At Spades Social, we are dedicated to safeguarding the privacy and security of our members' personal information. We collect and utilize personal data, such as names, contact details, and game-play activities, solely for the purposes of managing memberships, enhancing user experiences, and complying with legal obligations. Rest assured, we employ rigorous measures to protect against unauthorized access, disclosure, or alteration of your information. While we may share data with trusted third-party service providers for operational purposes, we do not sell or rent personal information for marketing purposes without explicit consent. Members have the right to access, update, or request deletion of their data, and we will promptly address any inquiries or concerns. By using our services, you agree to our privacy practices outlined herein, and we commit to notifying you of any changes to this policy. For any questions or requests regarding your privacy, please reach out to us at [contact email/phone number/address].

A2P Text Messaging Compliance Policy Objective:

The purpose of this policy is to ensure our organization's compliance with Application-to-Person (A2P) messaging regulations and standards, safeguarding our reputation and maintaining the trust of our customers and partners.

Scope:

This policy applies to all employees, contractors, and third parties who are involved in the sending of A2P text messages on behalf of our organization.

Policy Details:

Registration and Brand Verification: Our organization shall register with the appropriate messaging services and undergo brand verification processes as required by service providers and regulatory bodies. All A2P messaging campaigns must be conducted under the registered and verified brand name. Message Content Compliance :All messages sent must comply with applicable laws and regulations, including but not limited to the Telephone Consumer Protection Act (TCPA) and General Data Protection Regulation (GDPR).Content must be accurate, lawful, and not misleading. Messages that could be considered spam, contain fraudulent content, or infringe on privacy rights are strictly prohibited. Consent and Opt-In: Explicit consent must be obtained from recipients before sending any A2P messages. This consent should be documented and stored securely. An easy and clear opt-out mechanism must be included in each message, allowing recipients to withdraw their consent at any

time. Data

Privacy and Security: Personal data collected during the opt-in process must be protected in accordance with data protection laws and our organization’s data privacy policy. Measures must be taken to ensure the security of the data against unauthorized access, disclosure, alteration, and destruction. Carrier and Platform Compliance: Compliance with the rules and requirements set forth by mobile carriers and messaging platforms is mandatory. Regular audits will be conducted to ensure ongoing compliance with these requirements, as well as with any updates to carrier rules. Monitoring and Enforcement: Our organization will regularly monitor A2P messaging activities for compliance with this policy and applicable regulations. Any violations of this policy will result in disciplinary action, up to and including termination of employment or

contracts. Training

and Awareness: Regular training sessions will be conducted to ensure that all relevant staff are aware of and understand their responsibilities under this policy. Updates on legal and regulatory changes affecting A2P messaging will be communicated

promptly. Review

and Updates: This policy will be reviewed annually or as required by changes in regulations or organizational practices. Updates will be made to ensure ongoing compliance and effectiveness.

Responsibility:

Compliance with this policy is the responsibility of all employees and contractors involved in the A2P messaging process. The Compliance Officer is responsible for the implementation, monitoring, and enforcement of this policy.

Non-Compliance:

Violations of this policy may result in disciplinary action, legal penalties, and damage to our organization’s reputation. It is imperative that all team members adhere strictly to this policy.