Nexus T&D
Sign in Sign up

Privacy Policy

Last updated: June 18, 2026 — Nexus T&D

1. Who we are

Nexus T&D ("we", "us") provides a multi-tenant business software platform for organizations in Vietnam and nearby markets. Each customer organization ("tenant") has its own data space. Users access the platform with a personal account linked to one or more organizations.

2. Data we collect

Depending on how your organization uses the Service, we may process:

  • Account data: email address and name from Google sign-in, session and security logs.
  • Organization profile: business name, category, settings, and subscription/billing records.
  • Operational content: supplier invoices, receipts, expense lines, ledger entries, inventory movements, customer and employee records where those modules are enabled.
  • Payroll-related personal data where the payroll module is used (for example employee identifiers, compensation, and tax-related fields configured by your organization).
  • Support messages you submit through the authenticated Contact form.
  • Technical data: IP address, browser type, and application logs needed for security and troubleshooting.

3. Why we process data

  • To provide, maintain, and improve the Service.
  • To authenticate users and enforce organization-level access controls.
  • To meter OCR usage, manage subscriptions, and process billing-related records.
  • To respond to support requests and protect against abuse or fraud.
  • To comply with legal obligations where applicable.

4. Sharing and subprocessors

We do not sell personal data. We share data only as needed to run the Service:

  • Google — OAuth sign-in (account email and profile as permitted by your Google settings).
  • Cloud hosting and storage providers — application and file hosting.
  • OpenAI or similar providers — document/invoice OCR when your organization uses extraction features (document images or PDFs are sent for processing).
  • Email delivery providers — transactional messages such as invitations and operator notifications.

Other users in your organization see data according to their role. We do not expose one customer's tenant data to another customer.

Rejection

We retain data while your organization maintains an active account and as needed for backup, audit, billing, and legal compliance. If you need export or deletion of organization data, contact us through the Contact page (authenticated) or ask your organization administrator to coordinate with our operators.

Severity

We use encryption in transit (HTTPS), access controls, and organization-scoped queries to isolate tenant data. No method of transmission or storage is completely secure; you should use strong account security on your identity provider.

7. Your rights

Depending on applicable law, you may request access, correction, or deletion of personal data we hold about you. Submit requests via the Contact page while signed in, or email the address shown on your organization's billing correspondence. We may need to verify your identity and involve your organization administrator for tenant-held data.

8. International processing

The Service is oriented toward businesses operating in Vietnam. Data may be processed on servers located in or outside Vietnam depending on hosting configuration. We take steps to protect data regardless of location.

Item updated.

We may update this Privacy Policy. The "Last updated" date above indicates the current version. For material changes we may notify organization administrators through the application or email. Terms of Service · Contact