Privacy Policy

1. Introduction and Scope

Next Hardware is committed to protecting your privacy. This Privacy Policy explains our practices regarding the collection, use, disclosure, and protection of information that we receive through our Website and related services, including but not limited to community events, forums, and communications.

This Privacy Policy complies with applicable privacy laws, including the California Online Privacy Protection Act (CalOPPA), the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), the General Data Protection Regulation (GDPR) where applicable, and other relevant privacy regulations.

CalOPPA Compliance: In accordance with the California Online Privacy Protection Act, this policy discloses: (1) the categories of personally identifiable information we collect; (2) how we use such information; (3) the categories of third parties with whom we share such information; and (4) how you can review and request changes to your information.

By accessing or using our Website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Website.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you provide directly to us, including:

• Account Information: Name, email address, username, and password when you create an account or join our community through third-party platforms (Luma, Discord)
• Event Registration: Information provided when registering for events, including name, email, company affiliation, and dietary preferences or accessibility needs
• Communications: Information you provide when contacting us, including email correspondence, support requests, and feedback
• Community Content: Posts, comments, project submissions, photos, and other content you share in community forums or events
• Profile Information: Optional profile information such as bio, location, professional background, and interests

2.2 Information Collected Automatically

When you visit our Website, we automatically collect certain information about your device and how you interact with our Website, including:

• Device Information: IP address, browser type and version, operating system, device identifiers, and mobile network information
• Usage Information: Pages visited, time spent on pages, clickstream data, search queries, and navigation patterns
• Location Information: General geographic location derived from IP address (city and state level, not precise location)
• Technical Information: Browser language, screen resolution, time zone, and referring website addresses

2.3 Information from Third Parties

We may receive information about you from third-party services that you use to access our Website, including:

• Social Media Platforms: If you connect your social media accounts, we may receive profile information
• Event Platforms: Information from Luma or other event management platforms when you register for events
• Community Platforms: Information from Discord or other community platforms when you join our community

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service Provision: To provide, maintain, and improve our Website and services, including event management and community features
• Communication: To send you updates about events, community activities, newsletters (with your consent), and respond to your inquiries
• Community Management: To facilitate community interactions, moderate content, and ensure a safe environment
• Analytics: To analyze usage patterns, understand user preferences, and improve user experience
• Security: To detect, prevent, and address fraud, abuse, security issues, and technical problems
• Legal Compliance: To comply with legal obligations, enforce our Terms of Service, and protect our rights and the rights of our users
• Business Operations: To manage our business operations, including event planning, community growth, and service development

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 With Your Consent

We may share your information when you have given us explicit consent to do so.

4.2 Service Providers

We may share information with third-party service providers who perform services on our behalf, including hosting, analytics, email delivery, and event management. These service providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.3 Legal Requirements

We may disclose information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a legal process.

4.4 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction.

4.5 Public Information

Information you choose to make public in community forums, event listings, or public profiles will be visible to other users and the general public.

5. Analytics and Tracking Technologies

We use privacy-focused analytics tools (such as Plausible Analytics) that comply with GDPR, CCPA, and PECR. These tools provide aggregated, anonymized data about website usage without collecting personal information or using cookies for tracking purposes.

Currently, we do not use cookies, web beacons, or similar tracking technologies. If we implement such technologies in the future, we will update this Privacy Policy and our Cookie Policy, and provide clear notice and opt-out mechanisms where required by law.

6. Data Security

We implement reasonable technical, administrative, and physical security measures designed to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Secure Socket Layer (SSL) / Transport Layer Security (TLS) encryption for data transmission
• Encryption of data at rest where appropriate
• Secure servers and hosting infrastructure
• Access controls and authentication measures
• Regular security assessments and updates
• Employee training on data security practices
• Incident response procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially reasonable means to protect your information, we cannot guarantee absolute security. You use our Website at your own risk.

If we become aware of a security breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law.

7. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request access to and copies of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information, subject to certain exceptions
• Portability: Request transfer of your information to another service (where applicable)
• Opt-Out: Opt-out of certain data collection and processing activities
• Objection: Object to processing of your information for certain purposes (where applicable)
• Restriction: Request restriction of processing in certain circumstances (where applicable)

To exercise these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request within the timeframes required by applicable law (typically 30-45 days).

How to Review and Request Changes to Your Information (CalOPPA Requirement): You may review and request changes to your personal information by:

• Emailing us at privacy@nexthardware.io with your request
• Specifying what information you wish to review or change
• Providing sufficient information to verify your identity

We will respond to your request within a reasonable timeframe and will make reasonable efforts to accommodate your request, subject to legal and operational constraints.

We may require verification of your identity before processing certain requests to protect your privacy and security.

7.1 California Consumer Privacy Act (CCPA) Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

• Right to Know: You have the right to request that we disclose: (1) the categories of personal information we collect; (2) the categories of sources from which we collect personal information; (3) the business or commercial purpose for collecting or selling personal information; (4) the categories of third parties with whom we share personal information; and (5) the specific pieces of personal information we have collected about you.
• Right to Delete: You have the right to request that we delete your personal information that we have collected, subject to certain exceptions under California law.
• Right to Opt-Out of Sale: You have the right to opt-out of the sale of your personal information. We do not sell personal information. If this changes in the future, we will update this policy and provide a clear "Do Not Sell My Personal Information" link.
• Right to Opt-Out of Sharing: You have the right to opt-out of the sharing of your personal information for cross-context behavioral advertising.
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights, including by denying services, charging different prices, or providing a different level of service.
• Right to Correct: You have the right to request correction of inaccurate personal information.
• Right to Limit Use of Sensitive Information: You have the right to limit our use of sensitive personal information to that which is necessary for providing services.

Categories of Personal Information We Collect: We may collect the following categories of personal information as defined by the CCPA:

• Identifiers (name, email address, IP address, device identifiers)
• Internet or electronic network activity (browsing history, search history, interaction with website)
• Geolocation data (general location derived from IP address)
• Professional or employment-related information (if provided in profile or event registration)
• Inferences drawn from other information to create a profile about preferences

Categories of Personal Information We Disclose: We may disclose the categories listed above to service providers and as described in Section 4. We do not sell personal information to third parties.

Business or Commercial Purpose for Collection: We collect personal information for the following business or commercial purposes: (1) providing and improving our Services; (2) processing event registrations and community memberships; (3) communicating with users; (4) ensuring security and preventing fraud; (5) complying with legal obligations; and (6) other purposes described in Section 3.

Categories of Sources: We collect personal information from: (1) you directly (when you provide it to us); (2) automatically when you use our Website; and (3) third-party services (such as Luma, Discord) when you use those services to access our community.

Do Not Sell or Share My Personal Information: We do not sell personal information and do not share personal information for cross-context behavioral advertising. If this changes, we will update this policy and provide a clear "Do Not Sell or Share My Personal Information" link on our homepage. You can also visit /do-not-sell for opt-out instructions at any time.

To exercise your CCPA rights, please contact us using the information provided in the "Contact Us" section below. Please include "CCPA Request" in the subject line and specify which right(s) you wish to exercise. We will respond within 45 days as required by California law.

You may designate an authorized agent to make requests on your behalf. We will require verification of your identity and the agent's authorization.

14. Accessibility

We are committed to providing a website that is accessible to the widest possible audience, regardless of technology or ability. If you experience any difficulty accessing content, encounter contrast issues, or need an alternative format, please contact us at accessibility@nexthardware.io. We will make reasonable efforts to address your concerns and improve accessibility.

8. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When we no longer need your information, we will securely delete or anonymize it.

Factors that determine retention periods include: the nature of the information, the purpose for which it was collected, legal and regulatory requirements, and our legitimate business interests.

9. Children's Privacy

Our Website is not intended for children under 13 years of age (or under 16 in the European Economic Area). We do not knowingly collect personal information from children under 13 (or 16 in the EEA). If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 13 (or 16 in the EEA), we will take steps to delete such information promptly.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our Website, you consent to the transfer of your information to these countries.

When we transfer information from the European Economic Area, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

11. Third-Party Links and Services

Our Website may contain links to third-party websites, services, or applications that are not operated by us. These third parties include:

• Luma: For event registration and community management
• Discord: For community communication and forums
• Social Media Platforms: Twitter/X, GitHub, and other platforms

We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information to them.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Posting the updated Privacy Policy on this page with a new "Last Updated" date
• Sending an email notification to registered users (for material changes)
• Displaying a prominent notice on our Website (for significant changes)

Your continued use of our Website after such changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us: