Privacy Policy

Nophin Inc. ("Nophin", "our", "we", "us", "Company") has adopted this Privacy Policy to make it easy for you to understand what sorts of personal information Nophin collects and how we use that information. This Privacy Policy discloses information that we collect, process, and use when you visit our website (the “Site”) and use our products and services we offer via our Site and related applications (collectively the “Services”). By using our Services, you agree to this Privacy Policy and our Terms of Use. This Policy will detail information around your rights and obligations and explains how, why, and when we collect and process your data.

Please read this Privacy Policy carefully before using the Services. We recognize, respect, and are committed to protecting the privacy rights of all personal data from our users, customers, potential customers, partners, and suppliers (collectively, "Users"). We may amend this Privacy Policy at any time by posting a revised version on our Site. All changes are effective immediately and when we post and we will use reasonable efforts to alert you about any changes by updating the “Last Updated” date of this Privacy Policy.

1. Personal Information We Collect

1.1. Personal information you provide to us directly. We may collect the following categories of personal information from you when you voluntarily provide them to us through a web form or similar request:

• Identifiers: first name, last name, phone number, date of birth, email address, home address, business address, social security number, employer identification number, or taxpayer identification number, government-issued ID, and other similar identifiers.
• Financial information: business income, business bank account information, including banking account number and routing number, bank account transaction data, and other financial information.
• Commercial information: records of real property that you own or manage, tenants who occupy those properties, rent paid/payable to you, and other similar commercial information.

1.2. Personal information we collect from your use of our Services. Our systems (either internally or through our service providers) may automatically record the following personal information about you when you visit our Site:

• Internet or other electronic network activity information: browsing history, usage history, device information, such as name and type of device, operating system, mobile network information, and standard web log information, such as your browser type, IP address traffic to and from our Site, the pages you accessed on our Site, and any other similar information.
• Geolocation data: your approximate location when making a request to our Site.

1.3. Information we may collect about your customers. We also obtain information about your customers, vendors or tenants on your behalf when they transact with you (“Your Customers’ Data”). We collect Your Customers’ Data when they transact with you through your use of Nophin’s Services, for instance when they make a payment, or receive an invoice from you. The Customer Data we collect will vary depending on how you use our Services and which Services you use. Your Customers’ Data may include:

• Device Information. Information about your customer’s device, including hardware model, operating system and version, device name, unique device identifier, mobile network information, and information about the device’s interaction with our Services.
• Financial Information. Bank account and payment card numbers.
• Identification Information. your customers’ name; email address; mailing address; phone number; government-issued identification; or other historical, contact, and demographic information, and signature.
• Location Information. The location of your customer’s device if they pay with Apple or Android Pay.
• Transaction Information. When your customers use Nophin to make or record payments to you, we collect information about when and where the transactions occur, the names of the transacting parties, a description of the transactions which may include item-level data, the payment or transfer amounts, billing and shipping information, and the devices and payment methods used to complete the transactions.
• Use Information. Information about how your customers transact with you using our Services, including access time, “log-in” and “log-out” information, browser type and language, country and language setting on your device, IP address, the domain name of your customer’s Internet service provider, other attributes about your customer’s browser, mobile device and operating system, features your customer uses, and the date and time of use of the Services.

1.4. Service providers. We partner with service providers who gather, process, and synthesize data into personal information that we use. Some of these service providers use cookies, as described below. Our service providers give us access to analytics data (as described more fully below under “Performance Cookies”) and information about your bank-account transactions and bank KYC information. Nophin uses Plaid Inc. (“Plaid”) and Stripe, Inc. (“Stripe”) to gather your data from financial institutions. By using our Service, you grant Nophin, Plaid and Stripe the right, power, and authority to act on your behalf to access and transmit your personal and financial information from the relevant financial institution. You agree to your personal and financial information being transferred, stored, and processed by Plaid and Stripe in accordance with their respective Privacy Policy. To learn more about how our service providers use your information, you can visit the links below:

• Google: https://policies.google.com/privacy
• Heap: https://heap.io/privacy
• Plaid: https://plaid.com/legal
• Amplitude: https://amplitude.com/privacy
• Stripe: https://stripe.com/privacy

1.5. Cookies, and similar technologies. We gather certain information using technologies such as cookies, beacons, and pixels (collectively, “cookies”), which are tracking technologies that allow us and our partners to record pieces of information about you or your device whenever you visit or interact with our Services. We use various technologies to collect and store information when you use the Services, and this may include sending one or more cookies or devices identifiers, which we classify as follows:

• Necessary Cookies: Enabling features that are necessary for providing you the Services on our Site, such as authenticating your device, identifying you as being signed in, and keeping track of your account preferences.
• Performance Cookies: Allowing us to understand how our Services are being used, to track site performance, track content engagement, and make improvements. This information may include approximate location, device type, browser type, inbound/outbound URLs, and search queries.

To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.aboutcookies.org, www.allaboutcookies.org, and http://optout.aboutads.info/.

To opt out of being tracked by Google Analytics across all websites visit: tools.google.com/dlpage/gaoptout.

1.6. Your communications with Nophin. Any data you provide to us may be stored digitally or in hard copy. Surveys and conversations via email, phone, and social media may also be stored and associated with your account.

1.7. Other sources. We may obtain information about you from other publicly available sources, including through government and civic systems. We collect information from government-provided public records to verify other personal information we collect from you. For avoidance of doubt, government-maintained, publicly available records do not constitute personal information and are not within the scope of this Policy.

2. How We Use Your Personal Information

2.1. Reasons we use your personal information. We use your information in the following ways:

• For everyday business purposes.
• To register you as a user and to provide the Services you request.
• To determine your eligibility for Services and verify your identity.
• To improve the accuracy of the information we hold about you.
• To retain an audit trail.
• To protect ourselves and others.
• To enforce our Terms of Use.
• To prevent potentially prohibited or illegal activities.
• To investigate potential concerns, allegations, and legitimate complaints about our Service surfaced by third parties or government agencies.
• To comply with applicable law.
• To contact you about your experience with our Services and allow you to improve it.
• To provide you with customer support.
• To send you messages and follow up with you about our Service and your account.
• To send you updates about new products and services we offer that might be relevant to you.
• To notify you of any important changes to the Services or Site.
• To allow you to customize your experience on the Services or Site.
• To understand how our services are used.
• To monitor site usage.
• To understand user habits and bugs/errors in the Services.
• To analyze trends and demographic statistics.
• To compile statistical and analytical reports.
• To build new features of our Services.

2.2. Other reasons. We may combine the information we collect from our Services to create new data sets, which we may use in any manner consistent with the purposes stated above. We may also use your information in any way that you provide your consent for.

2.3. Do not track. Some internet browsers may be configured to send Do Not Track signals to the online sites that you visit. Our Site does not respond to Do Not Track signals.

3. How We Share and Disclose Your Personal Information

3.1. Nophin shares your data with third parties as permitted by law to the following parties:

• Third-Party Service Providers. We may work with third-party service providers to support our business functions. These business functions include, but are not limited to, facilitating Electronic Fund Transfers (such as ACH, Wire Transfers), verifying User identity, underwriting Users and contracts, and authorizing access to User accounts. Each service provider must agree to use reasonable security procedures and practices, appropriate to the nature of the information involved, in order to protect your personal information from unauthorized access, use or disclosure. Service providers are prohibited from using personal information other than as specified by Nophin.
• Affiliates. We may share personal information with our affiliated or partnered companies.
• Necessary Disclosures. We may access, preserve, and disclose information associated with you to external parties if we believe doing so is required and appropriate. We may do this to comply with local, state, and federal law enforcement, national security requests, and legal processes (e.g., subpoena, court order). In some cases, we may need to assist with the investigation or prosecution of suspected or actual illegal activity.
• Asset Transfers. If we are involved in a merger, acquisition, financial due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or otherwise transition of service to another provider, your information may be sold, disclosed, or transferred as part of the transaction as permitted by law and/or contract.
• For other purposes. We may also share your personal information for other purposes described in this Privacy Policy or with your consent.

3.2. Minors and Unintentional users. Nophin does not knowingly collect, store, or disclose any personal information about children under the age of 18. Nophin is not intended to be used by any individuals under the age of 18. We will attempt to remove any information that has been collected on minors, unless we have a legal obligation to retain it.

3.4. Data Retention. We store the personal information we receive as described in this Privacy Policy for as long as you use our Services, or as necessary to fulfill the purpose(s) for which it was collected, provide our Services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and comply with applicable laws.

4. Your Rights.

4.1. Notifications. By using the Services or providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your Service. You are free to opt-out of receiving email offers at any time by emailing support@nophin.com or by clicking the unsubscribe link in any marketing material you receive from us. This will not unsubscribe you from critical emails required for the provision of our Service. This includes but is not limited to emails regarding payments due, payments received, payments missed. It is your responsibility to provide us with your accurate email address, contact, and other information related to your use of banking services and to maintain and update promptly any changes in this information. You can update your information through Nophin Services or by contacting us at support@nophin.com. To help protect the confidentiality of your personal information, please do not send us any confidential information via unencrypted email messages. In the event of a security breach, we will attempt to notify you electronically by mail, email, or notice on our Services. You may opt-out of future text solicitations by responding to any text with the word “STOP” and may opt-out of telephone solicitations to your residential or mobile phone by asking the caller to be placed on our do-not-call list.

4.2. Account Closure. You can request to close your account if you are not actively using Nophin’s Services. If you close your account, we will mark your account in our database as “Closed”, but we will keep your account information in our database to comply with our legal obligations. This is necessary to deter fraud, by ensuring that persons who try to commit fraud will not be able to avoid detection simply by closing their account and opening a new account. If you close your account, your personal information will not be used by us for any further business purposes, nor shared with third parties, except as necessary to prevent fraud and assist law enforcement, as required by law or in accordance with this Privacy Policy.

5. Security. The security of your personal information is very important to Nophin. We use physical, electronic, and administrative safeguards that are designed to protect your personal information from loss, misuse, and/or unauthorized access, disclosure, alteration, and destruction. However, no information transmitted over the Internet or other network can be guaranteed to be 100% secure. As a result, while we strive to protect information transmitted on or through our Site or Services, we cannot and do not guarantee the security of any information you transmit on or through the Site or Services and you do so at your own risk.

6. Link to other sites. Our Site may contain links to websites or services not controlled by Nophin. These links do not condone the support of these sites and do not imply that we have reviewed or agree with their content and/or privacy policy. Nophin is not responsible for the privacy practices or content on other sites, and you should be aware of their respective policies and terms.

7. Sale of Information. We do not sell or rent personal information collected by our Services to third parties.

8. Regional Privacy Statements.

8.1. California Privacy Statement. California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.

8.2. Nevada Privacy Statement. Residents of the State of Nevada have the right to opt out of the sale of certain pieces of their information to other companies who will sell or license their information to others. Nophin does not sell personal information.

8.3. Other regions. This Privacy Policy is intended for residents of the United States. Only residents of the United States should be accessing this Site and its Services.

9. Other.

9.1. Unauthorized use. You are solely responsible for all activities that occur under your account and will immediately notify Nophin about any unauthorized use of your password and/or of your account.

9.2. Contact. If you have any questions regarding this Privacy Policy, contact us at support@nophin.com.