Privacy Policy

1. Introduction

The Ram Group, Inc. ("Company," "we," "us," "our," or "our Company") values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal data in connection with our websites, applications, services, and other online and offline interactions with customers, prospects, employees, and other stakeholders.

This policy applies to all Ram Group entities and operations worldwide. If you do not agree with our privacy practices, please do not use our services. We encourage you to review this policy periodically for updates.

2. Information We Collect

We collect information through various methods and sources to provide and improve our services:

3. How We Use Your Information

We use collected information for legitimate business purposes:

• •Provide, maintain, and improve our services and customer experience
• •Process transactions, fulfill orders, and send related communications
• •Send promotional communications, newsletters, and product updates (with opt-out options)
• •Respond to your inquiries, requests, and provide customer support
• •Conduct market research, surveys, and gather feedback
• •Analyze usage patterns, user behavior, and preferences to improve our website
• •Detect, prevent, and address technical and security issues
• •Comply with legal obligations and enforce our agreements
• •Establish and defend legal claims
• •Create analytics and improve business operations
• •Personalize content and recommendations
• •Monitor and improve our services quality

4. Legal Basis for Processing

We process personal data based on the following legal grounds:

• •Contractual Necessity: To fulfill our contractual obligations to you
• •Legitimate Interest: To operate our business and provide services
• •Legal Compliance: To comply with applicable laws and regulations
• •Consent: Where you have explicitly consented to the processing
• •Vital Interests: To protect the vital interests of individuals or public

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to third parties. We may share information in the following circumstances:

• •Service Providers: Third-party vendors providing hosting, analytics, payment processing, and customer support
• •Business Partners: Strategic partners with whom we jointly offer services
• •Compliance & Legal: When required by law, court order, or government authority
• •Business Transfers: In connection with mergers, acquisitions, or sale of assets
• •Affiliates: Other Ram Group entities worldwide for operational purposes
• •Data Processing Agreements: All third parties are bound by strict data protection agreements

6. Data Security

We implement comprehensive technical and organizational security measures to protect personal data:

• •End-to-end encryption for sensitive data transmission
• •Secure password protocols and multi-factor authentication
• •Regular security audits and penetration testing
• •Access controls limiting data to authorized personnel
• •ISO 27001 certified information security management
• •Incident response procedures and breach notification

While we implement industry-leading security measures, no system is completely immune to risks. We cannot guarantee absolute security of your data.

7. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this policy or as required by law. The retention period varies based on the type of data and our relationship with you. For example, customer contact information is retained for the duration of the business relationship plus 3 years for legal compliance. Marketing data is retained until you opt out. Financial records are retained per accounting standards (typically 7 years). You may request deletion of your data subject to legal obligations.

8. International Data Transfers

As a global company, we may transfer personal data across international borders. We ensure such transfers comply with applicable data protection laws:

• •Standard Contractual Clauses for EU-US transfers
• •Data Processing Agreements ensuring equivalent protection
• •Compliance with GDPR, CCPA, and other regional regulations

9. Your Privacy Rights

Depending on your location, you may have the following rights:

• •Right of Access: Request a copy of personal data we hold about you
• •Right to Rectification: Correct inaccurate or incomplete data
• •Right to Erasure: Request deletion of your data (with exceptions)
• •Right to Restrict Processing: Limit how we use your data
• •Right to Data Portability: Receive your data in a portable format
• •Right to Object: Opt out of certain data uses
• •Right to Withdraw Consent: Remove previously given consent
• •Rights Related to Automated Decisions: Object to automated decision-making

To exercise any of these rights, contact us at privacy@theramgroupinc.com with "Data Subject Request" in the subject line. We will respond within 30 days or as required by applicable law.

10. Cookies and Tracking Technologies

We use cookies and similar technologies for:

• •Essential Cookies: Required for website functionality and security
• •Performance Cookies: Analyze website performance and usage
• •Marketing Cookies: Track effectiveness of marketing campaigns

You can control cookie preferences through your browser settings. Note that disabling certain cookies may impact website functionality.

11. Policy Updates

We may update this policy periodically to reflect changes in privacy practices, technology, and regulations. Material changes will be communicated via email or prominent notice on our website. Your continued use of our services constitutes acceptance of the updated policy.

12. Contact Us

For questions, concerns, or to exercise your privacy rights, please contact us:

Data Protection Officer: dpo@theramgroupinc.com