Privacy Policy

1. Scope

This Privacy Policy describes how Nexus processes personal data in connection with internal real estate CRM operations, including lead management, property records, transactional workflows, email communications, calendar events, and WhatsApp interactions.

2. Data We Process

Nexus may process contact identifiers, communication content, engagement history, property and listing details, task and calendar metadata, and operational logs necessary to provide secure and reliable CRM functionality.

3. Purpose of Processing

Data is processed to support lead follow-up, recruitment and team coordination, property marketing, transaction support, communication tracking, compliance monitoring, and service quality improvements.

4. Data Sharing

Data is shared only with authorized users and approved service providers that support hosting, authentication, messaging, and scheduling operations. Nexus does not sell personal information.

5. Retention

Data is retained according to business needs, legal obligations, and internal retention policies. Records may be archived or deleted when no longer required for operations, legal defense, or compliance.

6. Security and Rights

Nexus uses role-based access controls, audit logging, and encryption in transit to protect data. Requests related to access, correction, deletion, or restriction should be directed to your organization's designated administrator or compliance contact.

7. Google User Data and Limited Use Disclosure

Nexus integrates with Google services (including Google Calendar and, where enabled, Gmail) to provide scheduling, event, and communication features inside the CRM. When a user connects a Google account, Nexus requests only the OAuth scopes required to deliver those features (for example, reading and writing calendar events on the user's behalf).

Nexus's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In particular, Nexus:

• Only uses access to Google user data to provide or improve user-facing features that are prominent in the Nexus application (such as syncing, creating, and displaying calendar events tied to CRM leads, tasks, and transactions).
• Does not transfer Google user data to third parties except as necessary to provide or improve those features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with the user's explicit consent.
• Does not use Google user data for serving advertising, including retargeting, personalized, or interest-based advertising.
• Does not allow humans to read Google user data unless we have the user's affirmative agreement for specific messages, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or the data has been aggregated and anonymized for internal operations.

Users may revoke Nexus's access to their Google account at any time from their Google Account permissions page, or by disconnecting the integration from within Nexus.