Nul Global Technologies - Privacy Policy
Last updated December 1, 2025
This Privacy Notice for Nul Global Technologies Pte. Ltd (doing business as “Nūl”, “we”, “us”, or “our”) describes how and why we may access, collect, store, use, and/or share (“process”) your personal information when you use our services (“Services”), including when you:
Visit our website at nul.global or any website of ours that links to this Privacy Notice
Use our software-as-a-service inventory planning and analytics platform
Engage with us in other related ways, including sales, onboarding, customer success, support, or events
Questions or concerns?
Reading this Privacy Notice will help you understand your privacy rights and choices. Under our Terms of Service, you (our customer) are generally the data controller, and Nūl acts as a data processor for Customer Data we handle on your behalf.
If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at malini@nul.global.
Summary of Key Points
This summary provides key points from our Privacy Notice, but you can find more details in the full sections below.
What personal information do we process?
When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. This generally includes contact details, login details, usage data, and information from the ecommerce or POS systems you connect to Nūl.
Do we process any sensitive personal information?
We do not intentionally collect sensitive categories of data. However, given the free-text nature of some ERP and POS fields, it is possible for such data to be ingested if you enter it. You agree not to input sensitive health, biometric, or religious data into open-text fields within the Nūl platform. We reserve the right to delete such data if discovered.
Do we collect any information from third parties?
Yes. When you connect third-party tools (for example, Shopify, POS, ERP, marketing platforms), we receive relevant store, product, inventory, order, and marketing data from those systems to provide our Services.
How do we process your information?
We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.
What legal bases do we rely on?
Under our Terms of Service and Singapore’s Personal Data Protection Act (PDPA), we process personal data as a data processor on your behalf, and as an independent data controller for certain account, billing, and security data. We only process your personal information when we have a valid legal reason to do so.
In what situations and with which parties do we share personal information?
We share information only with trusted service providers and sub-processors (such as infrastructure, analytics, authentication, and communication tools) that help us deliver the Services, and only under contract.
How do we keep your information safe?
We have appropriate organisational, technical, and administrative safeguards in place to protect Customer Data and personal information. We commit not to materially diminish our security controls during your subscription term.
What are your rights?
Depending on where you are located, you may have rights to access, correct, or delete your personal information, restrict or object to processing, and lodge complaints with regulators. As the data controller, you are responsible for handling data subject requests from your users; we assist you as your processor.
How do you exercise your rights?
You can exercise your rights (or get help fulfilling them as our customer) by contacting us at malini@nul.global. We will consider and act upon any request in accordance with applicable data protection laws.
What information do we collect?
1.1 Personal information you disclose to us
In Short: We collect personal information that you provide to us, and that your organisation connects to Nūl.
We collect personal information that you voluntarily provide when you:
Register an account or are added as an Authorised User
Connect ecommerce, POS, ERP, or marketing systems to Nūl
Use our dashboards, analytics, and forecasting tools
Communicate with us (support, sales, onboarding, surveys, or events)
1.2 Personal information provided by you or your organisation
The personal information we collect depends on the context of your interactions, the choices you make, and the products and features you use. This may include:
Identity and contact data – names, email addresses, job titles, contact preferences
Account data – usernames, passwords, authentication data
Profile data – preferences, feedback, survey responses, usage settings
Billing data – billing contact information, tax details, invoice details
Payment data – where applicable, payment details processed via secure third-party providers
All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes.
1.3 Information we receive from connected systems
In Short: When you connect third-party systems, we ingest operational data to power inventory and planning features.
If you connect third-party platforms (for example, Shopify, POS, ERP, marketing tools), we may process:
Product catalog, SKUs, variants, and attributes
Inventory levels, stock movements, and per-location stock data
Orders, returns, and fulfilment data
Store, channel, and location metadata
Marketing performance data where relevant
This is “Customer Data” under the Terms of Service, and you retain ownership of it. We process it solely to provide the Services to you.
1.4 Information automatically collected
In Short: Some information, such as IP address and browser/device characteristics, is collected automatically when you use the Services.
We automatically collect certain information when you visit, use, or navigate the Services. This may include:
IP address and approximate location (for example, country, time zone)
Browser type and version, device type, operating system
Log and usage data (pages viewed, features used, time stamps, events, error logs)
Authentication events and access logs
We may use cookies and similar tracking technologies to collect some of this information. See Section 5 for more.
1.5 Sensitive information
We do not intentionally collect or request sensitive personal information (such as race, religion, health data, or biometric identifiers). We ask customers not to enter such information into Nūl.
How do we process your information?
In Short: We process your information to provide, improve, secure, and support the Services, and to comply with law.
We process personal information for a variety of reasons, depending on how you interact with our Services, including:
To provide and operate the Services
Deliver core platform features (dashboards, forecasting, replenishment, materials/BOM management)
Manage user authentication, access control, and permissions
To provide customer support
Respond to inquiries, troubleshoot issues, and provide onboarding and training
To improve and develop the platform and AI models
Analyze usage data to understand feature performance
Process and aggregate inventory and sales trends into De-identified Aggregated Data. We use this datasets to train our machine learning algorithms, improve forecasting accuracy, and generate industry benchmarks. This aggregated data cannot reasonably be used to identify you or your end customers and is no longer considered Personal Information.
To maintain security and prevent misuse
Detect and prevent fraud, abuse, and security incidents
Monitor for unusual spikes in usage that could indicate misuse
To manage subscriptions, billing, and invoicing
Issue invoices, manage payments, and handle account-related communications
To comply with legal obligations
Respond to lawful requests from competent authorities
Maintain records required by law
We may process your personal information for additional purposes, but only if compatible with the purposes listed above, or with your consent.
What legal bases do we rely on to process your personal information?
In Short: We process your information under Singapore PDPA and, where applicable, international data protection laws.
3.1 Compliance with Data Protection Laws (PDPA, GDPR, CCPA)
Nūl complies with the Singapore Personal Data Protection Act (PDPA). Recognizing the global nature of our customers, we also align our processing activities with the principles of the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
Under our Terms of Service:
You (the Customer) are the data controller of Customer Data.
Nūl is the data processor of Customer Data, processing it only on documented instructions from you and for the purposes of providing the Services.
3.2 Where Nūl is a data controller
For data where Nūl is an independent data controller (for example, our own account, billing, security and platform logs), we rely on:
Performance of a contract – to deliver the Services you subscribe to.
Compliance with legal obligations – to meet regulatory, tax, and accounting requirements.
Legitimate interests – to secure, monitor, and improve the platform and to manage our relationship with you, provided these interests are not overridden by your rights.
Consent – for certain optional communications or surveys, where required.
When and with whom do we share your personal information?
In Short: We share information only where necessary to provide the Services, under contract, and with appropriate safeguards.
We may share personal information in the following situations:
Service providers / sub-processors
We use trusted third parties to host infrastructure and support our services. (e.g., AWS, and Google Cloud Platform) — These providers process production data.Business transfers
We may share or transfer information in connection with a merger, sale of company assets, financing, or acquisition of all or part of our business.Legal and compliance
We may disclose information to comply with applicable law, legal processes, or governmental requests, or to protect rights, property, and safety.
We do not sell Customer Data or personal information to third parties.
Do we use cookies and other tracking technologies?
In Short: Yes, we use cookies and similar technologies to operate and improve the Services.
We may use cookies, log files, and similar tracking technologies to:
Keep you signed in
Remember your preferences
Secure your session and detect fraud
Understand how our dashboards and features are used
Improve performance and user experience
You can adjust cookie settings through your browser. Disabling cookies may affect some features of the Services.
How do we handle your social logins?
In Short: If social login is offered and you use it, we may receive certain profile information from that provider.
If we provide the option to register or log in using a third-party identity provider (for example, via Auth0 with a Google or other identity provider), we may receive information such as your:
Name
Email address
Profile picture
Other information you permit the provider to share
We use this information only for:
Authentication and account management
Security and fraud prevention
Improving the user experience
We do not control how third-party identity providers handle your data. Please refer to their privacy notices for more information.
Is your information transferred internationally?
In Short: Yes, your information may be processed in countries other than where you are located.
Our infrastructure and our sub-processors may be located in multiple jurisdictions. This means your information may be transferred to, stored in, or processed in countries that may have different data protection laws than your own.
Where such transfers occur, we take steps to ensure appropriate safeguards are in place, consistent with PDPA and, where applicable, other data protection laws.
How long do we keep your information?
In Short: We keep your information for as long as needed to provide the Services, then securely delete or anonymise it.
We retain personal information for as long as:
You or your organisation maintain an active subscription or account; and
Necessary to fulfil the purposes described in this Privacy Notice or required by law.
Under our Terms of Service:
Customer Data stored on the platform will be deleted within 60 days after the end of your Subscription Term, unless a longer retention period is required by law.
You are responsible for exporting any Customer Data you wish to retain before your subscription ends. Nūl has no obligation to keep or restore Customer Data beyond the stated retention period.
How do we keep your information safe?
In Short: We aim to protect your personal information through a system of organisational and technical security measures.
We have implemented appropriate administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of Customer Data and personal information, including:
Access controls and authentication measures
Secure infrastructure hosting and network protections
Measures designed to prevent unauthorised access, alteration, or disclosure of data
We commit in our Terms that we will not materially diminish our security controls for Customer Data during your subscription term.
However, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. While we do our best to protect your information, we cannot guarantee absolute security.
Do we collect information from minors?
In Short: Our Services are not intended for children.
Nūl is a business-to-business platform intended for use by companies and adult professionals. We do not knowingly collect personal data from children.
If we learn that data has been collected from a minor contrary to this intent, we will take reasonable steps to delete such data.
What are your privacy rights?
In Short: Depending on your location, you may have rights to access, correct, delete, or restrict the use of your personal information.
In many jurisdictions, including under Singapore’s PDPA and other data protection laws, individuals may have rights such as:
Right of access – to know whether we process your personal data and obtain access to it.
Right to correction – to request correction of inaccurate personal data.
Right to deletion (erasure) – to request deletion of personal data under certain circumstances.
Right to restriction or objection – to restrict or object to certain processing activities.
Right to data portability – where applicable, to receive a copy of certain data in a structured, commonly used format.
Because Nūl acts primarily as a data processor for Customer Data, if you are an end-user of a Nūl customer (for example, an employee of a brand or retailer that uses Nūl), your rights should usually be exercised with that customer, who is the data controller. Nūl will assist our customers as required by our Terms and by law.
If you are a direct contact of Nūl (for example, you interact directly with us as a customer representative or prospect) and wish to exercise your rights, you can contact us at malini@nul.global.
You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been infringed.
Controls for do-now-track features
Most web browsers and some mobile operating systems include a Do-Not-Track (“DNT”) setting you can activate to signal your preference not to have your online browsing activities monitored.
At this time, no uniform technology standard for recognising and implementing DNT signals has been finalised. Accordingly, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If such a standard is adopted in the future, we will update this Privacy Notice accordingly.
Do United States residents have specific privacy rights?
In Short: If you are a US resident, you may have additional rights under state privacy laws.
Some US state laws may grant residents specific rights regarding their personal information, such as:
Right to know whether personal data is being processed
Right to access your personal data
Right to correct inaccurate personal data
Right to request deletion of personal data
Right to obtain a copy of personal data you previously provided
Right to non-discrimination for exercising privacy rights
If you are a US resident and wish to exercise such rights in relation to Nūl, you can contact us at malini@nul.global. We will assess your request in line with applicable law and our role as controller or processor.
Do we make updates to this notice?
In short: Yes, we will update this notice as necessary to remain compliant with relevant laws and our Terms of Service.
We may update this Privacy Notice from time to time. The updated version will be indicated by an updated “Last updated” date at the top of this notice.
For material changes, we may notify you through the Services or by direct communication, where appropriate.
We encourage you to review this Privacy Notice regularly to stay informed about how we protect your information.
How can you contact us about this notice?
If you have questions or comments about this notice or our data practices, you may contact us at:
Email: malini@nul.global
If you are an end user of a Nūl customer, please contact that customer (your employer or the brand/retailer you purchased from) first, as they are the data controller for your data in most cases.
How can you review, update, or delete the data we collect from you?
If you are:
A Nūl customer or direct contact: You may request access to, correction of, or deletion of your personal information by emailing malini@nul.global.
An end user of a Nūl customer (for example, an employee of a brand): Please direct your request to the organisation that uses Nūl. We will assist them in responding, in accordance with our Terms of Service and applicable laws.
We will consider and act upon any request in accordance with applicable data protection laws and our contractual obligations.