Overview
NoMachine S.à r.l. and all its subsidiaries and affiliates, expects its employees, including those of its subsidiaries worldwide and third parties with whom NoMachine does business, to maintain the highest standards of ethics and compliance with applicable laws and rules. NoMachine is committed to the highest standards of privacy and data  protection compliance and expects all its employees and management to adhere to these standards. NoMachine ensures that your Personal Data are processed by these Recipients in accordance with the GDPR.

We understand that privacy is important to our online visitors and users. We respect your privacy and will take all reasonable steps to safeguard and protect your information as if it was our own. This Privacy Policy will help you understand what Personal Data NoMachine collects; how it collects, holds, uses, discloses and deletes that information, and the purposes of collection and disclosure.

Personal Data
The term “Personal Data”, as used in this Policy, refers to any data (whether by itself or when linked with other information in the possession of, or likely to come into the possession of, NoMachine) that can be used to identify a specific person. Below we provide information about the collection of personal data when using this website and the NoMachine product. Personal data is any data that can personally reference you. Personal Data does not include information that has been aggregated or made anonymous such that it can no longer be reasonably associated with a specific person.

What does this Privacy Policy apply to?
This Policy applies to the NoMachine.com website, including the NoMachine Forums website, the online store (collectively referred to as the “Website”), and also applies to all services that we offer in connection with your relationship with us as a customer, including through your use of our Website, your customer area and associated support services, public NoMachine forums and mailing lists, your use of the NoMachine software and, if applicable, also your use of the NoMachine Network Service (collectively referred to as the “Services”).

Some specific examples of how we use this information:

• - Provide access to the User Area and Customer Support portal.
  - Send you information about the products and services that you have purchased from us.
  - Give you access to the NoMachine Network service.
  - Perform direct sales activities in cases where legitimate interest is established.
  - Reply to a ‘Contact Request’ or other web forms you have completed on our website.
  - Follow up on incoming requests (customer support, emails, chats, or phone calls).
  - Perform contractual obligations such as technical assistance, order confirmation, license details, accounting .
    activities, subscription reminder.
  - Notify you about any disruptions to our services.
  - Contact you to conduct surveys about your opinion on our products and services.
  - Process a job application if you have sent us your CV.

This Policy does not apply to any website, product or service of any third-party company even if the website links to (or from) our Website. Please always review the privacy practices of any third-party company before deciding whether to provide any information.

By using our Website or Services, you are accepting the practices described in this Policy. If you do not agree with this Policy, please delete all cookies from your browser cache after visiting our Website and do not visit or use our Website or Services. Your continued use of our Website or Services will signify your acceptance of this Policy.

Collection and use of your Personal Data
By using the NoMachine Services, NoMachine collects data as deemed appropriate for the fulfillment of the service as described below.

NoMachine Software
NoMachine software does not gather personal information of any kind since it is selfhosted. The software, including NoMachine Mobile Apps, does not contain Analytics Tools, therefore we do not gather any personal data from your use of them. For the avoidance of doubt, we explicitly do not log or collect your passwords, mouse clicks, keystrokes, audio, video through use of the NoMachine Software and Mobile Apps. When connecting over the network to a remote computer, the NoMachine connection is always encrypted using end-to-end encryption. This prevents third parties from accessing data transferred from one endpoint to another. This basically means that all session data (files, keyboard and mouse input and screen output) between a NoMachine client and a NoMachine server cannot be intercepted and decrypted other than by the client and server in question. Therefore, no third party can intercept this data, as only the sender and the intended recipient have the key to decrypt the information. 

For more information about NoMachine Security and Encryption please consult:

NoMachine Security Statement
https://www.nomachine.com/AR04S01121

NoMachine Network
You may optionally create a NoMachine account through the software or via the website to access advanced connectivity features related to the NoMachine Network service. This includes the functionality of two-factor authentication which is enabled through the use of the NoMachine Mobile App. When creating a NoMachine account, your User Id (e-mail address), or using your NoMachine account to access the Network service through the NoMachine Software, specific information is logged on our Network servers. The content of any files you exchange is not accessed nor collected. The contents of a remote desktop connection to another computer are not collected and cannot be seen when using the Network Service.

We log certain usage information which we store only for the time strictly necessary in order to be able to operate and optimize the Services, gather usage statistics and diagnostic data. NoMachine may collect technical information about your connection to detect possible problems, for example about your specific network connection, to spot possible problems and help improve its software and its Network infrastructure. The following information is logged: your User Id, NoMachine Machine Id, IP address or hostname, OS and computer model, and system user name; in the case of push notifications, data gathered includes device information such as push notification identifier, model, OS and device name. 

NoMachine Software Logs
When you submit a support enquiry, or a request for assistance via any of the applicable contact channels, including the public NoMachine Forums, we may request logs to allow our support team and developers to investigate thoroughly. These logs come from your NoMachine server and are not shared with NoMachine unless explicitly submitted by you. These logs may contain IP addresses, usernames and computer names of the affected user sessions. It is possible to blank out the sensitive information before submitting for analysis. By uploading these logs to our secure file server, you authorize us to use your personal data exclusively for the requested purpose.

NoMachine Logs from Mobile Devices with the NoMachine App installed
In the case the user has explicitly enabled logs from the device (e.g crash logs) to be transmitted to the App Store, this information is impersonal and for troubleshooting purposes. However, the logs are stored locally on your device and not sent automatically. In the event you wish to submit a Crash Report to one of the App Stores, NoMachine may collect and process the following information about your device and the NoMachine Software:

• - Non-personal information, such as: brand, manufacturer, model & operating system version.
  - Version, mode and subscription information.
  - The information will be submitted to the App Stores and made available to NoMachine developers for further
     analysis.
  
   

The User Area on the NoMachine Website
All customers, when purchasing a Network or Enterprise Subscription, are obliged to provide a valid e-mail address in order to create your NoMachine account. This is used to send you follow-ups to support tickets you submit to us, to notify you of software updates, security advisories and reminders of expiring subscriptions, or any changes to the services and terms and conditions. By submitting your email address, you authorize us to send these email communications. These communications are not made for marketing purposes and cannot be opted-out of.
 

Payment Information
When purchasing NoMachine products on the NoMachine website, NoMachine receives your billing address which is stored in your customer area and can be edited at any time. When paying with credit card, your credit card details are not stored and we do not have access to them. Whilst you are able to opt in and opt out of recurring payments provided the amount stays the same, this operation is between you and your credit card provider.
 

Support Enquiries
By submitting an enquiry via your customer area, you are authorizing us to correspond with you and accept that we may receive personal information that you decide to include in correspondence with us as content of your support ticket. This may also include logs from the software. Anything communicated by you online via the support portal is stored as part of the online support services we offer.

Contact Request & Report Issues Forms
When you contact us using the form here: https://www.nomachine.com/contact-us we ask for information such as name, email address, phone number, and other details which are optional. By sending this you authorize us to use your personal data exclusively for the requested purpose.

When you submit a bug report via the link https://www.nomachine.com/report-an-issue, you can choose whether to provide us with an email address. By providing us with a valid email address, you authorize us to contact you regarding the issue you wish to report and to use the email address exclusively for the requested purpose.

Mailing Lists
If you sign up to any of our mailing lists NoMachine Announce and NoMachine News which are used to communicate software releases and company news via email, we may also occasionally email you with information about offers or new services. You can also opt out of these email communications by using the unsubscribe link included in such communications.
 

NoMachine Forums
By creating a NoMachine account you are also allowed access to the NoMachine Forums by selecting a nickname or username. If you add topics or comments, upload photos, logs or videos, etc. on our Forums website (https://forum.nomachine.com/), this information is public and can be read by anyone with access to the Forum website. If you wish to remove any data from the Forums, please contact us.

NoMachine VPN
NoMachine doesn't track your activities through the NoMachine VPN and does not store any data related to the traffic going through the VPN service.
 

Website Visitors
To simply browse our Website, you are not required to provide any Personal Data. However, we may gather non-personally-identifiable information, such as the IP address of your last access and the language preference you may decide to set in order to browse the website, solely for the purposes of monitoring and improving our Website and Services. We will not share this information with third parties or use it to target any advertisements to you.

Cookies and Web Server Logs
“Cookies” are a feature of web browser software that allows web servers to recognise the computer used to access a website. Cookies can remember what information a computer accessed on one web page to streamline activities on related web pages and to make the online experience easier and more personalized. Log files are used to monitor, measure, analyse, improve, and troubleshoot our Services. When a user sets a language preference and request to remember this setting on our website, we use a cookie. This is the only cookie that NoMachine uses on its website to customize your experience and keeps that setting for your next visit. You can choose to disable cookies for our website if you prefer. In that case, your request for a specific language setting will last for the duration of the open browser session, and you can set it again next time you visit. We don’t use any other type of cookie that will ‘personalize’ the experience or target you during your time on our website. We utilise other technologies to collect non-personally-identifiable information from our Website. such as the date and time of visits, the pages viewed, IP addresses, links to/from any page, and time spent at our site. This data is contained in our Web Server Logs to measure web traffic and usage activity on our Website for purposes of monitoring, troubleshooting and improving our Website and Services, to look for possible fraudulent activity, and to better understand the sources of traffic and transactions on our Website.

Storing, sharing and Disclosure of your Personal Data
NoMachine does not sell or rent your Personal Data to marketers or third parties. NoMachine may disclose Personal Data it collects about you to trusted third parties who are integral to the operation of our Website and Services for a variety of purposes in connection with providing our Services and operating our Website. These third parties include our partners, contractors, financial institutions, payment processors, verification services and credit bureaus, as well as any third parties that you have directly authorized to receive your Personal Data. These third parties have access to Personal Information to the extent necessary to permit them to do their jobs, however, they are bound by confidentiality agreements before any Personal Information is provided to them, and they are restricted from retaining, using, or disclosing your Personal Data other than to provide the services requested by us.

We may also store your Personal Data in locations outside the direct control of NoMachine, for instance, on servers or databases co-located with hosting providers. Some of these hosting providers are located outside of Luxembourg. These countries may include the United States of America and the United Kingdom. Any related cross border data transfers will be in compliance with applicable law, and we will ensure that the transfer will be compliant with data protection law and all personal data will be secure.

We may also disclose your Personal Data if we believe that disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements. We may share your Personal Data if you have violated the law or if it is necessary to protect the rights, property, and safety of NoMachine, our users, the public, or others. If we are going to disclose your Personal Data in response to a legal process, we will give you notice so you can challenge it (for example by seeking court intervention), unless we are prohibited by law or believe doing so may endanger others or cause illegal conduct. We will object to legal requests for information about users of our Services that we believe are improper.

If we are subject to a merger or acquisition with/by another company, we may share information with them in accordance with our global privacy standards. Should such an event occur, we will require that the new combined entity follow this privacy notice with respect to your Personal Data. If we intend to handle your Personal Data for any purposes not covered in this privacy notice, you will receive prior notification of the processing of your Personal Data for the new purposes. Any sharing or disclosure of your Personal Data will be in compliance with applicable EU data protection laws and regulations.
 

How Long We Keep Your Personal Data
We retain your personal information for as long as necessary to provide the Services you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our policies. The exact retention period will thus depend on the categories of personal data and the processing purposes. For example, for bookkeeping and accounting, in some cases, we are legally required to retain personal data for a certain period of time, e.g., for invoices, or payment details, for up to 10 years for these purposes. In order to protect our legitimate interests, we retain support ticket data for up to 3 years (duration of statutory limitation period). Once such period has lapsed, and there is no purpose to be fulfilled by the processing of personal data, we will delete or anonymize the data in accordance with data protection obligations.

Protection of Personal Data
Although no data transmission can be guaranteed to be 100% secure, we take all reasonable steps to ensure that the Personal Data we collect, use or disclose is accurate, complete, up-to-date, relevant and stored securely. We also take all reasonable steps to ensure that the Personal Data we hold is protected from misuse, interference, loss, unauthorised access, modification or disclosure by the use of various methods including access limitation, and industry-standard Secure Socket Layer (SSL) encryption technology to safeguard the account registration process and sign-up information. Other security safeguards include but are not limited to data encryption, firewalls, and physical access controls to building and files. NoMachine maintains strict administrative, technical and physical procedures to protect information stored in our servers. Access to information is limited to those authorised employees who require it to perform their job functions.

Changes to This Policy
We reserve the right to make changes to this Policy from time to time. If any changes are material and/or retroactive, we may provide additional notice and/or an opportunity to “opt-in” or “opt-out” as appropriate under the circumstances. We may also advise you of changes to this policy by emailing the revised policy to any email addresses you provide us. Any changes willl be compliant with applicable EU data protection laws and regulations.
 

Access, Correction and Complaints – Contact Us
If you have any questions or suggestions about this Privacy Policy or would like to access, seek correction of or remove your Personal Data, or if you have complaints regarding our privacy practices, please contact us by emailing privacy@nomachine.com.