Privacy Policy

This Privacy Policy (“Policy”) explains how [Nodestream, Inc.], doing business as Nodestream.ai (“Nodestream,” “we,” “us,” or “our”), collects, uses, and discloses personal information in connection with our websites, customer and partner portals, hardware products and devices, and related services (together, the “Services”). Nodestream is a business-to-business provider of [networking and data-streaming hardware].
This Policy applies to personal information about the individuals who interact with us, including representatives and employees of our business customers, partners, and suppliers; website visitors; and prospective customers. Because California law no longer exempts personal information collected in a business-to-business or employment context, this Policy applies to that information as well.

1. Our Relationship with Blockware (Important Notice)

Nodestream.ai is an affiliate of Blockware (blockware.com). Although the two companies share a corporate relationship, Nodestream and Blockware are separate companies with separate products, customers, systems, and privacy practices. Nodestream operates its own data systems and is an independent business that determines the purposes and means of processing the personal information described in this Policy.
We do not share the personal information we collect through the Services with Blockware for Blockware’s own marketing or other independent purposes, and Blockware’s consumer-facing privacy policy does not govern the Services. Any limited corporate or administrative services that may be provided between the companies are performed under confidentiality obligations and only as needed to support Nodestream’s own operations. [Confirm and tailor this section to your actual corporate data arrangements.]

2. Personal Information We Collect

We collect the categories of personal information described below. The category names correspond to those used in the California Consumer Privacy Act, as amended (the “CCPA”).
Category Examples of information we may collect
Identifiers Name, business email address, business phone number, mailing and shipping address, account or customer ID, online identifiers, and IP address.
Customer records and commercial information Products purchased or considered, order and transaction history, and billing details. Payment-card data is processed by our payment processor; we do not store full card numbers.
Internet or other electronic network activity Interactions with our website and portals, log data, cookie and device identifiers, and pages or features used.
Geolocation data Approximate location derived from IP address, and device location only where you or your organization enable it.
Professional or employment-related information Job title, employer, business role, and business contact details.
Audio or visual information Sales or support call recordings and related correspondence, where applicable and permitted by law.
Product and device data (telemetry) Configuration, performance, diagnostic, and usage data generated by Nodestream hardware, which may be associated with an account or administrator.
Inferences Limited inferences drawn from the above to support business-to-business marketing and product improvement.
Sensitive personal information. We generally do not collect sensitive personal information as defined by the CCPA, other than account log-in credentials, which we use only to provide and secure the Services. We do not use or disclose sensitive personal information to infer characteristics about an individual.
Sources. We collect personal information directly from you and your organization; automatically through your use of the Services and our devices; and from third parties such as resellers and channel partners, service providers, and publicly available or commercially available sources.

3. How We Use Personal Information

We use personal information for the following business purposes:
  1. Provide, operate, and maintain the Services and fulfill orders for Products;
  2. Process transactions, invoicing, and payments;
  3. Provide customer and technical support and respond to inquiries;
  4. Provide customer and technical support and respond to inquiries;
  5. Develop new products and features;
  6. Communicate with you about orders, service, security, and changes to our terms or policies;
  7. Send business-to-business marketing about Nodestream products and services, subject to your right to opt out;
  8. Maintain the security and integrity of our systems and detect, prevent, and respond to fraud, misuse, and unauthorized access;
  9. Comply with legal obligations and enforce our agreements; and
  10. Other purposes with your consent or at your direction.

4. How We Disclose Personal Information

In the past twelve months we may have disclosed each category of personal information described in Section 2 to the categories of recipients below, for the business purposes indicated. We require our service providers and contractors to use personal information only to perform services for us and to protect it under written contracts.
Recipient category Categories of personal information Purpose
Cloud hosting and infrastructure providers Identifiers; internet/device activity; commercial information; product/device telemetry Host, operate, store, and secure the Services
Payment processors Identifiers; commercial information (billing) Process payments and help prevent fraud
Shipping and logistics providers Identifiers (name, shipping address, phone) Fulfill and deliver orders
CRM, support, and communication tools Identifiers; professional/employment information; commercial information; communications Manage the customer relationship and provide support
Analytics and website providers Online identifiers; internet/device activity; approximate geolocation Measure and improve the website and Services
Professional advisors and auditors As relevant to the engagement Legal, accounting, audit, and compliance
Security and fraud-prevention vendors Identifiers; internet/device activity Protect the Services and detect and prevent fraud and abuse
Affiliates. As noted in Section 1, we do not disclose personal information to Blockware for its own purposes. Any internal disclosures among Nodestream entities are limited to operating the Services and are subject to confidentiality obligations.
Legal and safety. We may disclose personal information to comply with law or legal process, to respond to lawful requests from public authorities, to enforce our agreements, or to protect the rights, property, or safety of Nodestream, our customers, or others.
Business transfers. If Nodestream is involved in a merger, acquisition, financing, reorganization, or sale of assets, personal information may be transferred as part of that transaction, subject to this Policy.

5. Sale or Sharing of Personal Information

Nodestream does not sell personal information for monetary consideration, and we do not “share” personal information for cross-context behavioral advertising, as those terms are defined under the CCPA. [Confirm based on your actual advertising and analytics practices; if you use advertising or certain analytics cookies, you may be “sharing” and must offer an opt-out.] We honor opt-out preference signals, including the Global Privacy Control (GPC), where required.

6. Cookies and Tracking Technologies

Our website uses cookies and similar technologies for essential operation, to remember preferences, and to measure and improve performance. You can control cookies through your browser settings and, where offered, through our cookie controls. We honor the Global Privacy Control (GPC) signal as an opt-out of any sale or sharing where applicable.

7. Your California Privacy Rights

Subject to certain exceptions, California residents have the following rights regarding their personal information:
  1. Right to know / access. Request the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of recipients.
  2. Right to delete. Request that we delete personal information we collected from you.
  3. Right to correct. Request that we correct inaccurate personal information.
  4. Right to opt out of sale or sharing. Direct us not to sell or share your personal information. As stated in Section 5, we do not sell or share personal information; we nonetheless honor opt-out signals.
  5. Right to limit use of sensitive personal information. Direct us to limit the use of sensitive personal information to permitted purposes. As stated in Section 2, our use of sensitive personal information is already limited to such purposes.
  6. Right to non-discrimination. We will not discriminate or retaliate against you for exercising any of these rights.
How to submit a request. You may submit a request by emailing [privacy@nodestream.ai] or by using our online request form at [request URL]. [If you operate a toll-free number, include it here.] You may also designate an authorized agent to make a request on your behalf; we may require proof of the agent’s authorization and verification of your identity.
Verification and response. To protect your information, we will verify your request by matching the information you provide with our records and, for business-contact information, by confirming with an authorized representative. We will acknowledge a request within [ten (10)] business days and respond within [forty-five (45)] calendar days, with one extension of up to an additional [forty-five (45)] days where reasonably necessary. If we decline a request, we will explain why; you may contact us to ask us to reconsider.

8. Automated Decision-Making

We do not use automated decision-making technology to make decisions that produce legal or similarly significant effects about individuals. [If you adopt automated decision-making or profiling that triggers the California ADMT regulations effective January 1, 2026, update this section to provide a pre-use notice, an explanation of the logic and intended outputs, and the ability to opt out or request human review as required.]

9. Data Retention

We retain personal information for as long as needed to fulfill the purposes described in this Policy, including to provide the Services, maintain business and accounting records, resolve disputes, and comply with our legal obligations. Retention periods are determined by the nature of the information, the purpose for which it was collected, and applicable legal, tax, and contractual requirements. When information is no longer needed, we delete or de-identify it.

10. Data Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, use, alteration, and destruction, appropriate to the nature of the information. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.

11. Device and Product Data

Nodestream hardware may generate configuration, performance, diagnostic, and usage data that helps operate, support, secure, and improve the Products. Where this data is associated with an identifiable individual (such as an administrator), we treat it as personal information under this Policy. Where our customers configure and operate our devices to process information about their own end users, the customer is responsible for that information and for providing any required notices and choices; in that context Nodestream acts as a service provider or processor on the customer’s behalf and processes such information only as permitted by our agreement with the customer.

12. International Data Transfers

Nodestream is based in the United States, and we process and store personal information in the United States and other locations where we or our service providers operate. If you access the Services from outside the United States, you understand that your personal information may be transferred to and processed in the United States. [If you have EU/UK customers, add the applicable transfer-mechanism disclosures.]

13. Children’s Privacy

The Services are intended for businesses and are not directed to children. We do not knowingly collect personal information from anyone under 16 years of age. If we learn that we have collected such information, we will delete it.

14. Third-Party Websites and Services

The Services may link to third-party websites or services that we do not control. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review their privacy policies.

15. Changes to This Policy

We may update this Policy from time to time. When we do, we will revise the “Last Updated” date above and, where appropriate, provide additional notice. Changes are effective when the updated Policy is posted.

16. Contact Us

If you have questions about this Policy or wish to exercise your rights, contact us at:
Nodestream.ai
Blockware Inc., 123 Blockchain Lane, Crypto City, USA
Email: privacy@nodestream.ai
Online request form: Contacts Us