OpZen .A I LLC Privacy Policy

Version History

Version 1.0, Date : 3/18/2025

Privacy Framework

Opzen.ai LLC ("we," "our," or "us") is committed to safeguarding the privacy of individuals whose personal data we process. We adhere to the highest standards of international data protection and have taken active steps to align with the applicable cross-border data transfer mechanisms.

Opzen.ai LLC (“Opzen”, “we”, “our”, or “us”) complies with the EU-U.S. Data Privacy
Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. If there is any conflict between the terms in this privacy policy and the DPF Principles, the DPF Principles shall govern. To learn more about the Data Privacy Framework program and to view our certification, please visit the DPF Program Website.

Information We May Collect

As a Data Processor:
We may receive personal data from our clients regarding their consumers in the EU and Switzerland, strictly for the purpose of providing analytics and support services. This may occur during the delivery of:

Data storage, application hosting, maintenance, and IT infrastructure
Data backup, disaster recovery, and business continuity planning
Technical and administrative support services to clients and affiliates

As a Data Controller:
We may collect personal data directly from visitors to our website in various ways, including:

Information submitted via web forms (e.g., contact, registration)
Customer service requests or problem reports
Details of correspondence and site interactions
Traffic and usage data including IP address, browser, and operating system
Analytical data collected via cookies, specifically Google Analytics

Cookies help us understand user behavior and improve site performance. Users can manage
cookie preferences through their

Information We May Disclose

As a Data Processor:
We do not disclose personal data received from clients, except as necessary to fulfill contracted services or as required by law. We rely on our clients to provide appropriate notices and obtain consent from their consumers in accordance with DPF Principles.

As a Data Controller:
We do not disclose personal data collected through our website to third parties, except:

When required by law or legal process
To law enforcement or government agencies
To prevent fraud, harm, or in case of business reorganization or sale

Information We May Disclose

As a Data Controller:
We do not disclose personal data collected through our website to third parties, except:

When required by law or legal process
To law enforcement or government agencies
To prevent fraud, harm, or in case of business reorganization or sale

Notice

This policy and our website privacy notice explain our data practices, including types of data collected, disclosure practices, user rights, and contact methods. For data processed as a processor, our clients are responsible for providing notice and obtaining necessary consent.

Accountability for Onward Transfer

Opzen may transfer personal data to third parties acting as agents on our behalf. We comply with
the DPF Principles for all onward transfers of personal data, including the onward transfer liability
provisions.

Your Rights

Individuals from the EU, UK, and Switzerland have the right to access their personal data, and to correct, amend, or delete it where it is inaccurate or processed in violation of the DPF Principles. To exercise these rights, please contact us at privacy@Opzen.ai

As a Data Controller

We offer consumers choices regarding their personal data, including the ability toopt-in or optout of:

Disclosures to third-party controllers
Use of data for materially different purposes than initially stated

Opt-in consent is obtained for sensitive data. Consumers can contact us at privacy@opzen.ai for inquiries regarding data use.

As a Data Processor

We process data on behalf of clients and do not maintain direct relationships with consumers. Clients are responsible for providing users with appropriate choices. We may disclose personal data to:

Authorized subprocessors under strict contracts
Government authorities when required by law
In the event of company audit, merger, or asset sale

Dispute Resolution

In compliance with the DPF Principles, Opzen commits to resolve complaints about our collection
or use of your personal data. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data should first contact Opzen at:

Email: privacy@Opzen.ai

Opzen has further committed to refer unresolved DPF complaints to an independent dispute resolution mechanism located in the United States. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit the relevant independent resolution service for more information.

Binding Arbitration

Under certain conditions, individuals may invoke binding arbitration for complaints regarding DPF compliance not resolved through the other DPF mechanisms.

Jurisdiction

Opzen is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our legal obligations, services, or privacy practices.

Any changes we make will be posted on this page. Where appropriate, we may also notify you via email or through a notice on our website. We encourage you to review this page periodically for the latest information on our privacy practices.

Your continued use of our services after any updates to this Privacy Policy will constitute your acceptance of those changes. If you do not agree with the revised terms, you should discontinue use of your account and our services immediately.

Contact Us

If you have any questions about our participation in the Data Privacy Framework or our handling of your personal data, please contact:

Data Protection Officer
Opzen.ai LLC
Email: privacy@Opzen.ai