Privacy Policy | Leoserv Inc.

Effective Date: May 7, 2026

Last Updated: May 7, 2026

1. INTRODUCTION

This Privacy Policy governs the manner in which Leoserv Inc ("Leoserv," "Company," "we," "us," or "our"), a Texas corporation with principal offices located at 1790 Hughes Landing Blvd, Suite 400, The Woodlands, Texas 77380, collects, uses, maintains, and discloses information collected from users (each, a "User," "you," or "your") of the https://leoserv.com website and any derivative or related services, whether accessed via computer, mobile device, or otherwise (collectively, the "Site" and "Services").

BY ACCESSING OR USING OUR SITE OR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS PRIVACY POLICY AND OUR TERMS OF USE. IF YOU DO NOT AGREE WITH THE TERMS OF THIS PRIVACY POLICY, YOU ARE EXPRESSLY PROHIBITED FROM USING THE SITE OR SERVICES AND YOU MUST DISCONTINUE USE IMMEDIATELY.

We reserve the absolute right, at our sole discretion, to change, modify, add, or remove portions of this Privacy Policy at any time without prior notice. All changes are effective immediately upon posting to the Site. Your continued use of the Site or Services following the posting of changes constitutes your binding acceptance of such changes. We encourage you to frequently review this Privacy Policy. The date of the most recent revision will appear at the top of this page.

This Privacy Policy applies only to information collected through our Site and Services and not to information collected offline, through any other websites (even if linked to our Site), or through any third-party services, applications, or content that may be accessible from or on our Site. The privacy practices described in this Privacy Policy are subject to applicable laws in the jurisdictions in which we operate.

2. INFORMATION WE COLLECT

We collect several categories of information from and about Users of our Site and Services, including information by which you may be personally identified and information that is about you but individually does not identify you. The information we collect includes:

2.1 PERSONAL INFORMATION

Personal Information means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. Personal Information we collect includes, but is not limited to:

Full legal name, preferred name, and any aliases
Physical address, billing address, shipping address, and mailing address
Email address (personal and business)
Telephone number, mobile number, and fax number
Date of birth and age
Social Security Number (only when required for tax reporting or verification purposes)
Driver's license number or state identification number (when required)
Government-issued identification numbers
Username, password, and other account credentials
Payment card information (credit card, debit card numbers, CVV, expiration dates)
Bank account information (account numbers, routing numbers)
Billing and transaction history
Tax identification numbers for business entities
Professional credentials and certifications
Employment history and professional references
Educational background
Photographic images and video recordings
Voice recordings from customer service calls
Biometric information (if applicable)
Geolocation data
IP addresses and device identifiers
Any other information you voluntarily provide to us

2.2 BUSINESS INFORMATION

When you engage us for professional services, we collect extensive business information, including but not limited to:

Business legal name, DBA names, and trade names
Business entity type and structure
Employer Identification Number (EIN) or Tax ID
Business address, registered agent address, and physical locations
Business phone numbers, fax numbers, and contact information
Business email addresses and domain names
Website URLs and social media profile information
Industry classification and business description
Annual revenue and financial statements
Number of employees and organizational structure
Business licenses and permits
Articles of incorporation or organization documents
Operating agreements and partnership agreements
Business bank account information
Marketing budgets and advertising spend data
Customer lists and databases
Vendor and supplier information
Competitor information and market analysis
Business goals, objectives, and strategic plans
Current marketing strategies and historical performance data
Brand guidelines, style guides, and creative assets
Intellectual property information (trademarks, copyrights, patents)
Proprietary business processes and trade secrets
Customer relationship management (CRM) data
Sales data and conversion metrics
Web analytics and traffic data
Search engine rankings and SEO performance data
Social media metrics and engagement data
Email marketing statistics and subscriber lists
Advertising campaign performance data
Any other business-related information necessary to provide our Services

2.3 CLIENT PROJECT DATA AND MATERIALS

In the course of providing our digital marketing, web design, SEO, social media management, software development, and consulting services, we collect, access, and process extensive information and materials from our clients, including but not limited to:

Website content (text, images, videos, audio files, documents)
Website source code, databases, and technical configurations
Website hosting credentials and access information
Domain registrar credentials and DNS management access
Content management system (CMS) login credentials
FTP/SFTP credentials and server access information
Database credentials and backup files
SSL certificate information and security credentials
Email hosting credentials and email account access
Social media account credentials (Facebook, Instagram, Twitter, LinkedIn, YouTube, TikTok, Pinterest, and all other platforms)
Social media business manager and advertising account access
Advertising platform credentials (Google Ads, Facebook Ads Manager, LinkedIn Ads, etc.)
Analytics platform credentials (Google Analytics, Adobe Analytics, etc.)
Email marketing platform credentials (Mailchimp, Constant Contact, etc.)
Marketing automation platform credentials (HubSpot, Marketo, Pardot, etc.)
Customer relationship management (CRM) system credentials
E-commerce platform credentials (Shopify, WooCommerce, BigCommerce, etc.)
Payment processor credentials and merchant account information
Third-party integration credentials and API keys
Brand assets (logos, images, fonts, color palettes, brand guidelines)
Marketing collateral (brochures, flyers, business cards, presentations)
Photography and videography (original files and edited versions)
Graphic design files and source files
Audio files and podcasts
Written content (blog posts, articles, website copy, social media posts)
Email templates and email campaign content
Advertising creative (images, videos, copy, landing pages)
Customer lists and prospect databases
Email subscriber lists and contact information
Product catalogs and service descriptions
Pricing information and promotional offers
Testimonials and customer reviews
Legal documents and contracts
Financial data related to marketing performance
Proprietary business information and trade secrets
Any other materials, information, or data provided by clients for the purpose of our Services

2.4 AUTOMATICALLY COLLECTED INFORMATION

When you access our Site or use our Services, we automatically collect certain information about your device and usage patterns, including:

Internet Protocol (IP) address and geographical location data
Browser type, version, and language settings
Operating system and platform
Device type, model, and manufacturer
Mobile device identifiers (UDID, Advertising ID, etc.)
Screen resolution and display settings
Internet Service Provider (ISP)
Referring and exit pages and URLs
Date and time stamps of visits
Clickstream data and navigation paths
Pages viewed and time spent on pages
Search queries entered on our Site
Links clicked and features used
Files downloaded or uploaded
Errors encountered and error messages
Bandwidth usage and connection speed
Cookies, web beacons, and similar tracking technologies data
Local storage data
Session data and user behavior patterns
Heatmaps and user interaction recordings
Any other technical information about your device and usage

2.5 TRACKING TECHNOLOGIES AND COOKIES

We use cookies, web beacons, pixel tags, JavaScript, local storage, session storage, and other automated tracking technologies to collect information about you when you use our Site or Services. These technologies help us:

Recognize your browser or device
Remember your preferences and settings
Understand how you use our Site and Services
Analyze trends and user behavior
Measure the effectiveness of our marketing campaigns
Deliver targeted advertising
Prevent fraud and enhance security
Improve our Site and Services

You can control cookies through your browser settings. However, if you disable cookies, some features of our Site may not function properly. We may use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device until deleted or expired).

Third-party service providers, including Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and other analytics and advertising platforms, may also use cookies and tracking technologies to collect information about your activities on our Site and across other websites.

2.6 INFORMATION FROM THIRD-PARTY SOURCES

We may receive information about you from third-party sources, including:

Social media platforms (Facebook, Instagram, Twitter, LinkedIn, YouTube)
Data brokers and data aggregators
Marketing partners and advertising networks
Analytics providers and technology platforms
Credit reporting agencies and background check services
Public databases and government records
Business partners and affiliate companies
Service providers who provide services on our behalf
Other users who refer you to our Services
Third-party integrations and APIs you authorize
Any other third-party sources from which we lawfully obtain information

2.7 INFORMATION YOU PROVIDE VOLUNTARILY

We collect information you voluntarily provide to us, including when you:

Request information about our Services
Request a quote or proposal
Fill out a contact form or survey
Subscribe to our newsletter or email list
Create an account on our Site
Engage us for professional services
Communicate with us via email, phone, chat, or other means
Participate in promotions, contests, or giveaways
Attend webinars, events, or conferences we host
Provide testimonials or reviews
Interact with our social media accounts
Submit job applications or employment inquiries
Provide feedback or suggestions
Report problems or request support
Engage in any other interaction with us

2.8 SENSITIVE PERSONAL INFORMATION

We may collect Sensitive Personal Information in limited circumstances, including:

Social Security Numbers or tax identification numbers (for tax reporting and employment purposes)
Financial account information and payment card data (for payment processing)
Government-issued identification numbers (for identity verification)
Precise geolocation data (when using mobile applications with location services enabled)
Health information (only if voluntarily provided and relevant to services requested)
Biometric information (if applicable to specific services)
Any other information deemed sensitive under applicable privacy laws

We implement heightened security measures and access controls for all Sensitive Personal Information and limit collection, use, and disclosure to purposes for which the information was collected or as otherwise permitted by law.

3. HOW WE USE YOUR INFORMATION

We use the information we collect about you for various legitimate business purposes, including:

3.1 SERVICE DELIVERY AND PERFORMANCE

Providing, operating, maintaining, and improving our Services
Creating, managing, and servicing your account
Processing transactions and payments
Fulfilling orders and service requests
Delivering digital marketing services, including strategy development, campaign creation, execution, management, and optimization
Designing, developing, launching, and maintaining websites and web applications
Providing search engine optimization (SEO) services, including keyword research, on-page optimization, technical SEO, link building, and performance tracking
Managing social media accounts, creating and publishing social media content, engaging with followers, and analyzing social media performance
Creating graphic designs, logos, branding materials, marketing collateral, and visual assets
Developing software applications, custom tools, and technology solutions
Providing consulting services related to digital marketing, technology, and business growth
Performing data analysis, market research, and competitive analysis
Managing advertising campaigns across multiple platforms
Creating and distributing email marketing campaigns
Developing content marketing strategies and creating content
Managing online reputation and review management
Providing video marketing services, including production and distribution
Hosting and managing websites and digital properties
Implementing marketing automation and workflow systems
Integrating third-party tools, platforms, and services
Providing customer support and technical assistance
Training clients on platforms, tools, and systems
Monitoring and reporting on campaign performance and results
Making recommendations for improving marketing and business outcomes

3.2 COMMUNICATION

Communicating with you about your account, orders, and transactions
Responding to your inquiries, requests, and customer service needs
Sending administrative information, updates, and notices
Providing technical support and troubleshooting assistance
Sending you marketing and promotional communications (with your consent where required)
Delivering newsletters, articles, and educational content
Notifying you about new services, features, and offerings
Conducting surveys and requesting feedback
Sending appointment reminders and project updates
Facilitating communication between you and our team members
Any other communications necessary for our business relationship

3.3 MARKETING AND ADVERTISING

Marketing our Services to you and others
Delivering targeted advertising based on your interests and behavior
Personalizing your experience on our Site
Analyzing the effectiveness of our marketing campaigns
Conducting market research and competitive analysis
Creating lookalike audiences for advertising purposes
Retargeting visitors who have interacted with our Site or Services
Measuring return on advertising spend (ROAS)
Optimizing advertising campaigns and creative assets
Tracking conversions and attribution
Segmenting audiences for targeted communications
A/B testing marketing messages and creative
Building and managing email marketing lists
Creating case studies and success stories (with client permission)
Promoting our Services through various channels
Any other marketing activities necessary to grow our business

3.4 ANALYTICS AND IMPROVEMENT

Analyzing how users interact with our Site and Services
Understanding user preferences, trends, and patterns
Monitoring and analyzing usage statistics and performance metrics
Identifying areas for improvement and optimization
Testing new features, functionality, and designs
Conducting quality assurance and troubleshooting
Diagnosing technical problems and errors
Improving the efficiency and effectiveness of our Services
Developing new products, services, and offerings
Benchmarking our performance against industry standards
Generating reports and insights for internal use
Making data-driven business decisions
Enhancing user experience and satisfaction
Any other analytical activities to improve our business

3.5 SECURITY AND FRAUD PREVENTION

Protecting the security and integrity of our Site and Services
Detecting, preventing, and responding to security incidents
Identifying and preventing fraud, abuse, and illegal activities
Verifying identity and authenticating users
Monitoring for unauthorized access or use
Investigating suspicious activities and potential violations
Protecting our rights, property, and safety
Protecting the rights, property, and safety of our users and third parties
Enforcing our Terms of Use and other agreements
Complying with our legal and regulatory obligations
Responding to legal requests and preventing harm
Maintaining audit trails and logs
Implementing access controls and security measures
Any other activities necessary to maintain security and prevent fraud

3.6 LEGAL AND COMPLIANCE

Complying with applicable laws, regulations, and legal processes
Responding to lawful requests from public authorities
Enforcing our legal rights and defending against legal claims
Complying with court orders, subpoenas, and government investigations
Fulfilling our contractual obligations
Maintaining records as required by law
Reporting to government agencies and regulatory bodies as required
Complying with tax laws and reporting requirements
Protecting against liability and legal exposure
Resolving disputes and conducting investigations
Cooperating with law enforcement and regulatory authorities
Any other activities required by law or necessary for legal compliance

3.7 BUSINESS OPERATIONS

Operating and managing our business
Managing our workforce and contractors
Conducting human resources activities
Processing employment applications
Managing vendor and supplier relationships
Conducting internal audits and quality assurance
Managing our finances and accounting
Preparing financial statements and reports
Budgeting and forecasting
Managing insurance and risk management activities
Conducting due diligence for business transactions
Evaluating and pursuing business opportunities
Facilitating mergers, acquisitions, or asset sales
Maintaining business continuity and disaster recovery capabilities
Any other activities necessary for normal business operations

3.8 CLIENT SERVICE OBLIGATIONS

To fulfill our contractual obligations to clients who engage us for Services, we may use information for:

Accessing and managing clients' third-party accounts and platforms
Creating, publishing, and managing content on behalf of clients
Executing marketing campaigns and strategies
Making decisions regarding advertising spend and targeting
Communicating with clients' customers, prospects, and audiences
Analyzing clients' business data and performance metrics
Making strategic recommendations
Reporting on results and return on investment
Collaborating with clients' teams and other service providers
Any other activities necessary to deliver the Services clients have engaged us to provide

4. HOW WE SHARE YOUR INFORMATION

We may share your information in the following circumstances:

4.1 SERVICE PROVIDERS AND VENDORS

We share information with third-party service providers, contractors, and vendors who perform services on our behalf, including:

Cloud hosting providers and data center operators
Content delivery networks (CDNs)
Payment processors and merchant services providers
Banking and financial institutions
Email service providers and email delivery platforms
Customer relationship management (CRM) systems
Project management and collaboration tools
Analytics platforms and data analysis services
Advertising networks and platforms
Social media platforms and management tools
SEO tools and keyword research platforms
Web development frameworks and platforms
Graphic design software and creative tools
Video hosting and streaming services
Survey and feedback collection tools
Live chat and customer support platforms
Cybersecurity and fraud prevention services
Identity verification and background check services
Legal, accounting, and professional services firms
Marketing automation platforms
Call tracking and recording services
Scheduling and appointment booking systems
Document storage and management services
Backup and disaster recovery services
Any other service providers necessary for our business operations

These service providers are contractually obligated to use your information only as necessary to provide services to us and are prohibited from using or disclosing your information for any other purpose.

4.2 CLIENT SERVICE PLATFORMS

In the course of providing Services to our clients, we share information with various platforms, networks, and services, including but not limited to:

Social media platforms: Facebook, Instagram, Twitter, LinkedIn, YouTube, TikTok, Pinterest, Snapchat, and others
Advertising platforms: Google Ads, Facebook Ads Manager, LinkedIn Advertising, Microsoft Advertising, Amazon Advertising, and others
Search engines: Google, Bing, Yahoo, and others
Analytics platforms: Google Analytics, Adobe Analytics, Mixpanel, and others
Email marketing platforms: Mailchimp, Constant Contact, SendGrid, AWeber, and others
Marketing automation: HubSpot, Marketo, Pardot, ActiveCampaign, and others
E-commerce platforms: Shopify, WooCommerce, BigCommerce, Magento, and others
Payment processors: Stripe, PayPal, Square, and others
Review platforms: Google My Business, Yelp, Trustpilot, and others
Web hosting providers: GoDaddy, Bluehost, SiteGround, WP Engine, and others
Domain registrars: GoDaddy, Namecheap, Network Solutions, and others
CDN providers: Cloudflare, Amazon CloudFront, and others
Video platforms: YouTube, Vimeo, Wistia, and others
Webinar platforms: Zoom, GoToWebinar, WebinarJam, and others
Any other platforms necessary to deliver our Services

4.3 BUSINESS TRANSFERS

In connection with any merger, sale of company assets, financing, acquisition, divestiture, or dissolution of all or a portion of our business, or during negotiation of such transactions, your information may be transferred to, sold to, or shared with prospective or actual purchasers, successors, or assigns. In the event of an insolvency, bankruptcy, or receivership, information may be transferred as a business asset.

4.4 AFFILIATES AND SUBSIDIARIES

We may share your information with our parent company, subsidiaries, affiliates, and other entities under common ownership or control. These entities will use your information in accordance with this Privacy Policy and applicable law.

4.5 LEGAL REQUIREMENTS AND PROTECTION OF RIGHTS

We may disclose your information when we believe in good faith that disclosure is necessary to:

Comply with applicable laws, regulations, legal processes, or enforceable governmental requests
Respond to subpoenas, court orders, or other legal proceedings
Comply with law enforcement requests and cooperate with investigations
Enforce our Terms of Use, Privacy Policy, or other agreements
Detect, prevent, or address fraud, security, or technical issues
Protect against harm to the rights, property, or safety of Leoserv, our users, employees, or the public as required or permitted by law
Protect our legal rights and defend against legal claims
Investigate potential violations of our policies
Prevent illegal activities or violations of law
Comply with our legal and regulatory obligations
Exercise or defend legal claims

4.6 WITH YOUR CONSENT

We may share your information with third parties when you have provided your explicit consent or at your direction. This includes sharing information with platforms, tools, or services you authorize us to access on your behalf.

4.7 AGGREGATED AND DE-IDENTIFIED INFORMATION

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you. This may include statistical data, industry benchmarks, research findings, and insights derived from our Services. Such information is not considered Personal Information and may be shared without restriction.

4.8 MARKETING PARTNERS

With your consent where required by law, we may share your information with marketing partners, advertising networks, and other third parties for their own marketing purposes. You have the right to opt-out of such sharing.

4.9 PUBLIC POSTINGS

If you post content, reviews, testimonials, comments, or other materials to public areas of our Site or through our Services, such information will be publicly available and may be viewed, collected, and used by others. We cannot control the actions of other users or third parties with whom you choose to share your information.

5. THIRD-PARTY WEBSITES AND SERVICES

Our Site may contain links to third-party websites, applications, and services that are not owned or controlled by Leoserv. This Privacy Policy applies only to information collected by our Site and Services. We are not responsible for the privacy practices or content of third-party sites, applications, or services.

When you click on a link to a third-party site or use a third-party service, you are subject to that third party's privacy policy and terms of use. We encourage you to read the privacy policies of any third-party sites you visit or services you use.

Third-party platforms and services we may integrate with or link to include, but are not limited to: social media platforms, advertising networks, analytics services, payment processors, e-commerce platforms, email marketing services, CRM systems, web hosting providers, and any other third-party tools necessary for our business operations or Service delivery.

We make no representations regarding the policies or practices of third-party websites or services and are not liable for the actions, privacy practices, or content of such third parties.

6. DATA SECURITY

We implement commercially reasonable administrative, technical, and physical security measures designed to protect your information from unauthorized access, use, alteration, disclosure, or destruction. These measures include:

Encryption of data in transit using SSL/TLS protocols
Encryption of sensitive data at rest
Secure socket layer (SSL) certificates for our website
Firewalls and intrusion detection/prevention systems
Access controls and authentication mechanisms
Multi-factor authentication for sensitive accounts
Regular security assessments and vulnerability testing
Employee background checks and security training
Confidentiality agreements with employees and contractors
Secure data centers with physical access controls
Regular software updates and security patches
Incident response and breach notification procedures
Data backup and disaster recovery systems
Network monitoring and logging
Secure disposal and destruction of information

Despite these measures, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your information. You acknowledge and accept that you provide your information at your own risk.

In the event of a data breach that compromises your Personal Information, we will notify you and applicable regulatory authorities as required by law. Notification will include the nature of the breach, the types of information involved, the measures taken to address the breach, and steps you can take to protect yourself.

You are responsible for maintaining the confidentiality of your account credentials and for all activities that occur under your account. You must notify us immediately of any unauthorized use of your account or any other security breach.

7. DATA RETENTION

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods vary depending on the type of information, the purpose for which it was collected, and applicable legal requirements.

Factors we consider when determining retention periods include:

The length of time we have an ongoing relationship with you
Whether you have an active account with us
Whether we are providing Services to you
Legal, contractual, or regulatory obligations requiring retention
Whether the information is necessary for legitimate business purposes
Whether the information is subject to litigation holds or legal preservation requirements
Industry best practices and standards
The nature and sensitivity of the information
Potential risks from unauthorized use or disclosure
Whether we can achieve the purposes through other means

Typical retention periods include:

Account Information: For the duration of your account plus seven (7) years after account closure
Transaction Records: Seven (7) years from the date of the transaction
Payment Information: As required by payment card industry standards and applicable law
Marketing Communications: Until you opt-out or withdraw consent, plus a reasonable period to process your request
Client Project Data: For the duration of the engagement plus seven (7) years after project completion
Website Analytics Data: Twenty-six (26) months from collection
Communication Records: Seven (7) years from the date of communication
Legal and Compliance Records: As required by applicable law, typically seven (7) years or longer
Employee Records: Seven (7) years after termination of employment
Tax Records: Seven (7) years as required by IRS regulations

When information is no longer needed, we securely delete, destroy, or anonymize it in accordance with our data retention and destruction policies. However, we may retain information as necessary to comply with legal obligations, resolve disputes, enforce agreements, or for other legitimate business purposes.

Certain information may be retained in backup systems, archives, or disaster recovery systems for a period of time after deletion. We implement technical measures to ensure such information is not accessed or used except as necessary for system recovery purposes.

8. YOUR PRIVACY RIGHTS

Depending on your jurisdiction and applicable law, you may have certain rights regarding your Personal Information:

8.1 RIGHT TO ACCESS

You have the right to request access to the Personal Information we hold about you. This includes the right to obtain a copy of your Personal Information and information about how we use it.

8.2 RIGHT TO RECTIFICATION

You have the right to request that we correct inaccurate or incomplete Personal Information about you.

8.3 RIGHT TO DELETION

You have the right to request that we delete your Personal Information, subject to certain exceptions, including when retention is necessary to:

Complete the transaction for which the information was collected
Comply with legal obligations
Exercise or defend legal claims
Detect and prevent security incidents or fraud
Fulfill our contractual obligations

8.4 RIGHT TO RESTRICTION OF PROCESSING

You have the right to request that we restrict the processing of your Personal Information in certain circumstances, such as when you contest the accuracy of the information or object to processing.

8.5 RIGHT TO DATA PORTABILITY

You have the right to receive your Personal Information in a structured, commonly used, and machine-readable format and to transmit that information to another controller where technically feasible.

8.6 RIGHT TO OBJECT

You have the right to object to our processing of your Personal Information for certain purposes, including direct marketing, profiling, and processing based on legitimate interests.

8.7 RIGHT TO WITHDRAW CONSENT

Where processing is based on your consent, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before withdrawal.

8.8 RIGHT TO OPT-OUT OF SALE OR SHARING

Under certain privacy laws, you have the right to opt-out of the "sale" or "sharing" of your Personal Information as those terms are defined under applicable law. We do not sell Personal Information in the traditional sense. However, our use of certain advertising and analytics services may constitute a "sale" or "sharing" under some state laws.

8.9 RIGHT TO NON-DISCRIMINATION

You have the right not to receive discriminatory treatment for exercising your privacy rights. We will not discriminate against you for exercising your rights, including by denying goods or services, charging different prices or rates, providing a different level of quality, or suggesting that you will receive different prices or quality.

8.10 EXERCISING YOUR RIGHTS

To exercise any of these rights, please contact us using the information provided in Section 17. We will respond to verifiable requests within the time periods required by applicable law, typically within thirty (30) to forty-five (45) days.

We may need to verify your identity before processing your request. Verification may require providing government-issued identification, account information, or other information necessary to confirm your identity. We will only use the information provided for verification purposes.

You may designate an authorized agent to make a request on your behalf. Authorized agents must provide written authorization signed by you or proof of power of attorney. We may require you to verify your identity directly and confirm that you authorized the agent to submit the request.

We do not charge a fee to process or respond to verifiable requests unless the requests are excessive, repetitive, or manifestly unfounded. If we determine that a fee is warranted, we will notify you of the fee and provide a cost estimate before completing your request.

9. CALIFORNIA PRIVACY RIGHTS

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

9.1 CATEGORIES OF INFORMATION COLLECTED

We collect the following categories of Personal Information as defined by California law:

Identifiers (name, address, email, phone number, IP address, account credentials)
Commercial information (purchase history, transaction records, payment information)
Financial information (bank account numbers, credit card numbers, payment history)
Internet or network activity (browsing history, search history, interactions with websites)
Geolocation data (precise and general location information)
Professional or employment-related information (job title, employer, work history)
Education information (degrees, certifications, educational institutions)
Inferences (preferences, behaviors, aptitudes, abilities)
Sensitive Personal Information (Social Security Number, driver's license, financial account information, precise geolocation)
Audio, electronic, visual, or similar information (photos, videos, voice recordings, call recordings)

9.2 SOURCES OF INFORMATION

We collect Personal Information from the following sources:

Directly from you
Automatically through your use of our Site and Services
From third-party platforms and services you authorize
From social media networks
From data brokers and analytics providers
From business partners and affiliates
From public databases and records
From service providers acting on our behalf

9.3 BUSINESS AND COMMERCIAL PURPOSES

We use Personal Information for the business and commercial purposes described in Section 3 of this Privacy Policy.

9.4 CATEGORIES OF THIRD PARTIES

We share Personal Information with the categories of third parties described in Section 4 of this Privacy Policy.

9.5 RETENTION PERIODS

We retain Personal Information as described in Section 7 of this Privacy Policy.

9.6 RIGHT TO KNOW

You have the right to request that we disclose:

The categories of Personal Information we collected about you
The categories of sources from which the Personal Information was collected
The business or commercial purpose for collecting, selling, or sharing Personal Information
The categories of third parties to whom we disclose Personal Information
The specific pieces of Personal Information we collected about you

9.7 RIGHT TO DELETE

You have the right to request deletion of your Personal Information, subject to certain exceptions.

9.8 RIGHT TO CORRECT

You have the right to request that we correct inaccurate Personal Information about you.

9.9 RIGHT TO OPT-OUT OF SALE/SHARING

While we do not sell Personal Information in exchange for monetary consideration, our use of certain third-party advertising and analytics services may constitute a "sale" or "sharing" under California law. You have the right to opt-out of such sale or sharing.

To opt-out, click the "Do Not Sell or Share My Personal Information" link on our website or contact us using the information in Section 17.

9.10 RIGHT TO LIMIT USE OF SENSITIVE PERSONAL INFORMATION

You have the right to limit our use and disclosure of Sensitive Personal Information to purposes permitted by law. We do not use Sensitive Personal Information for purposes other than those permitted without providing an opportunity to limit use.

9.11 SHINE THE LIGHT

California Civil Code Section 1798.83 permits California residents to request information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. To make such a request, please contact us using the information in Section 17.

10. NEVADA PRIVACY RIGHTS

If you are a Nevada resident, you have the right to opt-out of the sale of certain Personal Information to third parties. We do not currently sell your Personal Information as "sale" is defined under Nevada law. However, if you would like to submit an opt-out request, please contact us using the information in Section 17.

11. EUROPEAN ECONOMIC AREA (EEA), UNITED KINGDOM (UK), AND SWITZERLAND

If you are located in the EEA, UK, or Switzerland, you have certain rights under the General Data Protection Regulation (GDPR) and equivalent laws:

11.1 LEGAL BASIS FOR PROCESSING

We process your Personal Information based on one or more of the following legal bases:

Performance of a contract: Processing is necessary to perform our contract with you or to take steps at your request before entering into a contract
Legitimate interests: Processing is necessary for our legitimate business interests, such as providing and improving our Services, marketing, fraud prevention, and network security, provided such interests are not overridden by your rights and interests
Consent: You have given clear consent for us to process your Personal Information for specific purposes
Legal obligation: Processing is necessary for compliance with a legal obligation to which we are subject

11.2 YOUR RIGHTS

In addition to the rights described in Section 8, you have the right to:

Lodge a complaint with your local supervisory authority
Request information about the legal basis for processing
Request information about international data transfers
Object to processing based on legitimate interests
Object to direct marketing
Object to automated decision-making and profiling

11.3 DATA TRANSFERS

We are based in the United States. If you are located in the EEA, UK, or Switzerland, your Personal Information will be transferred to and processed in the United States. The United States may not provide the same level of data protection as your home country.

We implement appropriate safeguards for international data transfers, including:

Standard Contractual Clauses approved by the European Commission
Adequacy decisions recognizing equivalent protection
Other mechanisms as permitted by applicable law

11.4 DATA PROTECTION OFFICER

We have appointed a Data Protection Officer who can be contacted at: privacy@leoserv.com

12. CHILDREN'S PRIVACY

Our Site and Services are not directed to children under the age of 18. We do not knowingly collect, use, or disclose Personal Information from children under 18. If we become aware that we have collected Personal Information from a child under 18 without parental consent, we will take steps to delete such information as soon as practicable.

If you are a parent or guardian and believe your child has provided us with Personal Information without your consent, please contact us immediately using the information in Section 17.

13. DO NOT TRACK SIGNALS

Some web browsers have a "Do Not Track" (DNT) feature that lets you tell websites you do not want to have your online activities tracked. Our Site does not currently respond to DNT signals or similar mechanisms. We continue to monitor developments regarding DNT browser technology and the implementation of standards.

14. MARKETING COMMUNICATIONS

We may send you marketing communications about our Services, promotions, and other information we think may interest you. You may opt-out of receiving marketing communications at any time by:

Clicking the "unsubscribe" link in any marketing email
Updating your communication preferences in your account settings
Contacting us using the information in Section 17

Please note that even if you opt-out of marketing communications, we may still send you non-marketing communications, such as:

Transactional messages related to your account or orders
Service announcements and administrative messages
Legal notices and policy updates
Responses to your inquiries
Other communications necessary for our business relationship

It may take up to ten (10) business days to process your opt-out request.

15. CHANGES TO THIS PRIVACY POLICY

We reserve the right to modify this Privacy Policy at any time without prior notice. All changes are effective immediately upon posting to the Site. The "Last Updated" date at the top of this Privacy Policy indicates when it was last revised.

Material changes to this Privacy Policy will be communicated through one or more of the following methods:

Posting a notice on our homepage
Sending an email to the address associated with your account
Posting a notice through our Services
Other means as appropriate

Your continued use of the Site or Services after the effective date of any changes constitutes your acceptance of the modified Privacy Policy. If you do not agree to the changes, you must stop using the Site and Services and contact us to deactivate your account.

We encourage you to periodically review this Privacy Policy to stay informed about how we collect, use, and protect your information.

16. INTERNATIONAL USERS

Our Site and Services are operated from the United States. If you are accessing our Site or using our Services from outside the United States, please be aware that information we collect will be transferred to, stored, and processed in the United States and potentially other countries.

Data protection laws in the United States and other countries may differ from those in your country of residence. By using our Site or Services, you consent to the transfer of your information to the United States and other countries and acknowledge that your information will be subject to the laws of those jurisdictions.

If you do not agree to such transfer and processing, you should not use our Site or Services.

17. CONTACT INFORMATION

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Leoserv Inc 1790 Hughes Landing Blvd, Suite 400 The Woodlands, Texas 77380 United States

Email: privacy@leoserv.com Phone: (contact through website) Website: https://leoserv.com

For California residents exercising CCPA/CPRA rights: Email: privacy@leoserv.com Subject Line: "California Privacy Rights Request"

For EEA, UK, or Switzerland residents: Email: privacy@leoserv.com Subject Line: "GDPR Rights Request"

We will respond to all legitimate requests within the time frames required by applicable law.

18. SEVERABILITY

If any provision of this Privacy Policy is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, the remaining provisions will continue in full force and effect. The invalid, illegal, or unenforceable provision will be replaced with a valid provision that most closely matches the intent of the original provision.

19. WAIVER

Our failure to enforce any right or provision of this Privacy Policy will not constitute a waiver of such right or provision unless acknowledged and agreed to by us in writing. No waiver of any provision of this Privacy Policy will be deemed a further or continuing waiver of such provision or any other provision.

20. ENTIRE AGREEMENT

This Privacy Policy, together with our Terms of Use and any other legal notices or agreements published by us on the Site or through our Services, constitutes the entire agreement between you and Leoserv regarding the privacy of your information and supersedes all prior or contemporaneous understandings regarding such subject matter.

21. GOVERNING LAW AND JURISDICTION

This Privacy Policy and any disputes arising from or related to this Privacy Policy or our privacy practices shall be governed by and construed in accordance with the laws of the State of Texas, without regard to its conflict of law provisions.

Any legal action or proceeding arising under or relating to this Privacy Policy shall be brought exclusively in the state or federal courts located in Harris County, Texas, and you hereby consent to personal jurisdiction and venue in such courts.

22. LIMITATION OF LIABILITY

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, LEOSERV SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES, RESULTING FROM:

(A) YOUR ACCESS TO OR USE OF OR INABILITY TO ACCESS OR USE THE SITE OR SERVICES; (B) ANY CONDUCT OR CONTENT OF ANY THIRD PARTY ON THE SITE OR THROUGH THE SERVICES; (C) ANY CONTENT OBTAINED FROM THE SITE OR SERVICES; (D) UNAUTHORIZED ACCESS, USE, OR ALTERATION OF YOUR TRANSMISSIONS OR CONTENT; (E) DATA BREACHES OR SECURITY INCIDENTS, EXCEPT TO THE EXTENT CAUSED BY OUR GROSS NEGLIGENCE OR WILLFUL MISCONDUCT.

IN NO EVENT SHALL OUR AGGREGATE LIABILITY FOR ALL CLAIMS RELATING TO THIS PRIVACY POLICY EXCEED THE GREATER OF ONE HUNDRED DOLLARS ($100.00) OR THE AMOUNT YOU PAID US IN THE TWELVE (12) MONTHS PRECEDING THE EVENT GIVING RISE TO LIABILITY.

SOME JURISDICTIONS DO NOT ALLOW THE EXCLUSION OR LIMITATION OF INCIDENTAL OR CONSEQUENTIAL DAMAGES, SO THE ABOVE LIMITATION OR EXCLUSION MAY NOT APPLY TO YOU.

23. ACKNOWLEDGMENT

BY USING OUR SITE OR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ AND UNDERSTAND THIS PRIVACY POLICY AND AGREE TO BE BOUND BY ITS TERMS AND CONDITIONS.

Last Updated: May 7, 2026