Hyloq, LLC ("Hyloq", "we", "our", or "us") is committed to protecting our customers' data. This Product Data Protection Notice applies to technology platforms owned by Hyloq and explains how we collect, use, and protect Personal Data.

By using our technology platform(s), you accept the practices described in this notice. We may make changes to this notice at our sole discretion; continued use of our services constitutes acceptance of those changes.

Last Updated: March 2026

1. Definitions

• Customer: The individual or legal entity contracting for services from us ("you" or "your").

• Controller: The entity that determines the purposes and means of processing personal data (typically our Customers).

• Processor: Hyloq acting in a role where we deal with your personal data on behalf of your organization.

• Personal Data: Any personally identifiable information such as name, address, date of birth, phone number, and email address.

• Sensitive Data: Includes precise geolocation, biometric data, personal health information, or data revealing racial/ethnic origin or religious beliefs.

2. Scope and Role

This notice applies only to the extent we process Personal Data in the role of a Processor on your behalf. If you have executed a separate Data Protection Agreement (DPA) with Hyloq, the terms of that agreement will supersede this notice.

3. Data Collection

We collect the minimum information necessary to provide our products and services:

• Business Contact Information: First name, last name, employer, title, city, state, country, phone number, IP address, and business email addresses.

• Automatically Collected Information: Information collected via cookies and web beacons, including IP address, Advertiser ID, browser name, operating system details, and pages viewed.

• Targeted Advertising Data: We process data to facilitate advertising across affiliated and non-affiliated sites. This includes data obtained from a consumer's activities over time to predict preferences or interests for the purpose of delivering targeted advertisements.

4. Artificial Intelligence (AI) & Transparency

In compliance with 2026 transparency standards, we disclose the following:

• Interactive AI: Any chatbots or automated support interfaces on our platforms are powered by AI. Users interacting with these tools are interacting with a machine, not a human representative.

• Generative AI: We may utilize generative AI tools to assist in the creation of marketing assets or platform features.

• AI Training: We do not use non-anonymized proprietary customer data to train third-party AI models without explicit authorization.

5. Sensitive Information & Minor Protections

• Prohibited Data: Our services do not require, nor shall we request, Protected Health Information (PHI) governed by HIPAA, or financial information governed by GLBA/PCI DSS. Preventing the disclosure of such information to us is solely your responsibility.

• Precise Geolocation: We may process precise geolocation data for localized marketing and platform functionality. Such processing requires affirmative "opt-in" consent from the consumer at the point of collection.

• Minors: Our platforms are not intended for persons under the age of 18. We do not knowingly gather Personal Data from individuals under 18 for targeted advertising or precise geolocation.

6. Cookies and Tracking Technologies

We use industry-standard tools to collect usage data.

• Session-based cookies: Used to determine platform duration; expire upon logout.

• Support cookies: Track onboarding and metadata to improve service.

• Location-enabled cookies: Track location at the time of product use to facilitate location-based services.

7. How We Use and Share Data

We process Personal Data solely for legal purposes: fulfilling contracts, providing support, improving product experience, and security/compliance.

• Third-Party Processors: We use specialized businesses (such as Amazon Web Services) to perform services. They are contractually prohibited from using Personal Data outside the scope of our contract.

• No Sale of Data: Hyloq will never sell your Personal Data.

• Legal Disclosures: We reserve the right to disclose data when required by law or to protect against potential fraud.

8. Your Rights and Consumer Requests

Subject to local laws (including the Florida Digital Bill of Rights and the EEA), users have the right to submit requests regarding their data. These rights include:

• Access and Confirm: Verify if data is being processed and see the records.

• Correct and Delete: Amend inaccuracies or request permanent deletion.

• Opt-Out: Consumers may exercise their right to opt-out of targeted advertising, profiling, or the collection of sensitive data by contacting us directly.

• Appeal: Request a review of any denied data request.

9. Data Security and Retention

We use industry-standard security measures, including encryption and physical security, to prevent unauthorized access. We retain Personal Data only for the period necessary to fulfill the purposes outlined in this notice. While we strive to use commercially acceptable means to protect your data, no method of electronic storage is 100% secure.

10. Contacting Us

To exercise your rights or if you have questions regarding our data practices, please contact us at the email address below. Requests will be processed in accordance with the 45-day response window required by applicable law.

Hyloq, LLC

1659 Achieva Way, Suite 146 Dunedin, FL 34698 USA

Attn: Privacy Officer