Back to Home

Privacy Policy

Last updated: May 5, 2026

Scope

This Privacy Policy explains how Nuvinoo processes personal data when you use our website, waitlist, referral campaign, and contact form.

The Nuvinoo mobile app and wearable device are not live yet. We will publish a separate or updated privacy notice before collecting app, device, child wellness, health, biometric, or AI insight data.

Information We Collect

  • Email address — when you join the waitlist or contact us.
  • Referral code — if you arrive through a referral link or participate in the Bring-a-Friend campaign.
  • Campaign attribution — landing page path, UTM source, UTM medium, UTM campaign, referral metadata, and browser user-agent.
  • Contact form messages — your email address, message subject, and message body when you contact us.
  • Website and security logs — technical request information such as IP address, browser type, pages requested, timestamps, and error logs processed by our hosting and infrastructure providers.
  • Cookie preferences and analytics data — your cookie choice in local storage, and Google Analytics data only if analytics is configured and you accept analytics cookies.

How We Use Information

  • Operate, secure, debug, and improve the website.
  • Manage the waitlist and send early-access, launch, and referral-campaign emails.
  • Attribute waitlist signups and referral link activity.
  • Respond to messages sent through the contact form.
  • Measure website traffic and usage patterns when analytics cookies are accepted.
  • Comply with legal obligations and protect our rights, users, and services.

Legal Bases

  • Consent: waitlist marketing emails and optional analytics cookies.
  • Legitimate interests: website security, service operation, fraud prevention, referral attribution, and basic audience measurement without analytics cookies.
  • Pre-contractual steps or legitimate interests: responding to contact form messages you send to us.
  • Legal obligation: keeping records where required by applicable law.

You can withdraw waitlist marketing consent at any time by unsubscribing from our emails or contacting us.

Service Providers

We use service providers to run the website and waitlist. They process personal data for us under contractual restrictions.

  • Vercel — website hosting, deployment, and infrastructure logs.
  • Supabase — waitlist and referral campaign database.
  • Resend — transactional waitlist, referral, and contact-form email delivery.
  • Google Analytics — optional website analytics only if configured and accepted through the cookie banner.

We do not sell your personal data.

International Data Transfers

Our service providers may process personal data in countries other than your own, including the United States. Where required for EEA, UK, or Swiss personal data, we rely on an applicable adequacy decision, the EU-US, UK Extension, or Swiss-US Data Privacy Framework for certified providers, Standard Contractual Clauses, or equivalent contractual safeguards.

Cookies, Local Storage, And Session Storage

We use localStorage to remember your cookie choice and sessionStorage keys such as ref_click_logged:<code>:<path> to avoid logging the same referral link click repeatedly during one browser session. Google Analytics cookies are loaded only if analytics is configured and you accept analytics cookies. See our Cookie Policy for more details.

Retention

  • Waitlist records: kept until you unsubscribe or request deletion, or until 24 months after product launch if you do not become an active customer.
  • Referral campaign logs: kept for the campaign duration plus 12 months for attribution, audit, and anti-abuse purposes.
  • Contact form messages: kept for up to 24 months after our last exchange unless a longer period is needed for legal reasons.
  • Analytics data: retained according to our Google Analytics settings.
  • Website and security logs: kept for the period needed to operate, secure, debug, and protect the website.

Children

The website and waitlist are intended for parents and guardians. We do not knowingly collect personal data directly from children through this website. Please do not submit a child's personal data through the waitlist or contact form.

Your Rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing of, or receive a copy of your personal data. You may also withdraw consent where processing is based on consent.

To exercise these rights, email us at hello@nuvinoo.com or use our contact page. We will respond within the time required by applicable law. You may also lodge a complaint with your local data protection authority.

Security

We use technical and organizational measures designed to protect personal data, including encrypted connections, access controls, and provider security controls. No internet service can guarantee absolute security.

Changes

We may update this Privacy Policy to reflect changes to our website, providers, or legal requirements. We will update the "Last updated" date when we make changes.

Contact

If you have questions about this Privacy Policy or our privacy practices, email us at hello@nuvinoo.com or use our contact page.