PRIVACY POLICY

NextGen Fusion AI Inc.

Effective Date: January 1, 2025
Last Updated: November 25, 2025

1. INTRODUCTION

NextGen Fusion AI Inc. ("we," "our," "us," or "Company") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our ScrumMaster AI application and custom AI agent development services (collectively, the "Services").

Contact Information:
NextGen Fusion AI Inc.
14900 Avery Ranch Blvd, Ste C200 PMB 1041
Austin, TX 78717
Email: shubham@nextgenfusionai.com
Phone: 845-731-1757

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Services.

2. INFORMATION WE COLLECT

2.1 Personal Information You Provide

When you use our Services, we may collect the following personal information:

Account Information:

  • Full name
  • Email address
  • Company name
  • Job title
  • Phone number
  • Business address

Authentication Credentials:

  • Microsoft Teams user ID
  • Jira account ID and credentials (OAuth tokens)
  • Third-party service authentication tokens

Communication Data:

  • Messages and conversations with our AI bot in Microsoft Teams (ScrumMaster AI app)
  • Website chatbot conversations and demo interactions on nextgenfusionai.com
  • Chat history from AI-powered assistants, including real estate demo chatbot
  • SMS/Text Messages: Phone number, message content, and conversation history when you opt-in to receive SMS communications from our AI agents via our Real Estate SMS Demo or other SMS-based services
  • SMS Consent Records: Phone number, consent timestamp, IP address, user agent, and consent acknowledgment for Twilio compliance and regulatory requirements
  • Support requests and correspondence
  • Feedback and survey responses

2.2 Information Collected Automatically

When you use our Services, we automatically collect:

  • Conversation history with AI agents
  • Feature usage patterns
  • Command and query logs
  • Response times and system performance metrics
  • IP address, browser type, and device identifiers

3. HOW WE USE YOUR INFORMATION

We use the collected information for the following purposes:

  • Provide, operate, and maintain our Services
  • Authenticate users and authorize access
  • Process Jira tickets and project management tasks
  • Enable AI-powered features and automation
  • Analyze usage patterns to improve functionality
  • Send service-related notifications and updates
  • Send SMS/text messages to users who have explicitly opted in to receive communications from our AI agents
  • Process payments and manage subscriptions
  • Comply with legal obligations and enforce our Terms of Service

3.1 SMS/Text Message Communications

Opt-In Requirement: We will only send you SMS/text messages if you explicitly opt-in through our Real Estate SMS Demo or other SMS opt-in forms on our website. By providing your phone number and checking the consent box, you agree to receive SMS messages from NextGen Fusion AI Inc.

What SMS Messages You'll Receive:

  • Welcome message confirming your opt-in
  • Responses to your questions about real estate properties and services
  • AI-powered property recommendations and insights
  • Appointment confirmations and reminders
  • Service updates related to your SMS interactions

SMS Data We Collect:

  • Your phone number (with US country code +1)
  • Your name (if provided)
  • Consent timestamp (when you opted in)
  • IP address (for compliance and fraud prevention)
  • User agent (browser information)
  • SMS conversation history with our AI agents
  • Source URL (which page you opted in from)

How to Opt-Out:

You can stop receiving SMS messages at any time by:

  • Text "STOP" to any message you receive from us - you will immediately be unsubscribed
  • Text "HELP" for assistance and support information
  • Contact us at shubham@nextgenfusionai.com to request SMS opt-out

Message & Data Rates: Standard message and data rates from your mobile carrier may apply. We do not charge for SMS messages, but your carrier may. Message frequency varies based on your interactions with our AI agents.

SMS Compliance: Our SMS communications comply with the Telephone Consumer Protection Act (TCPA), CTIA guidelines, and carrier requirements. We maintain detailed consent records as required by US telecommunications regulations and Twilio's acceptable use policies.

4. DATA STORAGE AND SECURITY

4.1 Data Storage Locations

Your data is stored using industry-standard, secure cloud infrastructure:

  • Secure Cloud Hosting: Enterprise-grade cloud infrastructure with 99.9% uptime SLA, located in the United States
  • Encrypted Database: NoSQL database with encryption at rest and in transit, role-based access control (RBAC), and automated backups
  • Credential Storage: OAuth tokens and authentication credentials stored in encrypted key management systems with AES-256 encryption
  • Backup Systems: Geographically distributed, encrypted backup systems with point-in-time recovery

4.2 Security Measures

We implement industry-standard security measures:

  • Data encrypted in transit using TLS 1.2 or higher
  • Data encrypted at rest in Azure Key Vault
  • OAuth tokens stored with AES-256 encryption
  • Role-based access control (RBAC)
  • Regular security assessments and vulnerability scanning
  • 24/7 system monitoring and automated threat detection

4.3 Data Retention

  • Active Users: Account information retained during active subscription
  • Conversation History: 120 days from last activity
  • Inactive Users: User data deleted after 120 days of inactivity
  • Upon Account Deletion: Personal information deleted within 30 days, backup copies within 90 days

5. HOW WE SHARE YOUR INFORMATION

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers:

  • Microsoft Azure (hosting, database, security)
  • n8n Cloud (workflow automation)
  • Microsoft Teams (communication platform)
  • Atlassian Jira (project management)
  • Twilio (SMS messaging platform) - Processes phone numbers and SMS message content when you opt-in to SMS communications. Messages are transient and not stored by Twilio beyond delivery.
  • OpenAI (AI processing - transient only)
  • Google AI (AI processing - transient only)
  • Payment processors (Stripe, PayPal)

5.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal processes, court orders, or government requests.

6. YOUR PRIVACY RIGHTS

6.1 General Rights (All Users)

  • Right to Access: Request a copy of your personal information
  • Right to Correction: Request correction of inaccurate information
  • Right to Deletion: Request deletion of your personal information
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Withdraw Consent: Opt-out of marketing communications

6.2 California Residents (CCPA/CPRA Rights)

California residents have additional rights under CCPA:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale (Note: We do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

6.3 European Users (GDPR Rights)

If you are located in the EEA, UK, or Switzerland, you have rights under GDPR including:

  • Right to lodge a complaint with a supervisory authority
  • Right to object to processing based on legitimate interests
  • Rights related to automated decision-making and profiling

6.4 How to Exercise Your Rights

To exercise any privacy rights:

Email: shubham@nextgenfusionai.com
Subject Line: "Privacy Rights Request - [Your Request Type]"

We will respond within 30-45 days.

7. COOKIES AND TRACKING TECHNOLOGIES

7.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us provide you with a better experience by remembering your preferences and analyzing how you use our Services.

7.2 Types of Cookies We Use

Necessary Cookies (Always Active)

These cookies are essential for the website to function properly and cannot be disabled.

  • Session Cookies: Keep you logged into the admin panel (JWT authentication)
  • Security Cookies: Protect against cross-site request forgery (CSRF) attacks
  • Cookie Consent: Remember your cookie preferences (stored in browser localStorage)
  • Duration: Session cookies expire when you close your browser; preference cookies persist for 1 year

Analytics Cookies (Optional)

These cookies help us understand how visitors interact with our website by collecting anonymous usage data.

  • PostHog Analytics: Privacy-friendly analytics platform that tracks page views, feature usage, and user journeys
  • Data Collected: Pages visited, time on site, button clicks, form interactions, device type, browser type
  • Duration: Up to 1 year
  • Control: You can opt-out via our cookie consent banner or PostHog's opt-out feature

Marketing Cookies (Optional)

These cookies track visitors across websites to display relevant advertisements.

  • Current Status: Not currently used, but reserved for future marketing campaigns
  • Control: You can opt-out via our cookie consent banner before they are implemented

7.3 Third-Party Cookies

Some cookies are set by third-party services we use:

  • PostHog: Analytics and feature usage tracking (privacy-friendly, GDPR-compliant)
  • Calendly: Meeting scheduling widget (only when you interact with the scheduling feature)
  • Microsoft Teams: Bot integration and authentication (ScrumMaster AI app only)

7.4 How to Manage Cookie Preferences

You have full control over which cookies we use:

  • Cookie Consent Banner: When you first visit our website, you'll see a cookie consent banner at the bottom of the page. You can choose to "Accept All," "Necessary Only," or "Customize" your preferences.
  • Update Preferences: You can change your cookie preferences at any time by visiting our Cookie Policy page.
  • Browser Settings: Most web browsers allow you to control cookies through their settings. You can set your browser to refuse all cookies or alert you when a cookie is being sent. Note that disabling necessary cookies may affect website functionality.
  • Clear Browser Data: You can delete all cookies stored by your browser at any time through your browser's privacy settings.

7.5 Do Not Track (DNT)

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you don't want your online activity tracked. We respect DNT signals and will not track users who have enabled this setting in their browser.

For detailed information about specific cookies, their lifespans, and how to delete them, please visit our Cookie Policy page.

8. CHILDREN'S PRIVACY

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we discover we have collected information from a child under 18, we will delete it immediately.

9. INTERNATIONAL DATA TRANSFERS

NextGen Fusion AI Inc. is based in the United States. Your information may be transferred to and processed in the United States or other countries where our service providers operate.

We use Standard Contractual Clauses approved by the European Commission for EEA transfers and implement appropriate technical and organizational security measures.

10. DATA BREACH NOTIFICATION

In the event of a data breach:

  • We will notify affected users within 72 hours of discovery
  • We will notify relevant authorities as required by law
  • Notification will include the nature of the breach, types of information affected, and steps taken

11. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or new features.

Material changes will be communicated via email notification and prominent notice on our website with a 30-day notice period.

12. CONTACT INFORMATION

If you have questions, concerns, or requests regarding this Privacy Policy:

General Inquiries:
Email: shubham@nextgenfusionai.com
Phone: 845-731-1757
Address: NextGen Fusion AI Inc.
14900 Avery Ranch Blvd, Ste C200 PMB 1041
Austin, TX 78717

Response Time:

  • General inquiries: Within 24-48 hours
  • Privacy rights requests: Within 30-45 days
  • Data breach concerns: Immediate escalation

13. LEGAL COMPLIANCE

This Privacy Policy complies with:

  • California Consumer Privacy Act (CCPA)
  • California Privacy Rights Act (CPRA)
  • General Data Protection Regulation (GDPR)
  • Children's Online Privacy Protection Act (COPPA)
  • Other applicable federal and state privacy laws

ACKNOWLEDGMENT

BY USING OUR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS PRIVACY POLICY.

If you do not agree with this Privacy Policy, you must not use our Services.

Document Version: 1.1
Effective Date: January 1, 2025
Last Reviewed: November 25, 2025
Next Review Date: January 1, 2026

© 2025 NextGen Fusion AI Inc. All rights reserved.