Notice concerning the party responsible for this website

The party responsible for processing data on this website is:

• Next Level S.L.
• Carrer Llorenc Vicens 3 Planta 3
• 07002 Palma de Mallorca


• Telephone: +34 971298426
• Email: hello@next-level.com



Data Protection Officer (DPO):

• Name: Dimitrina Lisichkova
• Email: lisichkova@next-level.com

The Next Level Defend tool processes the following personal data:

• Cookie Data: Holds a unique user ID along with data when the user last visited the website and the source they originated from. Used for attribution and fraud protection.
• Click ID: A unique identifier assigned to each click made by a user on the website to track and analyze behavior and engagement.
• User Agent: A unique identifier associated with the user's browser, helping to track activities across different browsers.
• IP Address: Provides information about the user’s approximate geographical location and helps with security and fraud prevention.
• Order and/or Lead ID: Identifies specific orders or leads to link conversions to transactions or interactions.
• Net Amount of the Conversion: The monetary value of the completed conversion, used for analyzing financial performance.
• Coupon Code: Tracks usage and effectiveness of promotional campaigns.
• User Type: Identifies users as registered or guest, allowing segmentation and targeted strategies.
• Referrer URL: The URL of the website or page that referred the user, used for analyzing traffic sources.
• Location: Approximate location based on IP or other geolocation data, used for personalization and compliance.
• Operating System: Information about the user’s OS, helping optimize performance for different platforms.
• Browser Used: Information about the browser used for compatibility and optimal experience.

How does Next Level Defend use your Personal Data?

• Fraud Protection: Protects shop owners from fraudulent or irregular sales activity.
• Sales and Leads Tracking: Data like click ID and order/lead ID are used to track and analyze sales or leads.
• Performance Optimization: IP addresses, operating systems, and browsers are analyzed to enhance user experience.
• Reporting and Analytics: Data is used to generate reports, assess trends, and make data-driven decisions.
• Personalized Marketing: Tailored communications based on user preferences and behavior.

Newsletter and Email Marketing

• Subscriptions require double opt-in.
• Data is stored on MailChimp servers in the USA, safeguarded under EU-US Privacy Shield and Data Processing Agreement.
• Processing is based on your consent (Art. 6(1)(a) GDPR).
• You can unsubscribe at any time using the link in emails or by contacting hello@next-level.com.

Legal Basis for Processing

• Fraud Protection: Article 6(1)(f) GDPR – legitimate interest in preventing fraudulent activity.
• Sales and Leads Tracking: Article 6(1)(b) GDPR – processing necessary to fulfill a contract.
• Performance Optimization & Reporting: Article 6(1)(f) GDPR – legitimate interest in improving services.
• Personalized Marketing & Newsletter: Article 6(1)(a) GDPR – processing based on your consent.
• Essential Cookies: Article 6(1)(f) GDPR – necessary for website functionality.

How does Next Level Defend protect your Personal Data?

Next Level Defend implements the following security measures:

• Access Controls: Restrict access to authorized personnel.
• Encryption: Protects data during transmission and storage.
• Anonymization and Pseudonymization: Minimizes identification risks.
• Regular Security Assessments: Ensures system vulnerabilities are identified and addressed.
• Employee Training: Employees receive training on data protection and security.
• Data Minimization: Collects only necessary personal data.
• Incident Response: Procedures in place to handle data breaches.

No system can guarantee absolute security, but Next Level Defend strives to maintain industry standards.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.

How Next Level Defend uses Cookies?

Next Level Defend uses cookies for:

• Authentication: Secures access to your account.
• Preferences: Stores settings like language and display preferences.
• Analytics: Collects website interaction data to improve user experience.
• Third-party Cookies: Allows third-party services to place cookies for advertising or social media integration.

You can manage cookies via browser settings, but disabling them may affect your website experience.

Analytics and Marketing

We use the following services: Google Analytics, Hotjar, LinkedIn Ads, Google Ads, Leadinfo, Zoho CRM (PageSense, SalesIQ), Bing Ads, and Google reCAPTCHA.

• IP addresses are anonymized where possible.
• Processing is based on consent (Art. 6(1)(a) GDPR) for marketing/tracking and legitimate interest (Art. 6(1)(f) GDPR) for anonymized analytics.
• You can manage or withdraw your consent at any time via the Consent Management Platform or provider-specific opt-out links.

Your Right to Information, Amendment, or Deletion

You have the following rights regarding your personal data:

• Right to Information: Be informed about the processing of your data.
• Right to Amendment: Request corrections to inaccurate data.
• Right to Deletion: Request deletion of data when no longer needed.
• Right to Object: Object to certain types of data processing.
• Right to Data Portability: Receive a copy of your data or transfer it to another controller.

Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours as required by GDPR Articles 33–34. If the breach poses a high risk, affected individuals will also be informed without undue delay.

Data Retention

• Contact form data: retained until your request is fulfilled or for a maximum of 6 months.
• Newsletter subscription data: retained until you unsubscribe or withdraw your consent.
• Analytics data (Google Analytics, Hotjar): anonymized and retained for up to 14 months.
• User account data: retained while the account is active and deleted upon request or inactivity.
• Server log files: retained for security purposes for a maximum of 30 days.
• Order/Lead data: retained in accordance with statutory retention periods or until the contract is fulfilled.

International Personal Data Transfer

Next Level Defend may transfer personal data internationally with appropriate safeguards, such as:

• Adequacy Decisions: Transfers to countries with adequate protection.
• Standard Contractual Clauses: EU-approved clauses for protection in non-EEA countries.
• Binding Corporate Rules: Rules for transferring data within a multinational group.
• Consent or Performance of a Contract: Transfers based on user consent or contractual necessity.

Next Level Defend ensures that any international transfers of personal data comply with the applicable requirements of data protection laws, such as the General Data Protection Regulation (GDPR), and takes necessary steps to protect your personal data during such transfers.

It's important to note that you can obtain more specific information about the safeguards implemented by Next Level Defend for international data transfers by reviewing their privacy policy or contacting their Data Protection Officer.

For more information, contact: hello@next-level.com