State Privacy Notice

This State Privacy Notice ("Notice") supplements our Privacy Policy and provides disclosures and rights information for residents of certain U.S. states with privacy laws, including California. If there is any conflict between this Notice and our Privacy Policy, this Notice governs for state law disclosures and rights.

This Notice applies to Personal Information we collect through our website, forms, booking flows, communications, and services.

"Personal Information" has the meaning defined under applicable state privacy laws.

"Sensitive Personal Information" has the meaning defined under California law (CPRA).

"Sell" and "Share" have the meanings defined under California law and may include certain disclosures to advertising or analytics partners for cross-context behavioral advertising.

In the past 12 months, we may have collected the following categories of Personal Information, depending on your interaction with us:

We collect Personal Information from:

• you directly (forms, bookings, emails, calls, SMS, chat)
• your devices and browsers (cookies and analytics)
• service providers (hosting, analytics, telephony, CRM, scheduling)
• third-party platforms you authorize us to access (ad accounts, analytics, CRMs)

We collect and use Personal Information to:

• provide and operate services, including onboarding, delivery, and support
• respond to inquiries and schedule consultations
• configure and maintain workflows, routing, reporting, and AI receptionist systems
• process payments and manage accounts
• improve site performance, security, and troubleshooting
• measure marketing performance and effectiveness
• prevent fraud and misuse and enforce our Terms
• comply with legal obligations

We may disclose Personal Information to:

• hosting and infrastructure providers
• analytics and measurement providers
• CRM, scheduling, and customer support platforms
• telephony and messaging providers (call, SMS, chat)
• AI model and automation providers used to deliver service functions
• payment processors
• security and fraud prevention vendors
• professional advisors (legal, accounting) as needed
• government authorities when required by law

Max Digital Edge does not sell Personal Information for money. However, we may disclose limited information to analytics and advertising partners for measurement and targeted advertising. Under California law, certain disclosures may be considered "sharing" (or "selling") for cross-context behavioral advertising.

We do not use Sensitive Personal Information to infer characteristics about you or for purposes that would require a "Limit the Use of My Sensitive Personal Information" link under California law. If this changes, we will update our disclosures and provide additional choices as required.

We retain Personal Information only as long as reasonably necessary for the purposes described in our Privacy Policy and this Notice, including to provide services, maintain records, comply with legal obligations, resolve disputes, and enforce agreements. Retention varies by data type and operational need.

Depending on your state of residence, you may have rights such as:

• Right to Know/Access: request what Personal Information we collected and how we used it
• Right to Delete: request deletion of Personal Information, subject to exceptions
• Right to Correct: request correction of inaccurate Personal Information
• Right to Data Portability: receive a portable copy of your Personal Information (where applicable)
• Right to Opt Out: opt out of targeted advertising, sale/sharing (as defined by law), and certain profiling (where applicable)
• Right to Non-Discrimination: you will not be unlawfully discriminated against for exercising your rights

Some rights may be limited by law (for example, to protect security, comply with legal obligations, or complete transactions you requested).

Submit requests by:

We may verify your identity before fulfilling requests. If you use an authorized agent, we may require proof of authorization.

Where required by law and where our systems can reasonably detect it, we will treat a browser-based Global Privacy Control signal as a request to opt out of "sale" or "sharing" for that browser and device.

We may update this Notice from time to time. Updates will be posted with a revised "Last Updated" date.