Privacy Policy

We may collect personal information that you voluntarily provide when contacting us, signing up for our newsletter, or engaging with our services. This may include:

• •Name and contact information (email address, phone number)
• •Business information (company name, job title)
• •Communications and correspondence with us
• •Technical information (IP address, browser type, device information)
• •Usage data (pages visited, time spent on site, clicks)

We use the information we collect for various business and commercial purposes, including:

• •Providing and maintaining our services
• •Responding to your inquiries and requests
• •Improving our website and services
• •Sending you marketing communications (subject to your explicit opt-in consent)
• •Analyzing usage patterns and trends
• •Protecting against fraudulent or illegal activity
• •Complying with legal obligations

We process your personal data on the following legal bases: (1) your consent; (2) the performance of a contract with you; (3) compliance with our legal obligations; and (4) our legitimate interests, which do not override your fundamental rights and freedoms.

We implement industry-standard technical, administrative, and physical security measures to protect your personal information from unauthorized access, use, or disclosure. These measures include encryption of data in transit using SSL technology, access controls, regular security assessments, and employee training. However, no method of transmission over the Internet or electronic storage is 100% secure, so while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

In the event of a data breach that compromises your personal information, we will notify you and relevant authorities as required by applicable law, no later than 72 hours after discovery of the breach.

We do not sell your personal information as defined under applicable privacy laws. We may share your information with:

• •Service providers who help us operate our business (subject to data processing agreements that restrict their use of your data)
• •Professional advisors (lawyers, accountants, etc.) who are bound by confidentiality obligations
• •Government authorities when required by law or to protect our rights
• •Business partners with your explicit consent
• •In connection with a merger, acquisition, or sale of assets (with notice to you)

We use cookies and similar tracking technologies to collect information about your browsing activities. You can control cookies through your browser settings or our cookie preference center, but disabling certain cookies may limit some features of our website.

• •Essential cookies: Required for basic website functionality (always active)
• •Analytics cookies: Help us understand how visitors interact with our site (requires consent)
• •Marketing cookies: Used to deliver relevant advertisements (requires consent)

Cookies on our site may be session-based (temporary) or persistent (remaining on your device for up to 12 months). Our detailed Cookie Policy is available at [website.com/cookie-policy].

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these sites. We encourage you to review the privacy policies of any third-party sites you visit. These third-party sites may use cookies and tracking technologies when you visit them; these are not covered by our Privacy Policy.

Depending on your location, you may have certain rights regarding your personal information, including:

• •Right to access your personal information
• •Right to correct inaccurate information
• •Right to delete your personal information
• •Right to restrict or object to processing
• •Right to data portability
• •Right to withdraw consent (without affecting the lawfulness of processing based on consent before withdrawal)
• •Right to lodge a complaint with a supervisory authority

To exercise these rights, please contact us using the information provided at the end of this policy. We will respond to your request within 30 days or as required by applicable law. We may need to verify your identity before processing your request.

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including the right to know what personal information we collect, disclose, or sell, and the right to opt-out of the sale of personal information.

Our services are not directed to individuals under 16 years of age, and we do not knowingly collect personal information from children. We implement age verification measures where appropriate. If you believe we have inadvertently collected information from a child under 16, please contact us immediately at legal@whitehiggs.com, and we will promptly delete such information.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. For transfers from the EEA, UK, or Switzerland to countries not deemed adequate by the European Commission, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or rely on derogations for specific situations as provided in Article 49 of the GDPR.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. The criteria used to determine our retention periods include: (1) the duration of our relationship with you; (2) legal obligations to which we are subject; and (3) whether retention is advisable in light of our legal position (such as for statutes of limitations, litigation, or regulatory investigations).

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last Updated" date at the top of this page. If we make material changes to this Privacy Policy, we will notify you by email or by prominently posting a notice on our website prior to the changes becoming effective. We encourage you to review this Privacy Policy periodically.

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions regarding this Privacy Policy. If you have any questions or concerns about our privacy practices, please contact our DPO at dpo@whitehiggs.com.