1. Introduction

Universal Fiber Optics (“UFO Cable,” “we,” “us,” or “our”) is committed to protecting the privacy of individuals who visit our website at ufocable.com, submit inquiries, request quotes, or otherwise interact with our business. We provide commercial low-voltage contracting services — including network cabling, fiber optic installation, security camera systems, access control, and structured cabling — to businesses across Las Vegas, Southern California, Arizona, and surrounding service areas.

This Privacy Policy explains what personal information we collect, how we use and protect it, and the rights available to you under applicable federal and state privacy laws. Because we conduct business in Nevada, California, and Arizona, this policy is designed to comply with the following:

• Nevada — Nevada Revised Statutes Chapter 603A (Nevada Privacy Law), including opt-out of sale requirements and privacy policy disclosure obligations
• California — The California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), including the new 2026 regulations on automated decision-making technology (ADMT), privacy risk assessments, and cybersecurity audits effective January 1, 2026
• Arizona — Arizona’s data breach notification law (A.R.S. § 18-551 et seq.), which requires timely notification in the event of a security incident involving personal information

This policy also addresses the rights of residents in states with comprehensive privacy laws effective January 1, 2026, including Indiana, Kentucky, and Rhode Island, to the extent those laws apply to our operations.

2. Information We Collect

We collect information you voluntarily provide to us and information that is automatically gathered when you visit our website.

Information You Provide Directly

• Contact information: Name, email address, phone number, business name, and physical address when you request a quote, fill out a contact form, or call our office at (725) 356-3060.
• Project details: Information about your cabling, networking, or low-voltage installation needs, including facility type, scope of work, and preferred timelines.
• Business information: Company name, job title, industry type, and location of the commercial property requiring service.
• Communication records: Emails, phone call logs, and messages exchanged between you and our team during project consultations and service delivery.

Information Collected Automatically

• Device and browser data: IP address, browser type and version, operating system, device identifiers, and screen resolution.
• Usage data: Pages visited, time spent on pages, referring URLs, click patterns, and navigation paths through our website.
• Location data: General geographic location inferred from your IP address (city/region level only — we do not collect precise geolocation data).
• Cookies and tracking technologies: We use cookies, pixels, and similar technologies to improve site performance and understand visitor behavior. See Section 9 for details.

3. How We Use Your Information

We use the information we collect for the following business purposes:

• Responding to your quote requests and service inquiries
• Providing, scheduling, and delivering our low-voltage contracting services
• Communicating with you about projects, appointments, and service updates
• Improving our website, services, and customer experience
• Sending relevant service-related communications (you may opt out at any time)
• Maintaining internal records and business analytics
• Complying with legal obligations and protecting our rights
• Detecting and preventing fraud, unauthorized access, or other harmful activities

4. How We Share Your Information

We may share your personal information only in the following limited circumstances:

• Service providers and contractors: Trusted third-party vendors who assist us in operating our website, managing customer relationships, processing payments, or delivering services — all bound by contractual data protection obligations.
• Business tools and platforms: CRM systems, email platforms, analytics tools, and scheduling software used in the normal course of our operations.
• Legal compliance: When required to comply with applicable law, regulation, legal process, or enforceable governmental request.
• Business transfers: In connection with a merger, acquisition, or sale of assets, where your information may be transferred as part of the business transaction, with notice provided to you.
• Protection of rights: To protect the safety, rights, or property of Universal Fiber Optics, our clients, or the public as required or permitted by law.

All third-party service providers and processors are required to handle your data in accordance with this Privacy Policy and applicable data protection laws, including maintaining appropriate data processing agreements as required by state privacy statutes.

5. Your Privacy Rights

Depending on your state of residence, you may have one or more of the following rights regarding your personal information. We honor these rights for all consumers regardless of location to the extent practicable.

Rights Under Nevada Law (NRS 603A)

Nevada residents have the right to submit a verified request directing us not to sell their covered information. Although we do not sell personal information, you may submit an opt-out request at any time using the contact methods listed in Section 14.

Rights Under California Law (CCPA/CPRA)

If you are a California resident, you have the right to:

• Know and access the categories and specific pieces of personal information we have collected about you.
• Delete your personal information, subject to certain legal exceptions.
• Correct inaccurate personal information we maintain about you.
• Opt out of the sale or sharing of personal information (we do not sell or share personal information for cross-context behavioral advertising).
• Limit the use of sensitive personal information to purposes necessary to perform our services.
• Non-discrimination for exercising your privacy rights.

Automated Decision-Making Technology (ADMT) — 2026 CCPA Regulations

As of January 1, 2026, California’s CCPA regulations include new consumer rights related to automated decision-making technology. Universal Fiber Optics does not currently use automated decision-making technology to make significant decisions concerning consumers. If this changes in the future, we will update this policy with appropriate Pre-Use Notices, access rights, and opt-out mechanisms as required.

Your Rights Under Arizona Law

Arizona does not currently have a comprehensive consumer data privacy law. However, Arizona’s data breach notification statute (A.R.S. § 18-551 et seq.) protects residents by requiring businesses operating in the state to notify affected individuals within 45 days of discovering a security breach involving personal information. If a breach affects more than 1,000 Arizona residents, we are also required to notify the Arizona Attorney General’s Office, the Arizona Department of Homeland Security, and the three largest nationwide consumer reporting agencies. Although Arizona law does not currently grant the same data access and deletion rights as California or Nevada, we extend those rights to our Arizona customers as a matter of good practice.

Rights Under Indiana, Kentucky, and Rhode Island Privacy Laws (Effective January 1, 2026)

Residents of Indiana, Kentucky, and Rhode Island may have the right to:

• Confirm whether we are processing your personal data and access that data
• Correct inaccuracies in your personal data
• Delete personal data you have provided or that we have obtained
• Obtain a portable copy of your personal data
• Opt out of the processing of your personal data for targeted advertising, the sale of personal data, or profiling in furtherance of decisions that produce legal or similarly significant effects

We will respond to verified consumer rights requests within the timeframes required by applicable law (typically 45 days, with extensions as permitted). If we deny a request, you have the right to appeal, and we will provide instructions for doing so.

6. Sensitive Personal Information

Universal Fiber Optics does not intentionally collect sensitive personal information as defined under applicable state privacy laws — including Social Security numbers, financial account credentials, precise geolocation data, racial or ethnic origin, religious beliefs, biometric data, or health information. In the rare event that sensitive information is incidentally provided to us, we limit its use strictly to what is necessary to perform the services you have requested and handle it with heightened security measures.

7. Categories of Personal Information (CCPA Disclosure)

The following table describes the categories of personal information we have collected from consumers within the preceding 12 months, the sources of that information, the business purposes for collection, and the categories of third parties with whom information is shared. This disclosure is provided in compliance with California Civil Code § 1798.100 et seq.

We have not sold or shared personal information for cross-context behavioral advertising in the preceding 12 months. We do not have actual knowledge that we sell or share the personal information of consumers under 16 years of age.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, comply with our legal and contractual obligations, resolve disputes, and enforce our agreements. When personal information is no longer required, we securely delete or anonymize it in accordance with our data retention schedule. Typical retention periods include:

• Quote requests and contact form submissions: Retained for up to 3 years after last interaction unless a service agreement is established.
• Client project records: Retained for the duration of the business relationship plus 7 years for legal and warranty purposes.
• Website analytics data: Retained in aggregated or anonymized form for up to 26 months.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyze site traffic. The categories of cookies we use include:

• Strictly necessary cookies: Required for the website to function properly (e.g., security, load balancing). These cannot be disabled.
• Analytics cookies: Help us understand how visitors interact with our website, including which pages are visited most frequently and how users navigate the site.
• Functional cookies: Remember your preferences and settings to provide a more personalized experience.

You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. Please note that disabling certain cookies may impact website functionality.

Global Privacy Control (GPC) & Universal Opt-Out Signals

We recognize and honor Global Privacy Control (GPC) signals and other legally recognized universal opt-out mechanisms. If your browser or device sends a GPC signal, we will treat it as a valid opt-out request under applicable state laws, including California, Nevada, and all other states that require recognition of such signals.

10. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards to protect the personal information we collect and maintain. These measures include encrypted data transmission (SSL/TLS), secure hosting environments, access controls limiting data access to authorized personnel, and regular security assessments. While no method of electronic transmission or storage is completely secure, we are committed to protecting your information to the highest practical standard.

In the event of a data breach affecting your personal information, we will notify you and the appropriate authorities in accordance with all applicable state breach notification laws, including:

• Nevada — NRS 603A.220, requiring notification to affected individuals in the most expedient time possible
• California — Cal. Civ. Code § 1798.82, requiring notification to affected residents and, for breaches affecting more than 500 California residents, notification to the California Attorney General
• Arizona — A.R.S. § 18-552, requiring notification within 45 days of the breach discovery, plus notification to the Arizona Attorney General, the Arizona Department of Homeland Security, and major consumer reporting agencies for breaches affecting more than 1,000 Arizona residents

11. Children’s Privacy

Our website and services are intended for businesses and commercial entities. We do not knowingly collect personal information from individuals under the age of 16. If we learn that we have inadvertently collected information from a minor, we will take prompt steps to delete that information. If you believe a child has provided us with personal data, please contact us immediately using the information in Section 14.

12. Third-Party Links

Our website may contain links to third-party websites or services that are not operated or controlled by Universal Fiber Optics. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any external sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or industry standards. When we make material changes, we will update the “Last Updated” date at the top of this page and, where required by law, provide additional notice. We encourage you to review this policy periodically to stay informed about how we protect your information.