ENERGETIX CORPORATION PRIVACY POLICY

Effective Date: December 6, 2025 Last Reviewed: December 6, 2025

1. Introduction; Scope of this Policy

Energetix Corporation (“Energetix,” “Company,” “we,” “us,” or “our”) respects your privacy and is committed to protecting it through our compliance with this Privacy & Cookie Policy (this “Policy”). This Policy describes how we collect, use, disclose, retain, protect, and otherwise process personal information when you interact with our websites, web and mobile applications, online stores, distributor portals, and related services that link to this Policy (collectively, the “Services”).

This Policy applies only to information we collect (i) through the Services; (ii) in email, text, telephone, and other electronic communications between you and the Services; and (iii) from our distributors and service providers to the extent necessary to sell, fulfill, deliver, or service Energetix products.

This Policy does not apply to information collected by: (a) us offline or through any other means, including on any other website operated by Energetix that does not link to this Policy; or (b) any third party, including through any application, content, or website that may link to or be accessible from the Services. This Policy does not apply to third-party websites that do not link to it. We encourage you to review those sites’ privacy policies directly.

By accessing or using the Services, or by otherwise providing information to us, you acknowledge that you have read and understand this Policy. If you do not agree with our policies and practices, your choice is not to use the Services.

2. Key Definitions

  • “Personal Information” (or “Personal Data”) means information that identifies, relates to, describes, or could reasonably be linked, directly or indirectly, with an identified or identifiable individual.
  • “Sensitive Personal Information” (or “SPI”) means information defined as “sensitive” under applicable law (e.g., precise geolocation; health, biometric, or genetic data; government IDs; financial account credentials; racial/ethnic origin; religious beliefs; sexual orientation).
  • “Sale,” “Share,” “Targeted Advertising,” “Business Purpose,” and “Service Provider/Processor/Contractor” have the meanings assigned under applicable state privacy laws (e.g., California’s CCPA/CPRA; Colorado; Connecticut; Virginia).
  • “UOOM” / “GPC” means a universal opt-out mechanism / Global Privacy Control signal recognized by certain state laws as an opt-out preference signal.

3. Categories of Personal Information We Collect

Depending on how you interact with the Services, we may collect the following categories of Personal Information:

  • Identifiers and Contact Information: name, company, job title, postal addresses (billing/shipping), email address, telephone number.
  • Account and Authentication Information: username, password, preferences, and communications settings.
  • Commercial and Transactional Information: products viewed or purchased, order history, invoices, delivery details, returns and exchanges.
  • Payment Information: limited payment instrument details (processed by PCI-compliant payment processors); we do not retain full primary account numbers.
  • Internet / Network Activity: IP address; device and browser characteristics; pages and products viewed; referring/exit URLs; date/time stamps; and interactions with site features.
  • Inferences: profile inferences about preferences based on interactions with the Services.
  • Communications Content: the content of email or telephone communications with customer care (including call recordings for quality assurance, where permitted by law).
  • Aggregated/De-Identified Data: statistics that do not identify you; if we combine such data with Personal Information, we treat the combination as Personal Information.

Sensitive Personal Information. Energetix does not seek, request, or intend to collect Sensitive Personal Information, and you should not submit any health, biometric, genetic, or other SPI to us through the Services. If such information is inadvertently received, we will delete it or process it only as strictly required by law (e.g., legal compliance) and not for marketing or profiling.

4. Sources of Personal Information

We collect Personal Information from the following sources:

  • Directly from you: when you create an account, place an order, contact customer care, subscribe to marketing, or otherwise use the Services.
  • Automatically: through cookies, pixels, tags, SDKs, and similar technologies when you use the Services (see Section 9).
  • From third parties: including authorized distributors and fulfillment partners, payment processors, shipping/logistics providers, IT/hosting/communications vendors, fraud-prevention and analytics partners, and other service providers who support our operations.

5. How We Use Personal Information (Purposes and Legal Bases)

We use Personal Information for the following purposes:

  1. Order Processing and Fulfillment. To process, verify, and deliver orders (including through distributors), manage returns and exchanges, and provide product support.
  2. Account Administration. To create, maintain, and secure user accounts; authenticate users; and manage preferences.
  3. Customer Care and Communications. To respond to inquiries, send administrative notices (e.g., order confirmations, shipping updates), and provide technical or product support.
  4. Marketing and Promotions. To send newsletters and promotional communications (subject to opt-out rights) and to measure campaign effectiveness.
  5. Website Operations and Analytics. To operate, maintain, and improve the Services; debug and repair errors; and develop new features.
  6. Fraud, Security, and Legal Compliance. To detect and prevent fraud and abuse; protect the security of the Services; comply with legal obligations; and enforce agreements.
  7. Business Transactions. To support a merger, acquisition, financing, reorganization, or other transfer of assets (see Section 8).

Where required (e.g., EEA/UK), we rely on appropriate legal bases such as performance of a contract, compliance with legal obligations, our legitimate interests, and consent where applicable.

6. Disclosures of Personal Information (Recipients and Business Purposes)

Energetix does not sell Personal Information for monetary consideration. We may disclose Personal Information for the business purposes described above to the following categories of recipients:

  • Distributors and Fulfillment Partners. To route orders, coordinate delivery, and provide customer support in your region.
  • Service Providers / Processors / Contractors. We share Personal Information with service providers and contractors that assist in operating the Services and supporting our business, including payment processing, order fulfillment and logistics, hosting and IT support, communications and collaboration tools (such as phone and SMS providers), marketing and advertising partners, analytics services, and professional consultants.  Where Entergetix engages third parties to process Personal Information on its behalf, those Parties are required – by contract or other appropriate means – to handle the information  only for Energetix’s business purposes and to maintain its confidentiality and security.
  • Affiliates and Subsidiaries. Within our corporate family for administrative, operational, and compliance purposes.
  • Professional Advisors and Auditors. As necessary for legal, tax, or audit obligations.
  • Legal/Regulatory and Safety. To comply with a court order, law, or legal process; to protect rights, property, or safety; or as otherwise required or permitted by law.
  • Business Transfers. In connection with, or during negotiations of, any merger, divestiture, restructuring, reorganization, dissolution, or sale or transfer of some or all of Energetix’s assets.

California “Sale” / “Sharing” and Targeted Advertising. We do not sell Personal Information for money. Certain analytics/advertising technologies could be considered “sharing” or “targeted advertising” under some state laws. You may opt out at any time (see Section 12 and Section 9(C) on GPC/UOOM).

Mobile Information Restriction

Notwithstanding anything to the contrary in this Policy, we do not sell, share, or otherwise disclose your mobile telephone number or text messaging opt-in data with any third parties or affiliates for their own independent marketing or promotional purposes. This restriction applies to all categories of third parties, including affiliates and subsidiaries. Mobile information will only be disclosed to third parties (such as our messaging service providers) for the sole purpose of providing the SMS/text messaging services you have requested, or as required by law.

7. Data Retention

We retain Personal Information for as long as reasonably necessary to fulfill the purposes for which it was collected (see Section 5), including to satisfy legal, accounting, or reporting requirements; to resolve disputes; to enforce agreements; and to support product warranty or safety obligations. Retention periods are determined based on (i) the type and sensitivity of the data; (ii) the potential risk of harm from unauthorized use or disclosure; (iii) the purposes of processing; and (iv) applicable legal requirements. When Personal Information is no longer needed, we will delete it or de-identify it in accordance with our records management program.

8. Business Transfers

We may disclose or transfer Personal Information as part of or in connection with a merger, acquisition, joint venture, financing, reorganization, bankruptcy, receivership, sale of assets, or transition of service to another provider. Where required by law, we will take reasonable steps to ensure the recipient assumes the rights and obligations described in this Policy with respect to your Personal Information.

9. Cookies, Analytics, and Advertising Technologies

(A) Cookies and Similar Technologies

We use cookies, pixels, tags, and similar technologies to recognize your browser or device; enable core functionality (e.g., shopping cart, checkout, and security); remember preferences; analyze performance; and, where permitted, provide more relevant marketing.

Cookie Categories We Use

  • Strictly Necessary: required for the Services to function (e.g., session management, authentication, security).
  • Analytics and Performance (e.g., Google Analytics): help us understand usage and improve the Services.
  • Functional: remember your choices (e.g., language, region).
  • Marketing: support promotional messaging and frequency capping.

You can manage your preferences via the “Cookie Settings” link on the Services and/or your browser settings. In jurisdictions where consent is required for non-essential cookies, we will only place such cookies after you have provided consent.

(B) Do Not Track (DNT)

Some browsers transmit “Do Not Track” signals. Because there is no consistent industry standard for DNT, the Services do not respond to DNT signals.

(C) Global Privacy Control (GPC) / Universal Opt-Out Mechanisms (UOOM)

We recognize and honor GPC and other legally recognized UOOM signals as requests to opt out of “sharing” or “targeted advertising,” as applicable under certain state laws (e.g., California, Colorado, Connecticut). If your browser sends a GPC/UOOM signal, we will treat it as an opt-out request for that browser or device.

10. Security of Personal Information

We have implemented and maintain appropriate administrative, technical, and physical safeguards designed to protect Personal Information against accidental loss and unauthorized access, use, alteration, and disclosure. These safeguards include SSL/TLS encryption in transit, access controls, firewalls, vulnerability management, employee training, and incident response procedures. However, no method of transmission over the internet or method of electronic storage is 100% secure. You acknowledge that we cannot guarantee absolute security. If we determine that a data incident presents a risk of harm, we will notify affected individuals and regulators as required by law.

11. Children’s Privacy

The Services are not directed to children under the age of 16. We do not knowingly collect Personal Information from children under 16. If we learn that a child under 16 has provided Personal Information, we will delete it. Parents or guardians who believe their child has provided Personal Information may contact us at [email protected].

12. Your Privacy Rights (United States)

(A) California Residents (CCPA/CPRA)

If you are a California resident, you have the following rights, subject to verification and exceptions under Cal. Civ. Code §1798.100 et seq.:

  • Right to Know / Access. To request disclosure of (i) the categories of Personal Information collected; (ii) the categories of sources; (iii) the business or commercial purposes; (iv) the categories of third parties with whom we disclose Personal Information; and (v) the specific pieces of Personal Information collected about you.
  • Right to Delete. To request deletion of Personal Information we collected from you, subject to legal exceptions.
  • Right to Correct. To request correction of inaccurate Personal Information.
  • Right to Opt Out of “Sale” / “Sharing.” To opt out of “sharing” of Personal Information for cross-context behavioral advertising/targeted advertising (we do not sell for monetary consideration).
  • Right to Limit Use/Disclosure of Sensitive Personal Information. We do not use or disclose SPI to infer characteristics; we do not seek SPI from you.
  • Right to Non-Discrimination. We will not discriminate against you for exercising your CCPA rights (e.g., denying goods/services, charging different prices, or providing a different level or quality of goods/services), subject to lawful loyalty programs or price/service differences reasonably related to the value of your data.

Categories of Personal Information Collected (Past 12 Months)

  • Identifiers and Contact Information (e.g., name, email, IP address).
  • Commercial Information (e.g., products purchased, order history).
  • Internet/Network Activity (e.g., browsing history on our Services, device and usage data).
  • Inferences (e.g., preferences derived from interactions with the Services).

Disclosure for Business Purposes (Past 12 Months)
We have disclosed the categories above to service providers, contractors, and distributors/fulfillment partners to perform business purposes, including order processing, delivery, IT/hosting, payments, analytics, and customer communications.

Opt-Out of “Sharing” / Targeted Advertising
You may (i) click “Do Not Sell or Share My Personal Information / Opt Out of Targeted Advertising” in the website footer; and/or (ii) enable a GPC/UOOM signal in your browser, which we will honor.

Submitting Requests; Verification; Timelines
To submit a request to know/access, delete, or correct, email [email protected], call 800-990-7085. We will verify your identity using information you previously provided (e.g., email address, order history). We will respond within 45 days of receipt and may extend once for an additional 45 days where reasonably necessary, in which case we will provide notice and an explanation. You may use an authorized agent to submit a request; we may require proof of authorization and your identity.

Financial Incentives
We do not currently offer financial incentives or price/service differences in exchange for Personal Information. If we introduce such programs, we will provide required notices and obtain consent.

Nevada
We do not sell Personal Information as defined under Nevada law. Nevada residents may nonetheless submit opt-out requests to [email protected].

(B) Other U.S. State Privacy Rights (e.g., Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Tennessee)

Residents of states with comprehensive privacy laws may have rights to: (i) confirm processing and access; (ii) correct inaccuracies; (iii) delete Personal Information; (iv) obtain a portable copy; (v) opt out of targeted advertising and any “sale” of Personal Information; and (vi) appeal our decision if we decline a request. Submit requests as described above. We will respond within the timeframe required by applicable law (generally 45 days, extendable once for 45 days with notice). We recognize UOOM/GPC signals as required by applicable law.

13. International Data Transfers

All Personal Information is primarily processed in the United States. If you are located outside the U.S., your Personal Information may be transferred to, stored, and processed in the U.S., where data protection laws may be different from those in your jurisdiction. Where required (e.g., EEA/UK/Canada), we implement appropriate safeguards for cross-border transfers (see Addenda below).

14. Changes to this Policy

We may update this Policy from time to time to reflect changes in technology, law, our business operations, or for other reasons. The “Last Reviewed” date at the top of this page indicates when this Policy was last revised. Where required by law, we will provide additional notice (e.g., by posting a prominent notice on the Services or by emailing you). Your continued use of the Services following the posting of changes constitutes acceptance of such changes.

15. Contact Us

Energetix Corporation
209 West Deerfield Lane
Dahlonega, GA 30533 USA
Email: [email protected]
Telephone: 800-990-7085

If you have a disability and need this Policy provided in an alternative accessible format, please contact us using the information above.

Addendum A – European Economic Area (EEA) and United Kingdom (UK)

If you are located in the EEA or UK, Energetix is the controller of your Personal Data collected through the Services. We process your Personal Data on the following legal bases: performance of a contract; compliance with legal obligations; our legitimate interests (e.g., to operate and improve the Services, secure our systems, and prevent fraud); and your consent where required (e.g., certain cookies/marketing).

Your GDPR/UK GDPR Rights. You may have the right to request access, rectification, erasure, restriction, and portability of your Personal Data, and to object to processing based on legitimate interests or for direct marketing. Where we rely on consent, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal. You also have the right to lodge a complaint with your local supervisory authority.

International Transfers. We transfer Personal Data to the United States under appropriate safeguards, including the European Commission’s Standard Contractual Clauses (and, for the UK, the UK International Data Transfer Addendum). Copies of relevant transfer safeguards can be requested using the contact details above.

Addendum B – Canada (PIPEDA and Quebec Law 25)

If you are in Canada, we collect, use, and disclose Personal Information with your consent or as otherwise permitted by law, for the purposes set out in this Policy. You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice.

Your Canadian Rights. You may request access to and correction of your Personal Information held by Energetix. To exercise these rights, contact us at [email protected] or the mailing address above. If your concern remains unresolved, you may contact the Office of the Privacy Commissioner of Canada (www.priv.gc.ca) or your provincial privacy commissioner.

Cross-Border Transfers. We may transfer Personal Information to service providers located outside Canada, including in the United States. When we do so, we use contractual and other safeguards to protect Personal Information, but it may be subject to the laws of the foreign jurisdiction.

Cookie & Opt-Out Tools

  • Manage Cookie Preferences (link in site footer)
  • Do Not Sell or Share My Personal Information / Opt Out of Targeted Advertising (link in site footer)

© 2025 Energetix Corporation. All rights reserved.