This Privacy Policy (“Policy”) explains how [Nodestream, Inc.], doing business as Nodestream.ai (“Nodestream,” “we,” “us,” or “our”), collects, uses, and discloses personal information in connection with our websites, customer and partner portals, hardware products and devices, and related services (together, the “Services”). Nodestream is a business-to-business provider of [networking and data-streaming hardware].
This Policy applies to personal information about the individuals who interact with us, including representatives and employees of our business customers, partners, and suppliers; website visitors; and prospective customers. Because California law no longer exempts personal information collected in a business-to-business or employment context, this Policy applies to that information as well.
Nodestream.ai is an affiliate of Blockware (blockware.com). Although the two companies share a corporate relationship, Nodestream and Blockware are separate companies with separate products, customers, systems, and privacy practices. Nodestream operates its own data systems and is an independent business that determines the purposes and means of processing the personal information described in this Policy.
We do not share the personal information we collect through the Services with Blockware for Blockware’s own marketing or other independent purposes, and Blockware’s consumer-facing privacy policy does not govern the Services. Any limited corporate or administrative services that may be provided between the companies are performed under confidentiality obligations and only as needed to support Nodestream’s own operations. [Confirm and tailor this section to your actual corporate data arrangements.]
We collect the categories of personal information described below. The category names correspond to those used in the California Consumer Privacy Act, as amended (the “CCPA”).
Sensitive personal information. We generally do not collect sensitive personal information as defined by the CCPA, other than account log-in credentials, which we use only to provide and secure the Services. We do not use or disclose sensitive personal information to infer characteristics about an individual.
Sources. We collect personal information directly from you and your organization; automatically through your use of the Services and our devices; and from third parties such as resellers and channel partners, service providers, and publicly available or commercially available sources.
We use personal information for the following business purposes:
In the past twelve months we may have disclosed each category of personal information described in Section 2 to the categories of recipients below, for the business purposes indicated. We require our service providers and contractors to use personal information only to perform services for us and to protect it under written contracts.
Affiliates. As noted in Section 1, we do not disclose personal information to Blockware for its own purposes. Any internal disclosures among Nodestream entities are limited to operating the Services and are subject to confidentiality obligations.
Legal and safety. We may disclose personal information to comply with law or legal process, to respond to lawful requests from public authorities, to enforce our agreements, or to protect the rights, property, or safety of Nodestream, our customers, or others.
Business transfers. If Nodestream is involved in a merger, acquisition, financing, reorganization, or sale of assets, personal information may be transferred as part of that transaction, subject to this Policy.
Nodestream does not sell personal information for monetary consideration, and we do not “share” personal information for cross-context behavioral advertising, as those terms are defined under the CCPA. [Confirm based on your actual advertising and analytics practices; if you use advertising or certain analytics cookies, you may be “sharing” and must offer an opt-out.] We honor opt-out preference signals, including the Global Privacy Control (GPC), where required.
Our website uses cookies and similar technologies for essential operation, to remember preferences, and to measure and improve performance. You can control cookies through your browser settings and, where offered, through our cookie controls. We honor the Global Privacy Control (GPC) signal as an opt-out of any sale or sharing where applicable.
Subject to certain exceptions, California residents have the following rights regarding their personal information:
How to submit a request. You may submit a request by emailing [privacy@nodestream.ai] or by using our online request form at [request URL]. [If you operate a toll-free number, include it here.] You may also designate an authorized agent to make a request on your behalf; we may require proof of the agent’s authorization and verification of your identity.
Verification and response. To protect your information, we will verify your request by matching the information you provide with our records and, for business-contact information, by confirming with an authorized representative. We will acknowledge a request within [ten (10)] business days and respond within [forty-five (45)] calendar days, with one extension of up to an additional [forty-five (45)] days where reasonably necessary. If we decline a request, we will explain why; you may contact us to ask us to reconsider.
We do not use automated decision-making technology to make decisions that produce legal or similarly significant effects about individuals. [If you adopt automated decision-making or profiling that triggers the California ADMT regulations effective January 1, 2026, update this section to provide a pre-use notice, an explanation of the logic and intended outputs, and the ability to opt out or request human review as required.]
We retain personal information for as long as needed to fulfill the purposes described in this Policy, including to provide the Services, maintain business and accounting records, resolve disputes, and comply with our legal obligations. Retention periods are determined by the nature of the information, the purpose for which it was collected, and applicable legal, tax, and contractual requirements. When information is no longer needed, we delete or de-identify it.
We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, use, alteration, and destruction, appropriate to the nature of the information. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.
Nodestream hardware may generate configuration, performance, diagnostic, and usage data that helps operate, support, secure, and improve the Products. Where this data is associated with an identifiable individual (such as an administrator), we treat it as personal information under this Policy. Where our customers configure and operate our devices to process information about their own end users, the customer is responsible for that information and for providing any required notices and choices; in that context Nodestream acts as a service provider or processor on the customer’s behalf and processes such information only as permitted by our agreement with the customer.
Nodestream is based in the United States, and we process and store personal information in the United States and other locations where we or our service providers operate. If you access the Services from outside the United States, you understand that your personal information may be transferred to and processed in the United States. [If you have EU/UK customers, add the applicable transfer-mechanism disclosures.]
The Services are intended for businesses and are not directed to children. We do not knowingly collect personal information from anyone under 16 years of age. If we learn that we have collected such information, we will delete it.
The Services may link to third-party websites or services that we do not control. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review their privacy policies.
We may update this Policy from time to time. When we do, we will revise the “Last Updated” date above and, where appropriate, provide additional notice. Changes are effective when the updated Policy is posted.