Nolimit Management ("Nolimit", "we", "us") operates the Nolimit Ads Management platform, the Nolimit Connection extension and related products and services.

This policy describes how Nolimit collects, uses, stores, shares and protects users' personal data, in line with the laws of Vietnam on personal data protection.

This policy applies to users who access the website, register an account, use the Nolimit Ads Management platform, the Nolimit Connection extension and other Nolimit services.

By registering, connecting the extension, enabling sync or continuing to use the service, the user is deemed to have read, understood and agreed to this policy.

Nolimit may collect the following categories of information:

• Account information: full name, phone number, email, workspace name, role, permissions and account identifiers.
• Technical information: IP address, device, operating system, browser, access timestamps, login history, cookies, session identifiers and other data used for system security.
• Service usage information: action history, workspace configuration, connection status, activity logs, risk signals and other data generated when using features.
• Synced data: cookies, session tokens, configuration or other technical data, all in encrypted form, when the user explicitly turns on the sync feature.
• Support information: messages, support requests, feedback, documents, images or files the user sends to Nolimit.

Nolimit processes personal data to:

• Create, authenticate and manage accounts;
• Provide, maintain, operate and improve the service;
• Manage workspaces, connect the extension and synchronize data at the user's request;
• Handle customer support and resolve technical issues;
• Secure the system, detect fraud, unusual access or violations;
• Analyze, research and improve the product;
• Send technical, operational or policy-change notifications;
• Comply with legal obligations and protect the legitimate rights and interests of Nolimit, users and related parties.

Nolimit does not use personal data for unlawful purposes or beyond the scope notified, unless the user gives consent or the law permits.

The user has the right to give consent, withdraw consent, access, correct, request a copy of, delete, restrict or object to the processing of personal data, in accordance with applicable law.

Withdrawing consent or requesting deletion may affect the user's ability to use some features, products or services of Nolimit.

Requests related to personal data should be sent to: privacy@nolimit.dev.

The user can edit some account information directly on the platform.

Requests to change the registered email, phone number, delete the account or delete all workspace data require the user to submit a request to Nolimit and complete identity verification.

Nolimit may continue to retain some data when necessary to comply with applicable law, handle disputes, prevent fraud, ensure system safety or protect the legitimate interests of any party.

Nolimit applies appropriate technical and organizational measures to protect personal data, including access control, role-based permissions, encryption, audit logging, risk monitoring, backups and system protection.

Data is retained while the user maintains the account, or for the period necessary to provide the service, handle disputes, ensure system safety and comply with legal obligations.

When no longer necessary, the data is deleted, anonymized or kept under restricted access, in accordance with applicable law and Nolimit's internal policy.

When the user turns on the sync feature, certain technical data may be encrypted and stored on Nolimit's systems to enable synchronization between devices or environments.

This data is encrypted using a password the user defines. Nolimit does not store the encryption password and cannot read, decrypt or recover the data if the user forgets or loses the password.

The user can turn the sync feature off or delete the synced data through the controls provided in the product.

Nolimit does not sell users' personal data.

Nolimit shares data only to the extent necessary with infrastructure providers, cloud storage, security, operational support, customer support, technical partners, designated data processors, or with competent public authorities upon a lawful request.

Recipients must comply with confidentiality obligations and process the data only for the agreed purposes.

Personal data may be stored, backed up or processed on servers located in Vietnam or abroad.

If a cross-border transfer of personal data takes place, Nolimit will carry out the obligations required by the laws of Vietnam.

Nolimit may use cookies or similar technologies to maintain login sessions, remember preferences, secure accounts, analyze performance, improve the user experience and detect risk.

The user can adjust cookie settings in the browser, but disabling cookies may affect some service features.

Upon detecting a personal-data incident that may affect users, Nolimit will take the necessary measures to contain, remediate and limit the damage.

Where required by law, Nolimit will notify the competent authority, affected users or related parties within the timelines and procedures prescribed.

The user is responsible for providing accurate information; for safeguarding the account, password, device, encryption password and authentication information; for not sharing the account, tokens or cookies with unauthorized parties; for not using the service for unlawful purposes or to compromise system safety; and for promptly notifying Nolimit upon detecting any security risk.

Nolimit may update this policy from time to time to reflect changes in its products, services, technical requirements or applicable law.

When a material change is made, Nolimit will notify users via the website, the platform, email or another suitable channel.

All questions, requests or complaints related to personal data and this Privacy Policy should be sent to:

Nolimit Management

Email: privacy@nolimit.dev