Legal

Privacy Policy

Effective date: June 2026  ·  Last updated: June 2026

NEXPOINTSOLUTION (“we”, “us”, or “our”), Business Registration No. 586648108, part of the ClvrPay ecosystem and incorporated under the laws of the United Arab Emirates (Office Building A1, Dubai Digital Park, Dubai Silicon Oasis, Dubai), operates the website at nexpointsolution.com and the NEXPOINTSOLUTION payment infrastructure platform (collectively, the “Services”). This Privacy Policy explains how we collect, use, disclose, and protect information about you when you use our Services. By accessing our website or using our platform, you agree to the practices described in this policy.

1. Information We Collect

1.1 Information you provide to us

When you contact us through our website form or register for a platform account, we collect information you submit directly, including:

  • Full name and work email address
  • Company name and size
  • Phone number (optional)
  • Your message content and stated use case
  • Account credentials (username, password hash) for platform users
  • Business registration and KYB (Know Your Business) documentation required for regulated payment services

1.2 Information collected automatically

When you visit our website or use the platform, we automatically collect:

  • IP address, browser type, device type, and operating system
  • Pages visited, time spent, and navigation paths on our website
  • API request logs, including endpoints called, response codes, and timestamps
  • Transaction metadata generated through your use of our payment products
  • Cookies and similar tracking technologies (see Section 7)

1.3 Information from third parties

We may receive information about your business from payment network partners (Visa, Mastercard), compliance screening providers, and fraud detection services to fulfil our regulatory obligations and provide the Services.

2. How We Use Your Information

We use the information we collect to:

  • Respond to your contact form submissions and sales inquiries
  • Set up, manage, and maintain your platform account
  • Provide and improve the Virtual Card, Voucher System, and Payouts products
  • Process payments and transactions on your behalf
  • Conduct identity and business verification as required by UAE AML/CFT regulations
  • Monitor platform security and detect fraudulent or unauthorised activity
  • Send transactional communications (account notifications, API alerts, invoices)
  • Send product updates and marketing communications — you may opt out at any time
  • Comply with applicable laws, regulations, and payment network rules
  • Enforce our Terms of Service and other legal agreements

3. How We Share Your Information

We do not sell your personal data. We share information only in the following circumstances:

3.1 Within the ClvrPay ecosystem

NEXPOINTSOLUTION operates as a product suite within the ClvrPay ecosystem. We share data with affiliated ClvrPay entities to provide the Services, manage shared infrastructure, and fulfil compliance obligations.

3.2 Payment network partners

To issue virtual cards, process transactions, and settle payouts, we share necessary data with Visa, Mastercard, acquiring banks, and settlement partners as required to operate the payment networks.

3.3 Service providers

We engage trusted third-party service providers for cloud hosting, analytics, customer support, and compliance screening. These providers are contractually bound to process data only for the purposes we specify.

3.4 Legal and regulatory obligations

We may disclose information to UAE regulatory authorities (including the Central Bank of the UAE), law enforcement agencies, or courts when required by law or to protect our legal rights.

4. Data Retention

We retain personal data for as long as necessary to provide the Services and fulfil the purposes described in this policy, or as required by applicable law:

  • Contact form submissions: up to 24 months or until a commercial relationship begins
  • Platform account data: for the duration of your contract, plus 5 years thereafter
  • Transaction and API logs: minimum 5 years, as required by UAE AML/CFT regulations
  • KYB documentation: minimum 5 years after the business relationship ends

5. Data Security

We implement industry-standard security measures to protect your data, including AES-256 encryption at rest, TLS 1.3 in transit, strict access controls, regular security assessments, and 24/7 infrastructure monitoring. Despite these measures, no system is completely secure. If you become aware of a security concern, please contact us immediately at business@nextpointsolution.com.

6. Your Rights

Subject to applicable UAE law, you have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request that inaccurate or incomplete data be corrected
  • Deletion: Request deletion of your data, subject to our legal retention obligations
  • Objection: Object to processing of your data for direct marketing purposes
  • Portability: Request your data in a structured, machine-readable format where technically feasible

To exercise any of these rights, contact us at business@nextpointsolution.com. We will respond within 30 days. We may need to verify your identity before processing your request.

7. Cookies

Our website uses cookies and similar technologies to improve your browsing experience and analyse site usage. The types of cookies we use include:

  • Essential cookies: Required for the website to function correctly
  • Analytics cookies: Help us understand how visitors interact with our website (e.g., page views, session duration)
  • Preference cookies: Remember your settings such as language preferences

You can manage or disable cookies through your browser settings. Note that disabling essential cookies may affect website functionality.

8. International Data Transfers

Our infrastructure and service providers may be located outside the UAE. When we transfer data internationally, we implement appropriate safeguards — including contractual protections — to ensure your data receives an equivalent level of protection consistent with UAE data protection standards.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify registered platform users by email and update the “Last updated” date at the top of this page. Your continued use of our Services after changes take effect constitutes your acceptance of the updated policy.

10. Governing Law

This Privacy Policy is governed by the laws of the United Arab Emirates. Any disputes arising under this policy shall be subject to the exclusive jurisdiction of the courts of Dubai, UAE.

11. Contact Us

For any questions or concerns about this Privacy Policy or our data practices, please contact our team:

NEXPOINTSOLUTION

Part of the ClvrPay Ecosystem

Office Building A1, Dubai Digital Park

Dubai Silicon Oasis, Dubai, United Arab Emirates

Business Registration No. 586648108

Email: business@nextpointsolution.com

© 2026 NEXPOINTSOLUTION. All rights reserved.