Privacy Policy

This Privacy Policy explains how Nimbus-T Global Inc. (“Nimbus-Key ID”) collects, uses, and protects your personal information when you use our services and applications.

Last updated: August 28, 2023

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Nimbus-Key ID Advanced Privacy Policy

At Nimbus-T Global Inc., we are committed to delivering an unparalleled user experience while prioritizing the utmost security and privacy of our users’ personal information. The collection and maintenance of personal information, including facial images, driver’s license or passport images, and personal data, are integral to our advanced identity verification and authentication processes. These processes are designed to safeguard sensitive information and establish a robust framework for secure interactions within our platform.

Our facial recognition technology ensures accurate user identification, preventing unauthorized access and fraudulent activities. The collection of images from official identification documents like driver’s licenses and passports serves as an added layer of verification, enhancing the accuracy and trustworthiness of user profiles. The dynamically encrypted ID generated in QR codes further bolsters security, enabling seamless yet secure authentication in various scenarios. These measures are pivotal in enabling a safe and reliable environment for our users to engage in essential activities such as medical research participation, ensuring the highest level of integrity and data protection.

Nimbus-T Global’s commitment to user data protection extends beyond the collection stage. Our system operates under a comprehensive security policy that employs advanced encryption algorithms and backend system integrations like SAML/OIDC to guarantee end-to-end data security. Personal information is securely stored, and stringent access controls are in place to restrict unauthorized access. Regular security audits and assessments are conducted to ensure compliance with industry best practices and regulatory standards, further fortifying our data protection measures.

The maintenance of user data serves the fundamental purpose of facilitating secure interactions, enabling seamless access to critical services, and verifying user identities with precision. Our mission is to empower individuals with a digital identity solution that not only offers convenience but also establishes a robust defense against cyber threats. Rest assured, Nimbus-T Global’s dedication to privacy and security remains unwavering, and our advanced technologies and encryption methodologies are designed to ensure the utmost confidentiality and protection of our users’ personal information.

Interpretation and Definitions

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this Privacy Policy:

  • Account means a unique account created for You to access our Service or parts of our Service.
  • Affiliate means an entity that controls, is controlled by or is under common control with a party, where “control” means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
  • Application means the software program provided by the Company downloaded by You on any electronic device, named Nimbus-Key ID.
  • Business, for the purpose of the CCPA (California Consumer Privacy Act), refers to the Company as the legal entity that collects Consumers’ personal information and determines the purposes and means of the processing of Consumers’ personal information, or on behalf of which such information is collected and that alone, or jointly with others, determines the purposes and means of the processing of consumers’ personal information, that does business in the State of California.
  • Company (referred to as either “the Company”, “We”, “Us” or “Our” in this Agreement) refers to Nimbus-T Global Inc, 21 Orinda Way #C280. For the purpose of the GDPR, the Company is the Data Controller.
  • Consumer, for the purpose of the CCPA, means a natural person who is a California resident.
  • Country refers to: California, United States.
  • Data Controller, for the purposes of the GDPR, refers to the Company as the legal person which alone or jointly with others determines the purposes and means of the processing of Personal Data.
  • Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
  • Do Not Track (DNT) is a concept that has been promoted by US regulatory authorities for the Internet industry to develop and implement a mechanism for allowing internet users to control the tracking of their online activities across websites.
  • Personal Data is any information that relates to an identified or identifiable individual. For the purposes of GDPR, Personal Data means any information relating to You such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity. For the purposes of the CCPA, Personal Data means any information that identifies, relates to, describes or is capable of being associated with, or could reasonably be linked, directly or indirectly, with You.
  • Sale, for the purpose of the CCPA, means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating a Consumer’s personal information to another business or a third party for monetary or other valuable consideration.
  • Service refers to the Application.
  • Service Provider means any natural or legal person who processes the data on behalf of the Company.
  • Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.
  • You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:

  • Email address
  • First name and last name
  • Phone number
  • Address, State, Province, ZIP/Postal code, City
  • Usage Data

Usage Data

Usage Data is collected automatically when using the Service.

Usage Data may include information such as Your Device’s Internet Protocol address (IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.

Information Collected while Using the Application

While using Our Application, in order to provide features of Our Application, We may collect, with Your prior permission:

  • Pictures and other information from your Device’s camera and photo library

We use this information to provide features of Our Service, to improve and customize Our Service. The information may be uploaded to the Company’s servers and/or a Service Provider’s server or it may be simply stored on Your device.

Use of Your Personal Data

The Company may use Personal Data for the following purposes:

  • To provide and maintain our Service.
  • To manage Your Account as a registered user.
  • For the performance of a contract with You.
  • To contact You with updates or information related to the Service.
  • To provide You with news, special offers and general information about other goods, services and events.
  • To manage Your requests.
  • For business transfers (e.g. merger, acquisition).
  • For other purposes such as data analysis, usage trends, and improving our Service.

We may share Your personal information in the following situations:

  • With Service Providers
  • For business transfers
  • With Affiliates
  • With business partners
  • With other users in public areas
  • With Your consent

Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy and to comply with legal obligations.

Transfer of Your Personal Data

Your information may be transferred to — and maintained on — computers located outside of Your jurisdiction where data protection laws may differ. We will ensure appropriate safeguards are in place.

Disclosure of Your Personal Data

Business Transactions

If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before this happens.

Law enforcement & Other legal requirements

The Company may disclose Your Personal Data where required by law or to protect rights, safety, or prevent wrongdoing.

Security of Your Personal Data

We strive to use commercially acceptable means to protect Your Personal Data, but no method of transmission or storage is 100% secure.

Detailed Information on the Processing of Your Personal Data

The Service Providers We use may have access to Your Personal Data in accordance with their own Privacy Policies.

Email Marketing

We may use Your Personal Data to contact You with newsletters, marketing or promotional materials. You may opt-out at any time.

Payments

We may provide paid products and/or services and use third-party payment processors such as Stripe.

GDPR Privacy

Legal Basis for Processing Personal Data under GDPR

We may process Personal Data based on consent, performance of a contract, legal obligations, vital interests, public interests, or legitimate interests.

Your Rights under the GDPR

You have the right to:

  • Request access to Your Personal Data
  • Request correction of Your Personal Data
  • Object to processing of Your Personal Data
  • Request erasure of Your Personal Data
  • Request the transfer of Your Personal Data
  • Withdraw Your consent

CCPA Privacy

This section applies solely to all visitors, users, and others who reside in the State of California.

Categories of Personal Information Collected

We may collect the categories A–K as defined in the CCPA, including identifiers, customer records, protected classification characteristics, commercial information, biometric information, internet activity, geolocation data, and professional information.

Nimbus Compliance: We provide secure user verification for the banking industry which requires KYC/AML. Your information is protected accordingly.

Nimbus Compliance (Biometrics): We will be collecting your biometric information on registration for accurately identifying you when performing or allowing transactions, using dynamically encrypted channels.

Nimbus Compliance (Geolocation): We are limiting the user’s access to their base country of registration to avoid criminal activity from outlying countries.

Nimbus Compliance (Directory): Our Directory function on the mobile app creates an account for professionals and healthcare providers.

Sources, Use, Disclosure and Sale of Personal Information

We collect information directly from You, indirectly from Your activity, automatically via cookies, and from Service Providers. We use and may disclose certain categories for business or commercial purposes as permitted by CCPA.

Sale of Personal Information of Minors Under 16 Years of Age

We do not knowingly sell the personal information of Consumers under 16 years of age.

Your Rights under the CCPA

California residents have the right to notice, access, deletion, opt-out from sale, and non-discrimination, among others.

Exercising Your CCPA Data Protection Rights

You can exercise your rights by contacting us:

Do Not Sell My Personal Information

Nimbus Compliance: We will not sell your information to anyone. We do not benefit from your information; instead, we protect it and encrypt it in our backend servers.

“Do Not Track” Policy (CalOPPA)

Our Service does not respond to Do Not Track signals.

Children’s Privacy

Our Service does not address anyone under the age of 13, and we do not knowingly collect personal data from children under 13.

Your California Privacy Rights (“Shine the Light” law)

California residents may request information once a year about sharing their Personal Data with third parties for direct marketing purposes.

California Privacy Rights for Minor Users (Business and Professions Code Section 22581)

California residents under 18 who are registered users may request removal of content or information they have publicly posted.

Nimbus Compliance: Any Nimbus-Key ID account holder can request to cancel and erase their account information from our systems.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. We are not responsible for the content or privacy practices of those sites.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

Contact Us

If you have any questions about this Privacy Policy, You can contact us: