Privacy Policy & Data Handling
We take your privacy seriously. This policy outlines how Nexspac Archive handles your data. As a local-first application, our architecture is designed for privacy: your actual files and backups never leave your device except to sync directly to your personal cloud storage.
nexspac@hackhunt.in
archive.nexspac.com
Surat, Gujarat, India
12th July, 2026
1. Data Controller & Grievance Redressal
Entity: HackHunt CyberSecure LLP
Address: Surat, Gujarat – 395007, India
HackHunt CyberSecure LLP acts as the data controller for the limited server-side data we maintain for licensing. For privacy-related concerns regarding your account registration, please contact our designated Grievance Officer:
Grievance Officer: Abhishek Agrawal / Radhika Agrawal
Contact: nexspac@hackhunt.in
Response Time: Acknowledgment within 24 hours; resolution within 7 working days.
2. Information We Collect Automatically & Purpose of Processing
Our data collection operates on a strict “need-to-know” basis, cleanly separating what is required for your software license from what is required for local software operation.
A. Server-Side Data (Stored by Nexspac)
To provide the service, enforce licensing agreements, and prevent software piracy, we collect and store the following data on our secure servers:
| Category | What is Collected | Purpose of Processing |
|---|---|---|
| Personal & Account Data | Full name, email address, phone number, company name, and designation. | Account registration, license issuance, billing/transaction history, and communicating software updates or support. |
| Device Fingerprinting Data | Motherboard info, BIOS version/details, CPU identifiers, disk serials/IDs, MAC address, and Machine GUID. | These components are compiled and hashed (SHA-256) to create a unique device identifier. This ensures compliance with activation limits and validates your license to use the software. |
| User-Defined Device Identifiers | Machine Name (e.g., “John's MacBook” or “DESKTOP-ABC1234”). | Allows you to easily identify, manage, and deactivate your licensed devices through your customer portal. |
| Network & Technical Data | IP Address and User-Agent strings (captured server-side from requests). | Used for security auditing, fraud prevention, geo-blocking (if applicable), and diagnostic purposes during activation. |
B. Local-Only Data (Never sent to our servers)
The core functionality of Nexspac Archive happens on your device. We do not collect, intercept, or store the following:
Cloud Authentication
Your Google Drive OAuth tokens are stored locally.
Software & Activity Logs
Backup history, error logs, and synchronization rules are stored strictly on your local system.
File Data & Metadata
Folder structures, file names, and the contents of your backups are transmitted directly from your local machine to your Google Drive via encrypted channels.
3. Consent, Legitimate Interests & Local Control
By registering for Nexspac Archive, you consent to the processing of your personal and device data. The collection of your hardware fingerprinting data is strictly necessary for the performance of our contract with you (validating your license) and serves our legitimate business interests (preventing unauthorized sharing and software piracy).
You retain autonomous control over your operational data. At any time, you can:
• Deactivate specific devices from your license via the customer portal.
• Revoke Google Drive access directly within the app or via your Google account security settings.
• Clear all software backup logs natively through the application interface.
4. Data Sharing & Security
- ✓
Data Security & Hashing: We do not store your raw hardware components (like MAC addresses or CPU IDs) as plain text in typical operations. They are converted into a secure SHA-256 cryptographic hash (
fingerprint_hash) on your device before being used for validation. - ✓
No Third-Party Sharing: We never sell, rent, or share your account or licensing data with advertisers or external commercial partners.
- ✓
Minimal Local Permissions: The Nexspac Archive application requires local permissions solely to read the specific directories you select for backup. None of this local file data is ever transmitted to our servers.
5. Data Retention & Account Deletion
✓ Local Data Erasure
Because we do not possess your software logs or Google OAuth tokens, you can completely erase this data at any time by uninstalling Nexspac Archive from your device.
⚠️ Server-Side Account Deletion
If you wish to terminate your Nexspac Archive account and purge your licensing and personal data from our servers, please initiate a deletion request:
Subject: Account Deletion Request – Nexspac Archive
Details Required: Registered Email Address
Data Handling Upon Deletion:
Upon verifying your request, we will permanently purge your account data, hashed device fingerprints, and personal identifiers within 30 days.
*(Note: Certain payment/billing transaction records may be retained for up to 7 years to comply with financial regulations).*
6. Your Privacy Rights
You possess the following rights regarding the personal data we hold:
Right to Access & Update
Review and correct your account details via the Nexspac Archive portal.
Right to Erasure
Request full deletion of your server-side account data.
Right to Grievance Redressal
Contact our Grievance Officer for a documented resolution of data disputes related to your licensing account.