Effective Date: January 1, 2026 Last Updated: March 25, 2026

​

Operator: Activist Technologies PBC, a Delaware Public Benefit Corporation 1. Introduction: This Privacy Policy explains how Activist Technologies PBC collects, uses, shares, and safeguards personal information when you use Activist ARC. 2. Information We Collect: We collect information you provide including account details, profile information, preferences, civic activity logs, messages, and uploads. If you complete identity verification, Persona collects identification documents and biometric data on our behalf. We automatically collect device identifiers, IP address, operating system, app activity, analytics data, performance logs, crash data, and other diagnostic information. We receive third party civic data from TargetSmart, BallotReady, government APIs, and similar sources. 3. How We Use Information: We use personal information to provide and improve the Service, personalize civic recommendations, authenticate users, prevent fraud and abuse, comply with legal obligations, perform analytics, communicate updates, and maintain security. We do not sell personal information. 4. Sharing of Information: We share information with service providers supporting hosting, analytics, monitoring, support, and Persona identity verification. We may transmit limited information to civic information providers to retrieve election and legislative data. Information may be disclosed as required by law or in connection with corporate transactions. 5. Cookies and Tracking: Technologies We use cookies, local storage, analytics tools, and device identifiers to authenticate users, maintain session state, measure usage, and improve functionality. 6. Data Retention: We retain personal information as long as necessary to operate the Service, comply with obligations, maintain security records, or resolve disputes. You may request deletion subject to legal requirements. 7. Data Security: We use administrative, technical, and physical safeguards including encryption, access control, secure credential storage, monitoring, and periodic reviews. No system is completely secure. 8. Your Rights: Depending on jurisdiction, you may request access, correction, deletion, portability, or restrictions on processing. Submit requests to privacy@activist.tech. 9. International Transfers: If you use the Service outside the United States, your data may be transferred to and stored in the United States where privacy protections may differ. 10. Children’s Privacy: The Service is not intended for children under 13. We do not knowingly collect information from children under 13. 11. Changes to This Policy: We may update this Policy periodically. Continued use of the Service indicates acceptance of the updated Policy. 12. Contact: info@activist.tech

​