WILD WEST CYBERSECURITY — PRIVACY POLICY Effective Date: April 7, 2026 Last Updated: April 7, 2026 ------------------------------------------------------------ 1. INTRODUCTION ------------------------------------------------------------ Wild West CyberSecurity ("we," "us," "our"), headquartered in Mammoth Lakes, California, respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and safeguard information provided to us through our website (wildwestcyber.com), SMS/text messaging program, voice calls, email communications, and any other interactions with our business. This policy applies to all visitors, customers, prospects, and users of our services and communications. ------------------------------------------------------------ 2. INFORMATION WE COLLECT ------------------------------------------------------------ We may collect the following categories of information: a) Information You Provide Directly: - Full name - Email address - Phone number(s) - Company or organization name - Job title or role - Description of your inquiry, issue, or service request - Any other information you voluntarily provide via phone, text, email, or web form submissions b) Information Collected via SMS/Text Messaging: - Mobile phone number - Content of text messages you send to us - Date, time, and status of messages sent and received - Opt-in and opt-out records (timestamps and method) c) Information Collected via Voice Calls: - Callback phone number - Call duration and timestamps - Information provided during the call (name, company, issue description, urgency level, service requested) d) Information Collected Automatically (Website): - IP address - Browser type and version - Operating system - Pages visited and time spent on pages - Referring website or source - Cookies and similar tracking technologies (see Section 7) We do NOT collect: - Social Security numbers - Payment card numbers (card payments are processed through secure third-party processors — we do not store card data) - Passwords or authentication credentials - Health or medical records (unless specifically engaged for HIPAA compliance services, in which case a separate BAA and data handling agreement will govern) ------------------------------------------------------------ 3. HOW WE USE YOUR INFORMATION ------------------------------------------------------------ We use the information we collect for the following purposes: - To respond to your inquiries and provide customer support - To deliver the cybersecurity services you have requested - To send SMS replies and notifications related to your inquiry - To schedule appointments and follow-up communications - To send service updates, security alerts, and account notifications - To process payments and manage billing (via secure third-party payment processors) - To improve our services, website, and customer experience - To comply with legal obligations, including TCPA, GDPR, HIPAA, and other applicable regulations - For internal analytics, reporting, and quality assurance - To send promotional communications (only with your separate, explicit consent) We will only use your information for the purposes described in this policy or as otherwise disclosed to you at the time of collection. ------------------------------------------------------------ 4. INFORMATION SHARING AND THIRD PARTIES ------------------------------------------------------------ We do NOT sell, rent, lease, or trade your personal information to third parties for their marketing or promotional purposes. We may share your information only in the following limited circumstances: a) Service Providers: We may share information with trusted third-party vendors who assist us in operating our business and delivering services to you. These include: - Twilio (SMS/voice communication platform) - Payment processors (for billing purposes) - Cloud hosting providers (for secure data storage) - Email service providers All service providers are contractually required to: - Maintain the confidentiality and security of your data - Use your information only for the purpose of providing their contracted services to us - Not use your data for their own marketing purposes b) Legal Requirements: We may disclose your information if required to do so by law, regulation, subpoena, court order, or other legal process. c) Protection of Rights: We may disclose information when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, or to investigate fraud. d) Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor entity, which will be bound by this Privacy Policy. ------------------------------------------------------------ 5. SMS/TEXT MESSAGING PRIVACY ------------------------------------------------------------ When you opt in to our SMS program (Wild West CyberSecurity SMS Alerts & Support), the following applies: - We collect your mobile phone number and message content solely to respond to your inquiries and provide service-related communications. - We will NOT use your phone number for unsolicited marketing without your separate, explicit consent. - We will NOT share your phone number or SMS data with third parties for marketing purposes. - Opt-in and opt-out records are maintained for compliance purposes. - You may opt out at any time by texting STOP to +1 (760) 965-0090. - For help, text HELP or email support@wildwestcyber.com. - Message and data rates may apply. Message frequency varies. - See our SMS Terms and Conditions at wildwestcyber.com/terms-and-conditions for full details. ------------------------------------------------------------ 6. DATA RETENTION ------------------------------------------------------------ We retain your personal information only for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law. - Service inquiry records: Retained for up to 3 years after last contact, then securely deleted. - SMS opt-in/opt-out records: Retained for the duration required by TCPA and carrier regulations (minimum 5 years). - Website analytics data: Retained in anonymized/aggregated form indefinitely. - Client service records: Retained per applicable contractual and regulatory requirements. You may request deletion of your personal information at any time by contacting us at support@wildwestcyber.com (see Section 10). ------------------------------------------------------------ 7. COOKIES AND TRACKING TECHNOLOGIES ------------------------------------------------------------ Our website (wildwestcyber.com) may use cookies and similar technologies to improve your browsing experience and analyze website traffic. These may include: - Essential cookies (required for website functionality) - Analytics cookies (to understand how visitors use our site) - Preference cookies (to remember your settings) You can control cookie settings through your browser preferences. Most browsers allow you to block or delete cookies. Note that disabling cookies may affect website functionality. We do NOT use cookies for third-party advertising or cross-site tracking. ------------------------------------------------------------ 8. DATA SECURITY ------------------------------------------------------------ We implement industry-standard administrative, technical, and physical safeguards to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include: - Encryption of data in transit (TLS/SSL) and at rest - Access controls and authentication requirements - Regular security assessments and monitoring - Employee training on data handling and privacy practices While we take reasonable precautions to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your information to the best of our ability. ------------------------------------------------------------ 9. CHILDREN'S PRIVACY ------------------------------------------------------------ Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected information from a child under 18, we will take steps to delete it promptly. If you believe a child has provided us with personal information, please contact us at support@wildwestcyber.com. ------------------------------------------------------------ 10. YOUR RIGHTS AND CHOICES ------------------------------------------------------------ Depending on your location and applicable law, you may have the following rights regarding your personal information: - Right to Access: Request a copy of the personal information we hold about you. - Right to Correction: Request that we correct inaccurate or incomplete information. - Right to Deletion: Request that we delete your personal information, subject to legal retention requirements. - Right to Opt Out: Opt out of SMS communications by texting STOP, or opt out of promotional emails by using the unsubscribe link. - Right to Restrict Processing: Request that we limit how we use your information. - Right to Data Portability: Request your data in a structured, commonly used, and machine-readable format. To exercise any of these rights, contact us at: Email: support@wildwestcyber.com We will respond to your request within 30 days. We may ask you to verify your identity before processing your request. California Residents: Under the California Consumer Privacy Act (CCPA), you have additional rights including the right to know what personal information is collected and shared, and the right to opt out of the sale of personal information. We do NOT sell personal information. ------------------------------------------------------------ 11. THIRD-PARTY LINKS ------------------------------------------------------------ Our website or communications may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices or content of those third-party sites. We encourage you to review the privacy policies of any third-party sites you visit. ------------------------------------------------------------ 12. CHANGES TO THIS PRIVACY POLICY ------------------------------------------------------------ We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes: - The revised policy will be posted at wildwestcyber.com/privacy. - The "Last Updated" date at the top will be revised. - For material changes, we will make reasonable efforts to notify you (e.g., via email or a notice on our website). Your continued use of our services or communications after changes are posted constitutes your acceptance of the updated policy. ------------------------------------------------------------ 13. CONTACT US ------------------------------------------------------------ If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: Wild West CyberSecurity Mammoth Lakes, California Email: support@wildwestcyber.com Web: wildwestcyber.com ------------------------------------------------------------ By using our website, services, or opting in to our communications, you acknowledge that you have read, understood, and agree to this Privacy Policy. DISCLAIMER: This Privacy Policy is provided for compliance and informational purposes and does not constitute legal advice. We recommend consulting with legal counsel to ensure full compliance with all applicable federal, state, and local privacy laws and regulations.