Privacy Policy

This Privacy Policy applies to the Nunuworks website, contact inquiries, Workflow Review requests, custom internal AI workflow discussions, support interactions, and related business communications operated by Nunuworks, Inc.

Nunuworks also operates or has operated separate products, including products shown on this website. Product-specific websites, apps, accounts, and customer workflows may have their own terms, privacy policies, or customer agreements. Those product-specific documents control where they apply.

Depending on the context, Nunuworks may act as a business collecting information for its own website, sales, support, billing, security, and engineering operations, and as a service provider or processor when handling information under a client engagement.

We collect information you choose to provide when you visit the site, submit the contact form, discuss a possible Workflow Review, correspond with us, or become a client.

Please do not submit passwords, private keys, payment card numbers, government identifiers, protected health information, regulated financial information, or other highly sensitive information through public website, contact form, or email channels unless we have agreed in writing to a secure way to collect that information.

Like most websites and hosted services, we may collect technical information automatically when you use this site. This helps us operate, secure, troubleshoot, and improve the website.

The site may use cookies, local storage, or similar technologies for necessary site behavior and preferences. For example, the theme picker may store whether you prefer system, light, or dark mode. Browser settings may let you block or delete storage, but some features may not behave as expected.

We may receive information from third parties when needed to run the site, schedule meetings, communicate with you, support an engagement, or administer our business.

For example, if a meeting is scheduled after a direct conversation, the scheduling provider may provide meeting details needed to confirm, update, or prepare for that meeting.

We use information to operate the website, respond to inquiries, schedule meetings, prepare and deliver Workflow Reviews, plan and provide custom internal AI workflow systems, build and support automations, communicate with clients, protect our systems, and comply with legal or business obligations.

We may also use information to improve Nunuworks services, develop repeatable internal methods, understand common workflow problems, maintain business records, process billing, and evaluate whether a proposed engagement is a good fit.

Nunuworks may use AI-enabled tools and model providers to understand workflows, summarize materials, draft recommendations, prototype automations, generate build plans, review code, analyze documents, or support delivery of engineering services.

AI outputs can be incomplete, inaccurate, or unsuitable without review. Nunuworks uses AI as an assistance layer, not as a substitute for human judgment, client approval, professional review, or production testing.

We do not intentionally use confidential client information from consulting engagements to train public foundation models. AI providers and development tools may process information according to their own service terms and data-processing commitments. If a client requires stricter handling, model restrictions, data residency, deletion windows, or provider-specific controls, those requirements should be documented in a written agreement before sensitive material is shared.

Business workflow information can be sensitive even when it is not legally classified as personal information. We handle client materials, internal process details, system diagrams, project notes, and build discussions with care appropriate to the context and any written agreement in place.

A separate statement of work, master services agreement, nondisclosure agreement, data-processing agreement, security addendum, or client policy may add stricter confidentiality, privacy, security, retention, or vendor requirements. If a written agreement conflicts with this public policy for a specific engagement, that written agreement controls for that engagement to the extent of the conflict.

We share information only where reasonably needed to operate the website, provide services, support clients, protect the business, comply with law, or complete a transaction involving the business.

We do not sell personal information in the ordinary course of operating Nunuworks, and we do not share personal information for cross-context behavioral advertising as those terms are commonly used in California privacy law.

This site links to third-party services and Nunuworks product sites, including product websites, app stores, scheduling tools used after direct conversations, and external tools. Those services may collect information under their own terms and privacy policies.

When a consulting engagement involves third-party tools, APIs, AI providers, automation platforms, CRMs, payment tools, spreadsheets, documents, cloud services, or other systems, the client may also be responsible for reviewing and approving those providers and their data-handling practices.

We retain information for as long as reasonably needed for the purpose it was collected, including website operation, inquiry handling, Workflow Review delivery, project support, billing, tax, security, legal, backup, and business-record purposes.

Inquiry and meeting records may be retained so we can follow up, understand relationship history, and maintain business records. Workflow Review and project records may be retained during the engagement and for a reasonable period afterward to support delivery, maintenance, dispute prevention, and future client requests.

Some information may need to be retained even after a deletion request, including billing, tax, legal, audit, security, abuse-prevention, backup, and contractual records. Where a written client agreement has a specific retention or deletion schedule, that schedule controls for the covered engagement.

We use administrative, technical, and organizational safeguards designed to protect information according to its sensitivity and the nature of the engagement. These may include provider security controls, access limitations, authentication, logging, backups, secure development practices, and limiting access to people and systems that need it.

No website, cloud service, AI tool, email account, or software system is perfectly secure. Clients should avoid sending unnecessary sensitive information, limit access to shared materials, and tell us about any security or data-handling requirements before sharing regulated or high-risk data.

Depending on where you live and the context in which information is handled, you may have rights to access, correct, delete, export, restrict, object to, or withdraw consent for certain processing of personal information.

We may need to verify your identity, authority, company relationship, and request scope before acting on a privacy request. Some requests may be limited by legal, security, contractual, operational, billing, tax, backup, or client-confidentiality obligations.

Nunuworks is based in Vancouver, Canada, and may process information in Canada, the United States, and other jurisdictions where our service providers, clients, contractors, or tools operate.

Where applicable law or a written agreement requires additional safeguards for cross-border processing, we will use commercially reasonable steps to support those requirements for the relevant relationship.

For users in the EEA, UK, and similar regions, legal bases for processing may include contract performance, legitimate interests, consent, legal obligations, and protection of rights and safety, depending on the context.

For California residents, categories of personal information collected may include identifiers, customer records, internet or device activity, approximate location, professional or employment-related information, commercial information, and inferences reasonably needed for the purposes described in this policy.

We do not use or disclose sensitive personal information for the purpose of inferring characteristics about a person. Because we do not sell personal information or share it for cross-context behavioral advertising in the ordinary course, browser opt-out signals mainly operate as an opt-out from those activities if they ever become applicable.

This website and our engineering services are intended for businesses and adults. They are not directed to children under 13, and we do not knowingly collect personal information from children through this site.

If we learn that a child submitted information in a way that violates applicable law, we will take appropriate steps to delete it or restrict the related interaction.

We may update this Privacy Policy as Nunuworks, our services, our providers, or legal requirements change. The updated policy will show a new last updated date and will apply to future use of the website and services as allowed by law.

Material changes may be communicated through the website, by email, through client channels, or by another reasonable method where appropriate.

Questions, privacy requests, legal review requests, and data-handling questions can be sent to contact@nunuworks.com. Please include enough context for us to identify the relevant website inquiry, meeting, client relationship, product, project, or engagement.