• Identity: Digital Immersion LDA, Lisbon, Portugal. • Contact: info@nis-ai.com or +351 914 967 743.

• Account Data: Names, professional emails, and billing information for SaaS subscriptions.

• Assessment & Telemetry Data: Information inputted into https://check.nis-ai.com/, as well as structured enterprise data, network logs, and security policies ingested into the main dashboard for gap analysis.

Your data processing environment depends on your subscription:

• Public Tool and Standard SaaS Tiers: To deliver our core gap analysis and compliance recommendations, we utilize external Large Language Model (LLM) APIs. Data submitted through https://check.nis-ai.com/ and the standard SME/Corporate dashboards is processed by these third-party sub-processors. (Note for your lawyer: You will need to explicitly list the specific LLM providers, e.g., OpenAI/Anthropic, in your final legal sub-processor list).

• Enterprise Standalone Tier: For enterprise clients utilizing our standalone license, all data processing is strictly isolated. Custom AI models operate on the client's own servers, meaning no sensitive telemetry or compliance data is transferred to Digital Immersion LDA or any external LLM APIs.

• For our standard SaaS users, data is securely processed and hosted using enterprise-grade infrastructure, supported by our partners (e.g., Unicorn Factory) to ensure high reliability and security.

• We implement strict access controls and encryption to protect your account and assessment data in transit and at rest.

• We do not sell your data.

• Except for the necessary transmission of prompts to our designated LLM API partners (for standard tiers) and secure cloud hosting providers, your compliance data is kept strictly confidential.

• You retain the right to access, rectify, or erase your personal data, as well as the right to restrict processing and request data portability. Requests can be directed to info@nis-ai.com