Legal

Privacy Policy for Nansha Digital

How Nansha Digital handles information for websites, software, integrations, apps, and related services.

This Privacy Policy explains how Nansha Digital ("we", "us", or "our") collects, uses, stores, and protects information when users access our website, software, integrations, widgets, digital products, and related services.

By using our website, products, or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with this Privacy Policy, please stop using our services.

1. Information We Collect

We collect only the information reasonably necessary to provide, operate, secure, and improve our services.

Depending on how you use our services, we may collect:

  • name and contact information, including email address;
  • account registration details;
  • billing and subscription-related information;
  • information submitted through contact forms, support requests, emails, or other communication channels;
  • technical data such as IP address, browser type, device information, operating system, pages visited, usage logs, and interaction data;
  • integration-related data required to connect and operate third-party services, such as CRM workspace details, account IDs, authorized user IDs, integration settings, field mappings, and configuration preferences;
  • service usage data, including logs related to exports, sync activity, errors, limits, and system performance.

For integrations connected to third-party platforms, we may process data from those platforms only as needed to provide the requested functionality.

2. Kommo and Third-Party Integration Data

When you connect our service to Kommo, Google, or other third-party platforms, we may process limited data necessary for the integration to work.

For example, our Google Sheets Data Updater integration may process data such as:

  • Kommo account or workspace information;
  • lead, contact, company, pipeline, stage, custom field, and user data selected or configured by the user;
  • Google account authorization data;
  • spreadsheet IDs, sheet names, column mappings, and sync/export settings;
  • logs related to successful or failed data transfers.

We process this data only to provide the integration functionality requested by the user, such as exporting, updating, syncing, or organizing data between connected services.

We do not sell data obtained from Kommo, Google, or other connected platforms.

3. How We Use Information

We may use collected information to:

  • provide, operate, and maintain our services;
  • enable integrations between connected platforms;
  • authenticate users and manage accounts;
  • process subscriptions, payments, and access rights;
  • provide customer support;
  • troubleshoot bugs, sync errors, failed exports, or technical issues;
  • monitor usage limits and prevent abuse;
  • improve product performance, usability, and reliability;
  • send important service-related communications;
  • send product updates or marketing communications where permitted;
  • protect our systems, users, and business from fraud, misuse, unauthorized access, or security incidents;
  • comply with applicable laws, regulations, legal processes, or enforceable governmental requests.

4. Legal Basis for Processing

Where applicable, we process personal data based on one or more of the following grounds:

  • your consent;
  • the performance of a contract or steps taken before entering into a contract;
  • our legitimate business interests, such as operating, securing, and improving our services;
  • compliance with legal obligations;
  • protection of our rights, users, services, and business.

5. Payment and Billing Data

Payments may be processed by third-party payment providers. We do not store full credit card numbers or sensitive payment card information on our own servers.

Payment providers may collect and process payment information according to their own privacy policies and terms. We may receive limited billing-related information, such as customer ID, subscription status, plan type, payment status, invoice details, and transaction references.

6. Cookies and Analytics

We may use cookies, analytics tools, and similar technologies to:

  • operate core website functionality;
  • understand website traffic and usage patterns;
  • improve user experience;
  • measure product performance;
  • detect technical issues and prevent abuse.

You may disable cookies through your browser settings, but some parts of our website or services may not function properly without them.

7. Sharing of Information

We may share information only when necessary and appropriate, including with:

  • service providers that help us operate our website, software, infrastructure, hosting, analytics, billing, communication, and customer support;
  • payment processors for subscription and transaction handling;
  • third-party platforms connected by the user, when required to provide the requested integration functionality;
  • professional advisers, such as legal, accounting, or technical consultants;
  • authorities, regulators, courts, or law enforcement agencies when required by applicable law or necessary to protect our legal rights, safety, users, or business;
  • successors or assigns in connection with a merger, acquisition, restructuring, sale of assets, or business transfer.

We do not sell personal data.

8. Data Retention

We retain information only for as long as reasonably necessary for the purposes described in this Privacy Policy, including to:

  • provide our services;
  • maintain user accounts;
  • process subscriptions;
  • provide support;
  • keep operational logs;
  • resolve disputes;
  • comply with legal obligations;
  • prevent fraud, abuse, or security incidents.

When data is no longer needed, we may delete, anonymize, or securely isolate it, unless retention is required by law or legitimate business needs.

9. Data Security

We use reasonable technical, administrative, and organizational measures designed to protect information against unauthorized access, loss, misuse, alteration, disclosure, or destruction.

These measures may include access controls, encrypted connections, restricted credential access, secure token handling, monitoring, and operational safeguards.

However, no method of transmission over the Internet or electronic storage is completely secure. Therefore, we cannot guarantee absolute security of any information.

Users are responsible for maintaining the security of their own accounts, credentials, devices, connected services, and access permissions.

10. User Responsibilities

Users are responsible for:

  • ensuring they have the right and authority to connect third-party accounts or workspaces to our services;
  • ensuring that any data processed through our services is lawfully collected and used;
  • configuring integrations, templates, field mappings, access permissions, and connected accounts correctly;
  • reviewing data before using it for business, legal, financial, operational, or reporting decisions;
  • complying with applicable laws and third-party platform terms.

We are not responsible for incorrect configurations, user errors, unauthorized account access caused by user negligence, third-party platform outages, or data issues originating from connected third-party services.

11. Third-Party Services

Our services may integrate with or link to third-party platforms, including but not limited to CRM systems, spreadsheet tools, payment processors, hosting providers, analytics tools, and communication services.

Third-party services are governed by their own terms and privacy policies. We are not responsible for the privacy practices, security, availability, accuracy, or content of third-party services.

Use of third-party services is at the user's own discretion and risk.

12. International Data Processing

Because we may use service providers, infrastructure, or tools located in different countries, information may be processed or transferred internationally.

Where applicable, we take reasonable steps to ensure that information is handled with appropriate safeguards consistent with this Privacy Policy.

13. User Rights

Depending on applicable law, users may have the right to:

  • request access to personal data we hold about them;
  • request correction of inaccurate or incomplete information;
  • request deletion of personal data in certain circumstances;
  • object to or restrict certain processing activities;
  • withdraw consent where processing is based on consent;
  • request data portability where applicable;
  • lodge a complaint with a competent data protection authority.

To exercise these rights, contact us at:

kommo-support@nansha.io

We may need to verify your identity before processing certain requests.

14. Children's Privacy

Our services are not intended for children or individuals under the age required by applicable law to use online services. We do not knowingly collect personal data from children.

If we become aware that we have collected personal data from a child without appropriate consent, we will take reasonable steps to delete it.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, operations, legal requirements, or security practices.

The updated version will be posted on our website with a revised "Last updated" date. Continued use of our services after changes are published means you acknowledge the updated Privacy Policy.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we process data, please contact us at:

Nansha Digital Email: kommo-support@nansha.io

Questions about this policy can be sent to Nansha Digital.

info@nansha.io

Need Help With Your Integration?

Contact Nansha Digital for data handling questions, integration support, or implementation review.

Contact Us