Privacy Policy

Intakor, a division of Zolley, LLC ("Company") respects the privacy of any site visitor, client or platform user ("Client"). Company is committed to protecting Client's privacy through compliance with this Privacy Policy ("Privacy Policy"). This Privacy Policy describes how we collect and use Client's Personal Information when Client visits our website at intakor.com or otherwise uses the Platform, and that a Client may provide in electronic messages to Company.

Please read this Privacy Policy to understand our policies and practices regarding Client's Personal Information and how we will handle it. If Clients do not agree with our policies and practices, do not use the Platform. By accessing or using the Platform, Client agrees and consents to this Privacy Policy.

Company may change this Privacy Policy at any time, at its discretion. Client's continued use of the Platform after we make changes is deemed to be acceptance of and consent to those changes, so please check the Privacy Policy periodically for updates.

Company may collect two types of information from Client when Client visits the Platform: Personal Information and Non-Personal Information (collectively "Information").

• "Personal Information" refers to data by which Client may be personally identified, such as name, email address, employer, job title and department, and telephone number.
• "Non-Personal Information" means data that is about Client, but does not identify Client specifically. If Client does nothing during Client's visit to our Platform but browse, read pages, or view content, we will gather and store Information about Client's visit that does not identify Client personally.

We collect Information:

• Directly from Client when Client provides it to us — such as when submitting an inquiry, booking a strategy call, or otherwise contacting Intakor. This may include name, contact information, company details, and communication preferences.
• From third parties including partners, vendors, and data providers. We take steps to confirm that information received from third parties has been collected with Client's consent or that these parties are otherwise legally permitted to share it.
• Automatically as Client navigates through the Platform, through the use of cookies, pixel tags, and similar technologies. Please view our separate Cookies Policy for more information.

We use Personal Information that we collect about Client or that Client provides to us for the following purposes:

For Functionality and Development of the Platform

We use information to provide, offer, and personalize the Platform and other Company Services. Some information, like Client's IP address, is used to communicate with Client's device to provide network connectivity, measure usage levels, diagnose server problems, and provide security features. We do NOT retain Personal Information to develop, improve, or train generalized AI or machine learning models.

For Customer Support and Reporting

The Platform may use information to provide Company with updates and reports, check that the Platform is working properly, and provide Client with customer support for the Platform and other Company Services.

For Business Operations

We use information to operate our business, including accounting, auditing, billing, reconciliation, and collection activities, as well as crime or fraud monitoring and prevention, protecting our legal rights, and performing contractual obligations.

To Communicate

We use contact information to send messages, provide Company Services, respond to customer service requests, provide alerts such as security updates or changes in our policies, and send marketing or informational materials in accordance with Client's communication preferences.

For Advertising and Marketing

We may use Personal Information collected from Client, combined with information about what advertisements Client viewed and other information we collect, to enable us to provide personalized content and to study the effectiveness of advertising and marketing campaigns.

The Platform is designed to provide reasonable and appropriate administrative, technical and organizational security measures to protect Client's Personal Information against risks such as temporary or permanent loss, destruction, and unauthorized or unlawful access, alteration, use or disclosure. We require our suppliers and vendors to apply similar protections when they access or use Personal Information that we share with them.

No technology, data transmission or system can be guaranteed to be 100% secure. If Client has reason to believe that Client's interaction with us is no longer secure, please immediately notify us using the contact details in Section 18.

We work through our affiliates to provide the Platform and other Company Services. We also work with authorized suppliers and business partners. When we share Client's Personal Information with these companies, we put in place appropriate measures to limit the use of Client's information only for legal and authorized purposes consistent with this Privacy Policy.

• With Affiliates and Subsidiaries — for purposes limited to and consistent with this Privacy Policy.
• With Suppliers — our authorized vendors and suppliers may require Personal Information to provide services we have contracted for, such as website hosting, data analysis, IT services, or customer service.
• With Partners — we occasionally have relationships with third parties working with us to offer marketing and similar promotions, joint products or research studies, or to facilitate services on the Platform.
• For Advertising and Marketing — we share Client's information with third-party company partners to prepare and deliver advertising and marketing content.
• For Legal Compliance — when required by law or to respond to legal process, to protect our customers, to protect lives, or to maintain the security of the Platform.
• Sales, Mergers & Acquisitions — we may disclose Personal Information as part of a contemplated or actual corporate transaction such as a reorganization, merger, or sale.

We do not knowingly collect, use, or disclose Information from children under 13. If we learn that we have collected the Personal Information of a child under 13, we will take steps to delete the information as soon as possible. If a Client becomes aware that information from a child under 13 years of age has been provided, please contact us using the details in Section 18.

We are not responsible for the practices employed by websites or services linked to or from the Platform, including the information or content contained therein. This Privacy Policy does not address, and we are not responsible for, the policies and practices of third parties or other organizations that are not operating on Company's behalf, including policies and practices related to privacy and security, data collection, processing, use, storage, and disclosure.

Some browsers incorporate a "Do Not Track" ("DNT") feature that, when turned on, signals to websites and online services that Client does not want to be tracked. At this time, the Platform does not respond to DNT signals.

Company respects Client's rights in how Client's Personal Information is used and shared. Depending on where Client lives, Client may have rights to request access or corrections to Client's personal data and make choices about the kinds of marketing materials Client receives (or choose not to receive marketing from Company at all). See below for more information, depending on Client's location.

If Client is in Europe, Client may have additional rights under the GDPR, the UK GDPR, or nFADP. Additional choices and rights may be available to Client depending on which Company Services Client uses.

Access, Correction or Deletion of Client's Information

If Client would like to correct or update Client's Personal Information, or to request access to or deletion of Client's Personal Information, Client may contact us using the details in Section 18. Please note that we may still need to retain certain information for recordkeeping purposes.

Data Privacy Rights Specific to EEA, UK, and Switzerland

Client can object to processing of Client's Personal Information, ask us to restrict processing, or request portability of Client's Personal Information. Client can exercise these rights by making a written request using the contact details in Section 18.

Advertising and Marketing Choices

We give Client many choices regarding our use and disclosure of Client's Personal Information for advertising and marketing purposes. Please note that if Client chooses not to receive marketing communications from us, we may still send communications related to Client's products or the Platform, such as security updates or service notices.

Company is based in the United States. As such, we may transfer Client's Personal Information between the United States and our affiliates and business partners in other countries. Company transfers information internationally in order to operate efficiently, to improve performance, and to create redundancies to protect information in the event of an outage or other problem.

Whenever the Company transfers Personal Information beyond the country of origin, we will do so in accordance with applicable laws. For Personal Information originating in the European Economic Area (EEA), the United Kingdom (UK), or Switzerland that is transferred outside those jurisdictions, Company participates in the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and, as applicable, the UK extension to the EU-U.S. DPF, and/or the Swiss-U.S. Data Privacy Framework.

Zolley, LLC (including Intakor) complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Company has certified to the U.S. Department of Commerce that Company adheres to the EU-U.S. Data Privacy Framework Principles with regard to the processing of personal data received from the European Union, the United Kingdom, and Switzerland.

If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework program, and to view our certification, please visit dataprivacyframework.gov.

This section is addressed to California residents only and provides more information about Client's rights under the California Consumer Privacy Act or "CCPA" (California Civil Code Section 1798.100 et seq.), as amended. Subject to certain exceptions, the CCPA grants to California residents the rights to: be notified about the collection, use, disclosure, sale or sharing of their Personal Information; request access to, deletion of, or correction of their Personal Information; request to opt out of the "sale" or "sharing" of Personal Information; limit the use or disclosure of Sensitive Personal Information; and to not be discriminated against for exercising such rights.

Company does not sell Client's Personal Information. Client can request access to, correction of or deletion of Client's Personal Information by using the contact details in Section 18.

This section is addressed to Colorado residents only and provides more information about Client's rights under the Colorado Privacy Act ("CPA"). Subject to certain exceptions, the CPA grants Colorado residents the rights to: be notified about the collection, use, disclosure, or sale of their Personal Information; request access to, deletion of, or correction of their Personal Information; and request to opt out of the use of Personal Information for targeted advertising, sale, or certain profiling.

Client can request access to, correction of or deletion of Client's Personal Information by using the contact details in Section 18. If we have not responded to Client's request within 45 days, Client has the right to appeal. To appeal, contact us using the details in Section 18.

This section is addressed to Connecticut residents only and provides more information about Client's rights under the Connecticut Data Privacy Act ("CTDPA"). Client can exercise Client's rights by using the contact details in Section 18. If we decline to take action regarding Client's request, Client has the right to appeal by contacting us using the details in Section 18.

This section is addressed to Utah residents only and provides more information about Client's rights under the Utah Consumer Privacy Act ("UCPA"). Client can exercise Client's rights by using the contact details in Section 18.

This section is addressed to Virginia residents only and provides more information about Client's rights under Virginia's Consumer Data Protection Act ("VCDPA"). Subject to certain exceptions, the VCDPA grants Virginia residents the rights to: be notified about the collection, use, disclosure, or sale of their Personal Information; request access to, deletion of, or correction of their Personal Information; request to opt out of the use of Personal Information for targeted advertising, sale, or certain profiling; and to not be discriminated against for exercising such rights.

Client can request access to, correction of or deletion of Client's Personal Information by using the contact details in Section 18. If we decline Client's request, Client has the right to appeal by contacting us using the details in Section 18.

To ask questions about this Privacy Policy and our privacy practices, please contact us using any of the methods below.