This Privacy and Cookie Policy explains how we collect, use, disclose, and protect your personal information when you use our website and services. It also outlines your rights under the laws applicable to you, including the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR). By using our site, you consent to this policy.

Information We Collect
We collect the following types of personal information:

Identifiers such as name, email address, IP address, user ID, etc.
Technical data like browser type, device type, operating system, referring URLs, time zone.
Usage data including pages viewed, actions taken, and time spent on our site or app.
Marketing and communication data related to your preferences in receiving marketing.
Form submission data from waitlist and pro bono assessment request forms.
Payment-related data collected and processed securely via Stripe.

We do not collect or process sensitive health data directly through the website. Health information is handled separately through the app platform, with its own explicit consent process.

Use of Information
We use the information to:

Provide and improve our services
Respond to inquiries and support requests
Track user behavior for analytics
Measure marketing and affiliate effectiveness
Comply with legal obligations

Cookies and Tracking Technologies
We use cookies and similar technologies to personalize content, serve ads, and analyze traffic. This includes Google Analytics 4 (GA4), Google Tag Manager (GTM), Microsoft Clarity, Facebook Pixel, HubSpot, Intercom, and affiliate or coupon tracking systems.

We use CookieYes to manage cookie consent.

You can accept, reject, or customize cookies. Once you make a choice, a revisit consent button will appear to change preferences.

Third Parties We Work With
We may share data with:

Service providers such as Google, HubSpot, Intercom, Microsoft, and Stripe
Advertising platforms for performance tracking
Affiliate networks and analytics tools

All third-party vendors are required to adhere to data privacy standards. We do not sell personal data.

Legal Basis for Processing (GDPR)
For users in the EU/EEA, we process personal data based on:

Your consent
Performance of a contract
Compliance with legal obligations
Our legitimate interests (e.g., improving services, preventing fraud)

Your Rights
If you’re located in California or the EU/EEA, you have the right to:

Access your data
Correct or update inaccurate data
Request deletion of your data
Opt-out of marketing
Request data portability
File a complaint with a regulatory authority

To exercise these rights, contact us at privacy@nvox.com.

Children’s Privacy
Our website is not intended for children under 18. We do not knowingly collect personal information from minors without parental consent.

Data Security
We implement appropriate measures to protect your data. However, no method of transmission over the internet is completely secure.

Data Transfers and Storage
Our servers are based in the United States. By using our services, you consent to transferring and storing your data in the U.S. or other jurisdictions.

Data Retention
We retain personal data only as long as necessary for the stated purposes, unless a longer period is required by law.

Changes to This Policy
We may update this policy occasionally. The date at the top indicates the last revision. Continued use of our services means you accept the changes.

Contact Us
For questions, contact: privacy@nvox.com