Welcome to Ubiqitum Brand Calibration

UBIQITUM BRAND CALIBRATION - PRIVACY POLICY

Effective Date: 06 May 2025

Ubiqitum (“we,” “our,” or “us”) is committed to protecting the privacy of individuals (“you” or “your”) whose personal information we collect, hold, use, and disclose in the course of providing our AI-driven brand‐analytics platform and related services (the “Services”).\n By accessing or using our Services, you consent to the collection, use, disclosure, and storage of your personal information in accordance with this Privacy Policy. If you do not agree with any part of this Policy, please do not use our Services.

1. Definitions

1.1 Personal Information: means information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information is true or not, and whether recorded in material

1.2 Sensitive Information: includes information about racial or ethnic origin, political opinions, religious beliefs or affiliations, philosophical beliefs, trade‐union memberships, sexual orientation or practices, criminal records, health information, or genetic data.

1.3 User Data: means any Personal Information or Sensitive Information you provide to us when you register for or use the Services

1.4 Anonymous Data: is data from which identifiers have been removed so that the data cannot be connected to an identifiable person

1.5 Third Party: means any entity other than Ubiqitum (e.g., payment processors, cloud‐hosting providers, analytics vendors).

2. Scope and Applicability

2.1: This Privacy Policy applies to all Personal Information Ubiqitum collects in connection with the provision of our Services to users.

2.2: This Policy governs Ubiqitum’s handling of Personal Information in both digital and physical formats. It does not apply to Anonymous Data or aggregated statistics that cannot identify individuals.

3. Types of Information Collected

3.1 Information You Provide Directly:

3.1.1. Account Registration Data: When you register for Ubiqitum, we collect your name, email address, telephone number, job title, organisation name, and billing information (e.g.,credit‐card details).

3.1.2. Profile Data: You may choose to provide additional profile details, such as your business address, industry vertical, or marketing‐related preferences, to personalise your experience.

3.1.3. Survey Responses & Feedback: If you participate in any surveys, submit feedback, or otherwise interact with our user‐experience tools, we may collect demographic information and qualitative or quantitative survey responses.

3.2 Information Collected Automatically:

3.2.1. Usage Data: We log technical details when you interact with the Services, including IP address, device type, browser version, pages visited, date and time stamps, and clickstream data.

3.2.2. Cookies and Tracking Technologies: We use cookies, web beacons, pixel tags, and similar technologies to recognize your device, remember your preferences, and measure and analyse user activity. See section 7 for more information.

3.3 Information from Third Parties:

3.3.1. Data Enrichment Providers: We may supplement our User Data with information from third‐party data‐enrichment services (e.g., business‐directory providers), provided such providers comply with applicable privacy laws.

3.3.2. Analytics Services: We may use third‐party analytics (e.g., Google Analytics) to understand how you use the Services.

4. Purposes for Collection, Use, and Disclosure

We collect, hold, use, and disclose your Personal Information only for the following purposes

4.1. Service Provision and Support:

4.1.1: To create and manage your user account and verify your identity.

4.1.2: To provide and maintain the platform features, generate AI‐driven brand analytics, and deliver insights and reports.

4.1.3: To provide customer support, respond to enquiries, process your requests, and resolve technical issues.

4.2. Billing and Payments:

4.2.1: To process subscription fees, invoices, refunds, and related billing communications.

4.3. Improvement and Development:

4.3.1: To analyse usage patterns, measure and enhance the performance, reliability, and security of our Services.

4.3.2: To develop new features, products, or services.

4.3.3: To conduct internal research, quality assurance, and product‐testing activities.

4.4. Marketing and Communications:

4.4.1: To send you administrative notices (e.g., service updates, policy changes), marketing materials, newsletters, and promotional offers, where you have consented or such communications are reasonably expected in connection with your use of the Services.

4.4.2: To perform market research, surveys, or analytics to better understand customer preferences, provided we have obtained your consent where required.

4.5. Legal and Compliance:

4.5.1: To comply with legal obligations, including record‐keeping requirements.

4.5.2: To investigate and respond to any suspected or actual breaches of our Terms of Service, this Privacy Policy, or other policies.

4.5.3: To enforce our rights or defend against legal claims (e.g., subpoenas, court orders, regulatory inquiries).

5. Disclosure of Personal Information

We will not sell, rent, or trade your Personal Information to unaffiliated third parties. We may disclose Personal Information only in the following circumstances

5.1 Service Providers and Subprocessors:

5.1.1: We engage Third Parties (e.g., cloud‐hosting providers, payment processors, email‐marketing platforms, analytics vendors) to perform services on our behalf. These providers are authorised only to use your information as necessary to perform their contracted services and must implement appropriate security measures.

5.2 Affiliates and Subsidiaries:

5.2.1: We may share your Personal Information with our Australian‐based or global affiliates (e.g., related bodies corporate of Ubiqitum) to facilitate internal operations, provided they adhere to the same standard of data protection.

5.3 Legal Requirements:

5.3.1: We may disclose Personal Information if required to do so by law, regulation, subpoena, legal process, or governmental request.

5.3.2: We may also disclose your Personal Information if we believe in good faith that such disclosure is necessary to protect our rights, defend a legal claim, prevent fraud, or ensure the safety of any person.

5.4 Business Transfers:

5.4.1: In the event of a merger, acquisition, reorganisation, or sale of assets, Ubiqitum may transfer or assign Personal Information to the acquiring entity, provided that the acquiring entity agrees to be bound by this Privacy Policy or a materially similar privacy policy.

6. Data Retention and Storage

6.1: We retain your Personal Information for as long as necessary to fulfill the purposes outlined in Section 4, unless a longer retention period is required or permitted by law (e.g., minimum taxation or corporate record‐keeping obligations).

6.2: When your Personal Information is no longer needed, we will securely destroy or de‐identify it in accordance with our data‐retention and destruction procedures.

7. Data Security

7.1: We implement appropriate technical, organizational, and administrative measures to protect your Personal Information from unauthorized access, disclosure, alteration, or destruction. These measures include

7.1.1. Encryption: Data in transit is protected using TLS/SSL. Sensitive data at rest (e.g., billing information) is encrypted.

7.1.2. Access Controls: Access to Personal Information is restricted to authorized personnel who require it for legitimate business purposes. Unique user credentials and role‐based permissions are enforced.

7.1.3. Network Security: Firewalls, intrusion detection/prevention systems, and secure network architecture protect data from external threats.

7.1.4. Regular Audits and Testing: We conduct periodic security risk assessments, vulnerability scans, and penetration testing to identify and remediate potential weaknesses.

7.1.5. Employee Training: All employees receive mandatory privacy and security training, including procedures for reporting and responding to data breaches.

7.2: Despite these precautions, no system can be 100% secure. If a data breach affecting personal data occurs, we will comply with our legal obligations under the Notifiable Data Breaches scheme (Privacy Act 1988 (Cth)) and any relevant Victorian law, and we will notify affected individuals and regulators as required.

8. Access, Correction, and Deletion

8.1 Access Requests:

8.1.1: You have the right to request access to Personal Information we hold about you. To make an access request, please contact support. We will respond within 30 days of receiving your request, subject to any legal extensions or exceptions.

8.1.2: If we deny your access request in whole or in part, we will provide reasons for the denial.

8.2 Correction Requests:

8.2.1: If you believe any Personal information we hold about you is incorrect, incomplete, or out of date, you may request a correction. We will verify the requested correction and, if warranted, make the amendment or annotate the record if unable to amend.

8.3 Deletion Requests (“Right to Erasure”):

8.3.1: You may request deletion of your Personal Information if it is no longer needed for the purpose collected, if you withdraw your consent (where consent is the legal basis for processing), or if processing is unlawful. Exceptions under law may apply (e.g., record‐keeping obligations, dispute resolution).

8.3.2: To request deletion, submit a written request to our Ubiqitum support. We will aim to comply within 30 days unless an exception applies or additional verification is required.

9. Cross-Border Data Transfers

9.1: Ubiqitum is headquartered Australia, but we operate globally. We may store, process, or back up Personal Information on servers located in Australia or in other jurisdictions.

9.2: Whenever we transfer Personal Information outside Australia, we ensure that the recipient operates under a similar level of data protection.

10. Marketing and Promotional Communications

10.1 Consent: We only send marketing or promotional communications (e.g., newsletters, product updates) if you have expressly opted in or if such communications are reasonably expected in connection with your use of our Services.

10.2 Opt-Out: You may opt out of marketing communications at any time by following the “unsubscribe” link in any marketing email or by contacting us at surveysupport@ubiqitum.com. We will promptly process your request and cease sending marketing materials, except for administrative notices (e.g., account updates, legal notices) which are required for service delivery.

11. Complaints and Dispute Resolution

11.1 Internal Complaint Process

11.1.1: If you have questions or concerns about how we handle your Personal Information, or you wish to lodge a privacy grievance, please contact surveysupport@ubiqitum.com

Complaint - Ubiqitum

Email: surveysupport@ubiqitum.com

Phone: +61 431 431 253

Address:

21-23 Stewart St

Richmond, VIC, 3121

Australia

11.1.2: We aim to acknowledge your complaint within 5 business days and resolve it within 30 days. If we require more time, we will keep you informed of the reason for delay and the expected timeframe.

12. Changes to This Privacy Policy

12.1: We review our Privacy Policy periodically to ensure compliance with legal requirements and to reflect changes in our practices. We will post any updates on our website and revise the “Effective Date” at the top.

12.2: Where required by law, we will notify you of significant changes (e.g., by email or in‐App notification).

12.3: Your continued use of the Services after changes take effect constitutes your acceptance of the revised Policy.

13. Contact Information

If you have any questions about this Privacy Policy, your rights under Victorian or Commonwealth law, or would like to exercise your privacy rights (e.g., access, correction, deletion), please contact:

Privacy at Ubiqitum