‍1. INTRODUCTION AND PURPOSE

This Personal Data Privacy Policy (hereinafter referred to as the "Policy") establishes the framework and principles governing the collection and processing of personal data by Renergy Technologies Inc. ("RENERGY"), in compliance with all applicable data protection regulations.

By providing consent to this Privacy Policy, individuals acknowledge their agreement with the terms outlined herein and authorize the processing of their personal information for the purposes described throughout this document.
‍

2. APPLICATION AND COVERAGE

The provisions contained within this Policy apply to all activities involving personal data processing conducted by RENERGY, encompassing all digital platforms operated by the company including but not limited to websites, customer portals, mobile applications, digital forms, and other electronic interfaces through which personal data may be collected.

This Policy governs how RENERGY handles personal information across all its business operations and technological infrastructure, ensuring consistent protection standards regardless of the collection method or processing purpose.
‍

3. DEFINITIONS AND TERMINOLOGY

For comprehensive understanding of this Policy, the following terms shall be defined as set forth below:

Data Processing Entities: The entities responsible for determining purposes (Controller) and performing operations (Processor) on personal data.

De-identification Process: The implementation of available technical measures during processing that renders the data incapable of being associated with an identified or identifiable individual.

Data Protection Authority (DPA): The governmental regulatory body charged with oversight of data protection laws, enforcement of compliance, and protection of individual privacy rights.

Data Repository: A structured compilation of personal information organized in one or multiple locations, maintained in digital or physical form.

Temporary Restriction: The suspension of processing activities while retaining the personal data in storage.

Personnel: Individuals employed or contracted to perform services for RENERGY.

Explicit Permission: A freely given, specific, informed, and unambiguous indication of the data subject's wishes by which they signify agreement to the processing of their personal data for explicitly stated purposes.

Data Controller: Natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Tracking Technologies: Technical mechanisms that collect information about user interactions with digital platforms to enhance functionality and user experience.

Non-identifiable Information: Data that cannot be linked to an identified or identifiable natural person following the application of de-identification measures.

Personal Information: Any information relating to an identified or identifiable natural person.

Sensitive Personal Information: A category of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning a natural person's sex life or sexual orientation.

Information Removal: The permanent elimination of data from storage systems using secure deletion methods.

Privacy Officer: Individual designated by the organization to supervise data protection compliance and serve as point of contact between the organization, data subjects, and regulatory authorities.

Processing Objective: The explicit reason for which personal data is being collected and used.

Applicable Data Protection Legislation: Legal framework establishing rules and requirements for the processing of personal data by organizations to protect individuals' privacy rights.

Data Processor: Natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Affirmative Consent: Mechanism by which data subjects expressly and proactively agree to specific data processing activities prior to their implementation.

Consent Withdrawal: The revocation of previously granted permission for data processing.

Research Entity: Public or private organization whose institutional mission includes conducting scientific, technical, or statistical research activities.

Data Protection Impact Assessment (DPIA): Systematic analysis of processing operations that evaluates potential privacy risks and documents mitigation measures.

Digital Property: Online presence of an organization or individual, comprising electronic pages accessible via the internet.

Data Subject: Natural person to whom the personal data undergoing processing relates.

Cross-border Data Movement: The transfer of personal information to a jurisdiction outside the country of origin or to an international organization.

Data Processing: Any operation performed on personal data, whether automated or manual, including but not limited to collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, combination, restriction, erasure or destruction.

Collaborative Data Usage: The exchange or joint processing of personal data between separate entities under specific authorizations and for defined purposes.
‍

4. LAWFUL BASES FOR PROCESSING PERSONAL DATA

RENERGY processes personal data under one or more of the following legitimate bases, depending on the relationship between the data subject and our organization:

Legal Compliance: When processing is necessary to fulfill statutory obligations imposed upon RENERGY by applicable laws and regulations.

Contractual Necessity: When processing is required for the performance of a contract to which the data subject is party, or to take steps at the request of the data subject prior to entering into a contract.

Legitimate Interests: When processing is necessary for RENERGY's legitimate interests or those of a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

Explicit Consent: When the data subject has given clear permission for RENERGY to process their personal data for one or more specific purposes.

The databases containing personal data collected and maintained by RENERGY remain under our ownership and responsibility. Access to, usage of, and sharing of such data, when necessary, will be conducted strictly within the parameters of our organizational purposes and business operations. In this regard, personal data may be made available for consultation, shared, or transferred to service providers and relevant authorities, provided that the provisions set forth in this Privacy Policy and applicable regulations are fully respected.

No document, information, or personal data will be disclosed or shared under any circumstances, except when explicitly authorized by the data subject, when necessary for the provision of contracted services, or when required by court order or legal mandate.

In certain circumstances, it may be necessary to transfer personal data to another RENERGY entity, business partner, or external service provider. In such instances, RENERGY requires all recipients to process the data exclusively in accordance with this Privacy Policy and applicable data protection laws.

Within our organization, access to personal data is strictly limited to authorized personnel who require such access to perform their duties, adhering to the principles of purpose limitation, data minimization, and other core data protection principles. All internal data handling is governed by confidentiality obligations and privacy protections as outlined in this Policy.
‍

5. CATEGORIES OF DATA SUBJECTS

RENERGY recognizes and categorizes individuals whose personal data we process according to the following classifications:

Service Recipients: Individuals who have purchased or utilize our products and services.

Workforce Members: Individuals who have entered into employment relationships with our organization.

Independent Contractors: External professionals who provide services to our organization without direct employment status.

Employment Candidates: Individuals who have submitted information as part of our recruitment processes.

Business Associates: Organizations and their representatives with whom we maintain commercial relationships.

Authorized Representatives: Individuals legally empowered to act on behalf of another person or entity in dealings with our organization.

Prospective Clients: Individuals who have expressed interest in our products or services but have not yet established a formal business relationship.
‍

6. DATA COLLECTION METHODOLOGIES

To fulfill our operational objectives and deliver services effectively, RENERGY employs several methodologies for collecting personal information. The following describes our various data collection approaches:

Direct Provision by Data Subjects: All personal information voluntarily entered or transmitted when accessing RENERGY's digital platforms, applications, or when interacting with our services is collected and stored in accordance with this Policy. This includes information provided through forms, account registrations, service requests, and direct communications.

Organizational Sources: Personal data may be obtained from entities with which the data subject maintains a relationship, solely for the purposes of fulfilling legal obligations or when necessary for the execution of contractual agreements to which the data subject is party.

External Sources: RENERGY may acquire personal information through third parties that maintain legitimate relationships with the data subject. We may also collect information from publicly accessible databases maintained by governmental authorities, information made available through official channels, or information intentionally published by the data subject on websites or social networking platforms, always in compliance with applicable privacy regulations.

Automated Collection Technologies: Our systems may gather certain information automatically using industry-standard technologies (such as cookies, pixel tags, and similar tools) designed to enhance user experience on our digital platforms and optimize service delivery based on individual preferences and usage patterns.

For all personal data collection activities, RENERGY adheres to these fundamental principles:

• We collect only information that is essential for our stated purposes.
• When additional data collection becomes necessary, we will either seek specific authorization or provide clear notification to the data subject, accompanied by appropriate justification.
• Personal information collected will be used exclusively for the purposes communicated to the data subject at the time of collection.

The processing of personal information pertaining to minors will be conducted only with specific and separate consent from a parent or legal guardian, implementing additional safeguards appropriate for such sensitive data.

All data processed by RENERGY will be retained only for the period necessary to fulfill the purposes for which it was collected, or as required to satisfy legal and regulatory obligations. Upon expiration of the applicable retention period or upon receiving a valid deletion request from the data subject, RENERGY will securely dispose of the information using industry-standard data destruction protocols.
‍

7. THIRD-PARTY DATA SHARING PRACTICES

RENERGY may share personal data with external entities under specific circumstances as outlined below. We ensure that all data sharing activities comply with applicable data protection regulations and this Privacy Policy.

Operational Necessities: RENERGY may share personal information with third parties when necessary to deliver our services or fulfill our business objectives. In such cases, we disclose only the minimum data required to accomplish the specific purpose.

Service Delivery Partnerships: For strategic operational purposes, RENERGY may share relevant personal data with business partners and service providers that assist with our core functions. These may include organizations that provide technical infrastructure, data analysis services, security monitoring, professional consultation, regulatory compliance verification, or quality assurance assessment. Examples include professional services firms, technical consultants, security specialists, analytics providers, and similar entities that support our operational capabilities.

Compliance with Legal Frameworks: RENERGY may disclose personal information to third parties when required to comply with legal obligations, regulatory requirements, judicial proceedings, or governmental requests. We may also share data to protect and defend our legal rights, the rights of our users, or the rights of other parties; to prevent fraudulent or malicious activities; to enforce our Terms of Service; or to cooperate with legitimate law enforcement investigations.

Consensual Disclosure: RENERGY may share certain information with third parties when the data subject has explicitly instructed or otherwise affirmatively consented to such disclosure. Any consent obtained from data subjects must be freely given, specific, informed, and unambiguous.
‍

8. DATA SUBJECT RIGHTS AND EXERCISE PROCEDURES

In accordance with applicable data protection regulations, RENERGY guarantees data subjects the following rights regarding their personal information:

Confirmation Right: The right to obtain confirmation regarding whether personal data concerning the data subject is being processed.

Access Right: The right to obtain a copy of and information about the personal data being processed.

Rectification Right: The right to correct inaccurate personal data and to complete incomplete personal data.

Minimization Rights: The right to request de-identification, restriction of processing, or deletion of unnecessary or excessive data, or data processed in violation of applicable regulations.

Data Portability Right: The right to receive personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller without hindrance, where technically feasible.

Deletion Right: The right to request the erasure of personal data processed with the data subject's consent, subject to exceptions provided by applicable regulations.

Information Rights: The right to be informed about public and private entities with which the controller has shared the data subject's personal data.

Consent Information: The right to be informed about the possibility of withholding consent and the consequences of such refusal.

Withdrawal Right: The right to revoke previously given consent at any time, subject to legal limitations.

Automated Decision Review: The right to request human review of decisions made solely by automated processing that affect the data subject's interests.

Data subjects may exercise these rights by submitting a formal request through the designated communication channels available on our privacy portal or as specified in our privacy notices. Requests may also be submitted by authorized representatives on behalf of the data subject, subject to verification procedures.

Data subjects should be aware that requests to delete essential information required for account management or service provision may result in the termination of the contractual or business relationship with RENERGY.

RENERGY commits to making all reasonable efforts to fulfill valid requests promptly. However, certain factors may cause justifiable delays or prevent complete fulfillment. In such cases, RENERGY will communicate the specific reasons for any delay or inability to fully satisfy the request.

Data subjects are responsible for providing accurate and current information. RENERGY bears no responsibility for the accuracy or truthfulness of information provided by data subjects, and reserves the right to suspend or terminate access to services if information inaccuracies are identified.
‍

9. INFORMATION SECURITY FRAMEWORK

RENERGY implements comprehensive security measures to protect personal data under our stewardship, adhering to industry best practices and regulatory requirements. Our multilayered information security framework includes:

Access Control Mechanisms: We employ robust authentication systems and authorization protocols to prevent unauthorized access to personal information repositories. These mechanisms ensure that only authenticated and authorized individuals can access sensitive data.

Physical Security Protocols: We maintain strict access restrictions to physical locations where personal data is stored or processed. These facilities are protected through multiple security layers designed to prevent unauthorized entry.

Confidentiality Commitments: All employees, contractors, service providers, and vendors who may access personal data are contractually bound to maintain absolute confidentiality. These individuals undergo regular training on data protection practices and are required to follow established procedures for data handling as outlined in our corporate policies.

Beyond implementing technical safeguards, RENERGY has established a comprehensive organizational approach to data protection. We maintain a dedicated privacy governance program that encompasses all business activities and is supported by a cross-functional privacy team. This program undergoes regular review and enhancement to address emerging privacy risks and regulatory developments.

In the unlikely event of a security incident affecting personal data, RENERGY commits to a swift and thorough response. This includes comprehensive investigation of the incident, implementation of containment measures, remediation of vulnerabilities, and transparent communication with affected data subjects as required by applicable regulations.
‍

10. EXTERNAL WEBSITE INTEGRATIONS

RENERGY's digital platforms may contain links to external websites provided for user convenience, business partnership obligations, or regulatory requirements. These links direct users to third-party websites that operate independently from our organization.

It is important to understand that RENERGY does not exercise control over the privacy practices, data collection methods, or information processing activities of these external websites. Each third-party site maintains its own distinct privacy framework for managing personal information. RENERGY bears no responsibility for the data handling practices implemented by these independent entities.

When users navigate away from RENERGY's digital environments by following external links, they become subject to the privacy policies, terms of use, and data processing practices established by the operators of those destination websites. The protection afforded to personal information on these external platforms falls outside the scope of this Privacy Policy.

RENERGY strongly encourages users to review the privacy policies and terms of service of any external websites before providing personal information or engaging with their services. Understanding how third parties collect and process personal data is an essential step in maintaining control over one's digital privacy.
‍

11. TRACKING TECHNOLOGY IMPLEMENTATION

Tracking technologies are digital tools that may be stored on a user's device when interacting with RENERGY's online services. These tools contain small data elements that are exchanged during digital interactions with our platforms.

The information collected through these technologies—typically including the originating website identifier, duration parameters, and a randomly generated value—is processed by RENERGY's digital interfaces to recognize returning users and personalize their experience based on previously identified preferences and requirements.

RENERGY employs several categories of tracking technologies, each serving distinct functions in our digital ecosystem:

Essential Technologies: These are fundamental components required for the proper functioning of our digital platforms. They do not store personally identifiable information and are typically activated in response to user actions such as privacy preference settings, authentication requests, or form submissions. Due to their critical nature, these technologies cannot be disabled within RENERGY's digital environments. While users may configure their browsers to block these elements, doing so will likely impair certain platform functionalities.

Analytics Technologies: These tools enable RENERGY to quantify visitor interactions and identify traffic sources, providing valuable insights to enhance platform performance. All information gathered through analytics technologies is aggregated and anonymized. While users have the option to disable these technologies, doing so will limit RENERGY's ability to understand user interaction patterns, including visited sections, session duration, and technical issues encountered.

Personalization Technologies: These technologies enable our platforms to remember user preferences, delivering customized experiences aligned with individual needs. They may be deployed directly by RENERGY or through authorized service providers integrated into our digital ecosystem. Disabling these technologies may result in limited personalization capabilities and reduced functionality.

Marketing Technologies: These may be deployed across RENERGY platforms through partnerships with marketing service providers. These technologies assist our partners in developing user-relevant content profiles and measuring promotional campaign effectiveness. While they do not directly store personal information, they create unique identifiers based on browser configurations and device characteristics. Users may opt out of these technologies but will subsequently receive less targeted communications.

Social Integration Technologies: These are implemented by third-party services integrated into RENERGY platforms to facilitate interaction with social networks. They can track user navigation across multiple websites to develop interest profiles. They may also enable content sharing within users' social circles. Disabling these technologies may restrict access to certain social connectivity features.

Users maintain control over tracking technology implementation through their preferred browser settings. However, we advise that certain browser configurations may impact platform functionality and security protections. Depending on the specific settings selected, certain features of our services may operate with limited capabilities.
‍

12. ELECTRONIC COMMUNICATIONS MANAGEMENT

By registering to receive electronic communications from RENERGY, users explicitly consent to our customized compilation of relevant product information, service updates, and promotional offers. This consent extends to RENERGY's analysis of platform usage patterns for the purpose of delivering personalized communications tailored to individual interests and requirements.

Users retain control over their communication preferences and may withdraw their consent to receive electronic communications at any time. To discontinue receipt of such messages, users may utilize the subscription management link embedded within all electronic communications from RENERGY, which directs to our preference management system. Alternatively, users may submit their communication preference changes through any of the official contact channels specified within this Privacy Policy.

RENERGY respects user communication preferences and maintains efficient systems to process opt-out requests promptly. Upon receiving a communication preference change request, we will update our records accordingly and discontinue sending the specified communication types.
‍

13. LEGAL FRAMEWORK AND GENERAL PROVISIONS

This Privacy Policy has been formulated in accordance with internationally recognized principles of information security, data protection, and privacy. It incorporates standards and guidelines established by leading global authorities in these domains and aligns with prevailing best practices for responsible data governance.

This Policy is integrated with RENERGY's Terms of Service, accessible through our privacy portal and privacy notices. All provisions herein shall be interpreted in consonance with applicable data protection legislation and regulatory frameworks governing information privacy.

Should any provision within this Privacy Policy be determined unenforceable or invalid by a competent legal authority, such determination shall not affect the validity or enforceability of the remaining provisions, which shall continue in full force and effect.

All communications transmitted electronically to addresses provided by the data subject, including but not limited to email correspondence, text messages, notifications through mobile applications, or other digital communications, constitute valid legal documentation. Such communications shall be deemed effective and sufficient for conveying information regarding RENERGY's services, operational updates, and modifications to service delivery conditions, except where explicitly stated otherwise within this Privacy Policy.
‍

14. COMMUNICATION CHANNELS

Data subjects seeking additional information or wishing to exercise their rights regarding personal data processing may contact RENERGY through the official channels specified in our privacy portal or within our privacy notices.

For direct communication concerning data protection matters, inquiries may be addressed to our designated Privacy Officer at: privacy@renergytech.com

RENERGY maintains dedicated resources to address privacy-related inquiries and is committed to providing timely and substantive responses to all legitimate requests for information or action regarding personal data processing activities.
‍

15. POLICY UPDATES AND REVISIONS

The RENERGY Privacy Policy, available through the communication channels specified in our privacy portal and privacy notices, represents the most current version of this document. RENERGY reserves the right to modify and update this Policy periodically at its sole discretion to enhance protection measures, improve service quality, or ensure compliance with evolving legal, regulatory, or administrative requirements.

When substantial changes are made to this Policy, RENERGY may notify users through prominent notices on our digital platforms, direct communications, or other appropriate channels. The date of the most recent revision will be indicated at the beginning of this document.

RENERGY encourages all users to review this Privacy Policy regularly to remain informed about how their personal information is protected and processed. Continued use of RENERGY's services following the posting of any modifications to this Policy constitutes acceptance of those changes.

If a user does not accept and agree to the current version of this Privacy Policy, including any modifications thereof, the user should discontinue access to and utilization of RENERGY's platforms, products, and services. By continuing to use our offerings, the user acknowledges awareness of our privacy practices and consents to the processing of their personal data as outlined in this document.
‍
‍