STORMOTION PRIVACY POLICY

Last update: 14.11.2025.

I. GENERAL INFORMATION

This "Stormotion Privacy Policy" describes how the "Stormotion OÜ (Kaupmehe tn. 7-120, 10114, Tallinn, Estonia)" (hereinafter - the "Stormotion", "Team", "We", "Our" and "Us") may use your personal data, and provides information about your rights in relation to personal data (hereinafter - the "Privacy Policy") in a situation when you provide it to Us, by:

(i.) Visit Our Website at https://stormotion.io (hereinafter - the "Website"), and/or

(ii.) Contact Us through Our Website or official social media profiles, which are accessible via links on Our Website or are otherwise publicly available online, and/or

(iii.) Have consented to the processing of your personal data by a third party (including Our service provider, customer, partner) and such data is subsequently shared with Us by that third party in order for you to receive Our Services (i.e., IT-Services, including but not limited to UI/UX design, and the development of mobile (iOS, Android) and web applications - further details are available on Our Website), and/or

(iv.) Making any payment for Our Services, and/or

(v.) Directly using Our Services -

Hereinafter, such each person is collectively referred to as "User".

Note: Stormotion is the sole owner and operator of the Our Website, and act as either the "Data Controller" of Stormotion's own personal data; and the "Data Processor" of Users' personal data in such circumstances:

(i.) When we provide a User with access to receive Our Services offered on Our Website through a separate cooperation agreement, in which all mutually agreed terms of cooperation are recorded, if applicable;

(ii.) when contacting potential Our User(s) who are interested in Our Services;

(iii.) when We receive personal data from third parties pursuant to the procedures described above;

(iv.) when the Users) interacts) with Our Website, including by providing personal consent through a pop-up questionnaire (by clicking the "Accept" button) on Our Website upon User's initial visit, or on any repeat visit if User has made appropriate settings in User's web browser regarding the setting of "Cookie Files" and visiting Our Website repeatedly.

Furthermore, We are required under data protection legislation to notify Our User(s) of the information contained in this Privacy Policy. This Privacy Policy does not in any way imply the conclusion of a principal cooperative agreement or any other contractual relationship between Us and the User(s). Thus, by using the Website, Services or providing any personal data, You acknowledge and agree that:

(i.) You voluntarily provide all personal data and other data to Stormotion;

(ii.) You are solely responsible for the accuracy, lawfulness, and completeness of all personal data or other data submitted or shared through the Website and Services;

(iii.) Stormotion does not verify, monitor, endorse, or control the personal data, content, or materials You provide, and is not liable for any consequences (including legal or financial) arising from the use, submission, or disclosure of such data.

Note: Our Website may contain links to other websites that are not operated by Us. If a User(s) clicks on a third-party link on Our Website, such User(s) will be directed to that third party's website. We strongly recommend that the User(s) review the privacy policy of each website that the User(s) visit. We have NO control over, and assume NO responsibility for, the content, privacy policies, or practices of any third-party websites and/or services located outside Our Website.

ІІ. DEFINITIONS

The terms used, such as “controller”, “processor”, “third-party”, “personal data breach”, “personal data” or their “processing”, etc. refer to the definitions in Article 4 of the GDPR.

The term “User(s)” covers all categories of persons affected by data processing. These include our business partners, customers, potential customers, employees, contractors, subcontractors, service providers, etc., and other visitors to Our Website. The terms used, such as “User(s)” are to be understood gender-neutral.

ІІІ. GROUNDS FOR COLLECTION OF PERSONAL DATA

Any processing of Users’ personal data is performed strictly in accordance with this Privacy Policy and applicable data protection laws of the User’s country of residence, including but not limited to:

(i.) EU, including, but not limited of this: (і.) the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (OJEU No L 119 of 4 May 2016) (hereinafter — the “General Data Protection Regulation” and the “GDPR”); (іі.) Personal Data Protection Act (Isikuandmete kaitse seadus, RT I, 04.01.2019, 11; amendments up to RT I 2023, 1, 2) (hereinafter — the “IKS”); (ііі.) Federal Data Protection Act of 30 June 2017 (Federal Law Gazette I p. 2097), as last amended by Article 10 of the Act of 23 June 2021 (Federal Law Gazette I, p. 1858; 2022 I p. 1045) (hereinafter — the “BDSG”); and other relevant legislation.

(іі.) UK, including, but not limited of this: the UK Data Protection Act of 2018 (hereinafter — the “UK DPA”).

(ііі.) UA, including, but not limited of this: the Law of Ukraine of 01.06.2010 №2297-VI on Personal Data Protection (hereinafter — the “UPDP”).

(iv.) US: the User(s) has rights under the following state-specific law, where the User actually resides at the time of acquiring User status (the name of the document refers to the state) including but not limited to: (i.) the California Consumer Privacy Act of 2018 (hereinafter — the “CCPA”), (ii.) the Colorado Consumer Privacy Act (hereinafter — the “CPA”), (iii.) the Connecticut Data Privacy Act of 2023 (hereinafter — the “CTDPA”), (iv.) the Delaware Personal Data Privacy Act (hereinafter — the “DPDPA”), (v.) the Florida Digital Bill of Rights (hereinafter — the “FDBR”), (vi.) the Biometric Information Privacy Act (hereinafter — the “BIPA”), (vii.) the Consumer Data Protection Act (hereinafter — the “CDPA”), (viii.) the Iowa Consumer Data Protection Act (hereinafter — the “ICDPA”), (ix.) the Montana Consumer Data Privacy Act (hereinafter — the “MCDPA”), (x.) the Oregon Consumer Privacy Act (hereinafter — the “OCPA”), (xi.) the Nevada Privacy of Information (hereinafter — the “Senate Bill 220” or the “SB 220”), (xii.) the Utah Consumer Privacy Act (hereinafter — the “UTCPA”), (xiii.) the Tennessee Information Protection Act (hereinafter — the “TIPA”), (xiv.) the Texas Data Privacy and Security Act (hereinafter — the “TDPSA”), (xv.) the Virginia Consumer Data Protection Act (hereinafter — the “VCDPA”), etc. If You are a U.S. federal government end User, Our Service is a “Commercial Item” as that term is defined at 48 C.F.R. §2.101.

Note: We process personal data of User(s) only in compliance with the relevant data protection regulations. This means that Users’ data will only be processed if we have the appropriate legal permit. That is, (і) the legal basis for the consent is Art. 6 para. 1 lit. a. and Art. 7 GDPR; (іі) the legal basis for processing for the purpose of fulfilling our services and implementing contractual measures is Art. 6 para. 1 lit. b. GDPR; (ііі) the legal basis for processing for the purpose of fulfilling our legal obligations is Art. 6 para. 1 lit. c. GDPR; (iv) the legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f. GDPR, etc.

IV. DATA RECEIVED FROM USERS

Voluntary Provision of Data. Users acknowledge and agree that all data, information, content, or materials provided to Stormotion through the Website or Services (collectively, “User Data”) are submitted voluntarily and at the sole discretion of the User for the purpose of using the Services. Such User Data may include, without limitation: answers to surveys, forms, questionnaires, content contributions, publicly available information, contact details, and any other information that the User chooses to provide (i.e., User Data – both their own and that of other User(s) that this User possesses – may include, without limitation: last name, first name, date of birth, passport number and series, individual tax number, address of actual location, personal email address, mobile phone number, company data (such as name, legal address, tax number, email address, etc.) and your position in the company, curriculum vitae and personal documents for screening purposes (in the case of employment), etc. (i.e., other personal data in the requested questionnaire survey (form)), when the User(s) visits our Website, etc.). By submitting User Data, Users confirm and accept that:

(i.) They have the legal right and authority to provide such data;

(ii.) They are solely responsible for the accuracy, legality, and completeness of the data;

(iii.) Stormotion assumes no responsibility, of any kind (including financial, legal, or operational), for the use, storage, processing, protection, or publication (sharing) of such data;

(iv.) Any risks associated with submitting or making User Data available are fully borne by the User.

Note: Users understand that the majority of the Stormotion's Customer Relationship Management system (hereinafter — the “CRM”) consists of data provided by Users themselves, which Stormotion may collect, organize, process, and present in order to deliver and improve the Services under the terms of this Privacy Policy. Therefore, Stormotion: (i.) Does not verify, control, or guarantee the accuracy, legality, or completeness of User Data; (ii.) Shall not be liable for any claims, damages, losses, or consequences arising from the submission, processing, or use of User Data; (iii.) Uses User Data for the provision, maintenance, and improvement of the Services.

Non-Personally Identifiable Data. In addition to User-provided data, Stormotion may collect technical, non-personally identifiable information, including but not limited to: browser type, device type, IP address, referring website, date, and time of access, and usage logs (“Non-Personally Identifiable Data”). Such data is collected automatically and is used solely to: (i.) Improve the functionality, performance, and security of the Services; (ii.) Analyze trends and User behavior; (iii.) Ensure proper operation of the Website and Services. Stormotion shall not be liable for any consequences arising from the use, storage, or analysis of Non-Personally Identifiable Data.

Other User-Provided Data. Users may voluntarily provide other types of data not explicitly mentioned above (“Other Data”) when completing surveys, forms, questionnaires, or participating in promotional, marketing, or research activities. Stormotion may collect and process Other Data in order to: (i.) Enable proper use of the Services; (ii.) Improve the quality and relevance of Services; (iii.) Respond to User inquiries or requests. All Other Data is provided voluntarily and at the User’s sole discretion. Users bear full responsibility for the accuracy, legality, and consequences of providing such data. Stormotion assumes no liability, direct or indirect, for any claims or losses arising from Other Data.

Publicly Available Data. Any data contributed by Users that is publicly accessible or publicly available (“Publicly Available Data”) is also submitted voluntarily, at the sole discretion of the User. Users represent that they: (i.) Have the right to share such data with Stormotion within the Services; (ii.) Accept full responsibility for its accuracy, legality, and any consequences of its submission; (iii.) Release Stormotion from all liability, including financial, legal, or operational, arising from the inclusion or use of such data; (iv.) Agree that their voluntary contribution constitutes acknowledgment and acceptance of Stormotion’s non-liability and the assumption of all risks by the User.

Control and Sole Responsibility of Users. Users retain exclusive control over any and all data they choose to submit, provide, or make accessible through the Website and/or Services, including but not limited to User Data, Non-Personally Identifiable Data, Other Data, and Publicly Available Data. Stormotion: (i.) Provides only the technical means for submission and processing of data, without directing, recommending, or requiring any specific data; (ii.) Shall not be responsible for the accuracy, legality, validity, or completeness of any data submitted by Users; (iii.) Does not review, monitor, or verify the User Data for correctness, and any reliance on such data is at the User’s own risk; (iv.) Shall not be liable for any consequences arising from the User’s choice to provide, modify, share, or withdraw data.

Note: By using the Services and submitting any data, Users acknowledge and agree that they: (i.) Assume full and exclusive responsibility for the legal basis, authenticity, accuracy, and consequences of providing any data; (ii.) Accept sole responsibility for any risk, liability, or claim arising directly or indirectly from their actions, omissions, or decisions related to data; (iii.) Release Stormotion from any obligation to monitor, control, or verify submitted data or any subsequent use thereof.

Limitation of Liability and Indemnification. To the maximum extent permitted by applicable law, Users agree that Stormotion: (i.) Shall have no liability whatsoever, whether direct, indirect, incidental, special, consequential, punitive, or otherwise, including financial, operational, or reputational damages, arising from the submission, use, processing, storage, or sharing of any data by Users; (ii.) Shall have no liability for any claims, actions, investigations, penalties, or disputes initiated by third parties relating to User-submitted data; (iii.) Shall have no liability for any error, omission, corruption, or loss of data; (iv.) Shall have no responsibility for Users’ use of, reliance upon, or decisions made based on any data obtained through the Services.

Note: Users agree to indemnify, defend, and hold harmless Stormotion, its parent, subsidiary, and affiliated entities, as well as its and their respective directors, officers, shareholders, employees, agents, contractors, subcontractors, representatives, successors, and assigns from and against any and all claims, demands, liabilities, damages, losses, costs, and expenses (including reasonable attorneys’ fees) arising out of or relating to: (i.) The User’s submission, provision, or sharing of any data; (ii.) Any unauthorized or unlawful use of the Website and/or Services; (iii.) Any breach by the User of their obligations under this Privacy Policy or Stormotion “Imprint (Legal Notice)”; (iv.) Any claims by third parties relating to any data.

Disclaimer and Voluntary Acceptance. By submitting data and using the Services, Users expressly agree and acknowledge that:

(i.) All types of data submitted to Stormotion for the purpose of using the Services are voluntary, at the User’s sole discretion, does not require any additional documentation, and is processed on the basis of this Privacy Policy.

(ii.) Stormotion does not and will not verify, monitor, control, or validate any data, and any reliance on such data is at the User’s own risk;

(iii.) Users bear full and exclusive responsibility for ensuring the legality, accuracy, and consequences of any data they submit or access via the Services;

(iv.) Stormotion is fully released, waived, and exempted from all liability, including financial, legal, operational, or reputational, arising directly or indirectly from:

• Submission or sharing of any data;
• Use or reliance on any data accessed through the Services;
• Any decisions or actions based on such data;

(v.) Users explicitly accept that their voluntary submission of data constitutes a binding acknowledgment that Stormotion has no obligation, duty, or liability regarding the User Data or its use in any manner;

(vi.) Stormotion does not collect, store, or otherwise process any banking or financial information of the User used for payment of Our Services through third-party payment processors, including but not limited to the Stripe payment platform. All payment-related data are processed directly by such third-party providers in accordance with their own privacy policies and applicable data protection laws. Users are strongly advised to review the respective provider’s terms and privacy documentation to understand the legal basis and safeguards applied to such processing. Stormotion disclaims any responsibility or liability for the collection, processing, storage, or transfer of User data performed by such third-party payment processors.

(vii.) Stormotion’s provision of the Services on an “AS IS” and “AS AVAILABLE” basis constitutes the full extent of the Services, and Users waive any claims or rights to demand further guarantees, validation, or supervision of User-submitted data.

V. COOKIE FILES

When the User uses Our Website, browses Our Services, and uses the available systems (in particular, to create contact requests sent via the contact form), so-called “cookies”* are created when the User browses these web pages.

*These are text files of small size that are stored in the User's device, through which the User browses the websites. They are commonly used to ensure the operation of websites and other services provided over the Internet, and to improve and develop these websites, which is done by reading the contents of these files.

We collect information contained in “cookies”, such as the IP-address of the device from which the User connects to the Website, which is data that shows how the User(s) use Our Websites. This information is used for administrative and statistical purposes and aimed at improving Our Website and enhancing User's user experience. In addition, this automatically processed data may be used to analyse the behaviour of the content User(s) on Our Website (e.g., time spent on the Website) or to personalise the content of the Website's web pages, in particular by providing online advertising.

The User(s) are not obliged to accept cookies (the User(s) may agree to the use of cookies by clicking the appropriate button on our Website or by making the appropriate settings in your Web browser), but this may result in Our Website not functioning fully properly.

We use “Persistent Cookies” that are designed to store data over a long period of time and are activated each time the User visits Our Website that created that particular cookie. Each persistent Cookie is created with an expiry date that can be anywhere from a few days to several years in the future. When the Cookie expires, it is automatically deleted. Moreover, Persistent Cookies allow Our Website to “remember the User”.

First and Third Party Cookies on Our Website:

• Cookies placed on your device include “first party Cookies”, which are Cookies that are placed by Us or by third party service providers acting on Our behalf. If such Cookies are managed by third parties, We only allow the third parties to use the Cookies for Our purposes as described in this Cookie Policy and not for their own purposes.
• The Cookies placed on your device may also include “third party Cookies”, which are Cookies placed there by third parties. These Cookies may include third-party advertisers who display advertisements on Our Website and/or social media providers, etc. They may also include third parties who provide video content embedded on Our Website (e.g., YouTube, etc.). We have no control over the settings of these third-party cookies, so we encourage you to check the third-party websites to learn more about their use of cookies and how to manage them.

We also use social media buttons and/or plugins on the Website that allow you to connect with Our social network. In order for them to work, they set Cookies on Our Website that can be used to improve your profile on their website or to supplement the data they store for various purposes specified in their respective privacy policies and cookies policies.

VI. CHILDREN'S PRIVACY

The Website and Services are not intended for use by anyone under the age of 18 (hereinafter, “Children”). Stormotion does not knowingly solicit or collect personal data from Children.

(i.) If a User is a parent or guardian and becomes aware that their Child has voluntarily submitted personal data to Stormotion, the parent or guardian must immediately contact Stormotion (see the “Contact Us” section).

(ii.) Stormotion shall not be responsible or liable for any data submitted by Children. All responsibility for ensuring that Children do not submit personal data rests solely with the parent or guardian.

(iii.) If Stormotion becomes aware that personal data of Children has been submitted without parental or guardian consent, Stormotion will take commercially reasonable steps to delete such data from Stormotion's CRM.

(iv.) Users (including parents or guardians) acknowledge and agree that Stormotion bears no liability for any consequences arising from Children’s submission of personal data, and that all such risks are assumed solely by the parent or guardian.

Note: Stormotion relies entirely on Users’ representations regarding age and parental or guardian consent, and does not independently verify the age of User. Submission of any data by Children is considered voluntary and at the sole risk of the parent or guardian.

VII. PROTECTION AND USE OF PERSONAL DATA OF THE USER(S)

Stormotion uses commercially reasonable technical, organizational, and administrative measures to collect, store, process, and protect personal data of Users against unauthorized access, alteration, disclosure, or destruction. All data submitted to Stormotion is provided voluntarily and at the sole discretion of the User(s), and Users acknowledge and accept full responsibility for the legal basis and accuracy of such data.

(i.) Stormotion does not share Users’ personal data with third parties, except:

• With Stormotion’s affiliates, employees, contractors, subcontractors, or recruitment service providers, subject to written agreements prohibiting any further transfer, collection, or processing of Users’ personal data without Stormotion’s explicit written consent.
• With third parties described in the “APPLICABLE TERMS” section, provided that Stormotion has executed the relevant agreements, terms of use, or privacy policies ensuring adequate data protection.
• As required by applicable law, court order, or governmental/regulatory request, or when Stormotion reasonably believes in good faith that disclosure is necessary to: Comply with legal or regulatory requirements or legal process; Prevent criminal activity, fraud, or misuse of the Services; Protect national security or prevent terrorist activities; Protect Stormotion’s property rights; Protect the safety, health, or welfare of Users or third parties; etc.

(ii.) Stormotion uses Users’ personal data solely for purposes including, but not limited to: Responding to Users’ inquiries efficiently; Improving the quality, reliability, and functionality of Our Services; Facilitating use of the Website and Services; Managing risk, fraud prevention, and misuse of Our Services; Notifying Users of updates, new features, or service changes; Sharing with marketing or advertising partners to improve Stormotion’s marketing strategies, subject to compliance with applicable law; Ensuring compliance with local, national, and international laws to enable lawful provision of Services.

(iii.) Stormotion may use personal data to send newsletters, marketing, or promotional materials, and Users may choose to opt-out of such communications at any time. Stormotion does not currently sell Users’ personal data to third parties. If this practice changes, Stormotion will update the Privacy Policy and provide Users with a clear opportunity to opt-in or opt-out.

Note: Users are solely responsible for the accuracy, legality, and appropriateness of any personal data they submit, including Publicly Available Data. Stormotion relies entirely on the representations of Users and shall not be liable under any circumstances for consequences arising from Users’ submission, sharing, or processing of their personal data.

VIII. STORAGE OF OUR USER(S) PERSONAL DATA

We securely store your data in Our internal CRM and/or HubSpot CRM.

The data retention period that we receive from the User(s) is calculated for each moment of cooperation individually in compliance with all relevant regulations, which are confirmed by this Privacy Policy. However, in general, the period is from 6 (six) months from the first collection/receipt of such data to the maximum period allowed by applicable law, taking into account such circumstances as whether the User continues to use Our Services or whether We cooperate with the User, etc. Retention periods from other recipients (owners of other websites outside of Our Website) are set exclusively by them in their privacy policies.

Notice: In case the User(s) requests that We DON'T store personal data by sending Us a request to hello@stormotion.io, We will take all reasonable measures to delete all personal data about such User(s). However, with the explicit consent of the User, we may retain a streamlined version of their profile, including their email address, for future purposes, enabling us to keep the User informed about our recruitment campaigns or marketing offers.

IX. GENERAL USER RIGHTS

The User(s) have certain rights in connection with the processing of personal data by Stormotion. All provision of these rights is voluntary and exercised at the sole discretion and responsibility of the User(s). Stormotion acts (provides Services) only upon request from the User(s) and assumes no responsibility for the accuracy, legality, completeness, or consequences of any data submitted by the User(s).

(і.) Right of Access (e.g., Art. 15 GDPR) – You can request confirmation of whether Stormotion holds personal data about you and ask to receive a copy of that data. This right allows you to understand what data is collected, why it is processed, and who it may be shared with.

(іі.) Right to Rectification (e.g., Art. 16 GDPR) – You can request correction of inaccurate or incomplete personal data. Stormotion may update your data upon verification of your request.

(ііі.) Right to Erasure / Right to be Forgotten (e.g., Art. 17 GDPR) – You can request deletion of your personal data if there is no legal or operational requirement to retain it. Stormotion may retain certain data as required by law or necessary to protect legitimate interests.

(iv.) Right to Restrict Processing (e.g., Art. 18 GDPR) – You can request temporary suspension of the processing of your personal data. Stormotion may approve or partially approve such requests, based on applicable law and operational feasibility.

(v.) Right to Data Portability (e.g., Art. 20 GDPR) – You can request a copy of your personal data in a structured, commonly used, machine-readable format, and, where feasible, request its transfer to another service provider.

(vi.) Right to Object (e.g., Art. 21 GDPR) – You can object to the processing of your personal data based on legitimate interests or direct marketing purposes. Stormotion will review and act on such objections where permissible by law.

(vii.) Right to Withdraw Consent – You can withdraw consent for data processing at any time, without affecting processing that occurred prior to withdrawal.

Fees and Timing. Requests are generally free of charge. Stormotion may charge a reasonable fee or refuse requests that are manifestly unfounded, excessive, or repetitive. We will respond to requests within a reasonable timeframe, typically within 30 (thirty) calendar days, unless the law allows an extension for complex requests.

Verification and Security Measures: Stormotion may require information to verify the identity and entitlement of the User(s) requesting access or other rights. These measures are solely for Stormotion’s protection and shall not be interpreted as creating any additional liability or obligation.

Important Note:

• All personal data provided to Stormotion by the User(s) is voluntary, at the sole discretion, and at the full risk of the User(s).
• Stormotion is not responsible for any direct, indirect, or consequential damages arising from the use, submission, or sharing of any personal data by the User(s).
• To exercise any of the above rights, please contact Stormotion in writing at hello@stormotion.io.

X. TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

The User's personal data is transferred to (or within) third countries if the Services provided by Us will also be provided in the territory of a third country. The personal data of the User(s) may also be transferred to entities that provide tax, legal, and audit advice to Us if they operate in or outside the territory of a third country. In each of the above cases, We protect the processing of the User's personal data, in particular, by entering into confidentiality agreements and processing personal data in a manner that complies with the provisions of generally applicable EU and UK data protection laws, as well as on terms designed to ensure the security of the processing of the User's personal data. We DON'T transfer personal data of the User(s) to international organizations. We also DON'T transfer personal data of the User(s) to third countries, if such transfer is impossible or prohibited by generally accepted legislation.

• Any transfer of personal data to the United States of America and other countries outside the European Union (hereinafter — the “EU”) and the European Economic Area (hereinafter — the “EEA”) will be carried out on the basis of Standard Contractual Clauses (hereinafter — the “Standard Contractual Clauses” or the “SCC”) together with a Transfer Impact Assessment (hereinafter — the “TIA”) in accordance with Art. 46(2)(c) GDPR and with the consent of the User(s), e.g., if the User consents to the use of cookies, this will also be consent to the possible transfer of the User's personal data to the United States of America in accordance with Art. 49(1)(a) GDPR in connection with Art. 6(1)(a) GDPR.
• Any transfer of personal data to the EU and/or the EEA is carried out on the basis of a Data Protection Agreement (hereinafter referred to as “Data Protection Agreement” and/or the “DPA”), if necessary, together with a TIA, in accordance with Art. 28 GDPR, Art. 32 GDPR, etc., and with the consent of the User(s) (e.g., based on Art. 6(1)(a) GDPR).

Note: By accepting this Privacy Policy, the User(s) explicitly acknowledge, agree, and voluntarily consent to the transfer of their data as described herein. The User(s) are solely responsible for the accuracy, legality, and completeness of any data they provide to Stormotion and for any consequences arising from such transfer. The User(s) may withdraw their consent to cross-border data transfers at any time by contacting Stormotion at hello@stormotion.io. However, withdrawal may limit the User(s)’ ability to access or use certain Services, and Stormotion shall not be liable for any effects resulting from such withdrawal.

XI. APPLICABLE TERMS

Stormotion may engage with third-party companies, individual entrepreneurs, or other entities (collectively, “Service Providers”) to facilitate the operation of Our Services, provide Services on Our behalf, analyze and improve Our Services and/or Our Website, or otherwise assist Us in Our business operations. Such Service Providers may receive access to data of the User(s) solely for the purposes explicitly defined by Stormotion and are strictly prohibited from using or disclosing such data for any other purpose, except as explicitly provided in the applicable cooperation agreement, terms of use, or privacy policy governing their services.

All cooperation with third-party Service Providers is formalized through legally binding documentation, including but not limited to master service agreements, non-disclosure agreements, terms of use (offer/user agreements), privacy policies, etc.

By voluntarily providing data and interacting with Our Services, the User(s) explicitly acknowledge, agree, and provide their consent that Stormotion is not responsible, including jointly or severally, for any unlawful or unauthorized use of data by such Service Providers. Users assume full responsibility for any consequences arising from their interaction with Service Providers. Each Service Provider independently manages data in accordance with its own terms of use and privacy policy. Stormotion does not control and assumes no liability for the actions of Service Providers beyond the measures described herein.

For the purposes of improving Our Services, marketing, analytics, and operational efficiency, Stormotion may integrate or cooperate with the following third-party tools. The User(s) acknowledge that their interactions with these tools are governed by the respective third-party privacy policies, and Stormotion disclaims any liability for such third-party practices:

• Google Analytics (Google LLС) is a web analysis service provided by Google Inc. Google utilizes the data collected to track and examine user behavior, to prepare reports, and share insights with other Google services. Google may use the data collected to contextualize and personalize the advertisements launched via Google’s advertising network. The service is subject to Google’s Privacy Policy (available at the link).
• Google Tag Manager (Google LLС) is a web service designed to optimize the Google Analytics management process. The service is provided by Google Inc. and is subject to Google’s Privacy Policy (available at the link).
• Facebook Ads conversion tracking (Facebook, Inc.) Facebook Ads conversion tracking is an analytics service that binds data gathered from the Facebook advertising network with actions performed on our website. The service is provided by Facebook, Inc. and is subject to Facebook’s Privacy Policy (available at the link).
• HubSpot CRM (HubSpot, Inc.) is a customer relationship management platform that helps businesses organize, track, and manage interactions with leads and customers. This service is provided by HubSpot, Inc. and is governed by HubSpot’s Privacy Policy (available at the link).
• Microsoft Clarity (Microsoft Corporation) is a web analytics service provided by Microsoft Corporation. Microsoft Clarity collects data to analyze user interactions with websites, including heatmaps, session recordings, and user behavior patterns, to generate reports and insights. Microsoft may use the data collected to improve its services and may share aggregated or anonymized information with other Microsoft services. The service is subject to Microsoft’s Privacy Policy (available at the link).
• Meta Pixel (Meta Platforms, Inc.) is a web analytics and advertising service provided by Meta Platforms, Inc. Meta Pixel collects data on user interactions with websites to measure the effectiveness of ads, optimize campaigns, and understand user behavior. The data collected may be used to personalize content and advertising across Meta’s services. The service is subject to Meta’s Privacy Policy (available at the link).
• Woopra (Woopra Inc.) is a web analytics service provided by Woopra Inc. Woopra collects data on user interactions with websites and applications to analyze user behavior, monitor trends, and generate reports. The data may also be used to improve user experience and personalize services. The service is subject to Woopra’s Privacy Policy (available at the link).

Note: Users are encouraged to review the privacy policies of each Service Provider independently. By using Our Services, the User(s) acknowledge and accept that all data sharing with Service Providers occurs at the sole discretion on an “as needed” basis, and Stormotion assumes no liability for any consequences arising from such sharing.

XII. REPORTING A VULNERABILITY

Stormotion is committed to maintaining the security and integrity of Our Services. If You believe that You have discovered a potential security issue or vulnerability within Our Website, or Services that is within the scope of Our systems, You may report it to Stormotion by emailing hello@stormotion.io.

To ensure that We can address the report effectively, please provide, where applicable:

(і.) A detailed description of the suspected vulnerability.

(іі.) Full URLs or locations associated with the vulnerability.

(ііі.) A Proof of Concept (POC) or detailed instructions, including screenshots, video, or other supporting materials, demonstrating how the vulnerability can be reproduced or exploited.

(iv.) Entry fields, filters, or other input mechanisms involved in the vulnerability.

(v.) Your assessment of the potential risk or exploitability.

(vi.) Instructions for how We can reach You for follow-up questions or clarification.

• Offering potential solutions is encouraged, but not required. Lack of complete or detailed information may delay Our ability to investigate or remediate the reported vulnerability.

By submitting a report, You acknowledge and agree that:

(i.) Stormotion retains sole discretion over any investigation, response, or remediation measures, including whether any reported vulnerability constitutes a legitimate issue or security risk.

(ii.) Stormotion is not liable for any consequences, claims, or damages arising from the reporting process, including but not limited to delays, partial reports, incorrect reproductions, or misuse of reported information.

(iii.) You shall not exploit or publicly disclose any security vulnerability without Stormotion’s explicit written consent. Unauthorized access, testing, or use of Our systems beyond reporting a potential vulnerability may be considered a violation of applicable law and the Stormotion “Imprint (Legal Notice)”, and Stormotion reserves all rights to pursue legal or other actions in such cases.

Note: Reports are reviewed promptly, but submission of a report does not create any contractual relationship between You and Stormotion, nor does it guarantee any compensation, recognition, or bounty. Stormotion reserves the right to implement, modify, or decline any actions based on a submitted report.

XIII. UPDATES TO THIS PRIVACY POLICY

Stormotion reserves the exclusive right to modify, update, amend, or supplement this Privacy Policy at any time in order. In the event of material changes to this Privacy Policy, We will make reasonable efforts to notify Users by posting a notice on Our Website prior to the effective date and updating the “Last Update” date at the top of the Privacy Policy. Notification may also be made via e-mail newsletter if the User has consented to receiving such communications. Users are solely responsible for reviewing and familiarizing themselves with any updates to this Privacy Policy, including in cases where Users have opted out of receiving email notifications.

Stormotion may require Users to provide renewed consent to continue using Our Services following updates to the Privacy Policy. Unless otherwise stated, all changes shall become effective 30 (thirty) calendar days after publication of the revised Privacy Policy on the Website.

Electronic or other stored copies of this Privacy Policy maintained by Stormotion shall be deemed the authentic, complete, valid, and enforceable version in effect at the time of any User’s interaction with Our Website.

By continuing to use or interact with Our Website or Services following any updates, Users explicitly acknowledge and accept the updated Privacy Policy. Stormotion shall not be liable for any consequences arising from a User’s failure to review or comply with changes to the Privacy Policy.

XIV. LANGUAGE OF THIS PRIVACY POLICY

This Privacy Policy is written in English. In the event that We provide any translation of this Privacy Policy for convenience, such translation is provided solely for the convenience of Users and has no legal effect; in the event of any inconsistency or conflict between the English version and any translated version, the English version shall prevail.

If You use any automated or third-party translation tool (including browser translation tools) to view this Privacy Policy, You acknowledge and agree that Stormotion is not responsible for the accuracy, completeness, or quality of such translation. To the extent You do not understand the English language, You should seek an independent, certified translation or legal advice prior to accepting this Privacy Policy.

XV. CONTACT US

For any questions regarding this Privacy Policy – User(s) may contact Stormotion by sending an email to: hello@stormotion.io; or by filling out the form at: https://stormotion.io/contact-us/.

All inquiries will be addressed within 30 (thirty) calendar days, or within a longer period if reasonably justified, in accordance with applicable laws. Users are solely responsible for providing accurate and sufficient information to allow Stormotion to identify and address the inquiry.