Privacy Policy

Last Updated: February 17, 2026

This Privacy Policy describes how The Nth Power Inc., PO BOX 43, Hinsdale, NH 03451, United States of America ("Company," "We," "Us," or "Our") collects, uses, discloses, transfers, and protects Personal Data in connection with www.thenthpower.com (the "Website") and related services (collectively, the "Service").

This Privacy Policy is designed to comply with applicable privacy and data protection laws, including but not limited to:

• The General Data Protection Regulation (EU) 2016/679 (“GDPR”)
• The UK GDPR
• The California Consumer Privacy Act as amended by the California Privacy Rights Act (“CCPA/CPRA”)
• The California Online Privacy Protection Act (“CalOPPA”)
• Other applicable U.S. state privacy laws

By using the Service, You acknowledge that You have read and understood this Privacy Policy.

1. Definitions

Personal Data (or “Personal Information”) means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked to an identified or identifiable individual.

Sensitive Personal Information has the meaning assigned under CPRA and applicable law.

Processing means any operation performed on Personal Data, including collection, storage, use, disclosure, deletion, or transfer.

Controller means the entity that determines the purposes and means of processing Personal Data.

Processor means an entity that processes Personal Data on behalf of a Controller.

For purposes of GDPR, the Company acts as a Data Controller with respect to Personal Data collected through the Website.

2. Categories of Personal Data We Collect

We collect the following categories of Personal Data:

A. Identifiers

• First and last name
• Email address
• IP address
• Online identifiers
• Device identifiers

B. Internet or Network Activity Information

• Browser type and version
• Pages visited
• Time and date of visit
• Referring URLs
• Session data
• Analytics data

C. Account Information

• Login credentials (where applicable)
• Account preferences

D. Communications Data

• Customer support inquiries
• Email correspondence
• Chat transcripts

E. Sensitive Personal Information

We do not intentionally collect Sensitive Personal Information unless necessary and legally permitted. Where collected, it is used solely for permitted business purposes and not for cross-context behavioral advertising.

We do not knowingly collect data from individuals under 16 years of age.

3. Sources of Personal Data

We collect Personal Data:

• Directly from You
• Automatically through Your use of the Service
• From service providers performing analytics or infrastructure support
• From business partners where lawful

4. Purposes of Processing

We process Personal Data for the following legitimate business purposes:

• To provide and maintain the Service
• To manage accounts and user authentication
• To respond to inquiries and provide support
• To perform contractual obligations
• To improve functionality, performance, and security
• To detect and prevent fraud, abuse, and unlawful activity
• To comply with legal and regulatory obligations
• For internal analytics and business operations
• For marketing communications where permitted by law

We do not use Personal Data for automated decision-making that produces legal or similarly significant effects without appropriate safeguards.

5. Legal Bases for Processing (GDPR)

Where GDPR applies, we rely on the following legal bases:

• Performance of a Contract
• Legitimate Interests (including security, fraud prevention, and business improvement)
• Legal Obligation
• Consent (for cookies or marketing where required)

You may withdraw consent at any time.

6. Cookies and Tracking Technologies

We use cookies, pixels, analytics tools, and similar technologies.

Cookies may be:

• Essential (strictly necessary)
• Functional
• Analytics
• Advertising (where applicable and lawful)

Where required by law, non-essential cookies are deployed only with Your consent.

You may control cookies through:

• Browser settings
• Cookie consent tools
• Global Privacy Control (GPC) signals (California residents)

We do not currently respond to “Do Not Track” signals due to lack of uniform standards.

7. Disclosure of Personal Data

We may disclose Personal Data to:

• Service Providers (hosting, analytics, infrastructure)
• Professional advisors (legal, accounting)
• Affiliates and corporate entities
• Business partners (where lawful)
• Government authorities where legally required
• Successors in connection with mergers, acquisitions, or asset transfers

All service providers are contractually required to maintain confidentiality and security standards.

We do not sell Personal Information for monetary consideration.

If Personal Data is “shared” for cross-context behavioral advertising under CPRA, California residents may opt out.

8. International Data Transfers

Personal Data may be transferred outside Your jurisdiction, including to the United States.

Where required by law, we implement appropriate safeguards including:

• Standard Contractual Clauses (SCCs)
• Contractual data protection addenda
• Supplementary technical and organizational measures

9. Data Retention

We retain Personal Data only as long as necessary for:

• Contractual performance
• Legal compliance
• Dispute resolution
• Security and fraud prevention

Standard retention periods (maximum):

• Account data: Duration of relationship + 24 months
• Support records: Up to 24 months
• Analytics data: Up to 24 months
• Server logs: Up to 24 months

We may retain data longer where required by law or for defense of legal claims.

Upon expiration of retention periods, data is securely deleted or anonymized.

10. Security Measures

We implement commercially reasonable administrative, technical, and physical safeguards, including:

• Access controls
• Encryption (where appropriate)
• Network security monitoring
• Vendor risk management
• Confidentiality obligations

No system is 100% secure. We cannot guarantee absolute security.

11. Your Privacy Rights

A. GDPR / UK GDPR Rights

You may have the right to:

• Access Your Personal Data
• Rectify inaccurate data
• Erase data
• Restrict processing
• Object to processing
• Data portability
• Withdraw consent
• Lodge a complaint with a supervisory authority

Requests may be submitted using the contact details below.

B. California (CCPA/CPRA) Rights

California residents have the right to:

• Know what Personal Information is collected
• Know whether it is sold or shared
• Access specific pieces of Personal Information
• Delete Personal Information
• Correct inaccurate Personal Information
• Opt out of sale or sharing
• Limit use of Sensitive Personal Information
• Non-discrimination for exercising rights

Requests may be submitted by contacting: engage@thenthpower.com

We may verify identity prior to processing requests.

Authorized agents may submit requests with proper documentation.

We respond within statutory timeframes (generally 45 days, extendable).

C. Other U.S. State Rights

Residents of Virginia, Colorado, Connecticut, Utah, and other applicable states may have rights similar to:

• Access
• Correction
• Deletion
• Data portability
• Opt-out of targeted advertising

We honor applicable state law requirements where triggered.

12. Global Privacy Control (GPC)

We recognize and honor Global Privacy Control signals where legally required, including as a valid opt-out mechanism under California law.

13. Children’s Privacy

Our Service is not directed to individuals under 16.

We do not knowingly collect Personal Data from children under 16. If discovered, such data will be deleted.

14. Third-Party Links

We are not responsible for the privacy practices of third-party websites linked from the Service.

15. Business Transfers

In the event of a merger, acquisition, restructuring, bankruptcy, or asset sale, Personal Data may be transferred as part of that transaction.

16. Changes to This Privacy Policy

We may update this Privacy Policy periodically.

Material changes will be posted on this page with an updated effective date.

Continued use of the Service after updates constitutes acceptance of the revised policy.

17. Contact Information

For privacy inquiries or to exercise Your rights, contact:

The Nth Power Inc.
PO BOX 43
Hinsdale, NH 03451
United States

Email: engage@thenthpower.com