NextEpochs← Home

Legal

Privacy Policy

Last updated: April 12, 2026

This Privacy Policy describes how NextEpochs(“we”, “our”, or “us”) collects, uses, and protects your personal information when you visit our website or use our services. We are committed to respecting your privacy and handling your data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws.

1. Data Controller

NextEpochs acts as the data controller for any personal information you provide through our platform. For privacy-related inquiries, please contact us at privacy@nextepochs.com.

2. What Data We Collect

We collect only the data needed to provide our services, including:

  • Account information — name, email address, password (hashed), optional phone number and company name, provided during account creation.
  • Commission data — project briefs, descriptions, and any messages exchanged with our AI assistant Nextia during the requirements intake.
  • Payment records — transaction amounts, timestamps, and payment identifiers. We do not store full card details; payments are processed by third-party payment processors.
  • Technical data — IP address, browser type, device information, and usage logs collected automatically for security and service operation.
  • Cookies and local storage — see the Cookies section below.

3. How We Use Your Data

We process your personal data for the following purposes:

  • Creating and managing your account
  • Delivering the AI development services you request
  • Processing payments and issuing receipts or invoices
  • Communicating with you about your projects
  • Improving our platform, security, and user experience
  • Complying with legal obligations

4. Legal Basis for Processing

Our legal basis for processing your data includes:

  • Contract — processing necessary to provide the services you have requested.
  • Legitimate interest — maintaining platform security, preventing abuse, and improving our services.
  • Consent — for optional cookies and any marketing communications, which you can withdraw at any time.
  • Legal obligation — retaining records for accounting, tax, and compliance purposes.

5. Third-Party Services

To operate the platform, we rely on carefully selected third-party providers. These include:

  • OpenAI — powers our Nextia AI assistant. Messages you send to Nextia during commission intake are transmitted to OpenAI for processing.
  • Stripe — handles secure payment processing.
  • Hosting and infrastructure providers — required to operate our servers and databases.

These providers process data on our behalf under appropriate data processing agreements and in compliance with the GDPR.

6. Data Retention

We retain your personal data for as long as your account is active, or as needed to provide you with our services. When you close your account, we delete or anonymize your data, unless we are legally required to retain it (for example, for tax or accounting purposes). Commission history and related documents may be retained for up to 10 years in accordance with Italian accounting law.

7. Your Rights

Under the GDPR, you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate information
  • Request deletion of your data (the “right to be forgotten”)
  • Restrict or object to the processing of your data
  • Receive your data in a portable format
  • Withdraw consent at any time
  • Lodge a complaint with your local data protection authority (in Italy, the Garante per la Protezione dei Dati Personali)

To exercise any of these rights, contact us at privacy@nextepochs.com.

8. Cookies

We use essential cookies and local storage to keep you signed in, remember your preferences, and secure the session. With your consent, we may also use optional analytics cookies to better understand how our platform is used. You can manage your consent at any time via the banner shown on your first visit, or by clearing your browser's site data.

9. Data Security

We apply industry-standard security measures to protect your data, including encryption in transit (HTTPS), hashed passwords, access controls, and regular security audits. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Children's Privacy

Our services are not directed to children under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such data, please contact us and we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date at the top of this page and, where appropriate, notify you by email or through the platform.

12. Contact

For any questions about this Privacy Policy or how we handle your data, contact us at privacy@nextepochs.com.

← Back to home