Skip to main content

Data and Privacy

You have full control over the data you send to Nudge. Here, we share best practices for tracking in a privacy-friendly way.

Security Overview

Our data collection endpoints use TLS 1.3 encryption protocols, secured with SHA-384 and ECDSA signature algorithms. This ensures that all devices, regardless of their support level, can access our endpoints securely, with TLS 1.3 provided to devices that support it.

  • We use encryption at rest for customer data.
  • We have data replicated across 3 nodes for redundancy and faster access.
  • All data stays within India in ap-south-1 region.

To enhance the security of our application, we have implemented the following measures:

  • SQL Injection Prevention: Advanced safeguards to protect against SQL injection attacks.
  • Input Validation: We defend against known bad inputs and block malicious requests.
  • IP Address Monitoring: We block requests from compromised or suspicious IP addresses.
  • Linux Environment Protections: We have specific safeguards in place to secure our infrastructure from threats targeting Linux environments.
  • Rate Limiting: We limit the number of requests from a single IP address to prevent denial-of-service (DoS) attacks. Each IP is restricted to a maximum of 2000 requests within a five-minute period.

These measures work together to provide strong protection for our application and data, keeping them secure from a wide range of threats.

Hosting and Data Compliance

Nudge leverages industry-leading platforms to ensure the security and scalability of our data infrastructure:

  • Amazon Web Services (AWS): AWS is our primary hosting provider, offering data centers that are fully compliant with a wide range of certifications, including those required for finance, healthcare, and government data. AWS manages physical security, allowing us to focus on application and data security. You can find more information about AWS compliance here.

  • Scylla: We use Scylla for high-performance, scalable data storage. Scylla’s architecture is designed for maximum efficiency and reliability, ensuring that our data operations meet rigorous standards. Scylla is compliant with industry standards, providing a robust foundation for secure data handling. You can find more information about Scylla's compliance here

  • ClickHouse: For data analytics, we rely on ClickHouse, a fast open-source columnar database management system. ClickHouse is optimized for real-time queries, enabling us to provide detailed insights while adhering to stringent compliance requirements. Learn more about ClickHouse's compliance here.

These platforms are chosen for their security, performance, and compliance, ensuring that your data is handled with the utmost care.

User Data

Nudge does not require any personally identifiable information (PII) such as email addresses or phone numbers. Instead, Nudge only needs a unique user ID to link events to a specific user. You have the flexibility to choose this ID and determine how it is sent to Nudge.

If you prefer not to use any personalization or targeting features within Nudge, you can simply send a unique identifier for your users without including any additional personal data.

Other Data Categories

The Nudge SDK collects certain data by default to enhance the user experience. This data is not personal and is unrelated to your application’s content.

  • Device Info: Brand, model, device ID
  • Screen Info: Screen size, device type, screen orientation
  • App Info: App version
  • System Info: OS type and version, language
note

Screen information is crucial for scaling the UI across different mobile screens. Without this data, the UI will not be responsive.

Why We Track This Data

  • Audience Filtering and Targeting: To personalize user experiences in the Nudge dashboard.
  • Analytics: To provide detailed insights into user behavior and app performance.

Opting Out

If you prefer not to send any of this data to Nudge, you can opt out. You can reach out to your POC at Nudge, and we will guide you through the process.