NXT Group Privacy Policy

Last Updated 7 April 2025

​

1. Introduction
   
   NXT Group (comprising NXT Law LLC and NXT Ltd, hereafter “we”) are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, store, and protect your data in compliance with the Data Protection Act and the Cayman Islands’ Proceeds of Crime Law as amended.
   
   By using our services, you agree to the terms set out in this policy.
    

2. Information We Collect
   
   We may collect the following types of personal data:
    

   1. Identification Information: Name, address, date of birth, passport or national ID numbers;
       

   2. Contact Details: Email address, phone number;
       

   3. Financial Information: Payment details, bank statements, pay slips, tax returns, payment details, and AML-related financial history;
       

   4. Business Information: provided to us in the course of our providing legal and company incorporation and supervision services (for example, information on your professional contracting and relationships and background, financial wealth and assets you hold, transactions you have entered into, your tax status, disputes you may have with others and court proceedings you are involved in);
       

   5. Legal and Compliance Data: Information necessary for regulatory compliance and risk assessments including the above Financial Information; and
       

   6. Technical Data: IP addresses, device details, and website usage analytics.
       

3. ​How We Use Your Information
   Your data is processed for the following reasons:
    

   1. ​Compliance with Legal & Regulatory Requirements: We must comply with applicable AML and Financial Reporting Authority (FRA) obligations;
       

   2. Client Verification: Ensuring compliance with due diligence and know-your-customer (KYC) requirements;
       

   3. Legal Services: Providing legal advice, document preparation, contract review, and dispute resolution;
       

   4. IP Services: Providing advice and services relating to intellectual property; and
       

   5. Incorporation Services: Providing assistance in incorporation of entities.
       

4. ​Lawful Basis for Processing
   We process personal data under the following legal grounds:
    

   1. ​Consent: When you give permission to process your data by providing it to us;
       

   2. Contractual Necessity: Data required to fulfill a legal or incorporation or supervision service; and
       

   3. Legal Obligations: Compliance with AML and financial regulations.
       

5. ​Data Sharing & Third-Party Disclosures
   We may share your data with:
    

   1. Regulatory Authorities: If mandated by applicable laws;
       

   2. Law Enforcement Agencies: If required by applicable laws;
       

   3. Technology Service Providers: To support the services we provide to you; and
       

   4. Incorporation Service Providers: To facilitate and support the incorporation of entities.
      
      We ensure that any third-party service provider adheres to data protection regulations.
       

6. Data Security Measures
   To protect sensitive client data, we implement:
   ​

   1. Encryption protocols to secure all client communications;
       

   2. Cybersecurity processes and procedures; and
       

   3. Security reviews are conducted to improve our cybersecurity.
       

7. ​Client Rights & Data Protection
   You have the following rights regarding your personal data:
   ​

   1. Right to Access: Request a copy of your stored personal data;
       

   2. Right to Rectification: Correct inaccurate or incomplete information;
       

   3. Right to Erasure: Request deletion of your data (subject to legal limitations); and
       

   4. Right to Data Portability: Obtain a copy of your information in a structured format.​
      
      To exercise these rights, please contact our Compliance Team.
       

8. Compliance With Cayman Islands Regulations
   As a law firm, NXT Law LLC strictly follows Cayman Islands laws, including the following:
    

   1. Financial Reporting Authority Oversight: When processing transactions above certain thresholds;
       

   2. AML Compliance: Following due diligence procedures required for transactions and legal retainers; and
       

   3. Client Disclosure Requirements: Protecting client assets and clarifying transaction terms
       

9. ​Cross-Border Data Transfers
   As an international group, we may transfer client data to jurisdictions outside the Cayman Islands including to our service providers outside of the Cayman Islands. We take appropriate technical and legal safeguards to ensure data remains protected under applicable laws.
    

10. Retention & Deletion Policy
     

    1. Data related to client contracts and compliance records is kept for the legally required duration for AML and fraud prevention purposes.
        

    2. Client files are maintained for a period of 7 years following which they are deleted.
        

    3. Non-essential data is deleted once no longer required.
        

11. ​Updates & Changes to This Policy
    We may update this policy periodically. Updates will be published on our website at www.nxt.law
     

12. Contact Information
    For questions about this policy or to exercise your rights, contact us:
    
    📧 Email: privacy@nxt.law
    
    📞 Phone: +1 345 945 0005
    
    We look forward to assisting you while maintaining strong standards of privacy and data protection.