Data Policy | Northwind AI

1. Introduction

Welcome to Northwind AI ("Company", "we", "our", or "us"), an AI automation web service provider. We design, integrate and deploy AI-powered solutions for small and medium-sized enterprises (SMEs).

This Data Policy explains how we collect, use, process, and protect information when you:

Visit our website
Request a demo
Use our AI automation apps and web services

By using our services, you agree to this Data Policy.

2. Information We Collect

A. Automatically Collected Information

IP address
Browser cookies
Geolocation data
Device information
And, activity logs

B. Information You Provide

Name
Email
Telephone
Business name
Business location
Industry
And, data submitted through web forms and APIs

C. Customer Data (processed on your behalf)

As an AI automation provider, we may process data that our customers upload or connect to our systems (“Customer Data”), which may include:

Business operational data
CRM data
Support tickets
Documents
Communications
API-integrated third-party data

We act as a data processor for this data and process it strictly according to customer instructions.

3. How We Use Information

We use information to:

Provide and maintain AI automation services
Train, deploy, and improve automation workflows
Respond to inquiries and support requests
Manage accounts and billing
Improve platform performance
Detect fraud or misuse
Comply with legal obligations

We do not use Customer Data to train public AI models unless explicitly agreed in writing.

4. AI & Automated Processing Disclosure

Our services may use:

Machine learning models
Large language models
Predictive automation systems
Intelligent decision workflows

Automated processing may generate outputs based on input data. Customers are responsible for reviewing outputs before operational deployment.

5. Legal Basis for Processing (If Applicable)

For users in Nigeria, we rely on:

Contract performance
Legitimate business interests
Legal obligations
Consent (where required)

6. Data Sharing

We DO NOT sell personal data.

We may share data with:

Cloud hosting providers
Infrastructure providers
Payment processors
Analytics tools
And, legal authorities (with a Signed Warrant)

All service providers are bound by confidentiality and data protection agreements.

7. Data Retention

We retain:

Account data while your account is active
Customer Data according to contractual agreements
Logs and system records for security and compliance purposes

Upon termination, Customer Data will be deleted or returned as specified in your service agreement.

8. Data Security

We implement:

Encryption in transit (TLS)
Secure cloud infrastructure
Role-based access controls
Regular security monitoring
Audit logging

9. International Data Transfers

If data is transferred internationally, we use appropriate safeguards such as:

Standard Contractual Clauses
Adequacy decisions
Contractual protections

10. Your Rights

Depending on your location, you may have rights to:

Access your data
Correct inaccuracies
Request deletion
Restrict processing
Object to processing
Withdraw consent

11. Third-Party Integrations

Our platform may integrate with third-party tools (e.g., CRMs, messaging platforms, payment systems). We are not responsible for third-party privacy practices.

12. Changes to This Policy

We may update this policy periodically. Updates will be posted with a revised date.

1. Introduction

This Data Policy explains how we collect, use, process, and protect information when you:

Visit our website

Request a demo

Use our AI automation apps and web services