PRIVACY POLICY - GUARDIAN BIOMEDICAL CORP.

www.guardianbiomedical.com

Effective date: 14th January 2026

1. INTRODUCTION AND SCOPE

This Privacy Policy (the “Policy”) describes how Guardian BioMedical Corp., a Delaware corporation (“Guardian,” “Company,” “we,” “us,” or “our”), collects, uses, discloses, and protects personal information obtained through its publicly accessible website located at www.guardianbiomedical.com (the “Website”).

Guardian is a biomedical technology company engaged in early-stage research and development of non-invasive physiological monitoring technologies. The Website is provided solely for general informational purposes and to facilitate high-level communications with interested parties. The Website does not provide healthcare services, does not sell products, and does not collect health or biometric data through the Website itself.

This Policy applies only to personal information collected through the Website and does not apply to:

  • information collected offline;

  • information collected from employees, contractors, or job applicants;

  • information collected in connection with research studies, pilot programs, or device-based activities, which are governed by separate notices, agreements, and informed consent documentation.

2. COMPANY IDENTITY AND CONTACT INFORMATION

The Website is owned and operated by:

Guardian BioMedical Corp.
Delaware Corporation

Mailing Address:
4920 W Cypress St, Ste 104
#5076
Tampa, FL 33607
United States

For questions or concerns regarding this Privacy Policy or Guardian’s data practices, you may contact us at:

Privacy Contact:

info@guardianbiomedical.com

3. APPLICABILITY AND INTENDED AUDIENCE

This Policy applies to individuals and entities who access or use the Website (“Users”).

The Website is intended for:

  • institutional partners and organizations,

  • research and industry professionals, and

  • members of the public seeking general, non-actionable information.

This Policy does not apply to individuals who participate in any Guardian-sponsored research studies, pilots, or evaluations. Any personal information collected in such contexts is governed by separate agreements and privacy disclosures specific to those activities.

4. INFORMATION COLLECTED THROUGH THE WEBSITE

Guardian collects personal information only to the extent voluntarily provided by Users or automatically generated through standard website operation.

The categories of information that may be collected through the Website include:

  • identifying information (such as name);

  • contact information (such as email address);

  • professional or organizational information voluntarily provided; and

  • technical information generated through standard website interactions.

Guardian does not intentionally collect sensitive personal information through the Website.

5. INFORMATION YOU VOLUNTARILY PROVIDE

You may choose to provide personal information to Guardian by submitting inquiries or communications through contact forms or other communication features available on the Website.

Information voluntarily submitted may include:

  • first and last name;

  • email address;

  • organizational affiliation or professional role; and

  • any additional information you elect to include in your message.

You represent and warrant that any information you submit is accurate, current, and lawful, and that you have the right to provide such information.

Submission of information through the Website does not create any contractual, research, clinical, or professional relationship between you and Guardian.

6. AUTOMATICALLY COLLECTED TECHNICAL INFORMATION

When you access the Website, certain technical information may be automatically collected, including:

  • internet protocol (IP) address;

  • browser type and version;

  • device type and operating system;

  • date and time of access;

  • pages viewed and referring URLs.

This information is used solely for:

  • website functionality and performance monitoring;

  • security and fraud prevention;

  • internal analytics to improve the Website.

Guardian does not use such information for targeted advertising or behavioral profiling.

7. COOKIES AND SIMILAR TECHNOLOGIES

The Website may use cookies or similar technologies to support basic functionality, security, and analytics.

Cookies used on the Website, if any, are limited to:

  • essential or functional cookies necessary for website operation; and

  • analytical cookies used to understand aggregate website usage.

Guardian does not knowingly use cookies for cross-site tracking, targeted advertising, or the sale of personal information.

You may control cookie settings through your browser preferences. Disabling cookies may affect certain Website functionality.

8. PURPOSES FOR WHICH INFORMATION IS USED

Guardian uses personal information collected through the Website solely for legitimate, limited, and proportionate business purposes, including to:

  • respond to inquiries, requests, or communications submitted through the Website;

  • operate, maintain, and improve the functionality, performance, and security of the Website;

  • communicate with institutional partners or interested parties regarding Guardian’s business at a high level;

  • monitor and protect against fraud, misuse, or security incidents;

  • comply with applicable legal, regulatory, and contractual obligations; and

  • enforce Guardian’s Terms of Service and other legal rights.

Guardian does not use Website-collected information to provide healthcare services, make medical determinations, or engage in automated decision-making with legal or similarly significant effects.

9. LEGAL BASES FOR PROCESSING (UNITED STATES)

Guardian processes personal information collected through the Website in accordance with applicable U.S. federal and state privacy laws, based on one or more of the following lawful grounds, as applicable:

  • Consent, where you voluntarily provide information through the Website;

  • Legitimate business interests, such as operating and securing the Website, responding to inquiries, and managing business communications;

  • Compliance with legal obligations, including responding to lawful requests from public authorities; and

  • Contractual necessity, where processing is reasonably required in anticipation of or in connection with a potential business relationship initiated by you.

Guardian does not rely on automated decision-making or profiling as defined under applicable privacy laws.

10. NO COLLECTION OF HEALTH OR BIOMETRIC DATA VIA WEBSITE

Guardian does not collect, process, or store health information, biometric identifiers, genetic data, or other sensitive health-related data through the Website.

The Website is not designed or intended to collect information regulated under:

  • the Health Insurance Portability and Accountability Act of 1996 (HIPAA),

  • state medical privacy laws, or

  • comparable health data protection regimes.

Users are instructed not to submit health, medical, or biometric information through the Website.

11. SEPARATION FROM RESEARCH, PILOT, OR DEVICE DATA

Any personal information collected in connection with Guardian’s research studies, pilot programs, evaluations, or use of device-based technologies is strictly segregated from information collected through the Website.

Such research- or device-related data is governed by:

  • separate written agreements,

  • informed consent documentation, and

  • privacy notices specific to those activities.

Nothing in this Privacy Policy applies to, or governs, the collection or use of data generated by Guardian’s technologies outside the Website context.

12. DISCLOSURE OF PERSONAL INFORMATION

Guardian may disclose personal information collected through the Website only in the following limited circumstances:

12.1 Service Providers.
To trusted third-party service providers that perform services on Guardian’s behalf, such as website hosting, analytics, or IT support, subject to contractual confidentiality and data protection obligations.

12.2 Legal and Regulatory Requirements.
Where required to comply with applicable law, regulation, legal process, or lawful governmental request, including to protect the rights, property, or safety of Guardian or others.

12.3 Corporate Transactions.
In connection with a merger, acquisition, financing, reorganization, or sale of assets, provided that any recipient is bound to respect the confidentiality of personal information.

Guardian does not disclose personal information for purposes of targeted advertising.

13. NO SALE OR SHARING OF PERSONAL INFORMATION

Guardian does not sell personal information collected through the Website and does not share such information for cross-context behavioral advertising, as those terms are defined under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (CCPA/CPRA).

Guardian has no actual knowledge of selling or sharing the personal information of individuals under eighteen (18) years of age.

14. DATA RETENTION

Guardian retains personal information collected through the Website only for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

Retention periods are determined based on:

  • the nature of the information collected;

  • the purpose for which it is processed;

  • applicable legal, regulatory, or contractual obligations; and

  • Guardian’s legitimate business needs.

When personal information is no longer required, Guardian takes reasonable steps to securely delete or anonymize such information.

15. DATA SECURITY SAFEGUARDS

Guardian implements reasonable administrative, technical, and organizational measures designed to protect personal information collected through the Website against accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use.

Such measures are appropriate to the nature of the information collected and the risks associated with its processing. However, no method of transmission over the internet or method of electronic storage is completely secure. Accordingly, Guardian cannot and does not guarantee absolute security of personal information.

You acknowledge that you provide personal information through the Website at your own risk.

16. YOUR PRIVACY RIGHTS

Depending on your jurisdiction of residence, you may have certain rights with respect to your personal information, which may include the right to:

  • request access to personal information Guardian maintains about you;

  • request correction of inaccurate or incomplete personal information;

  • request deletion of personal information, subject to applicable legal exceptions; and

  • object to or restrict certain processing activities, where permitted by law.

Requests to exercise such rights may be submitted using the contact information provided in Section 2. Guardian may require verification of your identity before responding to a request and may deny requests where permitted or required by law.

17. CALIFORNIA PRIVACY RIGHTS (CCPA / CPRA NOTICE)

This section applies solely to residents of the State of California.

Under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”), California residents may have the right to:

  • know the categories of personal information collected and the purposes for which it is used;

  • request access to or deletion of personal information, subject to legal exceptions;

  • request correction of inaccurate personal information; and

  • not be discriminated against for exercising privacy rights.

As described in this Privacy Policy, Guardian:

  • does not sell personal information;

  • does not share personal information for cross-context behavioral advertising; and

  • limits collection to information necessary for legitimate business purposes.

Requests to exercise California privacy rights may be submitted using the contact information provided in Section 2.

18. CHILDREN’S PRIVACY

The Website is not directed to individuals under the age of eighteen (18), and Guardian does not knowingly collect personal information from children.

If Guardian becomes aware that personal information has been collected from an individual under eighteen (18) years of age without appropriate authorization, Guardian will take reasonable steps to delete such information.

19. INTERNATIONAL USERS

Guardian is based in the United States, and personal information collected through the Website is processed and stored in the United States or other jurisdictions where Guardian or its service providers operate.

If you access the Website from outside the United States, you acknowledge that your personal information may be transferred to and processed in jurisdictions that may have different data protection laws than those of your country of residence.

By using the Website, you consent to such transfers to the extent permitted by applicable law.

20. CHANGES TO THIS PRIVACY POLICY

Guardian reserves the right to modify or update this Privacy Policy at any time in its discretion.

Any changes will be effective as of the revised effective date indicated at the top of this Policy. Your continued use of the Website following the posting of an updated Privacy Policy constitutes your acknowledgment of and agreement to the revised Policy.

21. GOVERNING LAW

This Privacy Policy shall be governed by and construed in accordance with the laws of the State of Delaware, without regard to its conflict of law principles. This governing law provision is consistent with, and intended to align with, the governing law and dispute resolution provisions set forth in Guardian’s Terms of Service, which are incorporated herein by reference.


Useful Links

About Us

Team

Contact

© 2026 Guardian Biomedical, Corp. All rights reserved.

Terms of Use

Privacy Policy

Useful Links

About Us

Team

Contact

© 2026 Guardian Biomedical, Corp. All rights reserved.

Terms of Use

Privacy Policy

Useful Links

About Us

Team

Contact

© 2026 Guardian Biomedical, Corp. All rights reserved.

Terms of Use

Privacy Policy