Custom Autosound has the following privacy policy to help maintain your trust and to protect the personal information you provide to us.

Collecting of Information

The following are types of information we collect as a company. Identifiers

Contact details, such as real name, alias, postal address, telephone or mobile contact number, unique personal identifier, online identifier, Internet Protocol address, email address, and account name

Personal information as defined in the California Customer Records statute

Name, contact information, education, employment, employment history, and financial information

Protected classification characteristics under state or federal law

Gender, age, date of birth, race and ethnicity, national origin, marital status, and other demographic data

Commercial information

Transaction information, purchase history, financial details, and payment information

Internet or other similar network activity

Browsing history, search history, online behavior, interest data, and interactions with our and other websites, applications, systems, and advertisements

Geolocation data

Device location

Audio, electronic, sensory, or similar information

Images and audio, video or call recordings created in connection with our business activities Other Information

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes. Like many businesses, we also collect information through cookies and similar technologies.

If you would like to disable this collection, you can do so by disabling cookies within your internet browser or by following any instructions as provided by your internet browser provider, typically accessed through their website or by an in-browser help or settings screen.

The information we collect includes:

Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type, and settings and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called “crash dumps”), and hardware settings).

Device Data. We collect device data such as information about your computer, phone, tablet, or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.

Location Data. We collect location data such as information about your device’s location, which can be either precise or imprecise. How much information we collect depends on the type and settings of the device you use to access the Services. For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address). You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. However, if you choose to opt out, you may not be able to use certain aspects of the Services. Google API

Our use of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

When and with whom do we share your Information We may share your data with third-party vendors, service providers, contractors, or agents (“third parties“) who perform services for us or on our behalf and require access to such information to do that work. The categories of third parties we may share personal information with are as follows:

Cloud Computing Services

Communication & Collaboration Tools

Data Analytics Services

Data Storage Service Providers

Finance & Accounting Tools

Government Entities

Order Fulfillment Service Providers

Payment Processors

Performance Monitoring Tools

Product Engineering & Design Tools

Sales & Marketing Tools

Social Networks

Testing Tools

User Account Registration & Authentication Services

Website Hosting Service Providers

Google Maps

When we use Google Maps Platform APIs. We may share your information with certain Google Maps Platform APIs (e.g., Google Maps API, Places API). Google Maps uses GPS, Wi-Fi, and cell towers to estimate your location. GPS is accurate to about 20 meters, while Wi-Fi and cell towers help improve accuracy when GPS signals are weak, like indoors. This data helps Google Maps provide directions, but it is not always perfectly precise. Google Analytics We may share your information with Google Analytics to track and analyze the use of the Services. The Google Analytics Advertising Features that we may use include: Remarketing with Google Analytics, Google Display Network Impressions Reporting and Google Analytics Demographics and Interests Reporting. To opt out of being tracked by Google Analytics across the Services, visit https://tools.google.com/dlpage/gaoptout. You can opt out of Google Analytics Advertising Features through Ads Settings and Ad Settings for mobile apps. Other opt out means include http://optout.networkadvertisi... and http://www.networkadvertising.org/mobile-choice. For more information on the privacy practices of Google, please visit the Google Privacy & Terms page. Cookie Policy

We use cookies and similar technologies to track web interaction and to provide an enhanced user experience when accessing our Services such as modifying the information that we provide to you on subsequent visits to our Services. Cookies are pieces of data that sites and services can set on your browser or device that can be read on future visits. We may expand our usage of cookies to save additional data as new features are enabled to the Services. In addition to cookies, we use similar technologies to determine interaction with emails sent by our systems and interaction with our various web pages. To learn more please visit our cookie policy page.

Security

We have adequate organizational and technical processes and procedures in place to protect your personal information. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.

What legal bases do we rely on to process your information? We only process your personal information when we believe it is necessary and we have a valid legal reason (i.e., legal basis) to do so under applicable law, like with your consent, to comply with laws, to provide you with services to enter into or fulfill our contractual obligations, to protect your rights, or to fulfill our legitimate business interests.

If you are located in the EU or UK, this section applies to you.

The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases to process your personal information:

Consent. We may process your information if you have given us permission (i.e., consent) to use your personal information for a specific purpose. You can withdraw your consent at any time.

Performance of a Contract. We may process your personal information when we believe it is necessary to fulfill our contractual obligations to you, including providing our Services or at your request prior to entering into a contract with you.

Legitimate Interests. We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms. For example, we may process your personal information for some of the purposes described in order to:

Send users information about special offers and discounts on our products and services

Develop and display personalized and relevant advertising content for our users

Analyze how our Services are used so we can improve them to engage and retain users

Support our marketing activities

Diagnose problems and/or prevent fraudulent activities

Understand how our users use our products and services so we can improve user experience

Legal Obligations. We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved.

Vital Interests. We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.

Data Retention

We retain personal data for so long as it may be relevant to the purposes identified herein. To dispose of personal data, we may anonymize it, delete it, or take other appropriate steps. Data may persist in copies made for backup and business continuity purposes for an additional period of time.

Your Data Rights and Choices

You can unsubscribe from our communications by following the “opt out” guidance within those communications. Learn more about “opting-out” from cookie-related processing by visiting our “cookie policy” page.

How can I access the personal data you have about me?

If you would like to submit a data access request, you can do so by submitting an email request to info@casmfg. We will then start the process and provide access to the personal data that we have on you within 30 days. How do I correct, update, amend, or delete the personal data you have about me?

In addition to the functionality available through our Services, you can request other modifications from us directly at info@casmfg.com. We ask that you include an explanation of what data right you are seeking to exercise. For your protection, we may take steps to verify your identity before responding to your request.

How do I object to or restrict the manner in which you process my personal data?

You have the right to ask us to stop using or limit our use of your personal data in certain circumstances. We offer you the ability to restrict the processing of your data for specific uses, which can be submitted to info@casmfg.com. Individuals in the European Economic Area have the right to “opt out” of all of our processing of their personal data for direct marketing purposes. To exercise this right, please follow the “opt-out” instructions as provided in any of our communications or submit a request to info@casmfg.com. The rights and options described above are subject to limitations and exceptions under applicable law. In addition to those rights, you have the right to file a complaint with the relevant supervisory authority. However, we encourage you to contact us first, and we will do our best to resolve your concern.

Controls for Do-Not-Track Features

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Notice. California law requires us to let you know how we respond to web browser DNT signals. Because there currently is not an industry or legal standard for recognizing or honoring DNT signals, we do not respond to them at this time.

Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time and from time to time without prior notice. Please review this policy periodically, and especially before you provide any information. This Privacy Policy was last updated on the date indicated below. Your continued use of the Services after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

May, 2025