Three H Marketing LLC (“ 3H Marketing”, “we”, “us”, “our”) is committed to protecting your  personal data and respecting your privacy. This Privacy Notice explains how we collect, use,  share and protect your personal data when you: 

• Visit or interact with threehmarketing.com
• Engage with our services, marketing campaigns or communications ∙ Interact with us as a client, prospect, supplier or website visitor

This notice is structured to comply with: 

• EU GDPR 
• ePrivacy Directive / PECR
• Key US State Privacy Laws, including: California (CPRA / CCPA),Colorado  (CPA),Virginia (VCDPA),Connecticut (CTDPA),Utah (UCPA) and Kansas (state-specific  transparency and breach obligations)

The purpose of this Privacy Notice is to let you know how we may collect, process and  protect any personal data collected relating to you. Please read it carefully.  

If you wish to discuss any matters relating to the processing of personal data, please contact  us at info@threehmarketing.com.

1. Data Controller

For GDPR and UK GDPR purposes, Three H Marketing Ltd acts as Data Controller. Controller details:

Three H Marketing LLC 

Email: nfo@threehmarketing.com. 

Our EU Rep under Article 27 of the GDPR is Chalmin Data Protection and Business  Consultancy Ltd and can be contacted at gail@chalmindataprivacy.ie.

2. Personal Data We Collect 

We may collect the following categories of personal data: 

3. How We Collect Your Data 

We collect personal data when you: 

• Submit enquiry or contact forms
• Engage our services
• Subscribe to mailing lists or marketing updates
• Download resources or attend events
• Use our website
• Communicate via email or social media

Some technical and usage data is collected automatically via cookies and tracking  technologies.

4. Lawful Bases for Processing  

Under GDPR, we rely on the following lawful bases: 

Purpose Lawful Basis 

5. How We Use Your Personal Data 

We use your personal data to: 

• Provide and administer our services 
• Respond to queries and manage relationships 
• Send relevant communications and insights 
• Improve website functionality and user experience 
• Monitor platform security and performance 
• Fulfil regulatory and legal obligations

6. Data Sharing & International Transfers 

We may share personal data with: 

• Website hosting providers 
• Analytics and CRM providers 
• Marketing and communication platforms 
• Legal and professional advisors 

In addition, we may disclose your personal data to third parties If we are under a duty to  disclose or share your information in order to comply with any legal obligation, or in order  to enforce or apply our terms of use and other agreements; or to protect our rights,  property, or safety, or others. This includes exchanging information with other companies  and organisations for the purposes of fraud protection and credit risk reduction 

We may share your information with selected third parties including: 

• Business partners, suppliers and sub-contractors for the performance of any contract  we enter into with them or you. 
• Third parties with whom: (i) we need to share your information to facilitate  transactions you have requested, and (ii)you ask us to share your information.
• Statutory and regulatory bodies (including central and local government) and law  enforcement authorities in order to comply with any applicable laws, grant  applications and / or court orders 
• Service providers and subcontractors who provide a service to us, and sub  processors. 

We attach at Schedule 1 a list of some of the entities with whom your personal data is  shared. 

Where personal data is transferred outside the EU, we rely on safeguards such as: ∙ EU Standard Contractual Clauses (SCCs) 

• Adequacy 

7. Data Retention 

We keep your personal data for as long as is necessary for the performance of the contract  between you and us and to comply with our legal obligations. If you no longer want us to  use your personal data to provide this service to you, you can request that we erase your  personal data and close your account with us. Please note that if you request the erasure of  your personal data: 

• We may retain some of your personal data as necessary for our legitimate  business interests, such as fraud detection and prevention and enhancing safety 
• We may retain and use your personal data to the extent necessary to comply  with our legal obligations. 
• Because we maintain our records to protect from accidental or malicious loss  and destruction, residual copies of your personal data may not be removed from our  backup systems for a limited period of time.

8. Your Rights 

As an individual, under EU law you have certain rights to apply to us to provide information  or make amendments to how we process personal data. These rights apply in certain  circumstances and are set out below: - 

1. The right to access data relating to you (‘access right’).  
2. the right to rectify/correct data relating to you (‘right to rectification’).  3. The right to object to processing of data relating to you (‘right to object’).  4. The right to restrict the processing of data relating to you (‘right to restriction’). 5. The right to erase/delete data relating to you (i.e. the “right to erasure”). and
3. The right to ‘port’ certain data relating to you from one organisation to another  (‘right to data portability’).  

These rights are not absolute and only apply in certain circumstances. You may exercise any  of the above rights by contacting us at info@threehmarketing.com. or our EU Rep at  gail@chalmindataprivacy.ie .You may lodge a complaint with your local supervisory authority with respect to our processing of your personal data.  

We may use your personal data to send you information relating to our services, events and  products which may be of interest to you. If you do not want us to use your personal data in  this way, please notify us to that effect at info@threehmarketing.com.

9. US State Law Privacy Rights (Including Kansas) 

Depending on your state residence, you may have the right to: 

• Know what personal data we collect 
• Access your personal data 
• Correct inaccuracies 
• Request deletion of your personal data 
• Opt out of the sale or sharing of your personal data 
• Opt out of targeted advertising 
• Limit the use of sensitive personal data (where applicable) 
• Not be discriminated against for exercising your right 

To exercise your rights: 

Email: info@threehmarketing.com.

10. Kansas-Specific Information 

Kansas currently does not have a comprehensive consumer privacy law equivalent to  California, Colorado, or Virginia. However: 

• Businesses operating in Kansas must comply with state-level obligations related to  data breach notification, protection of Social Security Numbers, and other sector specific data requirements. 
• While Kansas law does not create additional consumer rights such as “Do Not Sell” or  “Opt-Out of Targeted Advertising”, Kansas residents may still submit privacy  requests to us.
• We will process such requests in line with our broader US privacy commitments and  internal governance standards to ensure consistent rights protection. 

If you are a resident of Kansas and wish to exercise your data rights, you may use the same  contact details provided above.

11. “Do Not Sell or Share My Personal Information” 

We honour GPC (Global Privacy Control) browser signals where detected. And we do not  sell your data .

12. Social networks 

We maintain active social network accounts. We embed widgets from these networks to  provide follow buttons, like boxes and stream embeds. This will in cookies being set by  these networks while using our site. You may choose to set your web browser to refuse  cookies, or to alert you when cookies are being sent. 

13. Data Security 

We are committed to protecting the security of your personal data. We use a variety of  security technologies and procedures to help protect your personal data from unauthorised  access and use. As effective as modern security practices are, no physical or electronic  security system is entirely secure. We cannot guarantee the complete security of our  databases, nor can we guarantee that information you supply will not be intercepted while  being transmitted to us over the Internet. We will continue to revise policies and implement  additional security features as new technologies become available.  

14. Digital and Marketing  

If you are not a customer, you may still opt to receive communications from us which we  consider may be of interest to you, by any of the following methods: newsletter, email, and  phone calls. You will be asked to opt-in if you wish to receive these. If you wish to be  removed from our list (opt-out), at any time, you can do so by clicking on the unsubscribe  link at the bottom of each email communication you receive from us. You can also opt out  by contacting us at info@threehmarketing.com.

15. Children’s Information 

Our website and services are not directed at children under 16 (EU) or under 13 (US). We do  not knowingly collect children’s personal data.

16. Updates to this Notice 

We may update this notice periodically. 

The most current version will always appear on our website with the updated date.

17. Contact Details

Three H Marketing Ltd 

Website: threehmarketing.com 

Email: info@threehmarketing.com. 

This Notice is effective from Nov 26th, 2025 

Schedule 1 

We have set out below a list of some of the third parties with whom we share your data.