PRIVACY POLICY

Effective Date: April 20, 2026    |    Last Updated: April 20, 2026

1. Introduction

Kössit Technologies (“Kössit Technologies,” “we,” “us,” or “our”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy (“Policy”) describes how we collect, use, disclose, and safeguard information when you visit our website located at www.kössit.com (the “Site”), purchase our hardware products, or otherwise interact with our services (collectively, the “Services”).

By accessing or using the Services, you acknowledge that you have read, understood, and agree to the practices described in this Policy. If you do not agree, please do not use the Services.

This Policy is governed by the laws of the United States and, where applicable, the State of Washington. It supplements — and where required by law, provides state-specific disclosures pursuant to — the California Consumer Privacy Act (“CCPA”) as amended by the California Privacy Rights Act (“CPRA”), and similar consumer privacy statutes in Colorado, Connecticut, Utah, Virginia, Oregon, and Texas.

2. Scope of This Policy

This Policy applies to personal information collected through the Services. It does not apply to:

• Websites, products, or services operated by third parties, even if linked from our Site;
• Information collected offline through channels not integrated with our Services; or
• Anonymous or aggregated data that cannot reasonably be used to identify you.

We encourage you to review the privacy policies of any third parties whose services you access through links or integrations on the Site.

3. Information We Collect

We collect several categories of personal information. The categories below correspond to those enumerated in the CCPA/CPRA, Cal. Civ. Code § 1798.140.

3.1. Information You Provide Directly

• Identifiers and contact details — name, billing and shipping address, email address, telephone number, and account username.
• Commercial information — products purchased, order history, wishlists, and returns/warranty history.
• Financial account information — payment card number, expiration date, and card security code, which are collected and processed by our PCI-DSS-compliant payment processors and are not stored by us in full.
• Communications — the content of messages, inquiries, product reviews, and customer-support correspondence you send us.
• Registration and warranty-activation information — product serial numbers, date of purchase, and proof-of-purchase documentation.

3.2. Information We Collect Automatically

• Device and connection data — Internet Protocol (IP) address, browser type and version, operating system, device identifiers, and referring URLs.
• Usage data — pages viewed, session duration, clicks, search queries, and the date and time of each request.
• Location data — approximate geographic location derived from your IP address. We do not collect precise GPS location from the Site.
• Cookies and similar technologies — see Section 9 (Cookies and Tracking Technologies).

3.3. Information From Third Parties

• Payment processors confirm the success or failure of transactions and may provide fraud-risk scores.
• Shipping carriers provide delivery-status updates.
• Analytics and advertising partners provide aggregated demographic and interest data.
• Social-media platforms provide profile data you elect to share when you authenticate or engage with us through those platforms.

3.4. Sensitive Personal Information

We do not knowingly collect sensitive personal information as defined under the CPRA (such as Social Security numbers, precise geolocation, racial or ethnic origin, religious beliefs, union membership, genetic or biometric data, or the contents of private communications) for the purpose of inferring characteristics about a consumer.

4. How We Use Your Information

We use personal information for the following business and commercial purposes:

• To process, fulfill, ship, and confirm your orders, including returns, refunds, exchanges, and warranty claims.
• To create, maintain, and secure your account and verify your identity.
• To respond to inquiries, provide customer support, and send transactional communications such as order confirmations and shipping notifications.
• To send marketing communications about our products, promotions, and events, where permitted by law and subject to your preferences.
• To personalize your experience, recommend products, and improve the content and layout of the Site;
• To detect, investigate, and prevent fraud, unauthorized access, and other illegal activity, and to enforce our Terms of Service.
• To comply with legal obligations, including tax, accounting, customs, product-safety, and recordkeeping requirements; and
• To conduct analytics, research, and product development to improve our hardware and Services.

We will not use your personal information for materially different, unrelated, or incompatible purposes without providing notice.

5. How We Disclose Your Information

We disclose personal information in the limited circumstances described below. We do not sell your personal information for monetary consideration.

5.1. Service Providers

We share personal information with vendors, contractors, and other service providers who perform services on our behalf — including payment processing, order fulfillment, shipping, hosting, customer support, email delivery, analytics, fraud prevention, and marketing — under written contracts that restrict their use of the information to the services they provide to us.

5.2. Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, personal information may be transferred as part of the transaction, subject to the confidentiality terms of this Policy (unless you are provided an opportunity to opt out).

5.3. Legal Requirements and Protection of Rights

We may disclose personal information when we believe in good faith that disclosure is necessary to: (a) comply with applicable law, regulation, legal process, or governmental request; (b) enforce our agreements, policies, and terms of use; (c) protect the security or integrity of our Services; or (d) protect the rights, property, or safety of Kössit Technologies, our customers, or others.

5.4. With Your Consent

We may disclose personal information for any purpose with your consent or at your direction.

5.5. “Sale” and “Sharing” Under the CCPA/CPRA

We do not “sell” personal information in exchange for monetary consideration. We may, however, “share” personal information for purposes of “cross-context behavioral advertising” as those terms are defined under the CPRA — for example, by enabling advertising cookies or pixels on the Site. California residents may opt out of such “sharing” as described in Section 7.

6. Data Retention

We retain personal information for as long as reasonably necessary to fulfill the purposes described in this Policy, including to:

• Provide the Services and honor warranties.
• Comply with tax, accounting, audit, customs, and product-safety obligations (typically 3–7 years);
• Resolve disputes and enforce our agreements; and
• Protect against fraudulent or unlawful activity.

When personal information is no longer required, we will securely delete, destroy, or de-identify it in accordance with our records-retention schedule and applicable law.

7. Your Privacy Rights

Depending on your state of residence, you may have the following rights with respect to your personal information:

• Right to Know / Right of Access — to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, the business or commercial purposes for collection, and the categories of third parties with whom we disclose it.

• Right to Correct — to request correction of inaccurate personal information.

• Right to Delete — to request deletion of personal information we have collected, subject to statutory exceptions.
• Right to Opt Out of Sale or Sharing — to direct us not to “share” your personal information for cross-context behavioral advertising.
• Right to Limit Use of Sensitive Personal Information — to restrict our use of sensitive personal information to permitted purposes.
• Right to Data Portability — to receive a copy of your personal information in a readily usable format.
• Right to Non-Discrimination — to not receive discriminatory treatment for exercising any of the rights listed above.

7.1. How to Exercise Your Rights

You may submit a verifiable consumer request by emailing info@kössit.com or by calling 206-557-9476. We will verify your identity by matching identifying information you provide with information we maintain. We will respond to verifiable requests within forty-five (45) days, subject to permitted extensions under applicable law.

7.2. Authorized Agents

You may use an authorized agent to submit a request on your behalf. We will require written permission signed by you and verification of your identity before acting on the request.

7.3. “Shine the Light” (California Civil Code § 1798.83)

California residents may request information once per calendar year about personal information we have disclosed to third parties for their direct marketing purposes. To make such a request, email info@kössit.com.

8. Children’s Privacy

The Services are not directed to, and we do not knowingly collect personal information from, children under the age of 16. If you believe a child has provided personal information to us, please contact us and we will promptly delete the information in accordance with the Children’s Online Privacy Protection Act (“COPPA”) and applicable state law.

9. Cookies and Tracking Technologies

We and our service providers use cookies, pixel tags, web beacons, software development kits, and similar technologies (collectively, “Cookies”) to operate the Site, remember preferences, measure performance, and deliver relevant advertising. Cookies we use fall into the following categories:

• Strictly necessary Cookies — required for the Site to function (e.g., shopping-cart persistence, authentication). These cannot be disabled.
• Performance and analytics Cookies — collect aggregated information about how visitors use the Site.
• Functional Cookies — remember your choices and preferences.
• Advertising Cookies — used to deliver advertising relevant to your interests and to measure the effectiveness of campaigns.

You may manage Cookies through your browser settings, by using our on-Site preference center (where available), or by enabling a Global Privacy Control (GPC) signal, which we honor as an opt-out of “sharing” for California residents.

10. Data Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These include, without limitation, encryption of payment data in transit using TLS, access controls, employee training, and vendor due diligence. However, no method of transmission over the Internet or electronic storage is perfectly secure, and we cannot guarantee absolute security.

If you believe the security of your information has been compromised, please contact us immediately using the contact details in Section 16.

11. International Visitors

The Services are hosted in the United States. If you access the Services from outside the United States, please be aware that your information will be transferred to, stored in, and processed in the United States, which may have data-protection laws that differ from those of your country. By using the Services, you consent to such transfer.

12. Do Not Track Signals

Because there is no industry-standard interpretation of “Do Not Track” browser signals, our Site does not respond to those signals. We do, however, honor Global Privacy Control signals as an opt-out of the “sharing” of personal information where required by law.

13. Third-Party Websites and Services

The Site may contain links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control, and are not responsible for, the privacy practices of those third parties.

14. Marketing Communications

You may opt out of promotional emails at any time by clicking the “unsubscribe” link in the email or by contacting us. Please note that you cannot opt out of transactional messages related to your account, orders, returns, or warranties, which are necessary to provide the Services.

15. Changes to This Policy

We may update this Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will post the revised Policy on the Site, update the “Effective Date” above, and, where required by law, provide additional notice (such as by email). Your continued use of the Services after the effective date constitutes acceptance of the revised Policy.

16. Contact Us

If you have questions, concerns, or requests regarding this Policy or our privacy practices, please contact us:

Kössit Technologies

Email: info@kössit.com

Telephone: 206-557-9476