1. Introduction

Taimet (“Company,” “we,” “our,” or “us”) provides software-as-a-service tools and related services designed to assist organizations in evaluating and managing merger screenings.

This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our website, use our services, or otherwise interact with us (collectively, the “Services”).

By using our Services, you agree to this Privacy Policy. If you do not agree, you must discontinue use of the Services.

2. Scope and Applicability

This Policy applies to information we collect:

• Through our websites, web applications, and online services;
  
  

• In email, text, or other communications between you and Taimet; and
  
  

• When you interact with us as a customer, prospective customer, or user of the Services.
  
  

This Policy does not apply to:

• Information collected by third parties (such as Stripe or analytics providers) acting independently of us; or
  
  

• Data we process on behalf of our customers as a “processor” under applicable data protection laws.

Where required by law (such as the California Consumer Privacy Act and similar state laws), we provide additional disclosures in the “State Privacy Rights” section below.

3. Definitions

For clarity:

• “Personal Information” means information that identifies, relates to, describes, or could reasonably be linked with an individual.
  
  

• “Customer Data” means information, files, or content submitted by users through their use of the Services.
  
  

• “Processor” and “Controller” have the meanings assigned under applicable privacy laws.
  
  

• “You” or “User” means the individual using our Services or the organization on whose behalf the Services are used.

4. Information We Collect

We collect information from and about you in several ways, depending on how you use our Services.

Your data will not be sold or shared for marketing or research purposes. We only share information with trusted service providers when it’s necessary for Taimet’s core functionality or required by law.

4.1. Information You Provide to Us

We collect information you provide directly when you:

• Create or manage an account;
  
  

• Subscribe to or use our Services;
  
  

• Communicate with us by email or other channels; or
  
  

• Participate in surveys, feedback sessions, or promotions.

This information may include:

• Contact information (such as your name, email address, company name, and phone number);

  
  

• Account credentials (such as username and password);
  
  

• Billing information (such as payment method details or billing address — processed through our payment provider, Stripe);
  
  

• Professional information (such as job title or organizational affiliation); and
  
  

• Any other information you choose to provide (such as when contacting support).

4.2. Information We Collect Automatically

When you access or use the Services, we automatically collect certain technical and usage information, including:

• Log data (IP address, browser type, device identifiers, pages visited, and time stamps);
  
  

• Usage data (features used, activity metrics, or system performance data); and
  
  

• Cookies and similar technologies that help us recognize your browser or device, improve the user experience, and analyze usage patterns.

You can control or disable cookies through your browser settings, but doing so may limit certain features of the Services.

Please refer to our Cookie Policy for more details.

4.3. Information from Third Parties

We may receive information about you from:

• Payment processors (such as Stripe, to confirm payment and prevent fraud);
  
  

• Analytics and marketing partners (to measure engagement and improve our offerings); and
  
  

• Publicly available sources or professional networking sites (for business contact information).

We use such information consistent with this Privacy Policy and applicable law.

4.4. Aggregated and De-Identified Data

We may create aggregated or de-identified data derived from Personal Information, which can no longer be used to identify any individual. We may use data for research, analytics, or product improvement purposes within Taimet itself.  

We do not sell, rent, or trade personal information to third parties. We do not permit academics, advertisers, or other external parties to access or use Customer Data for their own research, marketing, or commercial purposes.

We only disclose information to third parties when necessary to:

• Provide and maintain our Services (for example, payment processing through Stripe, cloud hosting, or customer-support tools);
  
  

• Comply with law or legal process;
  
  

• Protect the security or integrity of our systems; or
  
  

• Complete a business transaction such as a merger, acquisition, or sale of assets, where the receiving party is bound by equivalent privacy obligations.

Each such service provider is permitted to process data solely on our behalf and under written confidentiality and data-protection obligations consistent with this Policy.

5. Public Information and Analytical Processing

Taimet analyzes publicly available business and market data about companies for research and competitive analysis purposes. This information does not constitute “personal data” under most privacy laws. To the extent such data includes publicly available references to individuals (for example, corporate officers named in filings), Taimet processes that information only as necessary for its legitimate business purposes and consistent with applicable law.

6. How We Use Information

We use the information we collect for the following purposes, all of which are necessary to operate and improve the Services:

1. To Provide and Maintain the Services.
   We use personal information to create and manage user accounts, authenticate logins, process payments, provide support, and operate core functionality.
   
   

2. To Improve and Develop New Features.
   We analyze aggregated usage data and feedback to understand how users interact with the Services and to improve performance, reliability, and user experience.
   
   

3. To Communicate with You.
   We send administrative or transactional messages about your account, billing, system updates, or changes to our terms and policies. We may also send optional product updates or educational content if you have chosen to receive them.
   
   

4. To Protect Security and Prevent Misuse.
   We use information to monitor for unauthorized access, enforce our Terms of Service, prevent fraud or abuse, and maintain the integrity of the Services.
   
   

5. To Comply with Legal Obligations.
   We may process information as necessary to comply with applicable laws, regulations, or valid legal requests, or to protect our rights and those of others.
   
   

6. To Support Legitimate Business Operations.
   This includes accounting, auditing, and internal reporting, as well as maintaining business continuity and disaster recovery systems.

UK / European Addendum (for users in the U.K. and EEA)

Applicability.

If you are located in the United Kingdom or the European Economic Area (EEA), the following additional terms apply to you and supplement (and where inconsistent, supersede) the other provisions in this Privacy Policy.

Controller and Contact.

For processing of your personal data under U.K. law, Taimet acts as the data controller. You may contact us at privacy@taimet.com for questions or requests.

Taimet is based in the United States and currently processes personal data of U.K. users only on an occasional basis. We do not maintain a U.K. establishment or representative at this time.

Lawful Bases for Processing.

We process your personal data based on the following lawful grounds:

1. Performance of contract. To provide you the Services and fulfill our obligations under our agreement with you.
   
   

2. Legitimate interests. For example, to improve our Services, ensure security and fraud protection, maintain operations, and operate our business (provided this does not override your rights).
   
   

3. Legal obligation. To comply with applicable laws (e.g. for accounting, tax, or litigation obligations).
   
   

4. Consent. Where required (e.g. marketing communications or cookies), if and to the extent we rely on your consent, you may withdraw that consent at any time.

Your Rights.

Under U.K. data protection law, you have rights including:

• Right of access — to obtain a copy of your personal data we hold.
  
  

• Right of rectification — to correct inaccurate or incomplete data.
  
  

• Right of erasure (‘right to be forgotten’) — in certain circumstances.
  
  

• Right to restrict processing — to limit use of your data in certain cases.
  
  

• Right to object — to processing based on legitimate interests or for direct marketing.
  
  

• Right to data portability — to receive your data in a machine-readable format.
  
  

• Right to withdraw consent — where processing is based on consent.
  
  

• Right to lodge a complaint with the Information Commissioner’s Office (ICO).

Automated Decision-Making / Profiling.

Where relevant, if we use automated decision-making or profiling in a way that significantly affects you, we will provide you with meaningful information about the logic involved and your rights.

International Transfers.

We may transfer your personal data to countries outside the U.K. or EEA (including the U.S.). Where we do so, we will ensure appropriate safeguards, such as reliance on adequacy decisions or standard contractual clauses, to protect your data.

Retention Periods.

We will retain your personal data only as long as necessary to fulfill the purposes for which it was collected (or as otherwise required by law). Criteria used to determine retention periods include contract duration, legal obligations, dispute resolution, and operational needs.

Right to Lodge a Complaint.

You have the right to lodge a complaint with the U.K. Information Commissioner’s Office (ICO) if you believe we have breached your data protection rights.

7. International Users and Data Transfers

Taimet is based in the United States. We store and process personal information primarily in the United States and may use cloud service providers located in other countries.

If you access the Services from outside the United States, please note that your information may be transferred to, stored in, and processed in countries that may not provide the same level of data protection as your home country. By using the Services, you acknowledge that such transfers occur and consent to the transfer of your information to the United States and other jurisdictions where we or our service providers operate.

For users located in the United Kingdom or European Economic Area (EEA):

• We process your personal data only on an occasional basis, in connection with your voluntary use of the Services.
  
  

• We do not maintain an establishment in the U.K. or EEA and, given the small and incidental nature of such processing, we are not currently required to appoint a local data protection representative under Article 27 of the U.K. or E.U. GDPR.
  
  

• When personal data is transferred from the U.K. or EEA to the United States, we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or U.K. authorities, or other lawful transfer mechanisms.
  
  

• We continually review our international data flows and will update this Policy if our activities or regulatory obligations change.

8. Data Security and Retention

8.1. Security

We use administrative, technical, and physical safeguards designed to protect personal information against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include access controls, encryption in transit and at rest, secure hosting environments, and regular security reviews.

No method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security. However, we continually review our safeguards to maintain a level of security appropriate to the risk.

8.2. Retention

We retain personal information for as long as necessary to:

• Provide and maintain the Services;
  
  

• Comply with our legal and contractual obligations;
  
  

• Resolve disputes; and
  
  

• Enforce our agreements.

When an account is deactivated or terminated, we retain Customer Data for up to 180 days, unless a longer period is required by law or permitted for legitimate business needs (such as accounting, security, or legal compliance). After that period, we delete or anonymize personal information from active systems and, within a commercially reasonable time, from backups, in accordance with our standard data-retention procedures.

If you request deletion of your information, we will make reasonable efforts to remove it from our active systems while retaining any information required to comply with legal or contractual obligations.

9. Your Rights and Choices

Depending on where you live, you may have certain rights regarding your personal information. We make these rights available to all users, regardless of location, to the extent reasonably possible.

9.1. Access and Correction

You may request access to the personal information we hold about you and request that we correct or update it if it is inaccurate or incomplete.

9.2. Deletion

You may request that we delete personal information we hold about you, subject to certain exceptions (such as when we must retain data for legal, billing, or security reasons).

9.3. Opt-Out of Communications

We may send you administrative messages about your account or transactions. You cannot opt out of those. You can, however, opt out of optional emails (such as newsletters or product updates) at any time by using the unsubscribe link in those messages or by contacting us at privacy@taimet.com.

9.4. State Privacy Rights (U.S.)

If you are a resident of California, Colorado, Connecticut, Utah, or Virginia, you may have additional rights under state law, including the right to know what categories of personal information we collect, disclose, or “sell” (we do not sell personal information). You may also have rights to limit or opt out of certain uses of sensitive personal information. To exercise these rights, contact us at privacy@taimet.com.

9.5. U.K. and EEA Users

If you are located in the United Kingdom or European Economic Area, you have rights under applicable data protection laws, including the rights to access, correct, delete, restrict, or object to processing of your personal data, and to data portability. You may also have the right to lodge a complaint with your local data protection authority.

9.6. Exercising Your Rights

To exercise any of these rights, please contact us at privacy@taimet.com with your request. We may need to verify your identity before responding. We will respond within the time limits set by applicable law.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make material changes, we will post the updated version on our website and update the “Effective Date” above. We may also notify users by email or through the Services.

Your continued use of the Services after any update constitutes your acceptance of the revised Policy.

11. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Taimet
PO Box 105 

Mount Horeb, Wisconsin, 

United States of America 53572

Email: privacy@taimet.com

If you are located in the United Kingdom or European Economic Area, you may also contact your local data protection authority regarding any questions or complaints.