Back to Home

Privacy Policy

Last Updated: January 17, 2026

1. Introduction

Welcome to Easy Manage CRM. This Privacy Policy explains how NandByte.com ("we," "our," or "us") collects, uses, discloses, and protects your information when you use our business management platform and related services (collectively, the "Services").

By accessing or using Easy Manage CRM, you agree to this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2. Information We Collect

2.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account Information: Name, email address, phone number, company name, and password when you create an account
  • Business Data: Client information, employee records, financial transactions, inventory data, invoices, and other business information you enter into the system
  • Payment Information: Credit card details and billing information processed securely through our payment processors
  • Communications: Messages, feedback, and support requests you send to us

2.2 Automatically Collected Information

When you use our Services, we automatically collect certain information, including:

  • Usage Data: Pages viewed, features used, time spent, and actions taken within the platform
  • Device Information: IP address, browser type, operating system, device identifiers
  • Log Data: Server logs, error reports, and performance metrics
  • Cookies: Session cookies and authentication tokens (see our Cookie Policy)

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Services
  • Process transactions and manage your account
  • Send you technical notices, updates, security alerts, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze trends, usage, and activities in connection with our Services
  • Detect, prevent, and address technical issues and security vulnerabilities
  • Comply with legal obligations and enforce our Terms of Service

4. Data Sharing and Disclosure

We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information or business data to third parties for their marketing purposes.

We May Share Information With:

  • Service Providers: Third-party vendors who perform services on our behalf (hosting, payment processing, analytics) under strict confidentiality agreements
  • Legal Requirements: When required by law, court order, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified)
  • With Your Consent: When you explicitly authorize us to share your information

5. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL
  • Access Controls: Multi-tenant data isolation with role-based access control (RBAC) and 46+ granular permissions
  • Password Security: Passwords are hashed using Bcrypt with salt
  • Authentication: Secure session management with NextAuth.js and JWT tokens
  • Database Security: ACID-compliant PostgreSQL with encrypted connections and regular backups
  • Monitoring: Continuous security monitoring and audit trails for all data access

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights and Choices

You have the following rights regarding your information:

  • Access: Request a copy of your personal information
  • Correction: Update or correct inaccurate information through your account settings
  • Deletion: Request deletion of your account and associated data (subject to legal retention requirements)
  • Export: Export your business data in CSV or PDF format
  • Opt-Out: Unsubscribe from marketing emails (service-related emails may still be sent)

To exercise these rights, please contact us at privacy@nandbyte.com

7. Data Retention

We retain your information for as long as your account is active or as needed to provide you Services. We use a soft-delete pattern, meaning deleted data is marked as deleted but retained for recovery purposes.

You may request permanent deletion of your data by contacting us. We will comply with applicable data retention laws and may retain certain information for legitimate business purposes or legal requirements.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your information in compliance with this Privacy Policy.

9. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Your continued use of the Services after such changes constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

NandByte.com

Email: privacy@nandbyte.com

Website: nandbyte.com