1. Introduction

This Privacy Policy outlines how Beunec Technologies, Inc. ("Beunec," "we," "us," or "our") collects, uses, stores, and protects your data in connection with your use of the Beunec Cloud platform ("Platform"). As a New Jersey-based corporation, we are committed to a privacy-first approach, ensuring the confidentiality and security of your information in compliance with the New Jersey Data Privacy Act (NJDPA) and other applicable federal and international laws.

2. Data Collection

We collect the following data to provide and improve the Platform's services:

• Personal Data: Information you provide when you create an account or use our services, such as your name, email address, company or educational institution, and billing information.

• Usage Data: Automatically collected data about your interaction with the Platform, including your IP address, browser type, device information, access times, pages viewed, and feature usage.

• Research Data: Data you choose to provide for research purposes, such as survey responses or feedback on new features.

• Communication Data: Messages, feedback, or support inquiries you submit through the Platform.

Data is collected only when necessary, adhering to NJDPA’s data minimization principles, and with your consent where required (e.g., during account creation).

3. Data Usage

We use your data for the following purposes:

• Provide Services: To operate the Platform, deliver the Beunec Cloud services, and manage your account.

• Improve the Platform: To analyze usage patterns, troubleshoot issues, and enhance the performance and features of our services.

• Conduct Research: To develop new features and capabilities, including our AI solutions, based on anonymized or aggregated data.

• Communicate: To send you service updates, important notices, or support responses. You have the option to opt-out of non-essential communications in your account settings.

• Ensure Compliance: To verify user identities, maintain platform security, and prevent fraudulent activity, in compliance with regulations like N.J.S.A. 56:8-161.

Data usage is limited to these purposes, ensuring transparency and user trust.

4. Data Protection

We are committed to protecting your data with robust security measures:

• Encryption: We use AES-256 encryption for data at rest and TLS 1.3 for data in transit, in line with NIST standards, to protect your information from unauthorized access.

• Access Controls: Access to user data is strictly limited to authorized personnel on a need-to-know basis through role-based access controls managed by Auth0. Multi-factor authentication (MFA) is mandatory for all internal access.

• Monitoring: We employ continuous threat detection and undergo annual third-party penetration testing to proactively prevent and respond to security incidents.

• Secure Storage: Your data is stored on secure cloud infrastructure provided by AWS S3, MongoDB Atlas, Google Cloud, and Cloudflare D1/R2. We implement additional encryption to ensure that even our team and cloud providers cannot access or read the content of your messages and file storage, which appears as gibberish characters without your decryption key.

These measures comply with N.J.S.A. 56:8-161 et seq. and federal regulations, safeguarding Beunec Cloud and user data.

5. Data Retention

We retain data only for as long as necessary to fulfill the purposes for which it was collected, as specified by our Beunec Sacred Data Governance Framework.

• Personal Data: Retained for the duration of your active account and a reasonable period thereafter for legal, audit, or backup purposes.

• Usage Data: Anonymized or aggregated data may be retained indefinitely for platform improvement.

• Research Data: Retained for the duration of the research project, after which it is anonymized or securely disposed of.

Data is securely disposed of using NIST 800-88 wiping for digital records and certified shredding for physical copies, as per N.J.S.A. 56:8-162. Retention schedules are audited annually.

6. Reasons We Share Personal Data

We do not sell your personal data. We only share it under the following strict conditions:

• With Your Consent: We will share your data with a third party if you provide your explicit consent.

• Service Providers: We may share data with trusted vendors and service providers (including AWS, Auth0, MongoDB, Google Cloud, & Cloudflare) who are bound by client-provider terms and conditions to ensure NJDPA compliance and assist us in operating the Platform.

• Partners: Anonymized or aggregated data may be shared with partners for research and marketing purposes, but it will not contain personally identifiable information.

• Legal Requirements: If required by law (e.g., a court order), we will share the minimal amount of data necessary after notifying you, unless prohibited by law, as per N.J.S.A. 56:8-163.

• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred under equivalent protections, with prior notice to you.

7. How to Access and Control Your Personal Data

Under the NJDPA, you have the following rights regarding your data:

• Access: You can view and download your data via your account settings.

• Correct: You can update inaccurate information in your user profile at any time.

• Delete: You can request the deletion of your personal data, subject to any legal retention requirements.

• Opt-Out: You can opt-out of marketing communications or non-essential data sharing via your account settings.

To exercise these rights, please contact privacy@beunec.com. We will respond to your request within 30 days, without a fee unless requests are excessive.

8. Cookies and Similar Technologies

We use cookies and similar technologies to remember your preferences, authenticate your account, analyze usage patterns, and provide a personalized user experience. You can manage your cookie preferences through your browser settings.

9. Solutions Provided by You—Notice to End Users

This policy applies to all users of the Platform. Organizational or enterprise users are responsible for ensuring their use of the Platform and any data they submit complies with their internal privacy policies and any legal obligations they may have.

10. Beunec Cloud Platform Account

• Creation: Your account is created when you sign up for the Platform.

• Security: You are responsible for securing your account credentials, including your password and Beunec Cloud Handle.

• Management: You can manage your account details, privacy settings, and communication preferences in your user dashboard.

• Termination: You may terminate your account at any time. We will delete your personal data as per our retention policy, subject to legal requirements.

11. Collection of Data from Professionals of All Levels

We collect data from professionals, including resumes, skills, and work preferences, solely to enhance their experience on the Platform. This data is used only with your consent, and you have full control over sharing settings in your dashboard, ensuring transparency and compliance with NJDPA.

12. Other Important Privacy Information

• Children’s Privacy: The Platform is not intended for users under the age of 18. We do not knowingly collect personal information from children under 18, in compliance with COPPA (15 U.S.C. § 6501).

• International Users: Your data may be processed in the U.S. or other locations where we or our service providers operate. We ensure that any data transfers comply with applicable laws, including providing GDPR-equivalent protections where necessary.

• Do Not Track: We honor “Do Not Track” signals from your browser, limiting tracking where requested, in line with CCPA principles.

13. Artificial Intelligence and Aselius AI Capabilities

The Platform uses AI, including Beunec Docs™ and Aselius™, to provide features such as AI-assisted writing, document summarization, and ground searching. We leverage Perplexity Sonar API capabilities to power our “Aselius AI” for GenAI with ground searching and Cloudflare Worker AI to power our “Write with AI” and “Summaries” features in Beunec Docs™. We guarantee that your personal data is not used for third-party AI model training without your explicit consent. AI outputs may be audited for accuracy and fairness as part of our Beunec Sacred Data Governance Framework, with immediate notification to you if this occurs.

14. Productivity and Communications Products

Communications on the Platform are end-to-end encrypted, and data access is restricted to authorized personnel. We use your communication data solely to provide and improve the service. You may opt out of non-essential communications (e.g., newsletters) via your account settings.

15. Search and Browse

Platform search and browse features collect usage data to personalize results. This data is anonymized where possible. We do not track sensitive queries without your explicit consent, ensuring compliance with NJDPA.

16. Beunec Platform

All data is processed in a transparent manner, as described in Sections 2-4, and in compliance with federal and New Jersey laws.

17. Simulation and Related Services

As part of our 2050 Vision, we are developing future services, including immersive training and recruitment simulations. Data for these services will be collected with explicit user consent, encrypted, and stored securely according to NIST standards, with clear opt-out options available.

18. Changes to the Privacy Policy

We may update this Privacy Policy to reflect changes in our legal obligations or Platform features. Any changes will be effective upon posting at www.beunec.co/privacy-policy or upon notification to you. Significant changes, such as new data uses, will be communicated with at least 30 days’ notice via email or in-app alerts. Your continued use of the Platform constitutes your acceptance of the new policy.

19. Contact Information

For privacy questions or to exercise your rights, please contact our privacy team: Beunec Technologies, Inc. 971 US HIGHWAY 202N STE N BRANCHBURG, NJ 08876 Email: support@beunec.com Phone: +19147503008