Back to Home
Privacy Policy
Last updated: November 23, 2025
At Nexus, we take your privacy seriously. This policy describes how we collect, use, and protect your personal information.
Information We Collect
- Account Information: Email address, name, and profile information from OAuth providers (Google, GitHub)
- Usage Data: Session information, MCP server usage, and analytics data
- Credentials: API keys and credentials you provide for MCP servers (encrypted with AES-256-GCM)
- Payment Information: Processed securely through Paddle (we don't store credit card details)
How We Use Your Information
- Provide, maintain, and improve our services
- Process your transactions and send related information
- Send you technical notices, updates, and support messages
- Monitor and analyze trends, usage, and activities
- Detect, prevent, and address technical issues
Data Security
- All credentials are encrypted using AES-256-GCM encryption
- Data is stored on Cloudflare's secure infrastructure
- We use industry-standard security measures to protect your information
- Access to user data is restricted to authorized personnel only
Data Sharing
- With your consent: When you explicitly authorize us
- Service providers: Third-party services that help us operate (Paddle for payments, etc.)
- Legal requirements: If required by law or to protect our rights
Your Rights
You have the right to:
- Access your personal data
- Correct inaccurate data
- Delete your account and data
- Export your data
- Opt-out of marketing communications
Data Retention
We retain your data only as long as necessary to provide services and comply with legal obligations. When you delete your account, we delete your personal data within 30 days.
Cookies
We use essential cookies for authentication and session management. We do not use tracking cookies for advertising purposes.
Changes to This Policy
We may update this privacy policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.