Privacy Policy

NEXUS GLOBAL FINANCIAL SERVICES LIMITED

PRIVACY POLICY

nexusgfs.com

Effective Date: 24 March 2026

Last Updated: 24 March 2026

Nexus Global Financial Services Limited (“Nexus GFS”) is committed to safeguarding the privacy of your personal data. We understand that the protection of your personal data is an essential requirement for you and that you expect us to handle your personal data according to high standards of privacy and security. This Privacy Policy aims to explain in a simple and transparent way what personal data we gather about you and how we process it.

What is personal data?

Personal data means any information which identifies an individual person or from which an individual person is identifiable.

What is a data subject, a data processor and a data controller?

A data subject means an identified or identifiable individual person; in particular by reference to an identifier such as a name or an identification number.

A data controller determines the purposes and means of the processing of personal data and has decision-making power in respect of the processing.

A data processor is responsible for processing personal data on behalf of a data controller.

In all cases, Nexus GFS acts as the data controller and data processor of personal data collected through nexusgfs.com.

What personal data do we collect about you?

Personal data that is typically collected and used by us includes but is not limited to the following:

  • Your contact details, such as your name, your address(es), your telephone number(s) and email address(es);
  • Enquiry information submitted through our website contact form, including the nature of your request and any details you voluntarily provide;
  • Business information, such as your company name, job title, business email and the services you are enquiring about;
  • Personal data collected through cookies when you visit our website (please refer to our Use of Cookies section below).

Why do we collect and process your personal data?

We will only collect and use your personal data where we have lawful grounds and legitimate business reasons to do so. We collect and process your personal data to:

  • Respond to enquiries submitted through our website contact form;
  • Send you information about our services and promotions where you have provided your express consent to receive such communications;
  • Ensure compliance with our regulatory obligations under applicable anti-money laundering legislation and other applicable laws and regulations in Mauritius.

Who do we share your personal data with?

Personal data you provide to us may be shared with one or more of the following organisations or persons:

  • Banking, regulatory, taxation, governmental, or other investigatory authorities, a court or other authority of competent jurisdiction;
  • Any parties that we work with to provide you with our services and to support our business operations;
  • Any other party with whom you have consented that we may share your personal data.

How do we collect your personal data?

Most of your personal data is collected at the time you submit an enquiry through our website contact form or at the time we on-board you as a client. It may also be collected when there are changes to your personal data and our records need to be updated.

We will mostly collect your personal data directly from you. In certain instances, and where required, we may collect information from third parties such as regulatory authorities or professional advisers acting on your behalf.

Your personal data for marketing and communication purposes

We may from time to time use your personal data to send you information about our services and articles which we believe may be of interest to you. We will ask for your express consent for a subscription to our newsletter before contacting you for marketing purposes.

If we do not have your consent, or if you subsequently withdraw your consent or unsubscribe from our newsletter, we will not send you any marketing correspondence. You may update your preferences at any time by contacting us.

For how long do we store your personal data?

We will only hold your personal data for as long as is necessary for the purposes for which it was obtained. However, if we are obliged pursuant to our regulatory or statutory requirements to retain your personal data for a specified period of time, then we will retain your personal data for that minimum specified period.

Automated decision making and profiling

We do not currently use any system pursuant to which your personal data is subjected to automated decision making or profiling. Should this change in the future, we will update this Privacy Policy accordingly.

Use of Cookies

Our website uses cookies to help us understand how visitors interact with the site and to improve your browsing experience. A cookie is a small text file placed on your device when you visit a website.

We use the following types of cookies:

  • Strictly Necessary Cookies — These cookies are essential for the website to function properly and cannot be disabled.
  • Analytics Cookies — We use Google Analytics to collect anonymised information about how visitors use our website, such as pages visited and time spent on the site. This helps us improve our website. Google Analytics data is aggregated and does not identify you personally.
  • Social Media Cookies — Our website includes social media plugins which may set cookies to enable sharing functionality and to track interactions with social media platforms such as LinkedIn, Facebook, and Twitter/X. Nexus GFS has no control or liability over these third-party cookies. You should check the relevant third party’s cookie policy for more information.

You can control and manage cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our website. For more information on managing cookies, please refer to your browser’s help documentation.

Transfer of personal data outside Mauritius

Your personal data may be transferred to and stored in locations outside Mauritius. However, any such transfer does not affect our commitment to safeguarding the privacy of your personal data, and we will ensure that any such transfer is lawful and subject to appropriate protections.

Your rights

As a data subject, you have a number of rights under applicable data protection laws in respect of your personal data, which include but are not limited to the following:

  • Right of access – the right to obtain confirmation of whether we process your personal data and to receive a copy of the personal data we hold about you;
  • Right to rectification – the right to request that we correct any inaccurate or incomplete personal data we hold about you;
  • Right to erasure – the right to request that we delete your personal data where there is no compelling reason for its continued processing;
  • Right to data portability – the right to receive your personal data in a structured, commonly used format;
  • Right to restrict processing – the right to request that we limit the way we use your personal data;
  • Right to object – the right to object to the processing of your personal data, including for direct marketing purposes;
  • Right not to be subject to automated decision-making — the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or significantly affects you.

Please note that the withdrawal of your consent may affect our ability to provide certain services to you. Notwithstanding the withdrawal of your consent, we may still continue to process your personal data where we are obliged to do so pursuant to our regulatory or statutory requirements.

Data Protection Act 2017 and the impact of GDPR in Mauritius

The Data Protection Act 2017 (DPA) has replaced the Data Protection Act 2004. This legislation was enacted with the following aims:

  • To strengthen the control and personal autonomy of data subjects over their personal data, in line with international standards including the EU’s General Data Protection Regulation (GDPR) 2016/679;
  • To simplify the regulatory environment for business in Mauritius’s digital economy;
  • To promote the safe transfer of personal data to and from foreign jurisdictions.

Disclaimer

Nothing in this document shall be construed as any representation, warranty, or undertaking on the part of Nexus GFS or any of its officers, employees, directors, agents, or affiliates. We do not accept responsibility or liability as to the accuracy or completeness of the information set out in this document.

You are advised to rely on your own independent appraisal of the information provided, and we advise you to obtain legal advice if you have any concerns regarding your data protection rights.

Queries and Complaints

If you have any queries or complaints in respect of your personal data, or if you wish to exercise any of your rights set out above, please contact our Data Protection representative.

E: info@nexusgfs.com

Lot 02, Floor 1 CentrePoint, Trianon, Mauritius

T: +230 468 7800