Privacy Policy

This Privacy Policy describes how Uonyx ("Uonyx", "we", "us", or "our") collects, uses, discloses, and protects personal information when you access or use our website, application, or services ("Services"). It also outlines your privacy rights and how you can exercise them.

This Privacy Policy applies to personal information we collect from users of our Services, including when you:

• Visit our website at https://uonyx.com
• Use our SaaS platform or any related application we provide
• Interact with us through customer support, marketing communications, or events

Important — Customer Data: This Privacy Policy describes Uonyx's practices as an independent data controller with respect to our website, marketing activities, and account management. It does not govern the processing of personal data that our customers upload to the platform in the course of using the Services ("Customer Data"). Customer Data is processed by Uonyx in its capacity as a data processor on behalf of the relevant customer, in accordance with the applicable Data Processing Agreement. If you have questions about how a customer processes your data through Uonyx, please contact that customer or their account administrator directly.

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us at privacy@uonyx.com.

1. WHAT INFORMATION DO WE COLLECT?

Uonyx collects personal data in several different contexts. We collect data about the following categories of individuals:

• Users: individuals who are authorized to use the platform through a customer account, including account administrators and team members;
• Prospects: visitors to our website and individuals who interact with our marketing, events, or sales activities who have not yet become customers;
• Customers: business entities and their designated billing and contract contacts who have entered into an agreement with Uonyx; and
• Technology Partners: developers, integration partners, and others who interact with Uonyx's developer platform, marketplace, or partner programmes.

The categories of personal data we collect vary depending on the context:

1.1 Identifiers and Contact Information

• Full name, email address, phone number, and physical address
• Account login credentials, company name, and job title
• Profile picture and user-customized identifiers, user IDs, or device IDs
• Single Sign-On (SSO) identifiers where you log in via a social media or organizational account

1.2 Billing and Payment Information

• Billing contact details, transaction history, and payment method details (e.g., last 4 digits of credit card)
• Tax or VAT identification numbers where required

Note: We do not directly store full payment card information. Payment processing is handled by PCI-DSS-compliant third-party providers.

1.3 Technical and Usage Data

• IP address, browser type, operating system, language, device type, and application version
• Device and application data, including mobile device or app ID, browser version, location and language settings
• Session duration, navigation paths, clickstreams, feature usage, and usage behavior within the platform, collected via server logs, cookies, SDKs, and analytics tools
• Crash reports, application logs, and diagnostic data
• Activity logs and the recorded activity (sessions, clicks, use of features, and other interactions)

1.4 Mobile App and Device Permissions

• Access to device location (if enabled), push notifications, camera or microphone (if you explicitly grant permission)

1.5 Sensitive Personal Information

Information such as health or financial data may be processed only when explicitly submitted by you and with your clear, affirmative consent where required by law. Our platform includes specialist modules (such as Healthcare and Lending) that may process sensitive categories of data on behalf of our customers. Where Uonyx processes such data as a processor, the applicable customer is responsible for ensuring the lawful basis for that processing.

1.6 Communications and Interactions

• Messages sent to our support team, content of feedback forms, surveys, and feature requests
• Participation in events, webinars, and online communities
• Phone call and video conference recordings (for example, with our customer success or support teams), as well as written correspondence, screen recordings, and transcripts — where applicable and where permitted by law — for purposes including quality control, training, and record-keeping
• Content submitted to public forums, community boards, or feedback channels associated with Uonyx

1.7 Third-Party Sources

We may also collect data about you from:

• Your employer or team administrator (if you are part of a business account)
• Publicly available professional and business sources, such as professional networking platforms and company directories
• Third-party data enrichment providers used for business contact and company information. A current list of Uonyx sub-processors is available at https://uonyx.com/legal/subprocessors
• Referrals, resellers, integration partners, and event organizers

2. HOW DO WE USE YOUR INFORMATION?

We process personal data in accordance with applicable privacy laws and only when there is a valid legal basis. The purposes for which we use personal data include:

2.1 To Provide and Operate Our Services

• Create and manage your account, authenticate logins, and maintain your session
• Deliver core platform functionality, including dashboard access, project tracking, notifications, and reports
• Facilitate integrations and automated workflows across third-party tools
• Personalize the Services, including recognizing you on return visits and providing localization capabilities

2.2 To Communicate with You

• Send important service-related messages, such as system updates, usage alerts, and security notices
• Respond to support inquiries, bug reports, and feature requests
• Deliver transactional communications (confirmations, password resets, billing notices) via trusted third-party communication, messaging, and transactional email providers acting on our behalf under contractual data protection obligations. A current list of Uonyx sub-processors is available at https://uonyx.com/legal/subprocessors

2.3 To Improve and Secure Our Platform

• Monitor system performance, detect issues, and resolve bugs
• Improve interface design and add features based on aggregated usage behavior
• Prevent abuse, fraud, or misuse of our systems
• Maintain the security and integrity of the Services
• Gain insights into how users interact with AI-powered capabilities within the platform, to improve those features and ensure they perform as intended

2.4 To Comply with Legal Obligations

• Respond to lawful government requests, subpoenas, or court orders
• Comply with financial, tax, and regulatory recordkeeping requirements
• Enforce our Terms of Service or investigate potential violations

2.5 For Marketing and Business Development

• Send product announcements, promotional offers, and event invitations (with consent or as otherwise permitted by applicable law)
• Run retargeting or lookalike advertising campaigns through third-party digital advertising and social media platforms
• Track email opens or campaign engagement (only where marketing consent is obtained)

You can opt out of marketing communications at any time — see Section 12.

2.6 For Other Legitimate Interests

• Conduct internal analytics, business intelligence, and performance measurement
• Publish feedback or submissions to public forums or community platforms (see Section 7.8)
• Protect the rights, property, or safety of Uonyx, our users, or others
• Support mergers, acquisitions, or other business transitions (see Section 7.6)

We only collect and process the minimum amount of data necessary to fulfill these purposes and retain it only for as long as required.

3. ROLES OF UONYX AS CONTROLLER AND PROCESSOR

3.1 Uonyx as a Data Controller

Uonyx acts as a data controller when we determine the purposes and means of processing personal data. This includes when you visit our website, register for an account, communicate with our sales or support teams, and when we collect analytics data to improve our Services or send marketing communications. In these cases, Uonyx is responsible for ensuring lawful, fair, and transparent processing and for responding to data subject rights requests directly.

3.2 Uonyx as a Data Processor

Uonyx acts as a data processor when we process personal data on behalf of our customers. This applies when customers use our platform to upload, store, or manage personal data relating to their own clients, employees, or other individuals. In this role, we process data only under the customer's documented instructions, as outlined in our Data Processing Agreement. The customer is the data controller and is responsible for determining the legal basis for processing, informing individuals of how their data is used, and handling data subject rights requests related to the data they control.

If you believe your personal data is being processed through a customer's use of our platform and you wish to exercise your rights, please contact the relevant customer or account administrator directly.

3.3 Role Clarity for Integrated Services

When Uonyx enables integrations with third-party platforms, both Uonyx and the integration provider may act as independent controllers with respect to their own processing activities. You are encouraged to review the privacy policies of those third-party providers to understand how they handle your data.

4. WHAT LEGAL BASES DO WE RELY ON? (GDPR)

For individuals in the European Economic Area (EEA), United Kingdom, or Switzerland, the following table summarises the legal bases under which Uonyx processes personal data. The applicable basis depends on the specific context and purpose of processing.

4.1 Contractual Necessity

We process personal data as required to fulfil our contractual obligations to you, including creating and maintaining user accounts, providing access to the platform and its features, processing payments and billing, and delivering support services.

4.2 Consent

In some situations, we rely on your freely given, specific, informed, and unambiguous consent. This applies to marketing communications, optional third-party integrations, and analytics cookies where consent is required by applicable law. You may withdraw your consent at any time by contacting us or updating your account settings, without affecting the lawfulness of processing carried out prior to withdrawal.

4.3 Legal Obligations

We may process personal data to comply with applicable laws, including tax and accounting obligations, law enforcement or government authority requests, and obligations under data protection legislation.

4.4 Legitimate Interests

We may process personal data where we have a legitimate business interest that is not overridden by your rights and freedoms, including improving platform performance and reliability, preventing fraud or misuse, securing our systems, conducting analytics and business planning, and marketing to existing users or professional contacts within the context of a business relationship. When relying on this basis, we assess the potential impact on your privacy and implement proportionate safeguards.

5. THIRD-PARTY INTEGRATIONS

5.1 User-Enabled Integrations

Uonyx offers integrations with third-party platforms to extend the functionality of the Services. When you connect third-party tools (such as calendar applications, communication platforms, file storage services, or payment gateways), you authorize those providers to access, retrieve, store, or transmit data through our Services. This may include account information, activity logs, and content or metadata associated with your use of the platform.

You are responsible for reviewing and understanding the privacy policies and data permissions of any third-party integration you enable. You may revoke access at any time through your Uonyx account settings or by disconnecting the integration from the third-party provider's system.

5.2 Communications and Messaging Providers

To support service-related notifications, security alerts, and transactional communications, Uonyx engages trusted third-party communication, SMS, voice, and transactional email service providers. These providers act as data processors, are contractually bound to handle data securely in accordance with applicable data protection laws, and process personal data only under Uonyx's documented instructions. A current list of Uonyx sub-processors is available at https://uonyx.com/legal/subprocessors

5.3 No Unilateral Sharing Without User Direction

Uonyx does not grant access to third-party services or providers unless initiated by the user or authorized account representative. Personal data is not shared for integration purposes unless there is a specific and lawful reason to do so.

6. USAGE DATA AND ANALYTICS

6.1 Types of Usage Data Collected

We collect the following categories of information automatically:

• Technical data including IP address, browser type, operating system, device model, language preferences, and session timestamps
• Behavioral data such as pages visited, features used, interactions with dashboards or modules, and workflow patterns
• Application logs and diagnostic data to detect errors, performance bottlenecks, or abnormal activity
• Data related to user authentication and session management

6.2 Purpose of Analytics

• Monitoring system performance and availability
• Identifying technical issues or attempted abuse
• Enhancing functionality and design based on user interaction patterns
• Supporting product development and testing new features
• Aggregating anonymized insights for internal business intelligence
• Evaluating how AI-powered features are used to improve those capabilities

6.3 Use of Third-Party Analytics Providers

We may engage third-party web and product analytics service providers. These providers may place cookies or tracking technologies on your device and collect data about your interactions with the Services. Where required by applicable law, we request your consent before enabling third-party analytics. You may configure your browser settings or opt-out preferences to limit these tools. Please refer to Section 8 (Cookies and Tracking Technologies) for details.

7. WHEN AND WITH WHOM DO WE SHARE PERSONAL INFORMATION?

Uonyx does not sell personal data. We share data only for specific purposes and under strict confidentiality and security obligations.

7.1 Service Providers

We engage third-party service providers to support our operations. They process personal data on our behalf under written agreements that require them to maintain confidentiality and comply with applicable data protection laws. These include:

• Infrastructure and Hosting: Cloud hosting, data storage, content delivery, and database management providers.
• Communication and Messaging: Providers of SMS, voice, and transactional email delivery services.
• Analytics and Monitoring: Usage analytics, performance monitoring, security logging, and session recording services.
• Payment Processing: Payment gateways and billing platforms that handle transaction data.
• Support and Customer Service: Platforms for ticketing, live chat, call recording, transcription, and customer success management.
• Security and Fraud Prevention: Providers of data security, fraud detection, investigation, and prevention services.

The current list of Uonyx's sub-processors is available at https://uonyx.com/legal/subprocessors.

7.2 Business Partners

We may share personal data with authorized business and channel partners, resellers, and distributors to facilitate a stronger local presence and tailored experiences for our customers and users. In such instances, we share only the relevant contact, business, and usage details necessary for the partner to fulfil their authorized role. Any engagement by a partner that falls outside the scope of delivering Uonyx Services is governed by that partner's own terms and privacy policy.

7.3 Customer Account Sharing

When you join a team account, your name, contact information, and activity within the platform become visible to other authorized users and administrators of that account. Account administrators may also access, export, or review user-provided content and metadata. Content submitted to boards or workspaces designated as private may still be accessible to account administrators on behalf of the customer.

7.4 Integrations and Third-Party Applications

When you or your account administrator enable an integration, the connected service may receive the data required to perform its function. Uonyx does not transfer data to integrations without your authorization. You can revoke integration access at any time through your account settings. Where you enable integrations with third-party application providers, the provider may receive relevant usage and profile data in accordance with the integration's purpose.

7.5 Legal and Regulatory Requests

We may disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. Where permitted by applicable law, we will seek to notify you before making such disclosure.

7.6 Corporate Transactions

In connection with a merger, acquisition, reorganization, or sale of assets, personal data may be transferred to prospective or actual successors or acquirers. We will notify you of any material change in ownership or control of your data.

7.7 Protection of Rights

We may share personal data with third parties when we believe it is necessary to protect the rights, property, or safety of Uonyx, our users, or others.

7.8 Public Feedback and Community Content

If you submit a public review, testimonial, or feedback to Uonyx, we may store and display that content publicly on our website or community platforms. If you participate in a public forum, blog, or community channel associated with Uonyx, information you share — including profile information associated with your account — may be visible to others and may remain accessible after you close your account. To request removal of your publicly submitted content, please contact privacy@uonyx.com.

7.9 Event Sponsors and Organizers

If you register for an event that Uonyx hosts, organizes, or sponsors, we may — with your permission — share your registration details with co-organizers, speakers, or sponsors of that event so that they may contact you with relevant information.

8. COOKIES AND TRACKING TECHNOLOGIES

8.1 What Are Cookies

Cookies are small text files stored on your browser or device that enable websites to recognize your device over time and across sessions. We use the following categories of cookies and similar technologies:

• Strictly Necessary Cookies: Required for the operation of the website, including session authentication and navigation. These cannot be disabled without affecting core functionality.
• Performance and Analytics Cookies: Help us understand how users interact with the platform so we can improve features and usability.
• Functionality Cookies: Store your preferences and settings to enhance your experience.
• Targeting or Advertising Cookies: May be set by third-party partners to deliver content or advertisements relevant to your interests.

8.2 Use of Third-Party Tools

We may engage third-party analytics and tracking service providers. These tools may collect information about your visit, including pages viewed, time spent, links clicked, and referral sources. Third-party communication and messaging service providers engaged by Uonyx may also use tracking mechanisms to determine message delivery status and recipient engagement. Where legally required, we request your consent before setting non-essential cookies or loading analytics scripts. A current list of Uonyx sub-processors is available at https://uonyx.com/legal/subprocessors

8.3 Managing Your Preferences

• Accept or reject cookies entirely through your browser settings
• Delete cookies manually at any time
• Block third-party cookies
• Use our cookie preference centre or consent banner (where applicable) to manage your choices

Disabling certain cookies may impact the functionality of the Services. For detailed information on cookie usage and your choices, please refer to our Cookie Policy.

9. HOW LONG DO WE KEEP YOUR INFORMATION?

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, to meet our legal and regulatory obligations, and to protect our legitimate business interests.

9.1 General Retention Guidelines

• Account-related information is retained for as long as your account remains active
• Transaction and billing records may be retained for a legally mandated period for audit or tax purposes
• Support records, communications, and logs may be retained to maintain service continuity and resolve disputes
• Analytics and usage data may be retained in aggregated or anonymized form for internal reporting and product development

9.2 Criteria Used to Determine Retention

• The purpose for which the data was collected and the nature and sensitivity of the data
• Any legal, regulatory, or contractual obligations
• The risk of harm from unauthorized access or disclosure
• Your preferences, including deletion requests

9.3 Data Deletion and Anonymization

When data is no longer required for the stated purposes and there is no legal basis to retain it further, we will securely delete or anonymize it in accordance with our internal data retention policy. You may request deletion of your personal data at any time, subject to legal exceptions. See Section 14 for information on how to exercise your rights.

10. HOW DO WE KEEP YOUR INFORMATION SAFE?

Uonyx implements technical, administrative, and organizational safeguards to protect personal data from unauthorized access, use, disclosure, alteration, or destruction.

10.1 Technical Safeguards

• Encryption of data in transit using TLS and other secure protocols
• Secure storage of data at rest using modern encryption algorithms
• Access controls that restrict data to authorized personnel based on role and need
• Logging and monitoring of system activity to detect unusual or unauthorized behavior

10.2 Administrative and Organizational Safeguards

• Access to personal data limited on a strict need-to-know basis
• Strong authentication enforced for user and administrator accounts
• Regular review of security policies and employee access privileges
• Security awareness training for relevant personnel

10.3 Vendor and Sub-Processor Oversight

All service providers involved in communication, hosting, analytics, and customer support are contractually required to meet data protection and security standards consistent with applicable laws. We perform due diligence on vendors before engagement and review their security practices on an ongoing basis. Further information about our security practices is available at https://uonyx.com/legal/security.

10.4 Limitations

While we strive to protect personal data through commercially reasonable means, no method of electronic storage or transmission is completely secure. We encourage users to safeguard their credentials, enable multi-factor authentication where available, and report any suspected unauthorized activity promptly. If you believe your interaction with Uonyx is no longer secure, please contact us at privacy@uonyx.com.

11. DO WE COLLECT INFORMATION FROM MINORS?

Uonyx does not knowingly collect or process personal data from individuals under the age of 18. Our Services are intended for use by adults and businesses only.

The platform, website, and mobile application are not designed for or marketed to minors. We do not knowingly solicit, collect, or store personal information from individuals under 18 years of age. For the purposes of the CCPA, Uonyx does not knowingly sell or share the personal information of individuals under the age of 16.

If we become aware that personal data of a minor has been collected in violation of this policy, we will take prompt steps to delete the information and, where applicable, deactivate the associated account. If you believe that we may have unintentionally collected data from a child, please contact us immediately at privacy@uonyx.com.

12. MARKETING COMMUNICATIONS AND OPT-OUT

Uonyx may contact you with information about product updates, service announcements, event invitations, and promotional offers, but only in accordance with applicable privacy laws and your communication preferences.

12.1 Types of Communications

• Product or feature announcements
• Invitations to webinars, events, or surveys
• Promotional offers or updates related to the Services
• Communications from authorized business partners, where applicable

These communications may be delivered by email, SMS, phone, or other permitted channels.

12.2 Managing Your Preferences

• Unsubscribe from marketing emails by clicking the unsubscribe link at the bottom of the message
• Reply with "STOP" to unsubscribe from SMS messages

Opting out of marketing communications will not affect your ability to receive essential service-related messages, including notifications about your account, transactions, system updates, or security alerts.

12.3 Consent and Legal Basis

Where required by applicable law, we request your explicit consent before sending marketing communications. Where consent is not required, communications may be sent based on our legitimate interests, provided they do not override your rights. You may withdraw your consent at any time using the opt-out options above.

13. INTERNATIONAL DATA TRANSFERS

Uonyx is based in the United States and uses global infrastructure to deliver secure, high-performing services. Personal data may be processed in locations outside your country of residence. These activities are conducted in compliance with applicable data protection laws and subject to appropriate safeguards.

13.1 Data Location

Your data may be processed in the United States or in other countries where Uonyx or its authorized service providers maintain operations, including in countries within the European Economic Area and globally. We ensure that all international transfers are carried out under legally recognized mechanisms and that your personal data receives a consistent level of protection regardless of where it is processed.

13.2 Transfer Safeguards

Where personal data is transferred to countries not subject to an adequacy decision by a competent data protection authority, we implement appropriate safeguards, including:

• Standard Contractual Clauses (SCCs) as approved by the European Commission, the UK Information Commissioner's Office (ICO), and the Swiss Federal Data Protection and Information Commissioner (FDPIC), as applicable
• The EU-US Data Privacy Framework (EU-US DPF), the UK Extension to the EU-US DPF, and the Swiss-US Data Privacy Framework, where applicable
• Contractual and technical assurances with sub-processors and service providers
• Technical and organizational measures to ensure ongoing protection

You may contact us at privacy@uonyx.com to request information about the specific safeguards in place for any particular transfer or to obtain a copy of the applicable Standard Contractual Clauses.

13.3 Dispute Resolution for International Transfers

If you are resident in the EEA, UK, or Switzerland and have an unresolved privacy complaint related to our data transfer practices that we have not addressed to your satisfaction, you may contact your local data protection supervisory authority. You may also contact us at privacy@uonyx.com to initiate our internal complaints handling process.

13.4 Oversight of Sub-Processors

All third-party vendors involved in the processing of personal data on our behalf are required to: act only on our instructions; comply with data protection obligations consistent with applicable law; and implement robust technical and security safeguards. The current list of our sub-processors is available at https://uonyx.com/legal/subprocessors.

14. WHAT ARE YOUR PRIVACY RIGHTS?

Depending on your country of residence and applicable data protection laws, including the GDPR, the UK GDPR, the Swiss Federal Data Protection Act, the CCPA/CPRA, and similar frameworks, you may have the following rights in relation to your personal data:

14.1 How to Exercise Your Rights

To submit a request regarding any of the rights listed above, please contact us at privacy@uonyx.com. We will verify your identity before fulfilling your request and may ask for additional information to do so. We will respond to your request in accordance with the timescales required by applicable law.

Where Uonyx is acting as a data processor on behalf of a customer, we may refer your request to the appropriate data controller (your employer or account administrator). In such cases, please direct your request to the relevant customer or account administrator in the first instance.

We may also instruct you on how to fulfil certain requests independently through your account settings, such as downloading your data or updating your profile.

15. DO-NOT-TRACK FEATURES

Some web browsers offer a "Do Not Track" (DNT) setting that signals to websites that you prefer not to have your online activity tracked. At this time, there is no uniform industry standard governing how websites should respond to such signals.

As a result, Uonyx does not currently respond to Do Not Track signals or similar browser-based mechanisms. However, you may still manage your privacy preferences by adjusting your browser settings to block or delete cookies, using our cookie preference settings, or using industry-supported tools to opt out of interest-based advertising. We continue to monitor developments in this area and will update our practices as standards evolve.

16. U.S. STATE-SPECIFIC PRIVACY RIGHTS

If you are a resident of California or another U.S. state with specific privacy legislation, you may have additional rights under laws such as the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), as well as similar state-level laws in Virginia, Colorado, Connecticut, Utah, and others.

16.1 Categories of Personal Data Collected

In the past twelve months, we may have collected the following categories of personal data as defined under the CCPA and similar state laws:

• Identifiers (such as name, email, IP address, and device information)
• Commercial information (such as billing records or service usage)
• Internet or other electronic network activity (such as session activity, browser type, and interaction data)
• Geolocation data (if enabled)
• Professional or employment-related information (if provided during use of business features)
• Audio, electronic, visual, or similar information (such as call recordings where applicable)
• Inferences drawn from the above to create a profile of preferences or behavior

We do not sell personal data. We do not use or disclose sensitive personal information for the purpose of inferring characteristics about you or for profiling in a manner subject to opt-out rights.

16.2 Your Rights Under Applicable U.S. State Laws

• The right to know what personal data we collect, use, disclose, or retain
• The right to access or obtain a copy of your personal data
• The right to correct inaccurate personal data
• The right to request deletion of your personal data, subject to legal exceptions
• The right to opt out of targeted advertising or the sharing of personal data for cross-context behavioral advertising
• The right to limit the use of sensitive personal data (if applicable)
• The right to designate an authorized agent to make requests on your behalf
• The right to non-discrimination for exercising your privacy rights

16.3 Exercising Your Rights

To submit a request to access, correct, delete, or opt out of the use of your personal data, please contact us at privacy@uonyx.com. We will confirm your identity before processing the request and may require additional verification as permitted by applicable law. We will not discriminate against you for exercising your privacy rights.

17. AUTOMATED DECISION-MAKING AND AI-POWERED FEATURES

The Uonyx platform includes AI-powered automation features and analytics capabilities designed to help customers manage and streamline business operations. Where these features process personal data, the following principles apply:

17.1 How AI Features Process Personal Data

AI-powered features within the platform (including analytics, recommendation, and workflow automation tools) process data submitted to or generated through the Services in order to perform the function requested by the customer or Authorised User. Where usage data is analyzed by AI tools, we use aggregated or anonymized data wherever possible, and apply appropriate technical safeguards to prevent re-identification.

17.2 No Fully Automated Individual Decision-Making with Legal Effect

Uonyx does not make solely automated decisions that produce legal effects or similarly significant effects on individuals, unless this is necessary for a contract, required by applicable law, or based on explicit consent. Where applicable, individuals have the right to request human review of automated decisions that affect them significantly.

17.3 AI Training

Personal data submitted to the Services is not used to train shared or third-party AI models without the explicit prior written consent of the relevant customer, as described in the Uonyx Data Processing Agreement.

18. UPDATES TO THIS PRIVACY POLICY

Uonyx may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or business operations.

18.1 How We Communicate Changes

• Post the updated version on our website and update the "Last Updated" date at the top of the policy
• Notify users of material changes through appropriate means, which may include email notifications, platform alerts, or other direct communication methods

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after an update becomes effective constitutes your acceptance of the revised terms, unless otherwise required by applicable law.

19. CONTACTING US

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us using the details below:

We aim to respond to all privacy-related enquiries in a timely and thorough manner, in accordance with applicable data protection laws.

20. REVIEWING OR DELETING YOUR DATA

20.1 Accessing and Updating Your Information

If you have a registered account with Uonyx, you may review and update certain account information by logging into your account settings. For access to additional data or to request correction of inaccurate information, please contact us at privacy@uonyx.com.

20.2 Requesting Deletion

You may request deletion of your personal data at any time by emailing us at privacy@uonyx.com. We will evaluate your request in accordance with applicable legal and contractual obligations. Please note that we may retain certain information for:

• Legal compliance and regulatory obligations
• Security, fraud prevention, and account integrity
• Internal recordkeeping and dispute resolution

When your data is no longer needed, we will delete it securely or anonymize it in accordance with our internal data retention policy.

20.3 Verification of Identity

To protect your privacy and security, we may request additional information to verify your identity before processing your request. Where Uonyx acts as a data processor on behalf of a customer, we may refer your request to the appropriate data controller.