NightworX — The Operating System of the Nightlife Industry

1. Data Controller

NightworX ("we", "us", "our") operates the nightworx.io platform. We are the data controller for personal data collected through our platform, in compliance with the General Data Protection Regulation (GDPR — EU 2016/679).

Contact: hello@nightworx.io

2. Data We Collect

We collect data you provide directly: name, email address, phone number, organization details, and payment information (processed by Stripe). We also collect usage data such as pages visited, features used, and device information to improve our service.

3. Legal Basis

We process your data based on: (a) contract performance (to provide our service), (b) legitimate interest (to improve and secure our platform), and (c) consent (for marketing communications, which you can withdraw at any time).

4. Data Storage

All data is stored in the European Union (Frankfurt, Germany) using Supabase infrastructure. Payment data is processed by Stripe, which is PCI DSS Level 1 certified. We do not store credit card numbers on our servers.

5. Your Rights

Under GDPR, you have the right to: access your data, rectify inaccurate data, erase your data (right to be forgotten), restrict processing, data portability, and object to processing. You can exercise these rights by contacting us at hello@nightworx.io or through the data export feature in your account settings.

6. AI Transparency

NightworX uses artificial intelligence features powered by third-party language models. In compliance with the EU AI Act (Article 50), all AI-generated content is clearly labelled. AI features are optional and available on paid plans. We do not use your data to train AI models.

7. Cookies

We use strictly necessary cookies for authentication and session management. Analytics cookies (PostHog, EU Cloud) are only set with your consent. You can manage cookie preferences at any time.

8. Data Retention

We retain your data for as long as your account is active. Financial records are retained for the legally required period (typically 7 years for tax purposes). Upon account deletion, personal data is erased within 30 days, except where legal retention obligations apply.

9. Contact

For any privacy-related questions or to exercise your rights, contact our Data Protection team at hello@nightworx.io.

Privacy Policy