Privacy Policy

NexSYS Advisors LLP ("NexSYS", "Company", "we", "us", or "our") is a limited liability partnership registered under the Limited Liability Partnership Act, 2008, having its registered office at 20-A, Radha Kishan Colony, Jaipur, Rajasthan 302005, India.

This Privacy Policy ("Policy") describes how NexSYS collects, uses, stores, processes, shares, and protects your personal information when you access or use our website at www.nexsysadvisors.com (the "Website"), the DueDraft.ai platform (the "Platform"), and any related services (collectively, the "Services").

This Policy is published in compliance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, and the Digital Personal Data Protection Act, 2023 ("DPDP Act").

By accessing or using the Website or the Services, you acknowledge that you have read, understood, and consent to the collection, use, storage, and processing of your personal information in accordance with this Policy.

This Policy applies to all users ("Users" or "you") who access or use the Website and the Services, including startups and SMEs; individual professionals; chartered accountants, company secretaries, and law firms; enterprise clients including family offices, venture capital and private equity firms; and any other person who visits the Website or communicates with us.

This Policy applies to information collected through the Website, the Platform, email communications, telephone calls, physical meetings, and any other means through which you interact with NexSYS.

Personal Information: We may collect Identity Information (full name, date of birth, government-issued identification numbers); Contact Information (email, postal address, telephone number); Professional Information (designation, company name, professional qualifications); Financial Information (billing address, bank account details, GST identification number); Account Information (username, password in encrypted form, preferences); and Engagement Information (details of matters, contracts, and corporate records shared through the Platform).

Sensitive Personal Data or Information (SPDI): We classify the following as SPDI in accordance with applicable rules: passwords; financial information such as bank account, credit card, or debit card details; biometric information (if collected); and any other information prescribed as sensitive under Applicable Law. We collect SPDI only where necessary and with your express, informed, and voluntary consent.

Automatically Collected Information: When you visit the Website, we automatically collect Device Information (device type, operating system, browser type); Log Information (IP address, access dates and times, pages viewed, clickstream data); and approximate Location Information derived from your IP address.

We collect information through the following methods: Directly from you (when you create an account, fill out forms, book a consultation, upload documents, or make a payment); Automatically (through cookies, web beacons, and similar tracking technologies); From third parties (payment processors, analytics providers, identity verification services); and Through APIs (where the Platform integrates with third-party tools at your request).

All personal information is collected through secure, encrypted channels. We do not collect information through hidden or deceptive means.

We collect and use your personal information solely for the following purposes: Service Delivery (to provide, operate, maintain, and improve the Services); Account Management (to create and manage your User Account); Payment Processing (to process payments and manage subscriptions); Communication (to send service-related notifications and responses to enquiries); Legal and Regulatory Compliance (KYC, anti-money laundering, tax reporting); Platform Improvement (to analyse usage patterns and develop new features); Security (to detect and prevent fraud and unauthorised access); and Marketing (only where you have opted in to receive such communications).

We shall not use your personal information for any purpose other than those specified in this Policy. If we wish to use your information for a new purpose, we shall seek your prior consent before doing so.

The Website uses cookies, web beacons, and similar tracking technologies to enhance your browsing experience. We use the following types of cookies: Strictly Necessary Cookies (essential for the Website to function); Analytics Cookies (Google Analytics to collect anonymised usage data); Functional Cookies (to remember your preferences and settings); and Marketing Cookies (deployed only with your explicit consent).

Managing Cookies: You may control or disable cookies through your browser settings. Please note that disabling cookies may affect the functionality of certain features of the Website.

We shall not share, sell, rent, or trade your personal information with any third party except with your express, informed, and voluntary consent, or as otherwise described in this Policy.

Third-Party Service Providers: We may share your information with cloud hosting providers, payment gateway processors, analytics and performance monitoring tools, email and communication service providers, and identity verification and KYC providers. All third-party service providers are contractually bound to maintain the confidentiality and security of your information.

Disclosure Without Consent: We may disclose your personal information without your consent where required by Applicable Law or court order; where necessary to protect the rights, property, or safety of NexSYS, its Users, or the public; in connection with a corporate transaction; or to detect and prevent fraud.

We retain your personal information only for as long as is necessary to fulfil the purposes for which it was collected, as described in this Policy, or as required by Applicable Law.

The retention period is determined based on: the nature and sensitivity of the information; the purposes for which the information was collected; statutory or regulatory requirements; and the period necessary for the resolution of disputes. Upon the expiry of the applicable retention period, or upon your request for deletion (subject to legal obligations), we shall securely delete or anonymise your personal information.

We implement reasonable security practices and procedures, as mandated under applicable rules, to protect your personal information from unauthorised access, disclosure, alteration, or destruction. Our security measures include: encryption of data in transit (using SSL/TLS protocols) and at rest; access controls and role-based permissions; regular security audits and vulnerability assessments; secure cloud infrastructure with industry-standard certifications; and employee training on data protection best practices.

Notwithstanding the foregoing, no method of transmission over the internet or method of electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

Your personal information may be transferred to, stored in, and processed in countries or jurisdictions outside India, where our cloud infrastructure providers, analytics tools, or other third-party service providers are located.

Where your personal information is transferred outside India, we shall ensure the transfer is made in compliance with the DPDP Act and that the recipient country or organisation provides an adequate level of data protection, or that appropriate contractual safeguards are in place.

Subject to Applicable Law, you have the following rights in relation to your personal information: Right to Access (request a summary of your personal information); Right to Correction (request correction of inaccurate or incomplete information); Right to Erasure (request deletion of your personal information, subject to legal obligations); Right to Withdraw Consent (withdraw consent to processing at any time); Right to Grievance Redressal (lodge a grievance with our Grievance Officer); and Right to Nominate (nominate another individual to exercise your rights in the event of your death or incapacity).

To exercise any of your rights, please contact us at contact@nexsysadvisors.com. We shall respond to your request within the timelines prescribed by Applicable Law.

The Website and the Services are not directed at individuals under the age of eighteen (18) years. We do not knowingly collect personal information from minors. If we become aware that we have collected personal information from a person under the age of 18, we shall take immediate steps to delete such information from our systems.

If you are a parent or guardian and believe that your child has provided personal information to us, please contact us at contact@nexsysadvisors.com.

In accordance with the Information Technology Act, 2000 and the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, NexSYS has appointed the following Grievance Officer:

Name: Himanshu Seth | Designation: Grievance Officer | Email: contact@nexsysadvisors.com | Address: 20-A, Radha Kishan Colony, Jaipur, Rajasthan 302005, India | Phone: +91 98878 88124

The Grievance Officer shall acknowledge receipt of any grievance within twenty-four (24) hours and shall endeavour to resolve the grievance within fifteen (15) days from the date of its receipt. If you are not satisfied with the resolution, you may escalate the matter to the Data Protection Board of India.

We may update or amend this Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we shall update the "Last Updated" date, provide a prominent notice on the Website, and where required by Applicable Law, seek your renewed consent.

Your continued use of the Website or the Services after the posting of changes constitutes your acceptance of the revised Policy.

By clicking "I Agree", registering for an account, or continuing to use the Website or the Services, you expressly consent to the collection, use, storage, processing, and disclosure of your personal information as described in this Policy.

This consent is binding and conclusive on all parties. You acknowledge that you have been given the opportunity to review this Policy in its entirety before providing your consent.

This Policy shall be governed by and construed in accordance with the laws of India.

Any disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the courts of Jaipur, Rajasthan, India, subject to the dispute resolution mechanism set out in the Terms of Use.

If you have any questions, concerns, or feedback regarding this Policy or our privacy practices, please contact us at:

NexSYS Advisors LLP | Jaipur Office: 20-A, Radha Kishan Colony, Jaipur, Rajasthan 302005, India | Gurugram Office: 705, Devaan Apartment, Sector 84, Haryana 122004, India | Email: contact@nexsysadvisors.com | Phone: +91 98878 88124