Legal · Privacy
Privacy Policy
NextThink (“NextThink”, “we”, “us” or “our”) respects your privacy and is committed to protecting personal data.
This Privacy Policy explains how we collect, use, store and protect information when operating our websites, LinkedIn company pages and internal social media management tools, including integrations with LinkedIn’s Community Management APIs.
This policy applies to the LinkedIn company pages and related marketing activities of NextThink, a software and applied artificial intelligence consultancy based in Madrid, Spain, and AluThink, a software product developed by NextThink for aluminium joinery companies.
Data controller: NextThink
Location: Madrid, Spain
Website: nextthink.es
Privacy contact: hello@nextthink.es
1. Scope of this policy
This policy applies to information processed through our corporate website, LinkedIn company pages, LinkedIn’s Community Management APIs, internal content management and analytics tools, direct communications, and early-access, contact or product-interest forms.
This policy does not govern LinkedIn’s own processing of personal data. LinkedIn operates under its own Privacy Policy and terms.
2. Information we may collect
LinkedIn page and content information
When permitted by LinkedIn and its APIs, we may process company page identifiers and public page information; posts published by our organization; comments, reactions, shares and other engagement signals; public profile information associated with an interaction when made available by LinkedIn; timestamps and content references; and enquiries intentionally sent to our organization.
Analytics information
We may collect aggregated or page-level information including impressions, reactions, comments, shares, engagement rates, follower growth, audience information, publication times, content formats and topic performance. Where possible, we use aggregated analytics rather than information that directly identifies an individual.
Information submitted directly to us
If you contact us or register an interest in AluThink, we may collect your name, business email address, telephone number if provided, company, job title, industry, message content, product requirements and early-access preferences.
Technical and operational information
Our systems may process limited technical data necessary to operate and secure the integration, such as API request timestamps, authentication status, application logs, errors, diagnostics and security events. We do not request or store users’ LinkedIn passwords through our Community Management integration.
3. How we use information
Managing our LinkedIn company pages
We may use LinkedIn’s Community Management APIs to create and manage posts for our own company pages, review and respond to comments, manage reactions associated with our organization, monitor engagement, maintain a consistent brand voice, coordinate NextThink and AluThink’s editorial activity, and identify conversations that require a response.
Measuring content performance
We may use page and post analytics to evaluate content, understand which subjects and formats generate relevant engagement, compare publication times, improve our editorial strategy, prepare internal reports and understand general audience growth.
Responding to enquiries
We may use information to answer questions, respond to commercial enquiries, provide information about NextThink’s services, manage interest in AluThink, administer early-access requests and arrange product demonstrations or business conversations.
Security and compliance
We may process technical information to protect accounts and systems, prevent unauthorized use, investigate errors or security incidents, maintain audit records and comply with applicable law.
4. Legal bases for processing
Where the General Data Protection Regulation (“GDPR”) applies, we rely on one or more of the following legal bases:
- Legitimate interests, including managing company pages, communicating with a professional audience, measuring content effectiveness, developing our services and protecting our systems.
- Consent, when you voluntarily join a waiting list, subscribe to marketing communications or consent is otherwise required by law.
- Pre-contractual measures and contract performance, when responding to a service request, preparing a proposal, arranging a product trial or performing an agreement.
- Legal obligations, when processing or retention is required by applicable law or a lawful request.
5. Human review and automation
NextThink may use internal software and artificial intelligence tools to assist with monitoring publicly available professional conversations, classifying engagement, summarizing analytics, identifying relevant topics, preparing draft posts and responses, and recommending adjustments to our editorial calendar.
These tools support our marketing team and are not intended to make legal, employment, credit or similarly significant decisions about individuals.
7. International data transfers
Some technology providers may process information outside the European Economic Area. Where personal data is transferred internationally, we use safeguards required by applicable data protection law, which may include adequacy decisions, Standard Contractual Clauses and additional contractual, technical and organizational measures.
8. Data retention
We retain information only for as long as necessary for the purposes described in this policy:
- LinkedIn content and engagement information: for as long as needed to manage the relevant page or conversation.
- Page and post analytics: up to 24 months, unless retained in aggregated or anonymized form.
- Technical and security logs: generally up to 12 months.
- Commercial enquiries: for the business relationship and any applicable statutory limitation period.
- Early-access information: until the process ends, consent is withdrawn or the information is no longer required.
- Marketing preferences: until you unsubscribe or withdraw consent.
Information may be retained for longer where required by law, necessary to resolve a dispute or needed to protect our legal rights.
9. Data security
We use appropriate technical and organizational measures designed to protect information against unauthorized access, accidental loss, disclosure, alteration, destruction and misuse. These measures may include access controls, account-level authorization, encryption where appropriate, audit logging and limiting access to authorized personnel.
No online system can be guaranteed to be completely secure. We review and improve our safeguards as our systems evolve.
10. Your data protection rights
Depending on applicable law, you may have the right to request access, correction or deletion; restrict or object to processing; withdraw consent; request portability where applicable; and lodge a complaint with a data protection authority.
To exercise these rights, email hello@nextthink.es. We may need to verify your identity before completing a request.
If you are located in Spain, you may also contact the Agencia Española de Protección de Datos.
11. Deleting data associated with LinkedIn
You may request deletion of personal data obtained through interactions with our LinkedIn company pages by contacting hello@nextthink.es. Include enough information to identify the relevant interaction, such as your name or LinkedIn profile URL, the relevant page, the post or comment and the approximate date.
After verification, we will delete or anonymize eligible information from systems under our control within a reasonable period, subject to legal retention requirements. Removing information from our systems may not delete the original information from LinkedIn. Requests concerning data held directly by LinkedIn should be submitted to LinkedIn.
12. Children’s privacy
Our services and LinkedIn company pages are intended for businesses and professionals. They are not directed at children, and we do not knowingly collect children’s personal data through this integration.
13. Third-party links
Our posts, pages or website may contain links to third-party websites. We are not responsible for their privacy practices, security or content. We recommend reviewing each external service’s privacy policy before providing personal information.
14. Changes to this policy
We may update this policy to reflect changes in our services, our use of LinkedIn APIs, legal requirements or our security and data-processing practices. The latest version will be published here with an updated revision date.