This California Privacy Addendum (“California Addendum”) supplements the Trepy Privacy Policy and applies to certain residents of California to the extent applicable under California privacy laws, including the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”).

This California Addendum explains certain rights and disclosures relating to personal information processed through Trepy’s platform, websites, mobile applications, communications systems, ticketing systems, livestream systems, organizational tools, and related services.

This California Addendum supplements the:

• Trepy Privacy Policy
• Trepy Terms of Service
• Trepy Creator / Trep Agreement
• Trepy Organizer Agreement
• Trepy Platform Seller Agreement
• Trepy SMS / Messaging Terms

In the event of conflict between this California Addendum and the Trepy Privacy Policy, this California Addendum controls solely to the extent required by applicable California law.

NOTE: THIS AGREEMENT CONTAINS ARBITRATION, INDEMNIFICATION, AND CLASS ACTION WAIVER CLAUSES

RECITALS

This Agreement incorporates the following additional agreements and policies:

Terms of Service | Privacy Policy | Cookie Policy | Accessibility Statement | Trust & Safety Transparency Policy | SMS Terms / Messaging Terms | Subscription Billing & Cancellation Policy | Acceptable Use Policy | Community Standards / Content Policy | Account Termination & Repeat Violator Policy | Refund / Ticketing Policy | Terms for Paid Livestream Access | Event Cancellation / Force Majeure Policy | Creator / Trep Agreement | Organizer Agreement | Platform Seller Agreement | Platform Verification & Identity Verification Policy | DMCA / Intellectual Property Policy | Intellectual Property Policy | Copyright / DMCA Notice Submission Procedure Page | California Privacy Addendum | Data Processing Addendum (DPA / GDPR Scaling) | Security & Responsible Disclosure Policy | Payment Dispute / Chargeback Policy | Law Enforcement Request Policy.

By Agreeing to this Agreement, you are agreeing to all of the forgoing policies and terms.

1. SCOPE

This California Addendum applies only to personal information subject to applicable California privacy laws.

Certain information may fall outside the scope of California privacy laws, including information governed by:

• federal financial laws;
• employment laws;
• business-to-business exemptions where applicable;
• publicly available information exemptions;
• legal obligations or compliance requirements.

Trepy reserves the right to interpret and apply this California Addendum consistent with applicable law and available exemptions.

2. CATEGORIES OF PERSONAL INFORMATION WE MAY COLLECT

Depending on how users interact with Trepy, Trepy may collect categories of personal information including:

• identifiers;
• account information;
• contact information;
• transactional information;
• payment-related information;
• event participation information;
• communications preferences;
• livestream interaction information;
• internet or network activity information;
• device information;
• geolocation information;
• organizational information;
• user-generated content;
• customer support information;
• analytics information;
• fraud-prevention information.

Specific information collected may vary depending on:

• platform usage;
• organizational settings;
• event participation;
• livestream participation;
• communications preferences;
• device configurations.

3. SOURCES OF PERSONAL INFORMATION

Trepy may collect personal information from sources including:

• users directly;
• organizations and Treps;
• event operators;
• payment providers;
• communication providers;
• device interactions;
• analytics systems;
• fraud-prevention systems;
• integrated third-party services;
• customer support interactions.

4. BUSINESS AND COMMERCIAL PURPOSES

Trepy may process personal information for purposes including:

• platform operation;
• authentication;
• communications;
• event management;
• livestream access;
• ticketing;
• payment processing;
• fraud prevention;
• security;
• analytics;
• customer support;
• operational monitoring;
• infrastructure protection;
• legal compliance;
• platform improvement;
• troubleshooting;
• communications preferences management.

Trepy may also process personal information where reasonably necessary to:

• protect users;
• protect the platform;
• investigate abuse;
• enforce agreements;
• comply with laws;
• prevent fraud or security threats.

5. DISCLOSURE OF PERSONAL INFORMATION

Trepy may disclose personal information to categories of recipients including:

• payment providers;
• communication providers;
• livestream infrastructure providers;
• hosting providers;
• analytics providers;
• fraud-prevention providers;
• customer support providers;
• cloud infrastructure providers;
• legal advisors;
• regulators;
• law enforcement where required.

Relevant providers may include:

• Stripe Privacy Policy
• Twilio Privacy Notice
• Mux Terms of Service

Trepy may also disclose information:

• with user direction;
• with organizer direction where operationally necessary;
• during corporate transactions;
• during legal proceedings;
• to protect rights and safety.

6. SALE OR SHARING OF PERSONAL INFORMATION

Trepy does not sell personal information to third-party data brokers for monetary compensation.

Trepy may use certain analytics, communications, advertising, infrastructure, operational, or engagement technologies that may constitute “sharing” or related regulated activity under certain California privacy laws depending on legal interpretation.

Trepy reserves the right to interpret applicable legal definitions reasonably and in good faith.

Trepy may provide mechanisms for eligible users to exercise applicable privacy choices where required by law.

7. SENSITIVE PERSONAL INFORMATION

Trepy may process certain categories of sensitive personal information where reasonably necessary for:

• account security;
• payment processing;
• fraud prevention;
• authentication;
• communications;
• operational functionality;
• legal compliance.

Trepy does not use sensitive personal information to infer characteristics about users except as reasonably necessary for operational, security, or lawful business purposes.

8. CALIFORNIA PRIVACY RIGHTS

Subject to applicable law, eligible California residents may have rights including:

• the right to know;
• the right to access;
• the right to deletion;
• the right to correction;
• the right to limit certain uses of sensitive personal information where applicable;
• the right to opt out of certain regulated sharing activities where applicable;
• the right to non-discrimination for exercising applicable rights.

These rights are subject to:

• verification procedures;
• legal limitations;
• operational limitations;
• applicable exemptions;
• fraud-prevention considerations;
• security obligations.

Trepy reserves the right to deny requests where permitted by law.

9. VERIFICATION OF REQUESTS

Trepy may require users to verify their identity before responding to privacy-related requests.

Verification methods may include:

• account authentication;
• email verification;
• device verification;
• transaction verification;
• identity documentation where reasonably necessary.

Trepy may deny requests where:

• identity cannot be verified;
• requests are fraudulent;
• requests are abusive;
• requests conflict with legal obligations;
• requests conflict with security obligations.

10. AUTHORIZED AGENTS

California residents may designate authorized agents to submit certain requests where permitted by law.

Trepy may require:

• written authorization;
• identity verification;
• proof of agency authority;
• direct confirmation from the user.

Trepy reserves the right to deny requests where authorization cannot reasonably be verified.

11. DATA RETENTION

Trepy may retain personal information for periods reasonably necessary to:

• provide services;
• maintain platform integrity;
• comply with legal obligations;
• resolve disputes;
• enforce agreements;
• prevent fraud;
• maintain operational records;
• protect security;
• support platform functionality.

Retention periods may vary depending on:

• legal obligations;
• account status;
• transaction history;
• operational needs;
• technical limitations;
• security requirements.

Trepy does not guarantee immediate deletion of all information following requests or account closures.

Backups, archived systems, logs, legal records, and operational systems may retain information for reasonable periods.

12. CHILDREN’S PRIVACY

Trepy does not knowingly sell personal information of minors under applicable California age thresholds without legally required authorization where applicable.

Parents or guardians remain responsible for monitoring minors’ use of the platform.

13. NON-DISCRIMINATION

Trepy does not intend to unlawfully discriminate against eligible California residents for exercising applicable privacy rights.

However, certain functionality may depend on the use or processing of information necessary to:

• operate the platform;
• maintain security;
• process transactions;
• provide communications;
• enable event access;
• support livestream functionality.

Certain services may not function properly if required information is limited or deleted.

14. THIRD-PARTY SERVICES

Trepy relies on third-party infrastructure and providers.

These providers may process information under their own:

• privacy policies;
• operational practices;
• legal obligations.

Trepy does not control all third-party systems or practices.

Trepy is not responsible for independent third-party privacy practices.

Users should review applicable third-party policies directly.

15. NO GUARANTEE OF UNIVERSAL LEGAL APPLICABILITY

Privacy laws continue to evolve and may be interpreted differently across jurisdictions.

Trepy reserves the right to:

• interpret laws reasonably and in good faith;
• rely on applicable exemptions;
• modify operational practices;
• update privacy disclosures;
• adjust compliance procedures.

This California Addendum does not create contractual rights beyond those required by applicable law.

16. DISCLAIMERS

THE PLATFORM IS PROVIDED “AS IS” AND “AS AVAILABLE.”

Trepy does not guarantee:

• uninterrupted availability;
• error-free processing;
• uninterrupted privacy-rights request handling;
• compatibility across all systems;
• universal legal applicability of all rights.

Trepy reserves the right to:

• investigate abuse;
• deny fraudulent requests;
• maintain operational records;
• preserve information where legally necessary.

17. LIMITATION OF LIABILITY

TO THE MAXIMUM EXTENT PERMITTED BY LAW, TREPY SHALL NOT BE LIABLE FOR:

• indirect damages;
• incidental damages;
• consequential damages;
• reputational harm;
• lost profits;
• third-party actions;
• infrastructure failures;
• security incidents beyond reasonable control;
• provider outages.

Certain jurisdictions may not allow some limitations.

18. ARBITRATION AND CLASS ACTION WAIVER

This California Addendum is subject to the arbitration and class action waiver provisions contained in the Trepy Terms of Service.

Disputes relating to privacy, personal information, data practices, or related issues shall be resolved through binding individual arbitration governed by the Federal Arbitration Act.

Users waive participation in:

• class actions;
• representative proceedings;
• collective actions;
• consolidated claims.

19. MODIFICATIONS TO THIS CALIFORNIA ADDENDUM

Trepy may update this California Addendum from time to time.

Updated versions may be posted through the platform.

Continued use of Trepy after updates may constitute acceptance of revised terms.

20. CONTACT INFORMATION

Trepy

Website:

• Trepy Website

Application:

• Trepy App

Additional privacy-related contact methods may be provided through the platform.