UK GDPR, EU GDPR, and other privacy laws that apply to our services. Because of this, we work hard to stay transparent and responsible in everything we do.

────────────────────────────────────────────────────────────────────────

1. Our Commitment to GDPR Compliance

Nexus Grid is committed to protecting personal data. We process information fairly and in line with GDPR principles. Therefore, we make sure data is:

• Used lawfully and transparently
• Collected for clear, specific reasons
• Limited to what is truly necessary
• Kept accurate and updated
• Stored securely
• Removed when no longer needed

These principles guide the way we handle data every day.

────────────────────────────────────────────────────────────────────────

2. Lawful Basis for Processing

We process personal data only when a valid legal basis exists. This may include:

Consent from the individual
Contractual necessity to deliver services
Legal obligations we must follow
Legitimate interests such as improving security or responding to threats

Each basis ensures we handle data responsibly.

────────────────────────────────────────────────────────────────────────

3. Types of Personal Data We Process

We process several types of personal data, depending on the service. For example:

• Names, emails, and phone numbers
• Company details and job roles
• Technical information such as IP addresses or device logs
• Security alerts and assessment data
• Enquiry and communication details

Although we collect different types of data, we always limit it to what is required.

────────────────────────────────────────────────────────────────────────

4. How Nexus Grid Ensures GDPR Compliance

We use strong security measures to protect personal data. For example:

• Encryption of sensitive data
• Access control and authentication
• Firewalls and secure networks
• Monitoring tools
• Staff training
• Regular reviews and assessments

These measures help reduce risks and support safe processing.

────────────────────────────────────────────────────────────────────────

5. Data Subject Rights

Under GDPR, individuals have several rights. These include the right to:

• Access their personal data
• Correct inaccurate information
• Request deletion
• Restrict processing
• Object to processing
• Receive a copy of their data
• Withdraw consent

If you want to exercise any of these rights, please contact us through our Contact Us page.

────────────────────────────────────────────────────────────────────────

6. Sub-Processors and Third Parties

Nexus Grid works with trusted partners to deliver certain services. We review each partner carefully. Furthermore, we ensure they follow GDPR standards and sign appropriate agreements. You may request a list of our Sub-processors at any time.

────────────────────────────────────────────────────────────────────────

7. International Data Transfers

Sometimes, personal data may be transferred outside the UK or EU. When this happens, we apply strong protections. For instance:

• Standard Contractual Clauses
• Adequacy decisions
• Extra security checks and assessments

These safeguards help protect data wherever it is processed.

────────────────────────────────────────────────────────────────────────

8. Data Retention and Deletion

We keep personal data only for as long as needed. Retention periods depend on legal, contractual, or operational requirements. After that period, data is deleted or anonymised. This helps us protect privacy and meet compliance needs.

────────────────────────────────────────────────────────────────────────

9. Data Breach Management

Nexus Grid follows a clear process when a data breach occurs. We:

• Investigate the situation
• Reduce any harm quickly
• Notify affected customers when required
• Support any legal or regulatory steps

Because of this, we maintain control and limit the impact of incidents.

────────────────────────────────────────────────────────────────────────

10. Accountability and Governance

We maintain documentation, internal policies, and strong governance practices. In addition, we train employees often and review our processes regularly. This ensures we stay aligned with GDPR requirements at all times.

────────────────────────────────────────────────────────────────────────

11. Changes to This GDPR Statement

We may update this page as laws or services change. When updates occur, we publish the revised version here.

────────────────────────────────────────────────────────────────────────

12. Contact Us

If you have questions about the Nexus Grid GDPR Compliance statement or want to exercise your rights, please reach out through our Contact Us page.