← Back to Home

Privacy Policy

Last Updated: December 19, 2025

At NeuverraX, we are committed to protecting your privacy and handling your data with transparency and care. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our products, services, and websites.

1. Information We Collect

We collect information in the following ways:

1.1 Information You Provide to Us

• Account Information: Name, email address, password (encrypted), phone number (optional), and profile information
• Payment Information: Billing address, payment method details (processed by third-party payment processors; we do not store complete credit card numbers)
• Educational Information: For educational services, we may collect student information, grade level, learning progress, and educational institution details (with appropriate consent)
• User Content: Information, files, documents, images, and other content you upload, submit, or create using our services
• Communications: Your messages, feedback, support requests, and correspondence with us

1.2 Information Collected Automatically

• Usage Data: Information about how you use our services, including features accessed, time spent, frequency of use, and interaction patterns
• Device Information: Device type, operating system, browser type and version, IP address, unique device identifiers, and mobile network information
• Location Data: Approximate location based on IP address (we do not collect precise geolocation without your explicit consent)
• Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to enhance your experience and analyze usage patterns

1.3 Information from Third-Party Sources

• Authentication Services: If you use social login (Google, Microsoft, etc.), we receive basic profile information from those services
• Payment Processors: Transaction confirmations and payment status from Razorpay, Stripe, and other payment providers
• AI Service Providers: For AI-powered services, metadata and usage statistics (but not content) from AI model providers

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 To Provide and Improve Our Services

• Create and manage your account
• Process transactions and deliver services you request
• Personalize your experience and provide tailored content
• Develop new products, features, and services
• Monitor and analyze usage patterns and trends
• Improve the quality, security, and functionality of our services

2.2 To Communicate with You

• Send service-related notifications and updates
• Respond to your inquiries and provide customer support
• Send marketing communications (with your consent, where required)
• Notify you about changes to our services or policies

2.3 To Ensure Security and Compliance

• Detect, prevent, and address fraud, security breaches, and illegal activities
• Enforce our Terms of Service and other policies
• Comply with legal obligations and respond to lawful requests from authorities
• Protect the rights, property, and safety of NeuverraX, our users, and others

2.4 For Research and Analytics

• Conduct research and analysis to understand user behavior (in aggregated, anonymized form)
• Generate statistics and insights about service usage
• Improve machine learning models and algorithms (with appropriate safeguards)

3. How We Share Your Information

We may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party service providers who help us deliver our services. These providers process data according to their own terms of service and privacy policies:

• Cloud Hosting: AWS, Google Cloud Platform, Microsoft Azure, Render, Railway, Netlify
• Database Services: Neon.tech, Supabase, PostgreSQL hosting providers
• Payment Processing: Razorpay (India), Stripe (International) - PCI-DSS compliant
• Email Services: SendGrid, AWS SES, Mailgun
• Analytics: Google Analytics, Mixpanel, PostHog (with IP anonymization where available)
• Customer Support: Intercom, Zendesk, or similar platforms (if used)
• AI Model Providers: OpenAI, Anthropic, Google, Meta, Groq, DeepSeek, and others

Important: Each of these providers operates under their own privacy policies and terms of service. We select providers with strong privacy practices, but we do not have direct control over their data handling beyond their published commitments. We recommend reviewing the privacy policies of providers whose services you use through our platform.

3.2 Business Transfers

If NeuverraX is involved in a merger, acquisition, asset sale, or bankruptcy, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

3.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government investigations, regulatory requirements).

3.4 With Your Consent

We may share your information for purposes not described in this policy with your explicit consent.

4. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes described in this policy. Specific retention periods include:

Data Type	Retention Period
Account Information	Until account deletion + 30 days
Transaction Records	7 years (legal requirement in India)
Usage Logs	90 days to 1 year (depending on service)
Support Communications	3 years after case closure
Marketing Data	Until unsubscribe + 30 days
Student Data (Educational Services)	Per institutional agreement or parent/guardian request

After the retention period, we securely delete or anonymize your data. Some data may be retained in anonymized form for analytical purposes.

5. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

5.1 Access and Portability

• Right to Access: Request a copy of the personal information we hold about you
• Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format

5.2 Correction and Deletion

• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention requirements

5.3 Control and Restriction

• Right to Restrict Processing: Request limitation of how we process your data
• Right to Object: Object to processing of your data for certain purposes (e.g., marketing)
• Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time

5.4 How to Exercise Your Rights

To exercise any of these rights, you can:

• Use the privacy controls in your account settings
• Email us at info@neuverrax.com
• Use the "Delete Account" feature in account settings

We will respond to your request within 30 days. In some cases, we may need to verify your identity before processing your request.

6. International Data Transfers

NeuverraX operates globally, and your information may be transferred to and processed in countries other than your country of residence.

6.1 Where Your Data May Be Processed

• India: Our primary infrastructure and databases (Mumbai region)
• United States: Cloud hosting services, third-party AI providers (OpenAI, Anthropic), analytics platforms
• European Union: Cloud infrastructure, CDN (Content Delivery Network) services
• Other Regions: As necessary to provide global services through our hosting and service providers

6.2 Legal Basis for Transfers

When we transfer data internationally, we rely on the following legal mechanisms:

• Legitimate Business Need: To provide the services you requested
• Third-Party Provider Terms: We use cloud and AI services in accordance with their published terms and privacy policies, which include their own data protection commitments
• Data Minimization: We limit the personal information transferred to what is necessary for service delivery
• Your Consent: By using our services, you consent to international data transfers as described in this policy

6.3 Protection Measures

To protect your data during international transfers, we:

• Use service providers with strong security and privacy practices
• Encrypt data in transit (HTTPS/TLS) and at rest
• Anonymize or minimize personal information before transmission where possible
• Select providers that comply with applicable data protection regulations

6.4 Third-Party Service Providers

We rely on reputable third-party providers who maintain their own data protection standards:

• Cloud Hosting: AWS, Google Cloud, Render, Railway (operate under their own privacy frameworks)
• AI Providers: OpenAI, Anthropic, Google (each maintains their own API privacy policies)
• Payment Processing: Razorpay (India), Stripe (international) with PCI-DSS compliance

We do not have direct control over how these providers process data, but we select providers with strong reputations and privacy commitments.

7. Security Measures

We implement industry-standard security measures to protect your information, including:

• Encryption: HTTPS/TLS for data in transit, AES-256 for data at rest
• Authentication: Secure password hashing (bcrypt), multi-factor authentication (MFA) options
• Access Controls: Role-based access control (RBAC), principle of least privilege
• Infrastructure Security: Firewalls, intrusion detection systems, regular security audits
• Monitoring: Continuous monitoring for suspicious activities and security incidents
• Regular Updates: Timely security patches and vulnerability remediation
• Employee Training: Regular security awareness training for all personnel

Despite these measures, no method of transmission or storage is 100% secure. If you suspect any security breach, please contact us immediately at info@neuverrax.com.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. Types of cookies we use:

8.1 Essential Cookies

Required for the website to function properly (authentication, security, session management). These cannot be disabled.

8.2 Functional Cookies

Remember your preferences (language, theme, settings). You can disable these, but functionality may be limited.

8.3 Analytics Cookies

Help us understand how you use our services (Google Analytics with IP anonymization). You can opt out through your browser settings or using privacy tools.

8.4 Marketing Cookies

Used for personalized advertising (only with your consent). You can opt out at any time.

Managing Cookies: You can control cookies through your browser settings. Note that disabling certain cookies may affect functionality.

9. Children's Privacy

Our services are not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13 without parental consent.

For users aged 13-18, we require parental or guardian consent where legally required.

For educational services used in schools:

• We comply with FERPA (Family Educational Rights and Privacy Act)
• We comply with COPPA (Children's Online Privacy Protection Act)
• Student data is collected and used only for educational purposes
• Parents and educators can request access to or deletion of student data
• We do not use student data for advertising purposes

If you believe we have inadvertently collected information from a child under 13 without proper consent, please contact us immediately at info@neuverrax.com.

10. AI-Specific Privacy Practices

For services that use artificial intelligence (such as NeuverraX Chat):

10.1 How We Use Third-Party AI Providers

We integrate with third-party AI providers (OpenAI, Anthropic, Google, Meta, and others) through their publicly available APIs. When you use our AI-powered services:

• Your prompts are sent to these providers for processing
• We remove personally identifiable information (IP addresses, device IDs) before transmission where technically possible
• Conversations may be stored locally on your device rather than on our servers
• We implement data minimization to limit information shared with AI providers

10.2 AI Provider Privacy Policies

Important: Each AI provider has their own privacy policy and terms of service that govern how they handle data. We use these services in accordance with their published terms, which generally include:

• Data retention policies (typically 30 days for API usage, with exceptions for trust & safety)
• Restrictions on using API data for model training (varies by provider)
• Confidentiality of user inputs and outputs

We recommend reviewing the privacy policies of our AI providers:

• OpenAI: openai.com/policies/privacy-policy
• Anthropic: anthropic.com/legal/privacy
• Google: policies.google.com/privacy

10.3 Your Control Over AI Data

• You can delete conversation history at any time through your account settings
• You can export your conversation data
• You retain intellectual property rights to your inputs and outputs
• You can opt out of AI features by using non-AI services or not using the service

10.4 Our Responsibility

While we cannot control how third-party AI providers handle data beyond their published policies, we:

• Select providers with strong privacy practices and clear terms
• Minimize data transmission where possible
• Provide transparency about which providers we use
• Monitor provider policy changes that may affect your privacy

11. Third-Party Links and Services

Our services may contain links to third-party websites, applications, or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing them with your information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this policy
• Notify you via email for material changes (if you have an account)
• Post a prominent notice on our website or services
• Request your consent where required by law

Your continued use of our services after changes become effective constitutes your acceptance of the updated Privacy Policy.

13. Legal Basis for Processing (GDPR)

For users in the European Union, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to provide services you've requested
• Legitimate Interests: Improving our services, preventing fraud, ensuring security
• Legal Obligation: Complying with applicable laws and regulations
• Consent: Where you have given explicit consent (e.g., marketing communications)

You have the right to object to processing based on legitimate interests and to withdraw consent at any time.

14. India-Specific Privacy Rights (DPDPA)

Under India's Digital Personal Data Protection Act (DPDPA) 2023, you have additional rights:

• Right to access your personal data
• Right to correction and erasure
• Right to grievance redressal
• Right to nominate an individual to exercise rights on your behalf in case of death or incapacity

To exercise these rights or file a complaint, contact our Data Protection Officer at info@neuverrax.com.

15. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours of becoming aware of the breach
• Report to relevant regulatory authorities as required by law
• Provide information about the nature of the breach and steps being taken
• Offer guidance on protective measures you can take

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

NeuverraX
General Inquiries: info@neuverrax.com
Website: neuverrax.com

Regulatory Authorities:

• EU Users: You have the right to lodge a complaint with your local supervisory authority
• India Users: You can contact the Data Protection Board of India (once established under DPDPA)