Privacy Policy

1. Introduction

Sobah Systems, LLC (“Sobah Systems”, “we”, “our”, or “us”) is committed to protecting the
privacy and security of visitors to our website. This Website Privacy Policy explains how Sobah
Systems collects, uses, and protects personal information obtained through its public-facing websites.

This policy is designed to align with applicable privacy and security standards, including
SOC 2 Trust Services Criteria, HIPAA safeguards (where applicable), and GDPR requirements.

2. Scope

This policy applies to:

  • Visitors to Sobah Systems public websites
  • Individuals submitting forms or inquiries
  • Users interacting with website content
  • Prospective customers and partners

This policy applies only to website data and does not govern customer data processed through
Sobah Systems products or services.

3. Information We Collect

Sobah Systems may collect the following categories of information:

Information You Provide

  • Name
  • Email address
  • Phone number
  • Company name
  • Message content submitted via forms

Automatically Collected Information

  • IP address
  • Browser type
  • Device information
  • Pages visited
  • Referring URLs
  • Date and time of visits

Cookies and Analytics Data

  • Session cookies
  • Performance cookies
  • Analytics tracking data
  • Website usage metrics

Sobah Systems does not intentionally collect sensitive personal information through its website.

4. How We Use Information

Sobah Systems uses collected information to:

  • Respond to inquiries
  • Provide requested information
  • Improve website functionality
  • Monitor website performance
  • Maintain website security
  • Detect fraud or misuse
  • Comply with legal obligations

Sobah Systems does not sell or rent personal information.

5. Legal Basis for Processing (GDPR)

For individuals located in the European Economic Area (EEA), Sobah Systems processes personal
data under the following lawful bases:

  • Consent
  • Legitimate business interests
  • Contractual necessity
  • Legal obligations

Where consent is required, users may withdraw consent at any time.

6. HIPAA Considerations

Sobah Systems does not request or intentionally collect Protected Health Information (PHI)
through its public website.

Visitors are advised not to submit sensitive healthcare information through website forms. If PHI is
submitted inadvertently, Sobah Systems will handle such information in accordance with applicable
security and privacy safeguards.

7. Cookies and Tracking Technologies

Sobah Systems uses cookies and similar technologies to:

  • Maintain session state
  • Analyze website usage
  • Improve user experience
  • Support security controls

Visitors may:

  • Accept or reject cookies
  • Configure browser cookie settings
  • Disable non-essential cookies

A cookie consent banner is displayed where required by applicable law.

8. Third-Party Service Providers

Sobah Systems may use trusted third-party providers for:

  • Website hosting
  • Analytics services
  • Form processing
  • Security monitoring
  • Content delivery

These providers process data only on behalf of Sobah Systems and are subject to contractual
confidentiality and data protection obligations.

9. Data Retention

Sobah Systems retains website-related personal data only for as long as necessary to:

  • Respond to inquiries
  • Improve services
  • Maintain security logs
  • Meet legal obligations

Data is securely deleted or anonymized when no longer required.

10. Data Subject Rights

Depending on applicable laws, individuals may have the right to:

  • Access personal data
  • Correct inaccurate data
  • Request deletion
  • Restrict processing
  • Object to processing
  • Request data portability

Requests may be submitted to: privacy@sobahsystems.com

Users in the EU/EEA also have the right to lodge complaints with their local supervisory authority.

11. Security Measures

Sobah Systems implements security safeguards including:

  • HTTPS encryption (TLS 1.2 or higher)
  • Secure hosting infrastructure
  • Access controls for administrative systems
  • Website vulnerability monitoring
  • Regular security updates
  • Logging and monitoring

These measures are designed to protect against unauthorized access, disclosure, or misuse.

12. International Data Transfers

Sobah Systems websites may be hosted in cloud infrastructure located in the United States.

By using the website, visitors acknowledge that information may be processed in jurisdictions
different from their own.

Sobah Systems applies appropriate safeguards for international data transfers.

13. Links to Third-Party Websites

Sobah Systems websites may contain links to third-party websites.

Sobah Systems is not responsible for the privacy practices of those sites.

Users should review third-party privacy policies independently.

14. Changes to This Policy

Sobah Systems may update this Privacy Policy periodically.

Updates will be reflected by revising the “Last Updated” date.

Material changes will be communicated where appropriate.

15. Contact Information

For privacy-related inquiries:

Sobah Systems, LLC

Email: privacy@sobahsystems.com

Security: security@sobahsystems.com

Last Updated: January 01, 2026