Last updated effective April 1, 2026

As we work with you to build better relationships, we are committed to protecting your privacy. For any personal data we collect as part of your journey with us, this Privacy Policy (“Policy”) explains why we collect the data, what we do with the data, and your rights and choices when it comes to your personal data. For the avoidance of doubt, references in this Policy to data, personal information, or information, are all references to personal data.

When you use our mobile application (“App”), access our website at www.dfuse-ai.com (“Website”), or interact and communicate with us via our online or social media channels, this Policy will apply to you. For this policy, we will refer to all these touchpoints with you as our services (“Services”).

You know us as Dfuse, but as a legal entity we are Dfuse, Inc., a company registered in the State of Delaware (“we”, “our”, “us”) and are the data controller. We decide what personal data is collected from you and how this data will be used.

Our Services may contain links to sites run by our experts and other websites such as Twitter, Facebook, Instagram, Tiktok. These experts and third-party organisations will have their own privacy policies, which you should read carefully before providing any of your personal data to them, as we do not accept any responsibility or liability for them.

When you use the App, we collect: your name and a unique user code we supply you with to allow you and your partner to pair your Apps; your device ID so that we are able to identify you as one of our users. We may also collect your email address to allow you to create an account with us. We do not collect: audio recordings, precise location (GPS), contacts/address book, or file uploads or attachments.

Conflict Resolution Information

When you use the App to work through conflicts, we collect: your descriptions of conflict situations including your perspective and desired outcomes, your responses to personality and communication assessments, your responses to clarification questions; your choices for underlying issues and solutions; and progress updates you provide on conflict resolution outcomes. We use this information to: provide personalized conflict resolution guidance, generate tailored solutions based on your specific situation, track your progress through the resolution process, and improve our conflict resolution frameworks and recommendations.

Activity Information

When you use the App, we collect: your responses to conflict resolution questions, assessments, and solution selections; your descriptions of conflict situations and perspectives; and your progress through the conflict resolution process. We use this information to provide personalized guidance, generate tailored solutions, and enable sharing with your counterpart when you choose to connect with our App. The responses, answers that you provide to the App are seen by you. Dfuse may access your responses in aggregated or de-identified form for the purposes of analysing and understanding how to improve your experience via personalized conversation recommendations, analysis and advice, new features, greater guidance, and improved user-friendliness within the app.

Demographic Information

We may present the option for you to provide demographic information so we can provide you with relevant recommendations and tailor the content we provide in the App. Where we do so, we collect personal data such as age, gender, preferences, and lifestyle information. You may withdraw your consent at any time by deleting your preferences or contacting us at the email address provided at the end of this Policy.

Usage Information

When you use the Services, we collect: your responses to surveys so that we may improve the Services we offer; information about the time you spend and the activities you engage with in the App in order to better understand your needs and preferences and improve the user journey and experience; your IP address in order to know your general location so that we can manage the security of our platforms; and your device ID and email address so that we may communicate with you (via email or push notifications) about the activities you undertake as part of Services.

Support Information

When you use the Services, we collect: your email address when you contact us for support so that we are able to respond to you; your device information so that we can understand and fix technical issues that may occur with our platforms, and other personal data you provide about yourself anytime you contact us for support or general queries.

Subscription and Registration Information

When you subscribe to Dfuse Premium or register for an account, we collect: the details of your applicable subscription, registration information associated with setting up your account which includes an email address and password. We use your registration information to set up your account and to allow you to backup and restore your activity information.

Marketing Information

When you use the Services, we collect your email address so that we can deliver offers and promotions that may be of interest to you. We may use personal data to market our own products and services, which includes sending you information about Dfuse updates and features, our newsletter, and discounts on Dfuse Premium. We may send you personalized marketing communications based on criteria, including your interactions with our content, items you view in the app, or information you give us about yourself in your profile.

Technology Information

When you use our Services, we collect and store certain information via the use of technologies such as device identifiers, pixels and cookies. These technologies track information about you and enable us to: (i) remember you when using your computer or device so that we can personalise your user journey and (ii) advertise our Services to you and other relevant audiences. Where we require your consent for these activities, soliciting your consent will be included as part of the information provided in our cookie banner or notice that is displayed when you first access our Services or when we first engage in these activities.

If you provide information that may be classed as special or sensitive (e.g. health or sexual orientation) you consent to processing of that information in accordance with this Policy. You may withdraw your consent by deleting your content and contacting us at the address at the end of this Policy.

Conflict information you provide may include sensitive personal details about relationships, workplace situations, family matters, or other private circumstances. By using the App's conflict resolution features, you consent to our processing of this information to provide you with personalized conflict resolution guidance. You understand that if you choose to pair your App with a counterpart, they will have access to the conflict information you share through the pairing feature.

When you choose to connect your App with your counterpart's App using our pairing feature, YOU control what information is shared. Once connected: - Your counterpart can view the conflict perspectives, questions, and solutions you have chosen to share with them - You can view what your counterpart has chosen to share with you - Either party can end the pairing at any time, which immediately stops further sharing - Historical information already shared remains visible unless you delete your account - We facilitate this sharing but do not independently share your data with your counterpart without your initiated action.

We never disclose your personal data to advertisers or other third parties for any compensation. However, we share the personal data we collect about you in order to provide our services in the ways described below.

Service Providers

We work with service providers that carry out certain functions on our behalf. These include, for example, companies that help us with network and technology services, payment processing, storing data, analysing data including via artificial intelligence and machine learning, managing mailing campaigns, running our support desk, and managing subscriptions. We only share the personal data necessary to enable our service providers to provide their services.

Artificial Intelligence Services

We may use third-party artificial intelligence services (including large language models) to generate personalized conflict resolution questions, reflective responses, and tailored solutions based on the information you provide. When we use these services, we share only the conflict information necessary to generate relevant guidance. We use AI services that do not retain or train on your personal data.

Sharing personal data with other Organizations:

We may share personal data with other organisations in the following circumstances:

-- if the law or a public authority says we must share the personal data;

-- if we need to share personal data in order to establish, exercise or defend our legal rights (this includes providing personal data to our professional advisors); or

-- to an organisation we sell or transfer (or enter into negotiations to sell or transfer) any of our businesses or any of our rights or obligations under any agreement we may have with you. If the transfer or sale goes ahead, the organisation receiving your personal data can use your personal data in the same way as us.

Dfuse has physical, electronic, and procedural safeguards that comply with regulations to protect personal information about you. However, data transmissions over the internet cannot be guaranteed to be 100% secure. Consequently, Dfuse cannot ensure or warrant the security of information you provide over the internet to us.

The personal data we collect is stored and processed on computers situated in the United States. Dfuse limits access to personal information about you to employees who Dfuse reasonably believes need to come into contact with that information, to provide products or the Service to you, or in order to do their jobs.

Your personal data won’t be kept longer than is reasonably necessary, giving due regard to: initial purpose of collection; age of data; any legal/regulatory reason for us to keep it; and whether needed to protect you or us. We may retain and use your personal data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements and rights, or if it is not technically reasonably feasible to remove it. To determine the appropriate retention period for personal data we consider the amount, nature and sensitivity of personal data, potential risk of harm from unauthorised use or disclosure and the purposes for which we process and whether we can achieve these purposes by other means in addition to the applicable legal and regulatory requirements.

We retain your conflict descriptions, assessment results, and solution selections for as long as your account is active and for 90 days after account deletion to allow for account recovery.

Dfuse does not knowingly collect Personal Data from children under the age of 18. If you are under the age of 18, do not send any information about yourself to us, including your name, address, telephone numbers, or email address, unless you have your parent's or guardian's permission. Should we become aware that we are processing the personal data of any children, we will delete such personal data as soon as possible in accordance with applicable law.

We may partner with third party ad networks either to display advertising on our App, Website or Services or to manage our advertising on other sites. Our ad network partner may use cookies and web beacons to collect non-personally identifiable information about your activities on our App, Website or Services to provide you targeted advertising based upon your interests.

You have the right to:

- Access the personal data we hold about you

- Request correction of inaccurate personal data

- Request deletion of your personal data

- Object to processing of your personal data

- Request restriction of processing

- Data portability (receive your data in a structured format)

- Withdraw consent at any time

You can also:

- Disconnect from your counterpart at any time by contacting us at info@dfuse-ai.com (we will process disconnection requests immediately upon verification)

- Request account deletion, which will be processed within 48 hours of identity verification.

For all other requests, we will respond within 30 days.

You have the right to export and download your personal data from the App at any time.

What You Can Export:

You can export the following information in a structured, commonly used, and machine-readable format:

- Your conflict descriptions and perspectives

- Your responses to all assessment questions (including Thomas-Kilmann conflict mode assessments, values clarification questions, and empathy-building exercises)

- Your conflict style profiles and assessment results

- All solutions and recommendations generated for your conflicts

- Your selected solutions and implementation strategies

- Communication templates and messages drafted through the App

- Progress notes and updates you've recorded

- Timestamps and history of your conflict resolution activities

Export Formats:

Your data can be exported as PDF. If your App is connected with a counterpart, you can export only your own data and shared collaborative content; you cannot export data that belongs exclusively to your counterpart.

How to Export:

To export your data, contact us at info@dfuse-ai.com with your request. We will provide your data within 48 hours of verifying your identity.

Sharing Exported Data:

Once you export your data, you are responsible for how you store, share, or use it. We recommend treating exported conflict data with care as it may contain sensitive personal information about you and others involved in the conflict.

Exported Data Retention:

When you request a data export, we create a temporary copy to generate your export file. This temporary copy is deleted from our servers within 48 hours after your download is complete.

This section of our Policy contains information required by certain U.S. state data privacy laws. If you reside in California, Colorado, Connecticut, Utah, or Virginia, this section applies to you and supplements the rest of our Policy. Please refer to the state in which you reside to learn more about additional terms and rights that may apply to you.

California
The California Consumer Privacy Act ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), requires us to provide California consumers with some additional information regarding how we collect, use, and disclose your personal information, and the rights available to California consumers under the CCPA. The terms used in this section have the same meaning as in the CCPA.

As described above in Section 3. How we collect and use your personal data, Dfuse may have collected the following categories of "personal information" (as that term is defined by the CCPA) about you through our Services within the last 12 months:

• Identifiers, such as your name, email address, and username;
• Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)), such as your contact information and profile photo;
• Commercial information, such as transaction information and purchase history;
• Internet or network activity information, such as your browsing history and interactions with our Website;
• Geolocation data, such as your approximate location based on your IP address;
• Audio, electronic, visual, and similar information, such as video content you may have uploaded;
• Your account log-in information i.e., username and password to access your account (if you have a Dfuse account); and
• Inferences drawn from any of the above personal information to create a summary about you, for example your preferences and characteristics.

The sources from which we collect personal information are described in this Policy. The business and commercial purposes for which we collect this information are also described in this Policy. The categories of third parties to whom we disclose this information for a business purpose are described in this Policy. The length of time for which we retain personal information is described above in this Policy.

Sales and Sharing of Personal Information

Dfuse does not sell personal information as the term “sell” is traditionally understood (i.e., for money). However, like many websites and apps, our Services use cookies and other tracking technologies to provide you with a more personalized experience and to advertise our Services to you, if you choose to enable such cookies. The use of such cookies which disclose a California resident’s personal information (which includes IP addresses and cookie IDs) to third party service providers and advertisers may be considered a “sale” of personal information under the CCPA (given its broad definition of "sale"), or a "sharing" of personal information under the CCPA (which is defined as the disclosure of personal information for the purposes of cross-context behavioural advertising). You may opt out of such cookies at any time by adjusting your cookie choices in our cookie banner, or by clicking the "Your Privacy Choices" link in the footer of our Website.;

We do not knowingly sell or share personal information of California residents who are under 16 years old.

California Privacy Rights

If you are a California resident, you may have the following rights under the CCPA, subject to certain limitations and exceptions under applicable law:

• Know and Access: You have the right to request to know and access the following information covering the 12 months preceding your request:
  - the categories of personal information we have collected about you;
  - the categories of sources from which your personal information was collected;
  - the business or commercial purposes for collecting personal information about you;
  - the categories of third parties with whom the business discloses personal information about you; and - the specific pieces of personal information we have collected about you.
• You have the right to receive your personal information in a portable and commonly used format.
• Correct: You have the right to request that we correct any of your personal information that we have collected from you that is inaccurate.
• Delete: You have the right to request that we delete personal information that we have collected from you.
• Opt-Out of Sales and Sharing: You have the right to request that a business not "sell" or "share" your personal information with a third party, as those terms are defined under the CCPA. As described above, Dfuse uses cookies and other tracking technologies to make available certain personal information to third parties to display personalized ads to you. To the extent that such practice constitutes a “sale” or “share” of personal information under the CCPA, you may opt-out of such “sale” or “share” at any time by using our cookie banner to adjust your cookie choices, or by clicking the ‘Cookie Policy’ link in the footer of our Website, and clicking the "Your Privacy Choices" link to adjust your cookie choices.
• Limit the use and disclosure of sensitive personal information: Dfuse may collect certain "sensitive personal information,” as defined by the CCPA, from you if you choose to provide us with sensitive personal information such as your sexual orientation, race or ethnicity. However, Dfuse does not use or disclose such "sensitive personal information,” other than for the purposes described in Section 3. "How we collect and use your personal data" above, or as otherwise permitted under applicable law. As a result, we do not offer an ability to limit the use and disclosure of sensitive personal information.
• Non-Discrimination: You have the right to not be discriminated against for exercising any of your CCPA rights. We shall not discriminate against you for exercising any of your above rights.
• You can exercise your right to stop email marketing messages from us at any time by contacting us at info@dfuse-ai.com.

Colorado Privacy Rights

The Colorado Privacy Act ("CPA") and its implementing regulations define "consumer" as a Colorado resident who is acting in an individual or household context only, and does not include residents acting in a commercial or employment context. If you are a Colorado "consumer", you may have the following rights concerning your personal data, subject to certain limitations and exceptions under applicable law:.

• Access: You have the right to request to confirm whether we are processing personal data about you and to access such personal data.
• Data Portability: You have the right to obtain your personal data in a portable and readily usable format.
• Correction: You have the right to request that we correct inaccuracies in the personal data we have collected about you, taking into account the nature of the personal data and the purposes of processing your personal data.
• Deletion: You have the right to request to delete your personal data.
• Opt-out of Data Processing for purposes of Targeted Advertising; Sales to Third Parties; and Profiling: We do not sell personal data to third parties for money, nor for the purpose of profiling in connection with decisions that produce legal or similarly significant effects. However, we do process personal data for the purpose of displaying targeted advertisements, if you instruct us to do so. You have the right to opt out of the processing of personal data for targeted advertising purposes at any time by changing your cookies choices via our cookie banner or via the ‘Cookie Policy’ link in the footer of our website.
• Appeal: You have the right to appeal a refusal to take action on your request. You may ask us to reconsider our decision within 45 days after we send you our decision. We will endeavor to respond to your appeal within 60 days of such an appeal, including a written explanation of the reasons for the decision, and any action taken or not taken in response to the appeal.

Connecticut Privacy Rights

The Connecticut Data Privacy Act ("CtDPA") defines "consumer" as an individual who is a resident of Connecticut. If you are a Connecticut "consumer", you may have the following rights concerning your personal data, subject to certain limitations and exceptions under applicable law:

• Access: You have the right to request to confirm whether we are processing personal data about you, and to access such personal data.
• Data Portability: You have the right to obtain your personal data in a portable and readily usable format.
• Correction: You have the right to request that we correct inaccuracies in your personal data.
• Deletion: You have the right to request to delete the personal data provided by you or obtained about you.
• Opt-out of Data Processing for purposes of Targeted Advertising; Sales to Third Parties; and Profiling: We do not sell personal data to third parties, or process personal data for the purpose of profiling in connection with decisions that produce legal or similarly significant effects. We do process personal data for the purpose of displaying targeted advertisements, if you instruct us to do so. You have the right to opt out of the processing of personal data for targeted advertising purposes at any time by changing your cookies choices via our cookie banner or via the ‘Cookie Policy’ link in the footer of our website.
• Appeal: You have the right to appeal a refusal to take action on your request. You may ask us to reconsider our decision within 45 days after we send you our decision. We will endeavor to respond to your appeal within 60 days of such an appeal, including a written explanation of the reasons for the decision, and any action taken or not taken in response to the appeal.

Utah Privacy Rights

The Utah Consumer Privacy Act ("UCPA") defines “consumer” as an individual who is a resident of Utah acting in an individual or household context only, and does not include residents acting in a commercial or employment context. If you are a Utah "consumer", you may have the following rights concerning your personal data, subject to certain limitations and exceptions under applicable law:

• Access: You have the right to request to confirm whether we are processing personal data about you, and to access such personal data.
• Data Portability: You have the right to obtain your personal data in a portable and readily usable format.
• Deletion: You have the right to request to delete the personal data provided by you or obtained about you.
• Opt-out of Data Processing for purposes of Targeted Advertising and Sales to Third Parties: We do not sell Personal Information to third parties. We do process Personal Information for the purpose of displaying targeted advertisements, if you instruct us to do so. You have the right to opt out of the processing of personal data for targeted advertising purposes at any time by changing your cookies choices via our cookie banner or via the ‘Cookie Policy’ link in the footer of our website.

Virginia Privacy Rights

The Virginia Consumer Data Protection Act ("VCDPA") defines "consumer" as a Virginia resident who is acting in an individual or household context only and does not include residents acting in a commercial or employment context. If you are a Virginia "consumer", you may have the following rights concerning your personal data, subject to certain limitations and exceptions under applicable law:

• Access: You have the right to request to confirm whether we are processing personal data about you, and to access such personal data.
• Data Portability: You have the right to obtain your personal data in a portable and readily usable format.
• Correction: You have the right to request that we correct inaccuracies in your personal data.
• Deletion: You have the right to request to delete the personal data provided by you or obtained about you.
• Opt-out of Data Processing for purposes of Targeted Advertising; Sales to Third Parties; and Profiling: we do not sell personal data to third parties for money, nor for the purpose of profiling in connection with decisions that produce legal or similarly significant effects. However, we do process personal data for the purpose of displaying targeted advertisements, if you instruct us to do so. You have the right to opt out of the processing of personal data for targeted advertising purposes at any time by changing your cookies choices via our cookie banner or via the ‘Cookie Policy’ link in the footer of our website.
• Appeal: You have the right to appeal a refusal to take action on your request. You may ask us to reconsider our decision within 45 days after we send you our decision. We will endeavor to respond to your appeal within 60 days of such an appeal, including a written explanation of the reasons for the decision, and any action taken or not taken in response to the appeal.

Making Rights Requests

If you are a resident of one of the above U.S. states and would like to make a request to exercise one of the rights described above, please submit your rights request to info@dfuse-ai.com. To protect the personal data that we maintain, we may verify your identity when you make a request.

In certain states (such as California), an authorized agent may submit a rights request on your behalf. We may require an authorized agent to verify their authority to submit a request on your behalf, or we may require you to verify your own identity or confirm with us that you provided the agent with permission to submit the request. We will only use the information provided for verification to confirm the requestor’s identity or authority to make the request, and for our compliance records.

We endeavor to respond to a verifiable request within forty-five (45) days of its receipt. If we require more time, we will inform you of the reason and extension period in writing.

If you have any questions about how we collect, store and use personal data or to exercise any of your rights set out above, please email us at info@dfuse-ai.com.