At Neodustria.com, we are committed to protecting the privacy and security of our clients' data. This privacy policy outlines how we collect, process, and protect personal and industrial information in compliance with the General Data Protection Regulation (GDPR), the EU AI Act, and other global data protection laws.

Neodustria collects and processes data necessary to deliver and improve our services:

• Account Data: Name, email, company, role, region.
• Usage Data: Logs of platform activity, simulation queries, module usage.
• Billing Data: Subscription, invoices, and payment status.
• Technical Data: Browser info, IP address, device type (for diagnostics).

We do not sell or rent user data. All data is used strictly for platform functionality, billing, compliance, and support.

• Data is securely stored in ISO 27001-certified data centers located in the European Union.
• We apply AES-256 encryption at rest and TLS 1.3 encryption in transit.
• Access to customer data is role-based and protected by MFA and audit logging.

We regularly conduct penetration tests and security audits to ensure system integrity.

Neodustria.com uses cookies to personalize content and analyze usage:

• Essential Cookies: Enable secure login and session persistence.
• Analytics Cookies: Help us improve performance and UX.

Users can manage cookie preferences via our cookie consent banner.

We do not share data with third parties unless required to deliver our services or comply with the law. We may:

• Use cloud processors (e.g., for hosting, billing) under signed DPA agreements.
• Share usage data internally for AI model improvement (fully anonymized).
• Respond to lawful data access requests from authorities, in compliance with GDPR.

As a data subject, you have the following rights under GDPR and the EU AI Act:

• Right to Access: Request a copy of your data.
• Right to Rectification: Correct inaccurate data.
• Right to Erasure: Request deletion of data ("Right to be Forgotten").
• Right to Object: Opt out of marketing or analytics processing.
• Right to Portability: Receive your data in a structured format.

To exercise your rights, contact us at info@neodustria.com.

• Our AI modules are designed to support decision-making, not replace human judgment.
• We do not use personal profiling or automated decisions that legally affect users.
• We follow EU AI Act obligations for high-risk systems, including human oversight and transparency.

• Client data is retained as long as the subscription is active, plus a 6-month grace period.
• Logs and analytics are retained for 12 months then aggregated.
• Deleted accounts trigger data erasure in compliance with data minimization.

• GDPR (EU 2016/679): Full compliance for data subject rights.
• EU AI Act: Implementing responsible AI system obligations.
• ISO 27001: Information security practices followed in platform architecture.

For privacy-related inquiries, please contact our Data Protection Officer:

• 📩 Email: info@neodustria.com