Privacy Policy

Effective February 23, 2026

We collect only the data necessary to operate NimbusFlow ERP safely and efficiently. This includes account credentials, audit logs, transactional records, and uploaded documents.

• Data Ownership: Your organization retains full ownership of its data. NimbusFlow only processes it to deliver ERP functionality.
• Storage & Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Backups are retained for 30 days.
• Third Parties: We do not sell or share personal information. Subprocessors (cloud hosting, email delivery) are vetted and bound by DPAs.
• User Rights: Requests for export or deletion can be initiated from the support center or by emailing privacy@nimbusflow.com.

Questions? Contact our privacy team at privacy@nimbusflow.com.