NEXI
Back to Home

GDPR Compliance

Our commitment to data protection for European users

Our GDPR Commitment

NEXI is fully committed to compliance with the General Data Protection Regulation (GDPR). We have implemented comprehensive measures to ensure that the personal data of individuals in the European Economic Area (EEA) is processed lawfully, fairly, and transparently.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

Right to Access:Request a copy of your personal data we process
Right to Rectification:Request correction of inaccurate personal data
Right to Erasure:Request deletion of your personal data (right to be forgotten)
Right to Restrict Processing:Request limitation of how we use your data
Right to Data Portability:Receive your data in a structured, machine-readable format
Right to Object:Object to processing of your personal data
Right to Withdraw Consent:Withdraw consent at any time for consent-based processing

Legal Basis for Processing

We process personal data under the following legal bases:

  • Contract Performance: To provide our education analytics services
  • Legitimate Interests: For platform improvement and security
  • Legal Obligations: To comply with applicable laws
  • Consent: Where explicitly obtained for specific purposes

Data Processing Agreements

NEXI acts as a Data Processor for educational institutions (Data Controllers). We provide Data Processing Agreements (DPAs) that comply with GDPR Article 28 requirements. These agreements detail our obligations regarding data protection, security measures, and assistance with compliance.

International Data Transfers

When transferring personal data outside the EEA, we use Standard Contractual Clauses (SCCs) approved by the European Commission. We also offer EU-based data residency for institutions requiring data to remain within the European Union.

Data Protection Officer

NEXI has appointed a Data Protection Officer (DPO) to oversee our GDPR compliance efforts. You can contact our DPO at:

Email: dpo@nexi.plus

Exercising Your Rights

To exercise any of your GDPR rights, please contact us at privacy@nexi.plus. We will respond to your request within 30 days. You also have the right to lodge a complaint with your local data protection authority.