Privacy Policy

1. Introduction

NexFlow ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our payment infrastructure services.

2. Information We Collect

API Usage Data: When you integrate with NexFlow, we collect API request logs including endpoints called, timestamps, and response codes.

Wallet Addresses: We process wallet addresses provided in payment requests. These are public blockchain addresses.

Transaction Data: We log transaction metadata for routing optimization and compliance purposes.

3. How We Use Your Information

• To route payments to optimal providers
• To maintain compliance with regulatory requirements
• To improve our routing algorithms and service reliability
• To provide customer support and troubleshooting
• To detect and prevent fraud or abuse

4. Data Sharing

We share data with payment providers (e.g., Coinbase, x402 facilitators) only as necessary to complete payment transactions. We may also share data with compliance screening providers (e.g., Chainalysis, TRM Labs) for address risk assessment.

5. Data Retention

We retain transaction logs and API usage data for up to 7 years to comply with financial record-keeping requirements. You may request deletion of non-essential data by contacting us.

6. Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, access controls, and regular security audits. NexFlow is non-custodial and never has access to private keys or signing authority over funds.

7. Your Rights

You have the right to access, correct, or delete your personal data. You may also request a copy of your data or object to certain processing activities. Contact us at privacy@nexflow.io to exercise these rights.

8. Contact Us

For privacy-related inquiries, contact us at: privacy@nexflow.io