Privacy Policy

This Privacy Policy describes how Nexus AI ("we", "us", or "our") collects, uses, and shares information about you when you use our AI assistant services, including our website, browser extension, and mobile applications (collectively, the "Services").

1. Information We Collect

1.1 Information You Provide

• Account Information: Email address, name, and password when you register
• Payment Information: Billing details processed securely through Paddle (we do not store full card numbers)
• AI Prompts: Questions and requests you submit to our AI assistant
• Page Context: Text content from web pages you choose to share for AI analysis (browser extension only — only when you explicitly activate it)
• Uploaded Files: Documents or images you attach via the 📎 button for AI analysis (processed in memory, not permanently stored on our servers)

1.2 Information Collected Automatically

• Usage Data: Feature usage counts, request timestamps (for plan limits)
• Device Information: Browser type, operating system (for compatibility)
• Log Data: IP addresses, access times, error logs (for security and debugging)

1.3 Information We Do NOT Collect

• ❌ Browsing history or URLs visited (unless you actively analyze a page)
• ❌ Keystrokes, clicks, scrolls, or mouse movements
• ❌ Screenshots or visual content of pages (we only extract visible text when requested)
• ❌ Data from tabs you haven't activated Nexus AI on
• ❌ Personal files from your computer (only files you explicitly attach)

2. How We Use Your Information

• To provide AI-powered analysis, summaries, and responses based on your requests
• To process your prompts through our AI provider (Google Gemini)
• To manage your subscription and process payments
• To send transactional emails (verification, receipts)
• To enforce usage limits and prevent abuse
• To improve service reliability (error logs, performance monitoring)

We do NOT use your data for: Advertising, profiling, selling to third parties, or AI model training.

2a. AI Memory & Behavioral Learning

Nexus AI includes an automatic preference learning system ("AI Memory"). This system silently observes patterns in how you use the AI (e.g. requesting shorter responses, preferring bullet lists, writing in a specific language) and stores a compact summary of your preferences (~700 characters) to personalize future responses.

• What is stored: Learned style preferences only (e.g. "prefers short answers", "uses Serbian language"). Never the content of your conversations.
• When it activates: A preference is only saved after it is detected 3 or more times.
• Storage: One row per user in our database. Fixed size — never grows unboundedly.
• Purpose: Personalization of AI responses. Never used for advertising, profiling, or third-party sharing.
• Your control (GDPR Art. 17): You can view and permanently delete your AI Memory at any time from Settings → AI Memory → Clear AI Memory.
• Account deletion: AI Memory is permanently deleted when you delete your account.

3. Chrome Extension — Data Flow

This section explains exactly what happens when you use the Nexus AI Chrome extension:

3.1 When You Open the Sidebar

Opening the Nexus AI sidebar does not send any data. The extension loads locally in your browser. No page content is transmitted until you take an action (send a message, use right-click menu, etc.).

3.2 When You Send a Message or Use a Right-Click Action

1. The extension extracts the visible text content from the current tab (or your selected text)
2. Your prompt + the extracted text are sent to our server over HTTPS
3. Our server forwards the request to Google Gemini API for processing
4. The AI response is returned to you in the sidebar
5. If you are logged in, the prompt and response are saved to your conversation history

3.3 When You Attach a File

When you attach a document or image via the 📎 button:

• The file is uploaded to our server and parsed in memory (text extraction or AI vision analysis)
• The extracted content is included with your prompt for the AI to analyze
• The original file is not permanently stored — it is processed as a temporary file and deleted after the request completes

3.4 Guest Mode (No Account)

You can use Nexus AI without an account (5 free requests/day). In guest mode:

• A random anonymous identifier is generated locally in your browser
• No email, name, or personal data is collected
• Guest requests are logged only for rate-limiting purposes and are automatically purged

4. Third-Party AI Processing

Important: When you use our Services, your prompts and page context are processed by our AI provider:

• Google (Gemini API): Subject to Google's Privacy Policy and Gemini API Terms of Service

Under the Google Gemini API Terms of Service, data submitted through the API is not used to train or improve Google's models. Data is processed in real-time and is not retained by Google beyond the immediate request processing.

We recommend not submitting sensitive personal information, confidential business data, or information you are legally obligated to protect through our AI services.

5. Data Retention

We retain your data based on your subscription plan:

• Guest (no account): No persistent data stored
• Free Plan: 7 days of request history
• Starter Plan: 30 days of request history
• Pro Plan: 90 days of request history
• Business Plan: Unlimited history retention

Account information is retained until you delete your account. You can request full account deletion at any time through Settings → Delete Account.

6. Your Rights (GDPR)

If you are in the European Economic Area (EEA), you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate personal data
• Erasure: Request deletion of your personal data ("Right to be Forgotten")
• Data Portability: Export your data in a machine-readable format (JSON)
• Restriction: Request limited processing of your data
• Objection: Object to processing based on legitimate interests

To exercise these rights, use the "Export Data" and "Delete Account" features in your dashboard settings, or contact us at support@nexusbrowserai.com.

7. Automated Decision-Making

Nexus AI does not make automated decisions that produce legal or similarly significant effects on users. All AI outputs are assistive in nature and require human review before any action is taken. No profiling, scoring, or automated eligibility determinations are performed.

8. Cookies and Tracking

We use minimal cookies:

• Essential Cookies: Session management, authentication (required for the service to function)
• Preference Cookies: Remembering your theme and display settings

We do NOT use third-party advertising or tracking cookies. We do NOT use Google Analytics or Facebook Pixel.

9. Security

We implement industry-standard security measures including:

• HTTPS (TLS 1.3) encryption for all data in transit
• Bcrypt hashing for passwords (never stored in plaintext)
• JWT tokens with expiration for API authentication
• Rate limiting to prevent abuse
• Input sanitization to prevent injection attacks

10. Data Sharing

We do not sell, rent, or trade your personal data. We share data only with:

• Google Gemini API: To process your AI requests (see Section 4)
• Paddle: To process payments (PCI-DSS compliant)
• Brevo: To send transactional emails (verification, receipts)
• Law enforcement: Only when legally required by court order

11. International Data Transfers

Your data may be processed in countries outside your residence, including the United States where our AI provider (Google) operates. We ensure appropriate safeguards are in place for such transfers.

12. Children's Privacy

Our Services are not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will promptly delete the data.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the Services. Your continued use after changes constitutes acceptance of the updated policy.

14. Contact Us

For privacy-related inquiries:
Email: support@nexusbrowserai.com
Website: https://nexusbrowserai.com/contact

Nexus AI is a product developed and operated by NF SaaS Labs.