PRIVACY NOTICE OF BLUEPIXEL STRATEGIC INNOVATION S.A. DE C.V.

BLUEPIXEL STRATEGIC INNOVATION S.A. DE C.V. (hereinafter referred to as “THE COMPANY”), with its address at Mariano Escobedo 353A, apartment 1201, Colonia Polanco, Miguel Hidalgo District, C.P. 11560, Mexico City, in compliance with the Federal Law on Protection of Personal Data Held by Private Parties and its Regulations, issues this privacy notice concerning the personal data it may access in the course of providing its professional services.

Personal Data

THE COMPANY will protect the personal data of its current and former employees and clients, prospective clients, suppliers, colleagues, friends, and family members (hereinafter, "THE USER" or "THE USERS") to prevent unauthorized processing, ensuring that such data are used exclusively for the purposes described below.

This personal information may include: full name, home address, email address, phone numbers, place and date of birth, marital status, spouse’s name, names and number of children and other dependents, profession, employer and position, socioeconomic status, financial and asset information, bank account details, health information, Social Security number, Taxpayer Registration Number (RFC), Unique Population Registry Code (CURP), education, professional experience, personal and professional references, and other work, economic, family, and private life circumstances. This information may also include sensitive personal data.

Purposes of Personal Data Processing

Your personal data will be collected without disclosure or commercial use and solely for the following purposes:

• To promote and inform about THE COMPANY’s services.
• To formalize and maintain compliance with applicable regulations and keep the relationship between THE COMPANY and THE USERS updated.
• To prepare quotes and contracts for services offered by THE COMPANY, including UX/UI Design and Programming.
• To develop projects related to services provided by THE COMPANY.
• To maintain fluid communication between THE COMPANY and THE USERS, including updates on assigned matters, offered services, and general topics related to our activities.

Your personal data will be kept under strict confidentiality and will not be used for purposes other than those mentioned above unless required in administrative, judicial, or mediation procedures, in which case they may be provided to government entities, partners, counterparts, or third parties. Once the purpose of data processing has been fulfilled, the data will be stored until the expiration of any legal or contractual liabilities, after which they will be deleted from our databases.

Collection of Personal Data

We adhere to the principles of legality, quality, consent, information, purpose, loyalty, proportionality, and responsibility as established by law when collecting personal data. We do not obtain personal data through electronic systems such as “cookies” or any means that lack your express consent.

Data will be collected directly from the data subject, in person, via email, through our website, or by other legally permitted means, including applications, résumés, interviews, socioeconomic studies, and medical or psychometric evaluations.

Handling of Personal Data

The administrative department of THE COMPANY is responsible for personal data handling. You may contact them directly at the address indicated above or via email at hola@bluepixel.mx.

ARCO Rights (Access, Rectification, Cancellation and Opposition)

The data subject may exercise their ARCO rights by submitting a request directly to the person responsible for data handling, either at our offices or via email. The request must meet the requirements of Article 29 of the Law, including:

• The name and address of the data subject and, if applicable, their legal representative.
• Official documents proving identity or legal representation.
• An email address for communication.
• A clear and precise description of the personal data involved and the right to be exercised, along with the reasons for such request.
• Any additional information or documents that help locate the data.

If the information provided is insufficient or lacks required documents, the responsible party will notify you within five business days to request the missing information. You must respond within ten business days; otherwise, your request will be considered not submitted. The responsible party will communicate the decision within twenty business days, and if applicable, execute it within fifteen business days thereafter.

Please note that opposing the use of your personal data may impede or hinder administrative or operational processes being carried out on your behalf.

THE COMPANY is not obliged to cancel personal data in cases where exceptions under the law apply, including but not limited to situations involving private, social, or administrative contracts, judicial or administrative procedures, legal requirements, or actions necessary to protect legally recognized interests.

Data Transfers

Personal data will not be shared with third parties except in the cases mentioned above. Transfers will occur only when necessary to provide better service to THE USERS and fulfill assigned tasks.

Changes to This Privacy Notice

THE COMPANY reserves the right to modify this privacy notice at any time. Updates will be available through:

• (i) Visible announcements at our offices
• (ii) Our website
• (iii) Email sent to THE USERS’ most recent address provided to us

By signing a copy of this notice or by not objecting within fifteen days after becoming aware of it, THE USER consents to THE COMPANY collecting and processing their personal data as outlined herein.

Date of last update to this privacy notice: July 3rd, 2025

‍