Information We Collect

Account Information

When you sign up for brighttechnexus.com services, we collect basic information to create and maintain your account. This includes your email address, chosen password (stored encrypted), and company name if you're registering on behalf of an organization.

Financial Data You Upload

Our software analyzes financial information you provide. This might include transaction records, budget spreadsheets, revenue reports, or expense tracking data. You control what you upload, and we only process it to deliver the analysis features you request.

Usage Information

We track how you interact with our platform to improve functionality and fix issues. This includes which features you use most, error logs when something goes wrong, and general session data like login times and dashboard activity.

Technical Data

Standard web technology information gets collected automatically: your IP address, browser type, operating system, device identifiers, and timezone settings. This helps us maintain security and ensure compatibility across different systems.

How We Use Your Information

Everything we collect serves specific purposes related to operating our financial analysis platform:

• Processing and analyzing the financial data you submit through our tools
• Maintaining your account security and preventing unauthorized access
• Sending you important notifications about service updates or account activity
• Improving our algorithms and adding features based on actual usage patterns
• Providing customer support when you contact us with questions or issues
• Meeting legal obligations under South Korean financial data regulations

Data Storage and Security

Your information lives on secure servers located in South Korea, with encrypted backup systems. We use industry-standard AES-256 encryption for data at rest and TLS 1.3 for data in transit between your browser and our servers.

Access Controls

Only authorized Bright Tech Nexus personnel can access user data, and only when necessary for support requests or system maintenance. Every access gets logged and reviewed regularly. Our team members sign confidentiality agreements and receive training on data protection practices.

Security Measures

• Regular security audits and penetration testing by external firms
• Multi-factor authentication options for user accounts
• Automated monitoring for suspicious activity or breach attempts
• Quarterly updates to security protocols based on emerging threats
• Isolated database environments to prevent cross-contamination

No system is completely immune to attacks, but we take reasonable precautions aligned with current best practices for financial software platforms.

Sharing and Third Parties

We limit data sharing to these specific scenarios:

Service Providers

Some functions require third-party tools. Our payment processor handles subscription billing, our email service sends account notifications, and our cloud infrastructure provider hosts our servers. These partners access only the data necessary for their specific function and operate under strict confidentiality agreements.

Legal Requirements

South Korean law may require us to disclose information to government authorities in specific circumstances, such as court orders or regulatory investigations. We'll notify you about such requests unless legally prohibited from doing so.

Business Transfers

If Bright Tech Nexus merges with another company or gets acquired, user data would transfer as part of that transaction. You'd receive notice beforehand, and the new entity would still need to honor the commitments made in this privacy policy.

Your Rights and Control

You maintain control over your personal information and financial data while using our platform.

Access Your Data

Request a complete copy of all information we hold about your account. We'll provide this in a readable format within 15 business days. Log into your account dashboard and navigate to Settings, then Privacy Controls to initiate a data export.

Correct Inaccuracies

Update your account information anytime through your profile settings. If you spot errors in data we control (like support ticket records), contact us at support@brighttechnexus.com and we'll make corrections within 7 business days.

Delete Your Account

You can delete your account through the Settings menu. This permanently removes your profile information and uploaded financial data within 30 days. Some records may be retained for legal compliance purposes (like billing records for tax purposes) but become disassociated from your personal identifiers.

Restrict Processing

Ask us to stop processing certain data types while maintaining your account. For example, you might want to pause email notifications while keeping your analysis features active. Contact support to arrange specific restrictions.

Data Portability

Export your uploaded financial data in standard formats (CSV, JSON, Excel) to transfer to another service. Your dashboard includes export functions, or support can help with bulk exports of larger datasets.

Data Retention Periods

Different information types have different retention schedules based on legal requirements and operational needs:

• Active account data: Retained while your account remains active
• Financial analysis history: Kept for 3 years after creation, then deleted
• Billing records: Maintained for 5 years per South Korean tax law
• Support communications: Deleted after 2 years of ticket closure
• Security logs: Retained for 1 year, then automatically purged
• Marketing consent records: Kept for 3 years after withdrawal

After deletion, data undergoes secure erasure processes that make recovery technically impossible. Backup systems retain copies for up to 90 additional days before permanent removal.

International Data Transfers

Our primary operations run from South Korea, but some service providers operate from other countries. When data crosses borders, we ensure adequate protection through:

• Standard contractual clauses approved by relevant data protection authorities
• Verification that recipient countries maintain adequate privacy protections
• Additional encryption layers for international data transmission
• Regular audits of international partners' security practices

Most user data stays within South Korean data centers. International transfers happen mainly for backup redundancy and technical infrastructure maintenance.

Cookies and Tracking

Our website uses cookies to maintain your login session and remember your preferences. We don't use advertising cookies or sell your browsing behavior to advertisers.

Essential Cookies

These keep you logged in and maintain security. You can't fully disable these without breaking core functionality, but they contain no personal information beyond a session identifier.

Preference Cookies

Remember your dashboard layout choices, language settings, and display preferences. These stay on your device and don't get transmitted to third parties.

Analytics Cookies

Help us understand which features get used most and where people encounter problems. Data gets anonymized before analysis. You can opt out through your account privacy settings.

Most browsers let you control cookie behavior through their settings. Blocking all cookies may limit some platform features.

Children's Privacy

Bright Tech Nexus targets business professionals and does not knowingly collect information from anyone under 16 years old. Our terms of service require users to be at least 16.

If we discover that someone under 16 has created an account, we'll delete it immediately. Parents or guardians who believe their child has provided information to us should contact support@brighttechnexus.com right away.

Changes to This Policy

We update this privacy policy occasionally to reflect new features, legal changes, or improved practices. The "Last Updated" date at the top shows when the current version took effect.

Significant changes trigger an email notification to active users at least 30 days before implementation. You can also check this page anytime to review the current policy. Continuing to use our services after changes take effect means you accept the updated terms.

Previous policy versions get archived and remain available on request if you need to reference historical commitments.

South Korea Specific Provisions

As a company operating in South Korea, we comply with the Personal Information Protection Act (PIPA) and related regulations:

• We maintain registration with the Korea Internet & Security Agency (KISA)
• Data protection officers review our practices quarterly
• Users can file complaints with the Personal Information Dispute Mediation Committee
• We provide Korean language support for privacy-related inquiries
• Breach notifications go out within 24 hours of discovery as required by law

South Korean residents have additional rights under PIPA beyond what's described in general sections above. Contact us for information about exercising Korea-specific privacy rights.