Last updated 27 April 2026
This policy explains what personal data Nexra collects, how we use it, and the rights you have under UK GDPR and the Data Protection Act 2018.
Nexra is operated by Jessamy Care Group. We act as the data processor for personal data uploaded by your organisation, and as the data controller for account-holder data (admins who sign in to the Service).
Account data: name, email, phone, password (hashed), and the company details you supply at registration. Usage data: pages visited, features used, IP address, browser, and timestamps. We do not sell or share usage data with third parties for advertising.
To deliver and improve the Service, to bill you, to send service-related communications, to comply with legal obligations, and to investigate security incidents.
Data is stored in UK or EU data centres operated by reputable providers. A list of sub-processors is available on request and is included in your data processing addendum.
We retain account data for the duration of your subscription plus the period required to comply with our legal and regulatory obligations. You may request deletion subject to those obligations.
You have the right to access, correct, port, restrict, or delete your personal data, and to object to processing or withdraw consent. Contact privacy@nexra.exampleto exercise any of these rights. You can also complain to the Information Commissioner's Office.
The Service uses session cookies for authentication and a small number of functional cookies for preferences. We do not use third-party advertising or tracking cookies.
We may update this policy occasionally. Material changes are notified to the email address on your account.
This is a draft placeholder. The final policy will be provided by Jessamy Care Group's legal counsel before launch.