Privacy Policy

1. Introduction

THEORIST is a global group of companies operating through distinct legal entities in multiple jurisdictions. We are committed to maintaining the trust and confidence of our visitors, customers, and partners. This Privacy Policy explains how THEORIST, which includes THEORIST LLC (United States), THEORIST OÜ (Estonia), and THEORIST L.L.C-FZ (United Arab Emirates) (collectively "THEORIST", "we", "us", or "our"), collects, uses, shares, and protects your personal information when you visit our websites, use our applications, or engage with our services.

As a data controller, we are responsible for your personal data. By accessing or using our services, you acknowledge that you have read this Privacy Policy and understand our data practices. We operate in strict compliance with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR) in the European Union, the California Consumer Privacy Act (CCPA) in the United States, and the UAE Federal Decree-Law No. 45 of 2021 regarding the Protection of Personal Data.

2. Information We Collect

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device. The categories of information we may collect include usage data, device information, and information you provide directly to us.

When you visit our website, our servers automatically record certain information sent by your browser. This data may include your Internet Protocol (IP) address, browser type and version, language preferences, referring/exit pages, operating system, date/time stamps, and clickstream data. We use this information to analyze trends, administer the site, track user movements around the site, and gather demographic information about our user base as a whole.

We also collect information that you voluntarily provide to us when you fill out forms on our website, such as contact forms for business inquiries, press requests, or legal matters. This information may include your name, email address, job title, company name, phone number, and the content of your message. If you correspond with us by email, we may retain the content of your email messages, your email address, and our responses.

3. How We Use Information

We use the information we collect for various business purposes, including providing, maintaining, and improving our services. Specifically, we use your personal information to respond to your inquiries and fulfill your requests, such as sending you information you have requested or answering your questions regarding our group companies and products.

We also use this information to improved the functionality and user experience of our websites and applications. By analyzing usage patterns and trends, we can better understand how our services are used and identify areas for enhancement. This includes technical administration of our websites, troubleshooting technical issues, and ensuring the security of our platforms.

Furthermore, we may use your information to comply with legal obligations, resolve disputes, and enforce our agreements. In the event of a legal proceeding, court order, or government inquiry, we may need to process and disclose your information as required by law. We do not use your personal information for automated decision-making or profiling that produces legal effects concerning you.

4. Legal Basis for Processing

For users located in the European Economic Area (EEA), we process your personal data based on several legal grounds under the GDPR. Primarily, we process data based on your consent, which you provide when you voluntarily submit information through our contact forms or accept our cookie policy. You have the right to withdraw this consent at any time.

We also process data when it is necessary for our legitimate interests, such as improving our services, ensuring network and information security, and preventing fraud. These legitimate interests are balanced against your rights and freedoms. Additionally, processing may be necessary for compliance with a legal obligation to which we are subject, or for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract.

5. Data Sharing and Disclosure

THEORIST does not sell, rent, or trade your personal information to third parties for their commercial purposes. We are dedicated to maintaining the confidentiality of your data. However, we may share your information with trusted third-party service providers who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential and use it only for the purposes for which we disclose it to them.

These service providers may include cloud hosting providers, analytics services, email delivery services, and customer support tools. We ensure that all such providers are bound by data processing agreements that uphold the standards of data protection required by applicable laws.

We may also disclose your information within our corporate group, meaning among THEORIST LLC, THEORIST OÜ, and THEORIST L.L.C-FZ, for internal administrative purposes and to ensure efficient service delivery. In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction, provided that the acquiring entity agrees to respect your privacy in a manner that is consistent with this Privacy Policy.

6. International Data Transfers

As a global group, THEORIST operates in multiple jurisdictions. Your information may be transferred to, stored, and processed in countries other than the one in which you reside. Specifically, data may be transferred between the United States, the European Union (Estonia), and the United Arab Emirates.

When we transfer personal data from the EEA to countries that have not been deemed to provide an adequate level of protection by the European Commission, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission, or other legal mechanisms to ensure that your data remains protected in accordance with GDPR standards. By providing your information, you consent to this transfer, storage, and processing.

7. Data Retention

We retain your personal information only for as long as is necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means.

When we no longer need your personal information, we will securely delete or anonymize it. If deletion is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

8. Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have certain data protection rights. THEORIST aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

You have the **right to access** copies of your personal data. You have the **right to rectification**, meaning you can conduct us to request correction of any information you believe is inaccurate. You have the **right to erasure**, under certain conditions, allowing you to request that we delete your personal data. You have the **right to restrict processing** of your personal data, under certain conditions. You have the **right to object to processing** of your personal data, under certain conditions. You have the **right to data portability**, meaning you can request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us at privacy@theorist.company. We will respond to your request within one month. We may ask you to verify your identity before responding to such requests.

9. Your Rights Under CCPA

If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. You have the **right to know** what personal information we have collected about you over the past 12 months, including the categories of information, sources, purposes, and third parties with whom we share it.

You have the **right to delete** your personal information that we have collected from you, subject to certain exceptions. You have the **right to opt-out** of the sale of your personal information. As stated previously, THEORIST does not sell your personal information. You have the **right to non-discrimination** for exercising your CCPA rights. We will not deny you goods or services, charge you different prices, or provide you with a different level or quality of services if you exercise your rights.

10. UAE Data Protection

For users in the United Arab Emirates, we comply with the Federal Decree-Law No. 45 of 2021 regarding the Protection of Personal Data. This law ensures the privacy of individuals and the protection of their personal data. We process your data in accordance with the principles of transparency, accuracy, storage limitation, and security as mandated by UAE law.

As a data controller established in the UAE (via THEORIST L.L.C-FZ), we implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

11. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track the activity on our Service and hold certain information. Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service. We use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer for an extended period of time) to provide you with a more personal and interactive experience on our website.

12. Children's Privacy

Our Services do not address anyone under the age of 16 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 16. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this policy. We adhere to clear transparency in our operations, and any significant changes will be communicated prominently.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. Your continued use of the Service after such modifications will constitute your acknowledgment of the modified Privacy Policy and agreement to abide and be bound by the modified Privacy Policy.

14. Contact Us

If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact our privacy officer at:

privacy@theorist.company

You may also contact us via mail at our registered offices in Delaware (USA), Tallinn (Estonia), or Dubai (UAE).