NAVQ Privacy Policy
Effective Date: October 2025
Controller: Foreus AI Systems GmbH, Schönbrunnerstrasse 59–61/B01, 1050 Vienna, Austria
1. Information We Collect
1.1 Information Provided by Users
1.1.1 Registration Data
When a user creates an account on NAVQ, we collect personal identifiers such as name, email address, and a password. This data is required to authenticate the user, enable login, and ensure that accounts remain secure. All passwords are hashed and encrypted using industry-leading algorithms.
1.1.2 Profile Information
Users may voluntarily provide further profile information, such as their profession, interests, geographic location, or a profile image. This information helps personalise the user’s experience and allows others within the NAVQ Social Intelligence Media network to connect meaningfully. Such data remains entirely under the user’s control and can be edited or removed at any time.
1.1.3 Payment and Subscription Information
For subscription tiers (e.g., Tier 1–3), NAVQ collects billing addresses, payment credentials, and transaction histories. Raw payment data (such as credit card numbers) is never stored by NAVQ directly; instead, certified PCI-DSS compliant payment processors handle transactions. Subscription information is necessary to deliver different levels of access, including premium intelligence feeds and crisis navigation support.
1.2 Information Collected Automatically
1.2.1 Device and Log Data
Whenever NAVQ is accessed, technical data such as device model, operating system version, IP address, browser type, language settings, crash logs, and app usage statistics is automatically recorded. This data is essential for maintaining app performance, ensuring system stability, and resolving technical issues.
1.2.2 Usage Behaviour
NAVQ monitors how users interact with its functions – including how often security alerts are read, which procedures are accessed, and which interactive maps are viewed. This behavioural data helps improve the platform, prioritise development, and offer more relevant intelligence.
1.2.3 Location Data (if enabled)
If a user permits, NAVQ can collect approximate or precise geolocation data. This allows delivery of contextual intelligence such as nearby demonstrations, local crisis alerts, and country-specific travel restrictions. Location sharing remains optional and can be disabled at any time within the app settings.
1.3 Intelligence-Related Data
1.3.1 Open-Source Intelligence (OSINT)
NAVQ aggregates publicly available information from reputable sources such as international media outlets, official government reports, academic publications, and recognised open databases. These are used to provide situational awareness.
1.3.2 Analytical Intelligence (GEOINT, SOCMINT)
To enhance user experience, NAVQ processes geospatial data for terrain, city population dynamics, and social media intelligence (SOCMINT) from publicly visible channels. The data is processed into summaries and analyses, not raw feeds.
1.3.3 Operational Intelligence (“Boots on the Ground”)
Through the RocFortis Group, NAVQ integrates verified intelligence collected directly from crisis and conflict zones. Such data may stem from human intelligence (HUMINT), structured conversations, or in-field assessments. This intelligence is anonymised and synthesised before integration into NAVQ, ensuring that sensitive operations remain confidential.
2. How We Use Information
2.1 Provision of Services
2.1.1 Access to Security Features
Collected data allows NAVQ to provide real-time global alerts, risk assessments, leader profiles, and verified crisis procedures. Without user-provided and system-collected data, NAVQ could not reliably deliver these features.
2.1.2 Social Intelligence Media
User data supports community features, including creating, sharing, and commenting on posts within NAVQ. This facilitates exchange of crisis-related knowledge and helps build a global security-focused community.
2.1.3 Subscription Fulfilment
Payment and account data ensures that subscription services are correctly assigned, maintained, and billed. It also helps in providing support for renewals, cancellations, and upgrades.
2.2 Improvement and Security
2.2.1 Platform Optimisation
By analysing aggregated usage data, NAVQ can identify which features are most used and improve or expand them. This ensures efficient resource allocation in development.
2.2.2 Protection Against Misuse
NAVQ continuously monitors system integrity. Automated systems detect fraudulent accounts, suspicious behaviour, or bot activity. Human oversight ensures fairness in case of disputes.
2.2.3 Data Analytics for Strategic Development
Aggregated insights from user behaviour help NAVQ identify emerging risks, demand for new intelligence products, and regional usage trends. No personally identifiable information is used for these analyses.
2.3 Compliance and Safety
2.3.1 Legal Requirements
NAVQ complies with lawful data requests but limits disclosures to the minimum required under the respective jurisdiction.
2.3.2 Contractual Necessity
Data is processed as necessary to fulfil obligations arising from user agreements and subscription contracts.
2.3.3 Public Safety
In extreme circumstances, NAVQ may process or share data to prevent immediate threats to life, public safety, or severe harm, always in accordance with international law.
3. Data Sharing
3.1 With Service Providers
NAVQ engages trusted third parties for payment processing, hosting infrastructure, analytics, and technical support. These providers operate under strict contractual obligations to process data only as instructed and maintain equivalent security standards.
3.2 Within the RocFortis Group
Subsidiaries of the RocFortis Group may provide verified intelligence feeds to NAVQ. These companies are bound by group-wide compliance rules to maintain confidentiality and data protection.
3.3 Legal Obligations
When legally mandated, NAVQ may disclose certain information to authorities. However, NAVQ never discloses personal user profiles, including suspected or confirmed fake accounts, unless compelled by a legally binding order.
3.4 No Sale or Commercial Disclosure
NAVQ does not sell, trade, or monetise user data through external advertising networks. Data remains strictly within NAVQ’s operational ecosystem.
4. Data Retention
4.1 Account Data
Stored as long as the account remains active. Upon deletion request, data will be anonymised or removed unless legal retention requirements apply.
4.2 Subscription and Payment Data
Financial records are retained according to statutory accounting and tax regulations.
4.3 Content Data
User-generated posts, comments, and uploads are retained until deleted by the user or flagged for removal under NAVQ’s community guidelines.
4.4 Intelligence Data
Crisis and intelligence data is anonymised and retained for analytical purposes but is never tied to individual NAVQ accounts.
5. User Rights
5.1 General Rights
Users have the right to access, correct, delete, restrict processing, and export their data in machine-readable format.
5.2 Jurisdiction-Specific Rights
- EU (GDPR): Right to object to automated decision-making, profiling, and cross-border transfers.
- US (CCPA): Right to opt out of “sale” of data (NAVQ does not sell data).
- China (PIPL): Right to withdraw consent and demand immediate deletion.
5.3 Exercising Rights
All rights requests can be submitted via privacy@navq.app. NAVQ commits to responding within legal timeframes applicable in each jurisdiction.
6. Security Measures
NAVQ uses state-of-the-art measures, including encryption of communications, encryption of sensitive data at rest, multi-layered firewalls, intrusion detection, monitoring, strict access controls, and regular penetration tests by third-party security experts. No system is 100% secure; users acknowledge inherent risks of internet-based services.
7. International Transfers
NAVQ operates globally. Data may be processed and stored outside of the user’s home country. Safeguards include EU Standard Contractual Clauses (SCCs), compliance with CCPA in the US, compliance with PIPL in China, and additional safeguards as required in other jurisdictions.
8. Children’s Privacy
NAVQ is not directed at individuals under 16. NAVQ does not knowingly collect data from minors. If such data is identified, it will be deleted immediately.
9. Updates
NAVQ may amend this Privacy Policy. Updates will be communicated via email, in-app notifications, or website postings. Continued use of NAVQ after updates constitutes acceptance.
10. Contact
Data Controller:
Foreus AI Systems GmbH
Schönbrunnerstrasse 59–61/B01
1050 Vienna, Austria
privacy@navq.app