Privacy Policy

• Name: [COMPANY NAME / SOLE TRADER] — PENDING UPDATE • Tax ID (NIF): [XXXXXXXXX] — PENDING UPDATE • Address: [FULL ADDRESS] — PENDING UPDATE • Email: privacy@fundradar.ai • Website: https://fundradar.ai

FundRadar processes the following categories of personal data: a) Registration data (early access form): • Email address • Phone number • Company website URL • Legal entity type • Female founder status (special category data — Art. 9 GDPR) b) Service usage data: • Company profile data (sector, size, TRL, geography, projects) • Grant search and query history • Alert preferences and settings c) Technical data: • IP address • Browser type and version • Operating system • Pages visited and time spent • Cookies (see Cookie Policy)

FundRadar processes your data for the following purposes and legal bases: • Registration and service access management → Legal basis: contract performance (Art. 6.1.b GDPR) • Sending personalised grant alerts → Legal basis: explicit consent (Art. 6.1.a GDPR) • Processing female founder status → Legal basis: explicit consent (Art. 9.2.a GDPR) • Usage analytics and service improvement → Legal basis: legitimate interest (Art. 6.1.f GDPR) • Compliance with legal obligations → Legal basis: legal obligation (Art. 6.1.c GDPR) • Commercial communications (if applicable) → Legal basis: explicit consent (Art. 6.1.a GDPR)

Data will be retained for as long as necessary to fulfil the purpose for which it was collected and, in any case, for the legally established periods: • Registration data: for the duration of the contractual relationship and up to [X] years after its termination • Special category data (female founder status): until consent is withdrawn or [X] years • Technical and browsing data: [X] months • Commercial communications data: until consent is withdrawn Note: Exact retention periods will be defined before definitive publication.

Your data may be shared with: • Technology service providers (hosting, cloud infrastructure): [PENDING — list actual providers] • Email service providers: [PENDING] • Web analytics tools: [PENDING — e.g. Google Analytics] In the event of international transfers outside the EEA, appropriate safeguards under the GDPR will apply (standard contractual clauses or equivalent mechanisms).

You may exercise the following rights at any time: • Access: know what data we process about you • Rectification: correct inaccurate or incomplete data • Erasure ("right to be forgotten"): request deletion of your data • Restriction of processing: request restriction of processing • Data portability: receive your data in a structured format • Objection: object to processing based on legitimate interest • Withdrawal of consent: at any time, without retroactive effect To exercise your rights, contact us at: privacy@fundradar.ai You have the right to lodge a complaint with the Spanish Data Protection Authority (AEPD) — www.aepd.es

FundRadar implements appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including encryption of data in transit and at rest, access controls, and periodic security audits. [PENDING: detail specific measures implemented]

FundRadar reserves the right to modify this Privacy Policy. Any material changes will be communicated to users with reasonable prior notice.