Nuoa.io – Version 1.0
1. Nuoa’s Commitment
Nuoa.io is committed to protecting the personal information of customers and users during their use of the platform. This policy outlines how we collect, use, disclose, store, secure, and process personal data in accordance with:
-
- Decree 13/2023/NĐ-CP of the Government of Vietnam on personal data protection
-
- Cybersecurity Law of 2018
Nuoa also complies with SOC 2 – Privacy Criteria standards to ensure transparency, security, and trust in all data processing activities.
2. Types of Personal Information We Collect
2.1 Information collected through the system:
-
- Company email (required for user authentication)
-
- Job title and access rights assigned by the company within the platform
-
- Organizational identifiers (Nuoa does not collect internal personal employee data)
2.2 Information collected via website demo request form:
-
- Full name
-
- Job title
-
- Company name
-
- Work email
-
- Phone number
3. Purpose of Data Use
The information collected is used to:
-
- Set up and authenticate user accounts
-
- Assign role-based access permissions within the enterprise
-
- Manage sharing and confirmation of PCF data between companies
-
- Respond to demo requests, provide customer support, and facilitate technical communication
4. Third-Party Data Recipients
We only share personal information with:
-
- Amazon Web Services (AWS) – For platform data storage
-
- HubSpot – For customer relationship management (CRM)
-
- Other businesses with PCF linkages – Only when users have proactively shared PCF data on the system
All third parties are legally bound by data confidentiality agreements.
5. Data Storage and Security
-
- Data is stored in encrypted environments on AWS and HubSpot
-
- System communications are protected using SSL/TLS protocols
-
- We enforce strict role-based access control policies to safeguard data
6. Data Deletion and Anonymization Policy
Currently, Nuoa does not support automatic deletion policies but is committed to honoring user deletion requests through the following process:
-
- Personally identifiable information such as email, name, and phone number will be deleted upon user request
-
- Previously shared PCF data will not be deleted to preserve integrity for partner enterprises:
-
- Associated identifiers will be removed or anonymized
-
- Only technical data required for ongoing PCF calculations will be retained
Send requests to: infosec@nuoa.io
Processing time: Within 7 business days
7. User Rights
Users have the right to:
-
- Access and review their personal information
-
- Request corrections or deletion
-
- Request that their information not be shared with third parties (if PCF has not yet been shared)
Requests should be sent to: infosec@nuoa.io
8. Policy Updates
This policy may be updated to comply with legal requirements or operational changes at Nuoa. Any changes will be announced on our platform or website.
9. Contact
For any questions or complaints related to privacy rights, please contact:
📧 infosec@nuoa.io
🌐 https://nuoa.io