Legal

Privacy & Data Policy

How we collect, use, protect, and share your personal data — and your rights in relation to it.

Last updated: June 2025 · Effective immediately
Contents
  1. Who we are
  2. Data we collect
  3. How we use your data
  4. Legal basis for processing
  5. How we share your data
  6. Third-party services
  7. Data retention
  8. Security
  9. International transfers
  10. Your rights
  11. Cookies
  12. Children
  13. Changes to this policy
  14. Contact us

The short version: We collect only what we need to deliver our services. We do not sell your data. We do not share it with advertisers. Where we refer you to specialist professionals, we ask your permission first. You can request deletion of your data at any time by emailing .

1. Who we are

Nicior Consulting ("Nicior", "we", "us", "our") operates the platform at nicior.com, providing inheritance intelligence, structured education, and diagnostic advisory services to individuals navigating the transfer of family wealth.

For the purposes of this policy, Nicior Consulting is the data controller responsible for your personal information collected through this platform.

Contact:

2. Data we collect

2.1 Data you provide directly

  • Account registration: Name, email address, phone number or WhatsApp, password (stored encrypted), newsletter consent status, and date of registration.
  • Discovery profile: Your location, situation description, primary concern, asset types, jurisdictions, and estate context — entered voluntarily as part of the program tools.
  • Payment information: When you pay for an engagement, payment details (card number, expiry, CVC) are processed directly by our payment processor (Stripe). Nicior does not store raw card data.
  • Communications: Emails, messages, and any information you share with us in correspondence or during sessions.
  • Community content: Posts, replies, and interactions in the Nicior community forum.

2.2 Data collected automatically

  • Usage data: Pages visited, time spent, features used, program step progress, and quiz results — stored locally in your browser (localStorage / sessionStorage) and, where you are signed in, associated with your account.
  • Device and browser data: Browser type, operating system, IP address, and general geographic location (country/city level) via standard web server logs.
  • Cookies: See Section 11 for full cookie details.

2.3 Data we do not collect

  • We do not collect government-issued ID numbers, passport details, or tax identification numbers through the platform.
  • We do not collect actual financial account numbers, bank details, or brokerage credentials.
  • We do not collect biometric data.

3. How we use your data

PurposeData used
Delivering the Nicior program, tools, and coaching modulesAccount data, discovery profile, program progress
Processing payments for paid engagementsPayment data (via Stripe), name, email
Scheduling and conducting 1:1 advisory sessionsName, email, phone, calendar data via Calendly
Sending transactional emails (booking confirmations, receipts)Name, email
Sending our monthly newsletter (if consented)Name, email — consent recorded at sign-up
Improving the platform based on aggregate usage patternsAnonymised usage data, no personal identifiers
Community moderation and member safetyAccount data, community posts
Introducing you to vetted specialist professionals (with your consent)Name, situation summary — only with explicit permission
Complying with legal obligationsAs required by applicable law

We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.

Where applicable data protection law (including GDPR) requires a legal basis for processing, we rely on the following:

  • Contract: Processing necessary to deliver the services you have engaged us for.
  • Legitimate interests: Platform improvement, fraud prevention, security, and maintaining the community — where these do not override your fundamental rights.
  • Consent: Marketing emails and newsletter. You may withdraw consent at any time by clicking unsubscribe in any email or by contacting us.
  • Legal obligation: Where we are required to process data to comply with applicable law.

5. How we share your data

We do not sell your personal data. We do not share it with advertisers or data brokers. We share your data only in the following limited circumstances:

5.1 Service providers (processors)

We share data with carefully selected third-party providers who process data on our behalf and under our instructions:

  • Stripe — payment processing
  • Calendly — session scheduling
  • Email delivery provider — transactional and newsletter emails
  • Hosting provider (Hostinger) — website hosting and file storage

5.2 Specialist referrals (with explicit consent only)

Where we introduce you to a vetted specialist professional (lawyer, tax adviser, wealth manager), we will share only your name and a brief situation summary — and only after asking for and receiving your explicit consent to do so. You are never obligated to proceed with any referred specialist.

5.3 Legal requirements

We may disclose your data if required to do so by law, court order, or governmental authority, or where necessary to protect the rights, property, or safety of Nicior, our members, or the public.

5.4 Business transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. We will notify you by email and provide you with choices in relation to your data in such circumstances.

6. Third-party services

Our platform integrates with third-party services that operate under their own privacy policies. We are not responsible for the data practices of these third parties:

When you use social sign-in (Google or Meta), those providers may collect and use your data in accordance with their own policies.

7. Data retention

We retain your personal data for as long as your account is active, or as long as reasonably necessary to deliver the services you have engaged us for. Specifically:

  • Account data: Retained for the lifetime of your account, plus 12 months after account deletion to enable reactivation and resolve any disputes.
  • Program and tool data: Retained for the lifetime of your account. Stored locally in your browser; cleared when you clear browser data.
  • Payment records: Retained for 7 years in accordance with standard accounting and tax obligations.
  • Marketing data (newsletter): Retained until you unsubscribe or request deletion.
  • Community posts: Retained until you request deletion or your account is closed. Deleted posts are purged within 30 days.
  • Server logs: Retained for 90 days, then deleted.

You may request deletion of your account and personal data at any time by emailing . We will action deletion requests within 30 days, subject to legal retention obligations.

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration, or disclosure. These include:

  • HTTPS encryption for all data in transit
  • Passwords stored using industry-standard hashing (bcrypt or equivalent) — we never store plaintext passwords
  • Payment data processed exclusively through PCI DSS-compliant Stripe — we do not store card numbers
  • Access to personal data restricted to personnel who need it to perform their functions
  • Regular security reviews of our platform and third-party integrations

No method of transmission over the internet is 100% secure. If you believe your account has been compromised, contact us immediately at .

9. International data transfers

Nicior serves clients internationally and operates in a place-agnostic manner. Your data may be processed and stored in countries outside your own, including countries that may have different data protection laws.

Where we transfer data outside the European Economic Area (EEA) or the United Kingdom, we rely on appropriate safeguards including Standard Contractual Clauses (SCCs) with our service providers, or transfers to countries with an adequacy decision from the relevant authority.

If you have questions about the specific safeguards applied to your data, contact us at .

10. Your rights

Depending on your jurisdiction, you may have the following rights in relation to your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure ("right to be forgotten"): Request deletion of your personal data, subject to our legal retention obligations.
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Portability: Request your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interests or for direct marketing purposes.
  • Withdraw consent: Where processing is based on consent, withdraw it at any time without affecting the lawfulness of prior processing.
  • Complaint: Lodge a complaint with your local data protection authority if you believe we have handled your data unlawfully.

To exercise any of these rights, email with your request. We will respond within 30 days. We may need to verify your identity before processing certain requests.

11. Cookies

We use a minimal set of cookies and browser storage technologies:

Name / TypePurposeDuration
nicior_agreed (sessionStorage)Records that you have agreed to our disclaimer. Cleared when the browser tab is closed or after 10 minutes of inactivity.Session only
nicior_user (localStorage)Stores your account session (name, email, sign-in status) so you remain signed in across visits.Until sign-out or manual clear
nicior_progress (localStorage)Saves your program and coaching progress locally in your browser.Until manual clear
Stripe cookiesFraud prevention and payment session management — set by Stripe during checkout.Session / 1 year
Calendly cookiesSession management for booking widget — set when you open the Calendly scheduling popup.Session / 30 days

We do not use advertising cookies, tracking pixels, or third-party analytics cookies. We do not participate in behavioural advertising networks.

You can clear cookies and browser storage at any time through your browser settings. Clearing nicior_user will sign you out.

12. Children

The Nicior platform is intended for adults (18 years and older). We do not knowingly collect personal data from individuals under the age of 18. If you believe a child has provided us with personal data, please contact us at and we will delete it promptly.

13. Changes to this policy

We may update this Privacy & Data Policy from time to time to reflect changes in our practices, the platform, or applicable law. When we make material changes, we will notify registered members by email and update the "Last updated" date at the top of this page.

Your continued use of the platform after any changes constitutes acceptance of the updated policy. If you do not agree with any changes, you may request deletion of your account.

14. Contact us

For any questions, requests, or concerns regarding this Privacy & Data Policy or the handling of your personal data:

Nicior Consulting
Data & Privacy enquiries
📅 Book a call