Your data. Your control.

We built Nubis on the principle that your data belongs to you. This policy explains exactly what we collect, why we collect it, and how you can request its deletion.

Last updated: March 15, 2026Effective: March 15, 2026

You can review and update your website cookie consent choices at any time using the Cookiebot banner. Our full cookie declaration is embedded below for transparency.

01 — Introduction

Nubis Cloud, Inc. ("Nubis," "we," "us," or "our") operates the cloud infrastructure platform available at usenubis.com and the Nubis control panel at console.usenubis.com (collectively, the "Services"). This Privacy Policy explains how we collect, use, disclose, and protect information about you when you use our Services.

We are committed to protecting your privacy and handling your data with transparency. This policy applies to all individuals who visit our website, create an account, or use any Nubis services.

Key principle: Nubis is an infrastructure provider. We do not access, read, or process the data you store or process on our infrastructure unless explicitly required for service delivery or permitted by law.

02 — Information We Collect

2.1 Information You Provide Directly

When you create an account or use our Services, you may provide:

Account information: Full name, email address, username, and password
Billing information: Payment card details, billing address, and tax identification number (processed securely via our payment processors)
Profile information: Company name, job title, phone number, and country
Support data: Information you provide when contacting our support team, including technical logs and screenshots you share voluntarily
Communications: Messages you send us via email, contact forms, or live chat

2.2 Information Collected Automatically

When you use our Services, we automatically collect:

Usage data: Pages visited, features used, timestamps, and click patterns on our marketing website and control panel
Device and connection data: IP address, browser type and version, operating system, referrer URL, and geographic location at country/city level
Infrastructure telemetry: CPU utilization, memory usage, network throughput, and uptime metrics for your instances and services. This data is used to operate and bill for your services and is accessible to you through the control panel
Authentication logs: Login times, IP addresses, and two-factor authentication events for security purposes
API access logs: Timestamps, endpoints accessed, and response codes for API calls made with your credentials

2.3 Information from Third Parties

We may receive information from:

Payment processors: Transaction confirmation and fraud signals from Stripe, Paystack, or similar providers (we do not receive full card numbers)
Identity verification providers: In certain jurisdictions, we may verify your identity using third-party verification services
Analytics providers: Aggregated, anonymized usage statistics from Google Analytics and Vercel Analytics

03 — How We Use Your Information

We use the information we collect for the following purposes:

3.1 Service Delivery

Provisioning, operating, and maintaining your cloud infrastructure
Processing payments and issuing invoices
Authenticating your identity and preventing unauthorized access
Sending transactional emails (receipts, service alerts, password resets)
Providing customer support and responding to your inquiries

3.2 Service Improvement

Analyzing how users interact with our platform to improve usability
Diagnosing and resolving technical issues and outages
Developing new features and services based on usage patterns
Ensuring the security and reliability of our infrastructure

3.3 Legal Compliance

Complying with applicable laws and regulations
Responding to lawful requests from government authorities
Enforcing our Terms of Service and other agreements
Detecting, preventing, and addressing fraud and abuse

3.4 Marketing (with consent)

Sending newsletters and product updates if you have opted in. You may unsubscribe at any time via the link in any email or by contacting privacy@usenubis.com

04 — Data Sharing and Disclosure

We do not sell your personal information. We share your information only in the following circumstances:

4.1 Service Providers

We engage trusted third-party service providers who process data on our behalf under strict data processing agreements, including:

Payment processing: Stripe (US), Paystack (Nigeria) for billing
Cloud infrastructure: Colocation and hardware vendors operating our physical data centers
Customer support: Intercom for live chat and support ticket management
Analytics: Google Analytics, Vercel Analytics (anonymized)
Email delivery: Resend for transactional email

4.2 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request. We will attempt to notify you of such requests unless prohibited by law or court order.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of substantially all of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website prior to any such transfer.

4.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

05 — Data Retention

We retain your personal information for as long as necessary to provide our Services and comply with our legal obligations. Specifically:

Account data: Retained for the duration of your account and for 30 days after account deletion (to allow for re-activation), then permanently deleted
Billing and financial records: Retained for 7 years to comply with tax and accounting regulations
Infrastructure logs: Access logs retained for 90 days for security and troubleshooting purposes
Support records: Retained for 2 years from the close of each support ticket
Marketing preferences: Retained until you withdraw consent or delete your account

06 — Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction:

All data transmitted between your browser and our servers is encrypted via TLS 1.3
Passwords are hashed using bcrypt with a strong work factor
Access to production systems is restricted to authorized personnel via role-based access controls and hardware security keys
We conduct regular security audits and penetration testing of our infrastructure and applications
Payment card data is never stored on our servers and is tokenized by our payment processors
Infrastructure data at rest is encrypted using AES-256 for managed services

No method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

07 — Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

7.1 General Rights (All Users)

Access: Request a copy of the personal information we hold about you
Correction: Request that we correct inaccurate or incomplete personal information
Deletion: Request that we delete your personal information, subject to our legal retention obligations
Portability: Request your personal data in a structured, machine-readable format
Opt-out of marketing: Unsubscribe from marketing communications at any time

7.2 European Union Residents (GDPR)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to object to processing and the right to restrict processing. Our lawful bases for processing include contract performance, legitimate interests, legal obligation, and consent.

For EU users, we implement Standard Contractual Clauses (SCCs) where data is transferred outside the EEA. Our Data Processing Agreement (DPA) is available at usenubis.com/legal/dpa.

7.3 California Residents (CCPA/CPRA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including the right to know what personal information is collected, the right to delete, and the right to opt out of the sale of personal information. We do not sell your personal information.

7.4 Nigerian Residents (NDPR)

We comply with the Nigeria Data Protection Regulation (NDPR) issued by the National Information Technology Development Agency (NITDA). Nigerian residents have the right to access, correct, and request deletion of their personal data. To exercise your rights, contact our designated Data Protection Officer at dpo@usenubis.com.

7.5 Exercising Your Rights

To exercise any of these rights, contact us at privacy@usenubis.com or write to:

Nubis Cloud, Inc.
Attn: Privacy Team
Lagos, Nigeria
privacy@usenubis.com

We will respond to your request within 30 days. We may need to verify your identity before processing your request.

08 — Cookies and Tracking

We use cookies and similar tracking technologies on our marketing website and control panel for the following purposes:

Essential cookies: Required for authentication sessions, security, and basic functionality. These cannot be disabled.
Analytics cookies: We use Google Analytics and Vercel Analytics to understand how users interact with our website. Analytics data is anonymized and aggregated.
Preference cookies: Remember your settings such as theme preference (dark/light mode) and language.
Marketing cookies: Only set with your explicit consent. Used to measure the effectiveness of our marketing campaigns.

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our Services. For more information, see our Cookie Policy.

09 — Children's Privacy

Our Services are not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you believe a child has provided us with personal information, please contact us at privacy@usenubis.com.

10 — International Data Transfers

Nubis Cloud, Inc. is incorporated in the United States and operates data centers in Nigeria, Germany, Singapore, and the United States. Your information may be transferred to and processed in countries other than the country in which you reside.

For users in the European Economic Area (EEA), we rely on Standard Contractual Clauses (SCCs) approved by the European Commission when transferring personal data outside the EEA. For Nigerian users, we comply with cross-border transfer requirements under the NDPR.

11 — Third-Party Links

Our website may contain links to third-party websites or services. This Privacy Policy does not apply to those websites, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party sites you visit.

12 — Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

Update the "Last Updated" date at the top of this page
Send an email notification to registered account holders
Display a notice in the Nubis control panel for 30 days

Your continued use of our Services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

13 — Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

General privacy inquiries: privacy@usenubis.com
Data Protection Officer: dpo@usenubis.com
Mailing address: Nubis Cloud, Inc., Lagos, Nigeria
Response time: We aim to respond within 5 business days

You also have the right to lodge a complaint with the relevant supervisory authority in your jurisdiction — such as the NITDA in Nigeria, the ICO in the UK, or your local EU data protection authority.