Privacy Policy

Nexgen Elit ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains in detail how we collect, use, disclose, store, and safeguard your information when you visit our website at https://nexgenelit.com (the "Website"), use our mobile applications, or engage with any of our services, tools, or platforms (collectively, the "Services").

By accessing, browsing, or using our Website and Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Website or Services.

This Privacy Policy applies to all visitors, users, clients, and others who access or use our Services, regardless of how they access them — whether through a web browser, mobile app, API, or any other method. We encourage you to read this Privacy Policy periodically to stay informed about how we protect your information.

Nexgen Elit is a digital technology company specialising in logistics-dedicated software solutions, web development, app development, CRM systems, ERP solutions, AI automation, and marketing systems. We are headquartered in India and operate nationwide and internationally, providing enterprise-grade technology services to logistics businesses.

For the purposes of applicable data protection laws (including the General Data Protection Regulation, the Information Technology Act 2000, and the Digital Personal Data Protection Act 2023), Nexgen Elit is the "data controller" of the personal data collected through our Website and Services. This means we determine the purposes and means of processing your personal data.

We collect information in several ways to provide, improve, and personalise our Services. The types of information we collect depend on how you interact with our Website and Services.

3.1 Personal Information You Provide

We collect personal information that you voluntarily provide when you fill out forms, contact us, request a consultation, subscribe to our newsletter, register for an account, or engage with our Services:

• Identity Information: Full name, job title, company name, and professional role.
• Contact Information: Email address, phone number, mailing address, and business address.
• Business Information: Details related to your logistics operations — fleet size, service corridors, shipment volumes, and current technology stack.
• Communication Data: Records of correspondence, project requirements, feedback, and communication history with our team.
• Financial Information: Billing address, payment card details, bank account information, and invoicing details. Note: Payment card processing is handled by our PCI-DSS compliant payment processors; we do not store your full card details on our servers.
• Account Information: Username, password (encrypted), account preferences, and settings when you create an account on our platform.
• User Content: Any information, documents, images, or data you upload to our platform or share with us during our engagement.

3.2 Information Collected Automatically

When you visit our Website, we automatically collect certain information about your device, browsing behaviour, and usage patterns through cookies, web beacons, pixels, log files, and similar tracking technologies:

• Device Information: Device type (desktop, mobile, tablet), operating system and version, browser type and version, screen resolution, device identifiers, and hardware model.
• Log Data: IP address, access dates and times, pages viewed, time spent on each page, referring website URL, exit pages, and clickstream data.
• Location Information: Approximate geographic location derived from your IP address, browser language settings, and time zone.
• Usage Data: Information about how you interact with our Website — features used, links clicked, search queries, scroll depth, and engagement metrics.
• Connection Information: Internet service provider (ISP), connection speed, and network type.

3.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• Analytics Providers: Google Analytics, Meta (Facebook) Analytics, and similar services providing aggregated user behaviour data.
• Advertising Partners: Information from Meta Ads (Facebook/Instagram) and Google Ads — ad interaction data, conversion events, and audience segment information.
• Social Media Platforms: When you interact with our social media pages or use social login features.
• Business Partners: Referral partners, integration partners, and other third parties with whom we have a business relationship.
• Publicly Available Sources: Business directories, professional networking sites (e.g., LinkedIn), and publicly available company information.

We use the information we collect for the following specific purposes:

4.1 Service Delivery

• To provide, operate, and maintain our web development, app development, custom software, CRM, ERP, AI automation, and marketing services.
• To fulfil our contractual obligations and deliver project milestones as agreed upon in service agreements.
• To process transactions, send invoices, and manage billing and payments.
• To create and manage user accounts on our platforms and portals.

4.2 Communication

• To respond to your inquiries, comments, questions, and support requests in a timely manner.
• To send you service-related notices, updates, security alerts, and administrative messages.
• To send you marketing communications, newsletters, promotional offers, and product updates (with your explicit consent). You can opt out at any time by clicking the "unsubscribe" link in any marketing email or contacting us directly.

4.3 Improvement & Analytics

• To analyse website traffic, usage patterns, and user behaviour to improve our Website, Services, and overall user experience.
• To conduct A/B testing and measure the effectiveness of our features, content, and marketing campaigns.
• To generate aggregated, anonymised statistical data for business intelligence and internal reporting purposes.

4.4 Advertising & Marketing

• To deliver targeted advertisements on third-party platforms including Meta (Facebook, Instagram) and Google Display Network.
• To create custom audiences and lookalike audiences for advertising campaigns on Meta Ads and Google Ads.
• To measure the performance and effectiveness of advertising campaigns — tracking conversions, click-through rates, and return on ad spend (ROAS).
• To retarget visitors who have previously interacted with our Website with relevant advertisements on other platforms.

4.5 Security & Compliance

• To detect, investigate, and prevent fraud, unauthorised access, and other illegal or malicious activities.
• To maintain the security, integrity, and availability of our Website and Services.
• To comply with applicable laws, regulations, legal processes, and enforceable governmental requests.
• To enforce our Terms and Conditions and other agreements.

We process your personal data only when we have a valid legal basis. Our legal bases include:

• Consent: Where you have given us explicit, informed consent to process your personal data for specific purposes (e.g., subscribing to marketing emails, accepting cookies). You can withdraw consent at any time by contacting nexgenelit@gmail.com.
• Contractual Necessity: Where processing is necessary for performing a contract with you, or to take pre-contractual steps at your request (e.g., delivering Services, processing payments, fulfilling project deliverables).
• Legitimate Interests: Where processing is necessary for our legitimate business interests or those of a third party, provided these interests are not overridden by your fundamental rights. Our legitimate interests include improving our Services, marketing our business, protecting our operations, and conducting analytics.
• Legal Obligation: Where processing is necessary to comply with a legal or regulatory obligation (e.g., tax obligations, responding to lawful government requests, financial reporting requirements).

We use cookies, web beacons, pixels, local storage, and similar tracking technologies to collect and store information when you visit our Website. These technologies help us recognise you, customise your experience, and analyse traffic.

6.1 Types of Cookies We Use

6.2 Managing Cookies

You can manage your cookie preferences through our cookie consent banner displayed on your first visit. You may also control cookies through your browser settings — most browsers allow you to block or delete cookies. However, disabling cookies may cause some features to not function properly.

To opt out of Google Analytics tracking specifically, install the Google Analytics Opt-Out Browser Add-on.

6.3 Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature. Currently, there is no universally accepted standard for responding to DNT signals, so our Website does not respond to browser DNT signals. You may manage tracking through cookie preferences and the opt-out tools described above.

We use third-party advertising platforms to market our Services, measure advertising effectiveness, and deliver personalised advertisements based on your interactions with our Website.

7.1 Meta Pixel (Facebook / Instagram Ads)

We use the Meta Pixel (formerly Facebook Pixel), a snippet of JavaScript code on our Website with Pixel ID 1717276075602623. The Meta Pixel allows us to:

• Measure the effectiveness of our advertising campaigns on Meta platforms (Facebook, Instagram, Messenger, Audience Network).
• Track conversion events such as page views, form submissions (Lead events), button clicks, and other user actions on our Website.
• Build custom audiences of Website visitors and serve them targeted advertisements on Meta platforms.
• Create lookalike audiences to reach new potential customers who share similar characteristics with our existing visitors.
• Optimise ad delivery, bidding strategies, and campaign budgets based on real-time conversion data.

The Meta Pixel collects HTTP headers, pixel-specific data, button click data, form field values (optional), and browsing information. Data is sent to Meta and processed under Meta's Data Policy. Manage your Meta ad preferences: facebook.com/ads/preferences.

7.2 Google Ads & Google Tag Manager

We use Google Tag Manager (GTM) with container ID GTM-TQ8NSTJK to deploy and manage marketing tags on our Website. Through Google Ads, we:

• Track conversions from Google Search, Display, Shopping, and YouTube advertisements.
• Measure cost per acquisition (CPA), return on ad spend (ROAS), click-through rates, and other performance metrics.
• Create remarketing lists to re-engage visitors across the Google Display Network and Google Search results.
• Use audience signals and demographic targeting to deliver relevant ads to potential customers.
• Optimise bidding strategies using conversion data and Google’s machine learning algorithms.

Google may use cookies, device identifiers, and similar technologies. For details, see Google's Privacy Policy. Opt out of personalised ads: Google Ads Settings.

7.3 Google AdSense

We use Google AdSense (Publisher ID: ca-pub-7416978133348374) to display advertisements on our Website. AdSense uses cookies and web beacons to serve ads based on your browsing history and interests. Learn more: Google Partner Sites Policy.

7.4 Opting Out of Targeted Advertising

You have the right to opt out of targeted advertising through these methods:

• Meta (Facebook/Instagram): facebook.com/ads/preferences
• Google: adssettings.google.com
• DAA Opt-Out: optout.aboutads.info (Digital Advertising Alliance)
• EDAA Opt-Out: youronlinechoices.eu (European Interactive Digital Advertising Alliance)
• Cookie Settings: Use our cookie consent management tool on our Website to withdraw consent for advertising cookies at any time.
• Mobile Device Settings: Enable "Limit Ad Tracking" on iOS or "Opt Out of Ads Personalization" on Android in your device settings.

We do not sell, trade, or rent your personal information to third parties for their own marketing purposes. We may share your information only in these limited circumstances:

• Service Providers & Processors: We share information with trusted third-party service providers who assist in operating our Website and Services — cloud hosting (Vercel, AWS), email service providers, payment processors, analytics (Google Analytics), advertising platforms (Meta, Google), and customer support tools. All providers are contractually bound to process data only on our behalf and under strict confidentiality obligations.
• Business Partners: We may share information with business partners for joint marketing initiatives or co-branded services, but only with your prior consent.
• Legal Requirements: We may disclose information when required by law, court order, subpoena, or valid government request (e.g., law enforcement, regulatory bodies).
• Protection of Rights: We may disclose information to protect the rights, property, or safety of Nexgen Elit, our users, or the public — including for fraud protection and credit risk reduction.
• Business Transfers: In the event of a merger, acquisition, reorganisation, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any change in ownership or control of your personal data.
• With Your Consent: We may share your information with your explicit consent for any other purpose disclosed at the time of collection.
• Aggregated/Anonymised Data: We may share aggregated or de-identified data that does not identify you personally for research, analysis, or business purposes.

We retain your personal information only as long as necessary to fulfil the purposes for which it was collected. Specific retention periods:

When retention periods expire, we will either securely delete or permanently anonymise your data. If deletion is not immediately possible (e.g., data in backup archives), we will securely isolate it from further processing until deletion is complete.

We implement comprehensive technical and organisational security measures to protect your personal information:

• Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL (Transport Layer Security) protocols. Sensitive data at rest is also encrypted using AES-256 encryption.
• Access Controls: Role-based access controls (RBAC) ensure only authorised personnel with a legitimate business need can access personal data. All access is logged and audited.
• Secure Hosting: Our Website and Services are hosted on enterprise-grade cloud infrastructure (Vercel, AWS) with built-in redundancy, firewalls, DDoS protection, and intrusion detection systems.
• Regular Assessments: We conduct periodic security assessments, vulnerability scans, penetration testing, and code reviews to identify and remediate security weaknesses.
• Employee Training: Team members receive regular training on data protection best practices, security awareness, phishing prevention, and incident response procedures.
• Incident Response: We maintain a documented incident response plan. In the event of a data breach involving your personal data, we will notify you and relevant authorities within 72 hours as required by applicable law.

Despite our best efforts, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially reasonable means to protect your personal information, we cannot guarantee absolute security. We recommend using strong passwords and keeping your login credentials confidential.

Your personal information may be transferred to, stored in, and processed in countries outside your country of residence. Our third-party service providers — including Google (United States), Meta (United States), Vercel (United States), and AWS (multiple global regions) — operate servers internationally. These countries may have different data protection laws than your jurisdiction.

When we transfer personal data internationally, we implement appropriate safeguards:

• Transferring data to countries deemed to provide adequate data protection by relevant authorities.
• Using Standard Contractual Clauses (SCCs) approved by the European Commission with service providers.
• Relying on service providers’ binding corporate rules, certifications (e.g., EU-US Data Privacy Framework), or data processing agreements.
• Implementing additional technical safeguards such as encryption and pseudonymisation where appropriate.

By using our Website, you consent to the transfer of your information to these jurisdictions, subject to the safeguards described herein.

Depending on your location and applicable data protection laws (including GDPR, the Indian IT Act, DPDPA 2023, and other local regulations), you may have the following rights:

• Right of Access: Request a copy of the personal information we hold about you and information about how we process it.
• Right to Rectification: Request correction of inaccurate or incomplete personal information.
• Right to Erasure ("Right to be Forgotten"): Request deletion of your personal information when it is no longer necessary for the purposes collected, or when you withdraw consent.
• Right to Restriction: Request that we restrict processing of your personal information in certain circumstances (e.g., when you contest its accuracy).
• Right to Data Portability: Receive your personal information in a structured, commonly used, machine-readable format and transmit it to another controller.
• Right to Object: Object to processing based on legitimate interests, including processing for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds.
• Right to Withdraw Consent: Where processing is based on consent, withdraw it at any time. Withdrawal does not affect lawfulness of processing prior to withdrawal.
• Right to Lodge a Complaint: Lodge a complaint with a supervisory authority or data protection authority in your jurisdiction if you believe our processing infringes applicable law.

If you are a California resident, the California Consumer Privacy Act (CCPA) and its amendment, the California Privacy Rights Act (CPRA), provide you with additional rights:

• Right to Know: Request disclosure of the categories and specific pieces of personal information collected, sources, business purposes, and third parties with whom information is shared.
• Right to Delete: Request deletion of personal information we have collected, subject to certain legal exceptions.
• Right to Correct: Request correction of inaccurate personal information.
• Right to Opt Out of Sale/Sharing: We do not sell your personal information. We do not share your personal information for cross-context behavioural advertising as defined by CPRA.
• Right to Non-Discrimination: We will not discriminate against you for exercising CCPA/CPRA rights — no different pricing, quality reduction, or denial of services.
• Right to Limit Sensitive Data Use: If we collect sensitive personal information, you have the right to limit its use to what is necessary to provide the Services.

To exercise CCPA/CPRA rights, email nexgenelit@gmail.comwith the subject "CCPA Request". You may designate an authorised agent with written authorisation. We will verify your identity before processing.

Categories of personal information collected in the preceding 12 months: Identifiers (name, email, IP address), commercial information (service inquiries, transactions), internet/electronic activity (browsing data, cookies), geolocation data (approximate, from IP), and professional/employment information (company, job title). These categories have been disclosed to service providers for business purposes as described in this Privacy Policy.

Our Website and Services are designed for businesses and professionals and are not directed to individuals under 18 years of age. We do not knowingly collect, solicit, or maintain personal information from anyone under 18.

If we learn that we have inadvertently collected personal information from a child under 18, we will take immediate steps to delete that information from our servers and systems. If you are a parent or guardian and believe your child has provided personal information without your consent, please contact us immediately at nexgenelit@gmail.com.

Our Website may contain links to third-party websites, plug-ins, applications, and services not operated by Nexgen Elit — including social media platforms (LinkedIn, Facebook, Instagram), partner websites, industry resources, and external tools.

This Privacy Policy does not apply to third-party websites or services. We are not responsible for their privacy practices, content, or security. We strongly encourage you to review the privacy policies of every third-party website you visit.

We may embed third-party content (e.g., YouTube videos, social media feeds, maps). These embeds may collect data through their own cookies or tracking mechanisms; their data usage is governed by their respective privacy policies.

We reserve the right to update or modify this Privacy Policy at any time. When we make material changes, we will:

• Update the "Effective Date" and "Last Updated" date at the top of this page.
• Post a prominent notice on our Website informing you of the changes.
• Send you email notification if we have your email address and the changes materially affect your personal information usage.
• Obtain your renewed consent where required by applicable law.

We encourage you to review this Privacy Policy regularly. Your continued use of our Website and Services after changes constitutes acceptance of the updated policy. If you disagree with changes, stop using our Services and contact us to request data deletion.

If you have any questions, concerns, or complaints about this Privacy Policy, our data practices, or your personal information — or if you wish to exercise any of your rights — please contact us: