Privacy Policy

1. Introduction

INUXO ("we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, store, and protect information about you when you visit our website at www.inuxo.com (the "Website") or use our fractional product advisory services (the "Services").

This Privacy Policy applies to all users of our Website and Services, regardless of location. We comply with applicable data protection laws, including:

• General Data Protection Regulation (GDPR) - for individuals in the European Economic Area (EEA)
• UK GDPR - for individuals in the United Kingdom
• California Consumer Privacy Act (CCPA) - for California residents
• Other applicable local data protection regulations

By using our Website or Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Website or Services.

2. Data Controller

INUXO is the data controller responsible for your personal data. Our contact information is:

3. Information We Collect

3.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us when you:

• Contact us or request information: Name, email address, phone number, company name, job title, and message content
• Book an exploratory meeting: Contact details, preferred meeting times, and information about your business needs
• Engage our services: Billing information, company details, project requirements, and business data necessary for service delivery
• Subscribe to our newsletter: Email address and communication preferences
• Participate in surveys or feedback: Responses, opinions, and any information you choose to share

3.2 Information Collected Automatically

When you visit our Website, we automatically collect certain technical information, including:

• Device information: IP address, browser type and version, operating system, device identifiers
• Usage data: Pages visited, time spent on pages, click patterns, referral sources, entry and exit pages
• Location data: Approximate geographic location based on IP address
• Cookies and tracking: Data collected through cookies, web beacons, and similar technologies (see Section 9)

3.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• Professional networking platforms (e.g., LinkedIn) if you connect with us there
• Analytics providers who help us understand website usage
• Service providers who assist with our business operations
• Publicly available sources such as company websites and professional directories

4. How We Use Your Information

We use your personal information for the following purposes, based on the legal grounds specified:

4.1 Service Provision (Contract Performance)

• Responding to your inquiries and communications
• Scheduling and conducting exploratory meetings
• Providing fractional product advisory services
• Processing payments and managing billing
• Delivering project deliverables and reports

4.2 Business Operations (Legitimate Interest)

• Improving our Website, Services, and user experience
• Analyzing usage patterns and trends
• Conducting market research and analytics
• Developing new services and features
• Managing customer relationships

4.3 Marketing and Communications (Consent / Legitimate Interest)

• Sending newsletters, industry insights, and service updates (with your consent)
• Notifying you about new services or offerings
• Inviting you to events, webinars, or content
• Sharing relevant case studies and thought leadership

4.4 Legal and Security (Legal Obligation / Legitimate Interest)

• Complying with legal obligations and regulatory requirements
• Protecting against fraud, security threats, and illegal activities
• Enforcing our Terms of Service and other agreements
• Defending legal claims and protecting our rights
• Conducting audits and maintaining business records

5. Legal Basis for Processing (GDPR / UK GDPR)

Under GDPR and UK GDPR, we process your personal data based on the following legal grounds:

• Consent: Where you have given explicit consent for specific purposes (e.g., marketing communications)
• Contract Performance: Where processing is necessary to fulfill our contractual obligations to you
• Legitimate Interests: Where we have a legitimate business interest (e.g., improving services, fraud prevention)
• Legal Obligation: Where processing is required by law or regulation
• Vital Interests: Where processing is necessary to protect someone's life or safety

You have the right to withdraw consent at any time where we rely on consent as the legal basis for processing.

6. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your information only in the following circumstances:

6.1 Service Providers

We engage trusted third-party service providers to assist with business operations, including:

• Cloud hosting and infrastructure providers
• Email marketing and communication platforms
• Analytics and performance monitoring services
• Payment processors and financial institutions
• Customer relationship management (CRM) systems

These providers are contractually obligated to protect your data and use it only for the purposes we specify.

6.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to:

• Comply with legal processes and obligations
• Protect our rights, property, or safety
• Investigate potential violations of our Terms of Service
• Prevent fraud, security threats, or illegal activities

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred to the acquiring entity. We will notify you of any such change and provide you with choices regarding your data.

6.4 With Your Consent

We may share your information with third parties when you have given explicit consent for such sharing.

7. International Data Transfers

As a remote-first company, we may process your personal data in various countries. Some of our service providers may be located outside the European Economic Area (EEA) or United Kingdom.

When we transfer personal data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Transfers to countries with adequacy decisions by the European Commission
• Binding Corporate Rules or other approved mechanisms
• Your explicit consent for specific transfers

8. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest using industry-standard protocols (TLS/SSL)
• Secure authentication and access controls
• Regular security assessments and vulnerability testing
• Employee training on data protection and security practices
• Incident response procedures and breach notification protocols
• Limited access to personal data on a need-to-know basis

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but will notify you of any data breaches as required by law.

9. Cookies and Tracking Technologies

9.1 What Are Cookies?

Cookies are small text files placed on your device when you visit our Website. We use cookies and similar technologies (web beacons, pixels, local storage) to improve user experience and analyze usage patterns.

9.2 Types of Cookies We Use

• Essential Cookies: Required for Website functionality (e.g., security, load balancing, cookie consent preferences)
• Performance Cookies: Collect anonymous usage data to improve Website performance
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies (Google Analytics): We use Google Analytics to understand how visitors interact with our Website, including page views, session duration, user demographics, and traffic sources. This helps us improve our content and user experience.

9.3 Cookie Consent

When you first visit our Website, you will see a cookie consent banner that allows you to:

• Accept Cookies: Enable all cookies including Google Analytics tracking
• Decline Analytics: Only use essential cookies required for Website functionality

Your consent choice is stored in your browser's local storage. You can change your preferences at any time by clearing your browser's local storage or cookies, which will cause the consent banner to appear again on your next visit.

9.4 Google Analytics

We use Google Analytics (Measurement ID: G-G8GHSWRKGR) to collect anonymous usage statistics. Google Analytics uses cookies to track:

• Pages visited and time spent on each page
• How users found our Website (referral sources)
• Browser and device information
• Geographic location (country/city level)
• User engagement and interaction patterns

Google Analytics data is retained for 26 months by default. For more information about how Google uses data, visit Google's Privacy Policy.

You can opt-out of Google Analytics by declining analytics cookies in our cookie consent banner or by installing the Google Analytics Opt-out Browser Add-on.

9.5 Managing Cookies Through Browser Settings

You can also control cookies through your browser settings. Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Block all cookies (may affect Website functionality)
• Receive notifications when cookies are set

For more information, visit www.aboutcookies.org or www.allaboutcookies.org.

10. Data Retention

We retain your personal information only as long as necessary for the purposes described in this Privacy Policy, or as required by law. Retention periods vary based on:

• Active clients: Throughout the engagement and for [7 years] after termination for legal and accounting purposes
• Prospective clients: Up to [3 years] from last contact, unless you request earlier deletion
• Marketing contacts: Until you unsubscribe or request deletion
• Website visitors: Analytics data is typically retained for [26 months]
• Legal requirements: As mandated by applicable laws (e.g., tax, employment, financial regulations)

When data is no longer needed, we securely delete or anonymize it so it can no longer identify you.

11. Your Rights (GDPR / UK GDPR)

If you are located in the European Economic Area or United Kingdom, you have the following rights regarding your personal data:

11.1 Right of Access

You can request a copy of the personal data we hold about you and information about how we process it.

11.2 Right to Rectification

You can request that we correct inaccurate or incomplete personal data.

11.3 Right to Erasure ("Right to be Forgotten")

You can request deletion of your personal data in certain circumstances, such as when it's no longer necessary for the purposes collected or you withdraw consent.

11.4 Right to Restriction of Processing

You can request that we limit how we use your personal data in certain situations.

11.5 Right to Data Portability

You can request a copy of your personal data in a structured, commonly used, machine-readable format.

11.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

11.7 Right to Withdraw Consent

Where we process data based on consent, you can withdraw consent at any time.

11.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority:

• UK: Information Commissioner's Office (ICO) - ico.org.uk
• EU/EEA: Your local data protection authority

To exercise any of these rights, please contact us at info@inuxo.com. We will respond within one month of your request.

12. Your Rights (California - CCPA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

12.1 Right to Know

You can request information about the personal information we collect, use, disclose, or sell about you, including:

• Categories and specific pieces of personal information collected
• Sources from which information was collected
• Business or commercial purposes for collection
• Categories of third parties with whom we share information

12.2 Right to Delete

You can request deletion of your personal information, subject to certain exceptions.

12.3 Right to Opt-Out of Sale

We do not sell personal information to third parties.

12.4 Right to Non-Discrimination

We will not discriminate against you for exercising your CCPA rights.

To exercise your California privacy rights, contact us at info@inuxo.com with "California Privacy Rights" in the subject line.

13. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately, and we will delete the information.

14. Third-Party Links and Services

Our Website may contain links to third-party websites and services. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Material changes will be communicated by:

• Posting a notice on our Website homepage
• Updating the "Last Updated" date at the top of this policy
• Sending email notifications to registered users (for significant changes)

Your continued use of our Services after changes become effective constitutes acceptance of the updated Privacy Policy. We encourage you to review this policy periodically.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to your inquiry within a reasonable timeframe, typically within 30 days for most requests.