NodePoint← Back to Login

Privacy Policy

Effective date: 1 January 2025  ·  Last updated: March 2026

1. Data Controller

Node Nest Digital Limited (“the Company”, “we”, “us”) operates the NodePoint platform (“the Platform”). For the purposes of applicable data protection laws, the Company is the data controller of information collected directly through the Platform (account registration, billing, usage telemetry). For business data entered by a Tenant into the Platform (e.g., customer records, sales data), the Tenant is the data controller and the Company acts as a data processor on the Tenant's behalf.

2. Data We Collect

We collect the following categories of data:

Account & Registration Data

Business name, owner/administrator name, email address, phone number, country, industry sector, and subscription details provided during account sign-up.

Staff & Authentication Data

Staff names, email addresses, role assignments, hashed PIN credentials (bcrypt in the cloud; PBKDF2 with 600,000 iterations for offline storage), and session tokens (stored in httpOnly Secure cookies — not accessible to JavaScript).

Business Operational Data (Tenant Data)

Data you or your staff enter into the Platform, including: sales transactions, product and inventory records, customer names and contact information, hotel and safari booking details, restaurant orders, expense and purchase records, and staff payroll data.

Personally identifiable customer information (customer names, phone numbers, emails) is encrypted at rest using AES-256-GCM encryption with a per-device, per-tenant key derived via PBKDF2 before being stored in the device's local IndexedDB (offline mode). In the cloud database, Tenant Data is stored in isolated per-tenant schemas protected by Row Level Security (RLS).

Usage & Telemetry Data

Non-personal usage statistics including page visit counts, feature usage frequency, error logs, and performance metrics. This data is used to improve the Platform and is not linked to individual identifiable users in our analytics systems.

Device & Technical Data

IP address, browser type and version, operating system, device type, screen resolution, and PWA installation status, collected automatically via server logs and the service worker.

3. How We Use Data

We use collected data to:

  • Provide, operate, maintain, and improve the Platform;
  • Authenticate users and enforce role-based access controls;
  • Process subscription payments and manage billing;
  • Send transactional communications (OTPs, receipts, account notices);
  • Detect, investigate, and prevent fraud, abuse, and security incidents;
  • Comply with applicable legal obligations;
  • Respond to support requests and provide customer service;
  • Generate aggregated, anonymised statistics about Platform usage (no individual identification).

We do not sell personal data. We do not use Tenant Data for advertising purposes or share it with third parties for their own marketing.

4. Data Sharing

We share data only in the following limited circumstances:

  • Infrastructure Providers: We use enterprise-grade cloud infrastructure to store all Tenant Data. Our data centres comply with SOC 2 Type II and ISO 27001 standards. Data is encrypted in transit (TLS 1.2+) and at rest (AES-256).
  • Payment Processors: Payment transactions are processed by Paystack and M-Pesa (Safaricom). We share only the transaction amount, reference, and tenant identifier with these processors. We do not store raw card numbers or M-Pesa PINs.
  • Legal Requirements: We may disclose data if required to do so by law, court order, or governmental authority, or to protect the rights, property, or safety of the Company, its users, or the public.
  • Business Transfers: If the Company is involved in a merger, acquisition, or asset sale, Tenant Data may be transferred as part of that transaction. We will provide notice before Tenant Data becomes subject to a different privacy policy.

5. Data Retention

  • Active accounts: Tenant Data is retained for the duration of the subscription and for 90 days following account termination, during which a data export can be requested.
  • Deleted accounts: After the 90-day export window, Tenant Data is permanently deleted from production systems. Anonymised aggregated statistics may be retained indefinitely.
  • Audit logs: Security-relevant event logs are retained for up to 12 months for fraud prevention and compliance purposes.
  • Billing records: Transaction and invoice records are retained for 7 years in compliance with Kenyan tax and accounting regulations.

6. Security Measures

We implement multiple layers of security to protect your data:

  • Session tokens: Stored as httpOnly, Secure, SameSite=Strict cookies. Tokens are versioned with a server-side kill-switch for global invalidation.
  • PIN credentials: Hashed with bcrypt (cloud) and PBKDF2 at 600,000 iterations (offline). Raw PINs are never stored or transmitted in plaintext.
  • Offline PII encryption: Customer PII stored in device IndexedDB is encrypted with AES-256-GCM using a per-device key derived via PBKDF2.
  • Transport security: All communications use TLS 1.2 or higher.
  • Database isolation: Each Tenant has an isolated data namespace enforced by Row Level Security (RLS) at the database layer, preventing cross-tenant data access.
  • Role-based access control: Staff access is restricted by role (kitchen staff, cashier, waiter, manager, admin, owner) with server-enforced permissions on all write operations.
  • Licence enforcement: All data write operations require a valid active licence, enforced at the API layer.

Despite these measures, no system is completely secure. We cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your staff credentials and PINs.

7. Tenant & Data Subject Rights

As a Tenant or individual whose data is processed via the Platform, you have the following rights (subject to applicable law and identity verification):

  • Access: Request a copy of personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of personal data where it is no longer necessary for the purposes for which it was collected, subject to legal retention obligations.
  • Portability: Request an export of your Tenant Data in a machine-readable format (CSV/JSON).
  • Restriction: Request restriction of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests.

To exercise these rights, contact us at privacy@nodenest.co.ke. We will respond within 30 days.

8. Cookies & Session Tokens

We use the following cookies and storage mechanisms:

  • Session cookie (nodenest_session): httpOnly, Secure, SameSite=Strict. Contains a versioned session token. Required for authentication. Expires after 30 days of inactivity.
  • Tenant cookie (nodenest_tenant): httpOnly, Secure. Stores the Tenant identifier to allow multi-tenant routing. Required for the Service to function.
  • Service Worker cache: The PWA service worker caches static application assets (JavaScript, CSS, images) for offline functionality. No sensitive data or API responses are cached by the service worker.
  • IndexedDB (offline mode): Product catalogue, customer names, and draft transactions may be stored in the device's local IndexedDB to enable offline operation. PII fields are encrypted before storage.

We do not use third-party tracking cookies or advertising cookies. Strictly necessary cookies cannot be disabled as they are required for the Platform to function.

9. Children's Privacy

The Platform is intended for use by businesses and adults (18+). We do not knowingly collect personal data from children under 18. If you believe we have inadvertently collected such data, please contact us immediately and we will take steps to delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or in-app notification at least 14 days before they take effect. The “Last updated” date at the top of this page reflects when the policy was last revised. Your continued use of the Platform after changes take effect constitutes acceptance of the updated policy.

11. Contact

For privacy-related enquiries, data subject requests, or complaints, contact our Privacy team:

Node Nest Digital Limited — Privacy Team
NodePoint Platform
Kenya
Email: privacy@nodenest.co.ke

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.

Terms of Use →Back to Login →