Successions Technologies, Inc. ("Successions," "we," "our," or "us") is an AI-powered technology company providing a software platform that enables financial advisors and their clients to model the tax implications of wealth transfer and equity succession events.

Successions is incorporated in Delaware, United States. For the purposes of applicable data protection law, Successions is the data controller of the personal information described in this policy.

Contact: privacy@successions.ai

We collect information in three ways: information you provide directly, data generated by your use of the platform, and information collected automatically.

Account information

• Name
• Email address and password (stored in hashed form; we never see your plaintext password)
• Firm name and professional role
• Contact and communication preferences

Financial and tax data

• Equity positions, option grants, and exercise scenarios entered into the platform
• Estate and wealth transfer parameters used to generate models
• Tax jurisdiction information necessary to apply applicable rates

All financial and tax data is treated as strictly confidential. It is accessible only to you and the authorized advisors or partners you expressly designate. We do not use client financial data for any purpose beyond delivering the service you requested.

Usage and analytics data

• Pages visited, features used, and session duration
• Device type, operating system, and browser
• IP address and general geographic location (country or region level only)
• Referring URL where applicable

We use the information we collect to:

• Provide, operate, and continuously improve the Successions platform
• Generate the tax scenario models and outputs you request
• Authenticate your identity and maintain account security
• Communicate regarding your account, product updates, and support
• Monitor platform performance and diagnose technical issues
• Comply with legal obligations and applicable regulatory requirements
• Improve our AI models solely on fully anonymized, aggregated data with no individual identifiers

We take a strict need-to-know approach. We do not sell your personal information. We do not share data with advertisers.

Authorized partners and advisors

Client data may be shared with institutional partners, such as financial institutions or advisory firms, who are directly involved in the management or servicing of that specific client's account. Data is shared only with parties that have a direct relationship with the client and a demonstrated operational need. Client data is never shared with parties not directly involved with that client.

Service providers

We use a limited number of third-party service providers to operate the platform. These providers process data solely on our behalf, under strict contractual data processing agreements, and are prohibited from using your data for any other purpose. Categories include: cloud infrastructure, security monitoring, authentication services, and analytics.

Legal requirements

We may disclose information where required by applicable law, court order, or regulatory authority, or to protect the rights, property, or safety of Successions, our users, or the public.

Business transfers

In the event of a merger, acquisition, or sale of assets, user data may be transferred to the successor entity. We will provide notice before personal data is transferred and becomes subject to a different privacy policy.

Security is foundational to our product. We implement the following protections:

• Encryption in transit: All data encrypted using TLS 1.2 or higher
• Encryption at rest: All stored data encrypted using AES-256
• Access controls: Role-based access and multi-factor authentication enforced for all personnel
• Audit logging: All access to sensitive data is logged and regularly reviewed
• Penetration testing: Regular security assessments and vulnerability testing
• Incident response: Documented plan; affected users and authorities notified promptly in the event of a confirmed breach

No method of electronic transmission or storage is 100% secure. If you have concerns about your account's security, contact us immediately at security@successions.ai.

• Account information: Retained for the account lifetime and up to 24 months following closure, unless law requires longer.
• Financial and tax data: Retained for the duration of the client relationship; deleted or anonymized within 30 days of account closure or written request, subject to legal hold.
• Usage and analytics data: Retained for up to 24 months.

• Essential cookies: Required for core platform functionality; cannot be disabled without impact
• Analytics cookies: Used to understand platform usage and improve our service
• Preference cookies: Remember your settings between sessions

We do not use advertising cookies or tracking pixels. EU and UK users are presented with a cookie consent banner on first visit. You may manage cookie preferences through your browser settings at any time.

Depending on your state of residence, you may have the following rights:

• Right to know: Request a summary of the personal information we hold and how it is used
• Right to access: Request a copy of your personal information
• Right to deletion: Request deletion, subject to legal retention obligations
• Right to correct: Request correction of inaccurate information
• Right to opt out of sale: We do not sell personal information; no opt-out required
• Non-discrimination: We will not discriminate against you for exercising any privacy rights

California residents have additional rights under the CCPA as amended by the CPRA. To exercise any of these rights, contact privacy@successions.ai.

If you are located in the European Union or United Kingdom, you have the following rights under the GDPR and UK GDPR:

• Right of access (Art. 15): Request a copy of your personal data
• Right to rectification (Art. 16): Request correction of inaccurate or incomplete data
• Right to erasure (Art. 17): Request deletion where there is no compelling reason for continued processing
• Right to restrict processing (Art. 18): Request that we limit how we use your data
• Right to data portability (Art. 20): Request your data in a structured, machine-readable format
• Right to object (Art. 21): Object to processing based on legitimate interests or for direct marketing
• Rights re: automated decisions (Art. 22): Right not to be subject to solely automated decisions that significantly affect you

Legal basis for processing: Performance of a contract, legitimate interests (platform improvement and security), legal obligation, and consent (cookies and optional communications).

Right to complain: EU users may contact their national data protection authority. UK users may contact the Information Commissioner's Office (ICO) at ico.org.uk. We respond to all GDPR / UK GDPR rights requests within 30 days.

Successions is based in the United States. If you are in the EU or UK, your data will be transferred to and processed in the United States. We ensure such transfers comply with applicable law using Standard Contractual Clauses (SCCs) approved by the European Commission, and the UK International Data Transfer Agreement (IDTA) where applicable. Contact privacy@successions.ai for details on specific safeguards.

The Successions platform is intended solely for financial professionals and adult clients. We do not knowingly collect personal information from individuals under the age of 18. If you believe a minor has provided us with information, contact privacy@successions.ai and we will promptly delete it.

We may update this policy from time to time. When we make material changes, we will update the "Last updated" date above and notify you via email or in-platform notice where appropriate. Continued use of the platform after changes take effect constitutes acceptance of the updated policy.

Questions, concerns, or requests relating to this policy or our data practices:

© 2026 Successions Technologies, Inc. All rights reserved.