Privacy Policy

Effective: Jan 01, 2019

What & Why: This policy describes how we collect, use, and handle your personal information when you use our websites, software, and services (“Services”). For more information and details, please see our Frequently Asked Questions page. We collect and use the following information to provide, improve, and protect our Services:

Account information: We collect, and associate with your account, the information you provide to us when you do things such as sign up for your account, upgrade or add engines, and set up two-factor authentication (like your name, email address, phone number, payment info, and physical address).

Your Content: Our Services are designed to make it simple for you to create and share BSI Inspections, content (written findings etc), photos, comments, messages, videos, AMM, and so on (“Your Content”), collaborate with others, and work across multiple devices. To make that possible, we store, process, and transmit Your Content as well as information related to it. This related information includes your profile information that makes it easier to collaborate and share Your Content with others, as well as things like the size of the file, the time it was uploaded, other users, and usage activity. Our Services provide you with different options for sharing Your Content mainly via link for them to log in or download of pdf copies of the report or download of Your Content.

Contacts: You may add additional users and contacts for them to access our services, if you do we will store this information and use it to provide our service. They can of course remove their information should they wish either by contacting you - and you are obliged to remove if they request within 14 days.

Usage information: We collect information related to how you use the Services, including actions you take in your account (like sharing, editing, viewing, and deleting files). We use this information to improve our Services, develop new services and features, and protect Instant BSI users. More information on how we use this information can be obtained by contact us.

Device information: We also collect information from and about the devices you use to access the Services. This includes things like IP addresses, the type of browser and device you use, the web page you visited before coming to our sites, and identifiers associated with your devices. Your devices (depending on their settings) may also transmit location information to the Services.

Cookies and other technologies: We use technologies like cookies and pixel tags to provide, improve, protect, and promote our Services. For example, cookies help us with things like remembering your username for your next visit, understanding how you are interacting with our Services, and improving them based on that information. You can set your browser to not accept cookies, but this may limit your ability to use the Services. Due to the nature of our services if you choose not to accept cookies we can offer no support on any issues you experience as we have built our Service to be the best possible service using available technology (including cookies)

Marketing: Users may from time to time receive marketing materials from ourselves in relation to new products or services within the Instant BSI family of software. If you do not want to receive marketing materials from us, simply click the ‘unsubscribe’ link in any email.

We sometimes contact people who do not have an Instant BSI account. For recipients in the EU, we or a third party will obtain consent before contacting you, as with marketing emails to customers you can unsubscribe at any time by clicking the relevant link in an email.

Bases for processing your data: We collect and use the personal data described above in order to provide you with the Services in a reliable and secure manner. We also collect and use personal data for our legitimate business needs. We use Microsoft Azure platform and your data is stored in their Cloud offering where necessary on servers around the globe to ensure fast and secure access to our Services.

Company Admins: If you are a user of our Services your administrator may have the ability to access and control your account. Please refer to your organisation’s internal policies if you have questions about this.

Law & Order and the Public Interest: We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to: (a) comply with any applicable law, regulation, legal process, or appropriate government request; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of Instant BSI or our users; (d) protect Nebula Innovations rights, property, safety, or interest; (e) perform a task carried out in the public interest.

User Controls: You can access, amend, download, and delete your personal information by logging into your Instant BSI account and going to your account settings page. We store data for 7 days after this request (in an offline mode) to prevent accidental deletions from affecting users. If you require the data to be removed immediately a request needs to be sent via our support system with authorisation from the overall company admin (with the exception of your user account which can be removed by sending an email from the associated email address to We will still maintain a copy of this request after information deletion in order to provide evidence of the request. This evidence is kept for 1 year. Any request for restoration will be accommodated where possible however the normal license charge will be applied where applicable for the duration of time the service was offline but not accessible.

Retention: When you sign up for an account with us, we’ll retain information you store on our Services for as long as your account is in existence or as long as we need it to provide you the Services. In addition to this information being stored on our live servers it will also be maintained in backup copies that we keep for data security purposes.

Where: Around the world. To provide you with the Services, we may store, process, and transmit information in Ireland and locations around the world—including those outside your country. Information may also be stored locally on the devices you use to access the Services.

EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield. Via Microsoft Azure information is transmitted from time to time across these boundries. You can also learn more about Privacy Shield at

Changes: If we are involved in a reorganisation, merger, acquisition, or sale of our assets, your information may be transferred as part of that deal. We will notify you (for example, via a message to the email address associated with your account) of any such deal and outline your choices in that event.

We may revise this Privacy Policy from time to time, and will post the most current version on our website. If a revision meaningfully changes your rights, we will notify you. For more information on your right to control and access your personal information, please see our FAQ.