Effective Date: 7^th July 2025
Applies To: Visitors of Nex International’s websites, learning platforms, and general inquiry portals.

Introduction

Nex International (“Nex”, “we”, “our”, or “us”) is committed to protecting the privacy of users who visit our websites, interact with our platforms, or contact us via electronic means. This Privacy Policy outlines how we collect, use, and safeguard your personal data when you access:

• www.nexintl.ae
• www.nexglobal.io
• Our e-learning or compliance platforms
• Email forms, WhatsApp channels, or marketing subscriptions

Scope of this Policy

Included Users	Examples
Website visitors	Browsing or submitting forms on nexintl.ae or nexglobal.io
Learners	Enrolled via LMS or e-learning platform for AML training
General inquiries	Emails, calls, WhatsApp/SMS for support or info
Marketing subscribers	Individuals who opt in for newsletters or event invitations

❌ Excluded (Separate Policy Applies)	Handled via Contractual Agreement
Clients receiving regulated services	AML setup, MLRO outsourcing, goAML filing, training audits, etc.
Partner institutions or vendors	Governed by Data Processing Agreements (DPAs) or NDAs

What Personal Data We Collect

Identity & Contact Information

• Full name, nationality, date of birth, designation
• Email address, phone number, mailing or billing address

AML/Compliance Information

• Beneficial ownership (UBO) details
• AML risk profiling & scoring
• Regulatory licensing records and reports
• goAML or EOCN registration data

Technical & Usage Data

• IP address, device ID, browser type, cookies, location data
• Log files, usage statistics, clickstreams on our websites and portals

Training & Certification Data

• Course enrollment data
• Learning progress, quiz results, certificates issued
• Attendance tracking for corporate clients

Financial & Transactional Data

• Billing address, invoicing details
• Payment confirmations, tax registration data (only where relevant)

Communications

• Emails, WhatsApp/SMS queries, support requests
• Call recordings (where legally allowed and with consent)

We do not collect special categories of personal data (such as religious beliefs, health data, or political opinions) unless specifically required by regulatory law (e.g., sanctions screening).

How We Use Your Personal Data

Purpose	Examples
Service delivery	Executing AML compliance programs, audits, remediation, and MLRO functions
Regulatory submission	Registering clients with goAML, EOCN, or national FIUs
Training services	Registering learners, tracking progress, issuing certifications
Communications	Sending operational emails, reports, updates, or responding to inquiries
Technical improvement	Diagnosing website performance, enhancing user experience, optimizing platforms
Marketing (with consent only)	Sending newsletters, insights, webinar invitations
Legal and compliance	Complying with legal obligations, financial reporting, or responding to regulatory requests

Legal Bases for Processing

• Consent – for optional services, training registration, or marketing communications
• Performance of a contract – where processing is necessary for service delivery
• Legal obligation – AML record-keeping, regulatory reporting, and audit logs
• Legitimate interest – to improve services, prevent fraud, or ensure network security

Sharing and Disclosure of Data

• Regulatory bodies such as UAE FIU, EOCN, UK FCA, US FinCEN, and others upon lawful request
• Our parent company, Nex Global, and affiliates under strict confidentiality agreements
• Third-party vendors including AML technology providers, LMS hosts, IT infrastructure, or cloud services
• Training partners such as the London Centre for Compliance and Legal Studies (UK)
• Auditors, legal advisors, and consultants engaged under NDA

We do not sell, lease, or trade your personal data to third parties.

International Data Transfers

Your data may be transferred to or accessed by entities located in the USA, UK, or UAE, or other jurisdictions where our partners operate.

• Standard Contractual Clauses (SCCs)
• Adequacy decisions under GDPR
• Local UAE Data Office registration (if required)

Data Retention

• Comply with AML regulations (up to 5–10 years in some jurisdictions)
• Fulfill contractual or legal requirements
• Resolve disputes or enforce agreements

Training records may be retained longer where required by certification standards.

Security of Your Data

• SSL encryption for web access and data transmission
• Role-based access control (RBAC)
• Secure authentication protocols
• Regular penetration testing and system audits
• Data minimization and pseudonymization practices

In case of a data breach, we will notify affected users and regulators as required by law.

Your Rights

Right	Description
Right to access	Request a copy of your personal data
Right to rectification	Request correction of inaccurate or incomplete data
Right to erasure	Request deletion of your data under certain conditions
Right to restrict processing	Limit the use of your data for specific purposes
Right to object	Object to certain uses (e.g., marketing)
Right to data portability	Receive your data in machine-readable format
Right to withdraw consent	Withdraw previously granted consent for marketing or training
Right to lodge a complaint	With local data protection authorities (e.g., UK ICO, UAE Data Office, EU DPA)

To exercise your rights, contact: privacy@nexintl.ae

Cookies and Tracking Technologies

• Session management
• Website analytics (e.g., Google Analytics)
• Content customization

You can manage cookie settings through your browser. For more details, refer to our separate Cookie Policy (available on request).

Children’s Data

Our services are not intended for individuals under the age of 18. We do not knowingly collect or store data from minors.

Changes to This Policy

• Website notifications
• Email alerts (if applicable)

You are encouraged to review this page regularly for the latest updates.

Contact Us