Privacy Policy

This privacy policy explains how nextlayerhubis SARL collects, uses, and protects your personal information when you use our website and services. We are committed to protecting your privacy and ensuring transparency in our data practices.

Last updated: January 2026

Data Controller Information

nextlayerhubis SARL is the data controller responsible for your personal data. Our contact details are:

Data Collection

We collect and process various types of personal data when you interact with our website and services. The data we collect includes information you provide directly to us and information collected automatically through your use of our website.

Information You Provide

When you contact us, request our services, or use our website, we may collect the following personal information:

  • Name and contact details (email address, phone number)
  • Company information and business details
  • Information about your CRM requirements and business needs
  • Communication preferences and consultation requests
  • Any other information you choose to provide in forms or communications

Information Collected Automatically

When you visit our website, we automatically collect certain technical information:

  • IP address and location data
  • Browser type and version
  • Device information and operating system
  • Website usage data and page views
  • Referral sources and navigation patterns

How We Use Your Information

We use the personal data we collect for legitimate business purposes related to providing our CRM comparison and consulting services. The primary ways we use of your data include:

  • Providing CRM comparison and consulting services
  • Responding to your enquiries and consultation requests
  • Communicating about our services and your projects
  • Improving our website and service offerings
  • Complying with legal obligations and business requirements
  • Protecting our business interests and preventing fraud

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract: When processing is necessary for performing our services
  • Legitimate Interest: For business communications and service improvement
  • Legal Obligation: When required by applicable laws and regulations

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties. We may share your data in the following limited circumstances:

  • With service providers who assist in delivering our services
  • When required by law or legal process
  • To protect our rights, property, or safety
  • With your explicit consent for specific purposes

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with our legal obligations. Generally, we retain client data for the duration of our business relationship plus a reasonable period afterwards for legal and business purposes.

Specific retention periods depend on the type of data and the purpose for processing:

  • Contact enquiries: 3 years from last contact
  • Client project data: 7 years from project completion
  • Website analytics data: 26 months
  • Marketing communications: Until you unsubscribe

Your Rights

Under GDPR and applicable data protection laws, you have several rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right of Rectification: Request correction of inaccurate or incomplete data
  • Right of Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of processing in specific situations
  • Right to Data Portability: Request transfer of your data in a machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for consent-based processing

To exercise any of these rights, please contact us at privacy@nextlayerhubis.top or +352 23317253. We will respond to your request within one month of receipt.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and updates
  • Access controls and authentication measures
  • Staff training on data protection practices
  • Secure data storage and backup procedures

International Data Transfers

As we are based in Luxembourg within the European Union, your data is primarily processed within the EU. If we need to transfer data outside the EU, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses.

Contact Information

If you have any questions about this privacy policy, wish to exercise your data protection rights, or need to contact us about data protection matters, please reach out to us:

Complaints

If you believe we have not handled your personal data in accordance with this privacy policy or applicable data protection laws, you have the right to lodge a complaint with the relevant supervisory authority. In Luxembourg, this is the Commission Nationale pour la Protection des Données (CNPD).

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date. We encourage you to review this policy periodically to stay informed about how we protect your privacy.

Children's Privacy

Our services are not directed at children under the age of 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.