Privacy Policy

1. Introduction

NextStep ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our service at getnextstep.io ("the Service").

2. Information We Collect

We collect the following types of information:

Information you provide

• Account information (name, email address, password)
• Payment information (processed securely through our payment provider)
• Content you create within the Service (processes, workflows, form responses)
• Communications with us (support emails, feedback)

Information collected automatically

• Device and browser information
• IP address
• Usage data (pages visited, features used, timestamps)
• Cookies and similar tracking technologies

3. How We Use Your Information

We use your information to:

• Provide, maintain, and improve the Service
• Process payments and manage your subscription
• Send you important service updates and notifications
• Respond to your support requests and communications
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address security issues or fraud
• Comply with legal obligations

4. Information Sharing

We do not sell your personal data. We may share your information with:

• Service providers — Third-party services that help us operate (e.g., payment processing, hosting, analytics)
• Team members — Other users on your team, as necessary for the Service to function
• Guest participants — Limited information shared with guests you invite to your processes
• Legal requirements — When required by law, regulation, or legal process

5. Cookies

We use cookies and similar technologies to keep you signed in, remember your preferences, and understand how you use the Service. You can control cookies through your browser settings, though disabling them may affect the functionality of the Service.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal or legitimate business purposes.

8. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate or incomplete data
• Request deletion of your personal data
• Object to or restrict processing of your data
• Request a copy of your data in a portable format
• Withdraw consent where processing is based on consent

To exercise any of these rights, please contact us at [email protected].

9. Children's Privacy

The Service is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Third-Party Services

The Service may contain links to or integrate with third-party services. We are not responsible for the privacy practices of those services. We encourage you to review their privacy policies before providing them with your information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please contact us at [email protected].