top of page

Nexivo - Privacy Policy

Last Updated - 28/09/2025

Introduction

Core Cognitics (“we,” “our,” or “us”) operates the Nexivo Contact Centre Platform and its related services. This Privacy Policy explains how we collect, use, share, and protect your information when you use our services. By using our platform, you agree to the practices described in this Privacy Policy.

Information We Collect

  • Account Information
    Name, email address, phone number, and business details provided during registration.

  • Messaging Data
    Campaign content, recipient details (such as phone numbers), and delivery reports generated during any campaign execution on the Nexivo app – once you have registered as a Nexivo user.

We do not sell or share your personal information with third parties for marketing purposes.

Information You Provide

  • Account / Registration Details: Name, email address, phone number, business name, business address, and any other business details provided during registration.

  • Contact & Communication: Information you provide when you contact us (via forms, email, chat, support), such as your name, email, phone, message content.

  • Campaign / Messaging Data: If you use the WhatsApp campaign features, we collect campaign content, recipient phone numbers, delivery reports, status logs, and related data necessary for operation.

  • Preferences & Settings: Your choices, settings, and preferences (e.g. notifications, communication preferences).

Automatically Collected / Technical Data

  • Usage & Analytics Data: Information about how you use the Website or services

  • Device & Connection Information: Device type, locale, time zone

  • Log Files & Performance Data: System logs, timestamps, performance metrics, API calls.

  • Cookies and Similar Technologies: We may use cookies, web beacons, tracking pixels, and similar technologies to manage sessions, analyze usage, and provide features. (See Section 7 below.)

​How We Use Your Information

Data Sharing & Disclosure

We may share your personal data in the following circumstances, subject to appropriate safeguards:

  • WhatsApp / Meta: To deliver campaigns and ensure compliance with their platform rules.

  • Service Providers / Sub-processors: Third parties providing hosting, infrastructure, analytics, email, support, security, data backup, and related services. These parties are contractually obligated to protect confidentiality and use the data only as required.

  • Legal Obligations / Public Authorities: When required by law, regulation, subpoena, court order, or governmental request.

  • Affiliated Entities: Within Core Cognitics group companies, where necessary for business operations and support.

When transferring personal data to third parties or across borders, we ensure appropriate security measures (e.g. standard contractual clauses, adequacy decisions, binding data agreements) are in place in compliance with applicable data protection laws.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. Factors influencing retention periods include:

  • The continuing need to provide Services or fulfill contractual obligations

  • Legal or regulatory obligations (e.g. record-keeping requirements)

  • Resolution of disputes, enforcement of policies, or prevention of fraud

When no longer needed, we securely delete or anonymize personal data.

Cookies and Tracking 

We and our service providers may use cookies, tracking pixels, web beacons, local storage, and other similar technologies to:

  • Authenticate users and maintain sessions

  • Analyze and monitor use of the Website and Services

  • Remember user preferences

  • Support functionality (e.g. form retention)

  • Provide aggregated statistics and diagnostics

You can control or disable cookies via your browser settings or by using a cookie-preference tool if provided. Please note that disabling cookies may affect your ability to use certain features.

International Data Transfers

Because our infrastructure or service providers may be located in multiple countries, your data may be transferred to, stored in, or processed in jurisdictions outside your country of residence. Where transfers occur:

  • We ensure appropriate safeguards (e.g. EU / UK Standard Contractual Clauses, adequacy decisions, binding corporate rules)

  • We require that data recipients provide a level of protection consistent with applicable data protection frameworks

  • We limit access and monitor compliance

Security Measures

We employ technical, administrative, and organizational measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. These measures may include:

  • Encryption (in transit and at rest)

  • Access controls and least privilege policies

  • Regular security audits, vulnerability assessments, and penetration tests

  • Network and application firewalls, intrusion detection systems

  • Logging, monitoring, and anomaly detection

While we strive to protect your information, no system is completely immune to attack. We cannot guarantee absolute security.

 Your Rights

Depending on your jurisdiction, you may have the following rights with respect to your personal data:

  • Access: Request access to the data we hold about you and details of processing.

  • Rectification: Correct or update inaccurate or incomplete data.

  • Erasure / “Right to be Forgotten”: Request deletion of your data in certain circumstances.

  • Restriction of Processing: Ask us to limit processing while a dispute is resolved.

  • Objection: Object to processing based on legitimate interests or direct marketing.

  • Data Portability: Request that data you provided be transferred to another controller where technically feasible.

  • Withdrawal of Consent: If processing is based on consent, withdraw your consent at any time (without affecting earlier lawful processing).

  • Complaint: Lodging a complaint with a data protection supervisory authority (e.g. the UK Information Commissioner’s Office)

To exercise your rights, contact us as described in Section 12 below. We may require verification of your identity before fulfilling requests. In some cases, we may be permitted or required by law to refuse or delay your request (e.g. for legal compliance or fraud prevention).

Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or new technologies. If we make material changes, we will post the updated policy with a revised "Last Updated" date and, where required, seek consent.

It is advisable to review this page periodically to stay informed about how we handle your data.

Contact Us / Data Protection Officer

If you have questions, concerns, or requests regarding your personal data or this policy, please contact us:

Core Cognitics – Nexivo Contact Centre Platform


Email: [info@corecognitics.com


Address: [Parkside, London Road, Ipswich, IP2 0SS]
Attn: Data Protection Officer / Privacy Team

You may also direct a request to your local data protection authority if you believe your data rights have been violated.

bottom of page