Effective Date: 23rd April 2026

1. Data Controller
   Hip & Flo Group Limited
   CMP72849
   Guernsey

2. Data Collected
   We collect:
   • Identity data (name)
   • Contact data (email, phone if provided)
   • Enquiry content
   • Technical data (IP, browser, usage)

3. Purpose of Processing
   We process data for:
   • Handling enquiries and assessing suitability of potential partners
   • Business development
   • Internal analysis and platform improvement

4. Legal Basis
   • Legitimate interest (core business activity)
   • Consent (where required)

5. Commercial Sensitivity
   Information submitted may be used to:
   • Assess commercial capability
   • Evaluate alignment with Hip & Flo brand positioning
   Submission does not imply:
   • Confidential treatment beyond standard data protection
   • Any obligation to proceed

6. Data Sharing
   We may share data with:
   • Infrastructure providers
   • Professional advisors
   • Internal stakeholders
   We do not sell personal data.

7. International Transfers
   Data may be processed outside your jurisdiction.
   Appropriate safeguards are applied where required.

8. Retention
   We retain data:
   • As long as necessary for business purposes
   • Or to comply with legal obligations

9. Your Rights
   You may:
   • Request access
   • Request correction
   • Request deletion
   • Object to processing
   Contact: partner@hipandflo.com

10. Security
    We implement reasonable security measures but cannot guarantee absolute security.

11. Updates
    We may update this policy at any time.