Payment data is handled by our payment partner Lemon Squeezy. We do not store bank card numbers on our servers.
Customer data of your fleet that you enter into the CRM (name, contacts, documents, rental history). You act as the data controller; we are the processor.
Technical data: IP address (stored as a hash), user agent, date and time of visit, action logs within the system.
2. How We Use Data
Providing the CRM service and its core functionality.
We do not share data with third parties for marketing. Sharing is only possible with infrastructure providers without which the service cannot operate: hosting, payments, email notifications.
3. Where Data Is Stored
Primary database — Supabase, Singapore region.
Daily backups are stored encrypted.
Client documents (e.g., ID photos) are encrypted with AES-256.
4. Your Rights
You may request a copy of your data, correction, or deletion. Write to privacy@nexride.asia. Requests are processed within 30 days.
5. Cookies
We use only session cookies for authentication (NextAuth). Third-party analytics are disabled by default.
6. Children Under 18
The service is not intended for persons under 18. We do not knowingly collect personal data from minors.
7. Policy Changes
We will notify you of material changes to this policy by email at least 30 days before they take effect.
To submit an access, deletion, or objection request — use the DSAR form.