PRIVACY POLICY

Last Updated: April 2026

1. INTRODUCTION AND GLOBAL SCOPE

MoraCen LLC, a Pennsylvania limited liability company ("Company," "we," "us," or "our"), strictly respects your privacy and is committed to protecting it through our compliance with this policy. This Privacy Policy governs the collection, processing, and retention of data when users, both domestically within the United States and internationally, access our proprietary Software-as-a-Service (SaaS) platforms, data refinery tools, and our corporate website (collectively, the "Services").

2. DATA CLASSIFICATION AND COLLECTION

To operate our SaaS platforms, we strictly adhere to the principle of data minimization. We collect and process the following categories of information:

• Account & Administrative Data: Information required to provision your account, including name, corporate email address, and authentication credentials.

• Financial & Billing Data: Payment processing is executed securely via compliant third-party gateways. MoraCen LLC does not directly collect, process, or store full credit card numbers or banking credentials on our local servers.

• Operational & Telemetry Data: We automatically collect standard diagnostic data (such as IP addresses, browser types, API call volumes, and access timestamps) strictly to monitor system integrity, prevent fraud, and optimize server performance.

• Client-Processed Data: Data uploaded or processed by users within our SaaS platforms is treated strictly as confidential. In this capacity, MoraCen LLC acts solely as a "Data Processor," processing data exclusively according to the operational functions of the software.

3. USE OF INFORMATION (LEGITIMATE INTERESTS)

We process collected data exclusively to:

• Execute and maintain the functionality of our proprietary software.

• Manage user authentication and subscription billing.

• Deploy critical system updates, security patches, and administrative notices.

• Ensure compliance with our Terms of Service and applicable global laws.

MoraCen LLC does not sell, rent, lease, or monetize your personal information to third-party data brokers or advertising agencies under any circumstances.

4. INTERNATIONAL DATA TRANSFERS

MoraCen LLC is headquartered in the United States, and our primary data infrastructure is hosted on U.S.-based servers. If you are accessing our Services from outside the United States—including the European Economic Area (EEA), the United Kingdom, or other regions with distinct data protection laws—please be advised that your personal data will be transferred to, processed, and stored in the United States. By utilizing our Services and submitting your data, you explicitly consent to this cross-border transfer, processing, and storage in accordance with this Privacy Policy.

5. INFORMATION SHARING AND SUB-PROCESSORS

We may disclose necessary operational data only to trusted third-party service providers (Sub-Processors) strictly for the purpose of hosting our infrastructure, processing payments, and conducting system analytics. All Sub-Processors are contractually bound to maintain stringent data confidentiality and security standards. We reserve the right to disclose information if legally compelled by a valid subpoena, court order, or government request in applicable jurisdictions.

6. COOKIES AND TRACKING TECHNOLOGIES

Our website utilizes essential cookies to enable core session functionality, authentication, and security protocols. By accessing our infrastructure, you consent to the deployment of these essential operational cookies. We do not utilize invasive cross-site tracking cookies for behavioral advertising.

7. DATA SECURITY AND INCIDENT RESPONSE

We deploy enterprise-grade encryption, secure server architectures, and continuous monitoring to protect your information against unauthorized access. In the event of a verified data breach compromising personal information, MoraCen LLC will execute notification protocols in strict accordance with the Pennsylvania Breach of Personal Information Notification Act (BPINA) and other applicable international data breach notification requirements. However, no digital transmission or storage system is entirely infallible; therefore, we cannot guarantee absolute data security, and users utilize our Services at their own risk.

8. DATA RETENTION

We retain Account Data for the duration of your active subscription. Upon account termination or cancellation, MoraCen LLC will securely delete or irreversibly anonymize personal data within ninety (90) days, except where extended retention is strictly required to comply with financial auditing, tax regulations, or legal obligations.

9. YOUR GLOBAL JURISDICTIONAL DATA RIGHTS

Depending on your geographic location (including the EEA under the GDPR, the UK GDPR, and various U.S. state laws), you possess specific, legally protected rights regarding your personal data. You maintain the right to:

• Request a complete export of your personal Account Data (Data Portability).

• Request the correction of inaccurate administrative data.

• Request the restriction of processing of your personal data.

• Request the permanent deletion of your Account Data (Right to be Forgotten), subject to necessary legal or billing constraints.

To exercise these rights, requests must be submitted in writing to our designated privacy team. We commit to responding to all verified requests within thirty (30) days.

10. CONTACT INFORMATION

If you have questions, compliance requests, or concerns regarding this Privacy Policy, please contact our administrative team at:

MoraCen LLC

info@moracen.com