Nodiux Privacy Policy

Last Updated: January 27, 2026

1. Introduction

Welcome to Nodiux. We are committed to protecting your personal data and being transparent about how we collect, use, and store it. This policy explains our practices in compliance with the European Union's General Data Protection Regulation (GDPR).

2. Data Controller

The data controller responsible for your personal data is:

Zonin Alessandro
Address: Via San Vitale 19, 37129 Verona. Italy.
VAT ID: 04530740234
Contact: hello@nodiux.net

3. What Data We Collect

To provide the Nodiux service (Social Network Analysis Tool), we collect the following categories of data:

A. Account & Communication Data

• Registration Data: Email address, username, and authentication credentials (securely encrypted and managed by Google Firebase).
• Support Data: Information you provide when contacting us for support (e.g., email content).

B. User Content (Uploads & Analysis)

• Uploaded Datasets: Files (e.g., .csv, .json) you voluntarily upload to the platform for analysis.
• Search History: Queries and analysis results saved in your personal dashboard.

Note: You retain full ownership of your User Content. We process this data solely to provide the analysis service you requested.

C. Technical Data

IP addresses, browser type, and system logs. This data is strictly necessary for security purposes (e.g., preventing brute-force attacks) and error diagnosis.

4. Purposes and Legal Basis

We process your data for the following purposes:

1. Service Provision (Contractual Necessity): To allow you to log in, upload datasets, and perform network analysis. Without this data, the service cannot function.
2. Security (Legitimate Interest): To protect the platform from abuse, spam, and cyber threats.
3. Service Communications (Contractual Necessity): To send essential messages regarding your account status (e.g., plan expiration, password resets, changes to Terms).
4. Product Updates (Legitimate Interest): To inform existing users about new features or improvements directly related to the service. (Note: You can unsubscribe from these non-essential updates at any time via the link included in the email).

5. Data Storage & International Transfers

Our infrastructure relies on industry-standard providers to ensure security and reliability:

• Application Hosting: PythonAnywhere (Anaconda Inc.), utilizing AWS servers (Virginia, USA).
• Authentication & Database: Google Firebase & Firestore (Global/USA).

By using the service, you acknowledge and accept that your data is processed on servers located in the United States. We rely on these providers to maintain high security standards (ISO 27001, SOC 2).

6. Data Retention

• Account Data: Retained as long as your account is active.
• Uploaded Datasets: Retained on our servers until you explicitly delete them via the application interface. You have full control over this data.
• Account Deletion: If you request account deletion, all associated data (including uploads) will be permanently removed within 30 days.

7. Data Sharing

We do not sell your personal data. We share data only with the technical service providers necessary to operate the platform:

• Google Firebase (USA): Identity management and secure database.
• PythonAnywhere (USA): Application hosting.
• Brevo, Sender (EU): Email delivery service (Transactional emails only).

8. Cookies

This application uses only technical cookies strictly necessary for functioning (e.g., session management, security tokens). We do not use profiling or third-party advertising cookies (such as Google Analytics). Therefore, under current regulations, a cookie consent banner is not required.

9. Your Rights (GDPR)

You have the right to access, rectify, or delete your data ("Right to be Forgotten") at any time. To exercise these rights, please contact us at hello@nodiux.net.

10. Changes to This Policy

We may update this policy periodically. We will notify you of significant changes by posting the new policy on this page.