Privacy Policy

Effective Date: 03.01.2026
Company: ROCKART INC.
Registered Office: 501 Silverside Rd Ste 105, Wilmington, Delaware 19809, USA
Website: rockart.inc
1. Introduction
ROCKART INC. (“Rockart”, “Company”, “we”, “us”, or “our”) recognizes the importance of protecting personal data and is committed to processing personal information in a lawful, fair, transparent, secure, proportionate, and accountable manner.
For the purposes of applicable data protection legislation, including the EU General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) and the UK GDPR, ROCKART INC. acts as a data controller with respect to personal data collected through its website and in connection with its business operations.
This Privacy Policy describes how we collect, use, disclose, transfer, store, and otherwise process personal information when individuals:
— Access or use our website located at rockart.inc;
— Submit business, licensing, partnership, or investment inquiries;
— Communicate with the Company by electronic means or otherwise;
— Engage in professional or commercial interactions with Rockart.
This Privacy Policy is intended to comply with applicable data protection and privacy laws, including:
— The EU General Data Protection Regulation (GDPR);
— The UK General Data Protection Regulation (UK GDPR);
— The California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA);
— Applicable U.S. federal and state privacy laws;
— Other data protection regulations applicable in jurisdictions where we operate.
We process personal data in accordance with the principles of:
— Lawfulness, fairness, and transparency;
— Purpose limitation;
— Data minimization;
— Accuracy;
— Storage limitation;
— Integrity and confidentiality;
— Accountability.
Rockart maintains internal governance procedures designed to ensure compliance, proportionality of processing, and periodic review of data protection practices.
This Privacy Policy applies exclusively to information collected through our website and business communications and does not apply to third-party websites or services linked from our website.
By accessing or using our website, you acknowledge that you have been informed of the practices described in this Privacy Policy.

This Privacy Policy applies to personal data processed by ROCKART INC. in connection with:
— Visitors to the website (rockart.inc);
— Corporate representatives acting on behalf of legal entities;
— Existing and prospective business partners;
— Investors and prospective investors;
— Individuals communicating with the Company.
The website is intended for professional and corporate use.
This Policy does not apply to:
— Third-party platforms or services;
— Independent third-party controllers;
— Offline processing unrelated to website or corporate communications.
Where personal data is processed in the context of a contractual relationship, additional contractual data protection terms may apply.

Rockart may collect personal data directly or automatically through website interactions.
3.1 Identification and Contact Information
— Full name
— Business email address
— Business telephone number
— Job title
— Company name
— Country or jurisdiction
3.2 Professional and Business Information
— Industry sector
— Proposed cooperation details
— Licensing-related information
— Investment-related information
— Corporate affiliation details
3.3 Technical and Usage Information
— IP address
— Browser type and version
— Device type
— Operating system
— Date and time of access
— Pages visited
— Referrer URLs
— Log file data
3.4 Communications and Correspondence
— Contact form submissions
— Email communications
— Business discussion records
— Documentation voluntarily submitted
3.5 Special Categories of Personal Data
Rockart does not request or intentionally collect special categories of personal data as defined under the GDPR.
Individuals are requested not to submit such information unless legally appropriate.
3A. Sources of Personal Data
Personal data may be collected:
— Directly from individuals;
— Automatically via website interaction;
— From corporate representatives;
— From publicly available professional sources for legitimate business purposes.

Personal data may be processed to:
— Respond to business inquiries;
— Evaluate licensing, partnership, and investment opportunities;
— Manage investor communications;
— Maintain website performance and security;
— Prevent fraud or misuse;
— Comply with legal and regulatory obligations;
— Establish, exercise, or defend legal claims;
— Conduct internal administration.
Processing is limited to defined business purposes.
Rockart does not sell personal data and does not sell or share personal information for cross-context behavioral advertising within the meaning of the CCPA/CPRA.

For individuals located in the EEA or UK, processing is based on:
Legitimate Interests
Including business communications, corporate engagement, website security,
and protection of legal rights.
Rockart performs and documents balancing assessments
where legitimate interests are relied upon.
Performance of a Contract
Where necessary to enter into or perform a contract.
Compliance with Legal Obligations
Where required by applicable law.
Consent
Where required by law. Consent may be withdrawn at any time.

Personal data may be disclosed to:
Service Providers (Processors)
— Hosting providers
— IT and security providers
— Cloud storage providers
— Corporate administrative service providers
Rockart enters into data processing agreements where required under applicable data protection laws.
Professional Advisors
— Legal counsel
— Auditors
— Accounting and tax advisors
— Compliance consultants
Regulatory Authorities
Where legally required.
Corporate Transactions
In connection with mergers, acquisitions, restructuring, or financing transactions, subject to confidentiality safeguards.
Rockart does not sell personal data.

Personal data may be processed in the United States or other jurisdictions.
Where required, transfers are conducted in accordance with Chapter V GDPR and applicable laws using:
— Standard Contractual Clauses (SCCs);
— UK IDTA or Addendum;
— Adequacy decisions;
— Supplementary safeguards.
Where applicable, Rockart conducts transfer impact assessments and implements appropriate safeguards to ensure equivalent protection.

Personal data is retained only as long as necessary.
General retention guidelines:
— Business inquiries: up to 3 years from last interaction;
— Investor communications: as required by compliance standards;
— Technical logs: up to 24 months.
Data may be retained longer where required by law or for legal defense.
Upon expiration, data is securely deleted or anonymized.

Rockart implements appropriate technical and organizational measures, including:
— Secure hosting infrastructure;
— Encryption in transit (SSL/TLS);
— Access controls and authentication;
— Role-based access restrictions;
— Monitoring and logging;
— Periodic security review.
In case of a data security incident, Rockart will comply with applicable notification requirements.
No method of transmission or storage is completely secure.

Subject to applicable law, individuals may have the right to:
— Access personal data;
— Correct inaccurate data;
— Request deletion;
— Object to processing;
— Restrict processing;
— Withdraw consent;
— Request data portability;
— Lodge a complaint with a competent supervisory authority.
California residents may have additional rights under CCPA/CPRA.
Requests may be submitted to:
privacy@rockart.inc
Identity verification may be required.

Rockart uses cookies for:
— Website functionality and security;
— Performance analytics;
— User preferences.
Non-essential cookies are deployed only where required consent is obtained.
Users may manage preferences via the Cookie Preferences tool.
Further information is provided in the Cookie Policy.

The website is intended for professional use and is not directed to individuals under 18.
Rockart does not knowingly collect personal data from children and does not collect personal information from individuals under 13 in accordance with COPPA.
If such data is identified, it will be deleted.

Rockart may update this Privacy Policy from time to time.
Updates will be published with a revised Effective Date.

Data Controller:
ROCKART INC.
501 Silverside Rd Ste 105
Wilmington, Delaware 19809
United States of America
General inquiries:
privacy@rockart.inc
Privacy and data protection inquiries may be submitted to the same address.
Rockart will respond to verified requests in accordance with applicable law.