Page 1: Data Collection Statement To protect users ‘personal information security and privacy rights when using the GT1 AI platform, we have formulated this privacy policy in accordance with applicable laws and regulations. This policy outlines the platform’s guidelines for data collection, storage, and usage. By registering, logging in, browsing, or using our services, users are deemed to understand and agree to the content of this privacy policy. We will only collect user-related information under legal, proper, and necessary conditions. All data is used solely for the purpose of providing services and will not be used for unrelated purposes or abused. We will not sell or disclose your information to any unauthorized third parties unless you give explicit consent or it is required by law. To continuously improve the service experience, we respect users ‘right to know and adopt a transparent data processing mechanism, ensuring that the data processing process remains within the users’ control. The platform’s data processing will always adhere to the principles of’ user-centric, compliance as the premise, and minimalization.’

Page 2: Types of Data We Collect During your use of GT1 AI services, we may collect the following types of data in different scenarios to enhance core functions and optimize service experiences: 1. Account and Identity Information This includes, but is not limited to, usernames, passwords, mobile phone numbers, email addresses, and real-name verification information (if applicable). These details are used for account registration, login verification, account recovery, and user identification. 2. Usage Behavior Data This includes your browsing paths, operation records, click behaviors, preference settings, and order tracking data on the platform. This data helps us analyze user behavior and improve the accuracy of our strategy recommendations. 3. Device and Connection Information This includes technical parameters such as IP addresses, operating systems, device models, browser versions, access timestamps, and language settings. This information is used for system security, fraud prevention, risk control, and service compatibility analysis. 4. Transaction and Financial Data If you choose to participate in actual entrusted transactions, we will record your fund transfer paths, entrusted amounts, transaction targets, strategy choices, and detailed income information. All sensitive data is encrypted and processed, and is used exclusively for service delivery and settlement. Please rest assured that all data collection adheres to the principle of minimal necessity and is strictly controlled by permission.

Page 3: How We Use Your Information The information collected by GT1 AI is used to enhance service quality, ensure system security, and fulfill the platform’s promised features. We commit to using data legally, properly, and necessary for the following purposes: 1. Service Delivery and Function Implementation Your registration information is used for identity verification, account management, and service access; transaction and commission information is used for strategy execution, profit settlement, and order recording; behavioral data is used for personalized recommendations and interface optimization. 2. Security Protection and Risk Control We use device information and behavioral data to monitor anomalies, identify risks, and maintain system security, preventing black market attacks, account theft, and money laundering. 3. Product Optimization and Technical Iteration By aggregating user behavior and performance metrics, we continuously improve platform functions, algorithm accuracy, and system performance to create a more efficient and user-friendly experience. 4. Compliance Requirements and Dispute Resolution In compliance with laws and regulations or during dispute resolution, we may use relevant data to fulfill legal obligations and respond to judicial or administrative inquiries. We will not use your personal information for unauthorized advertising or marketing purposes, nor will we sell or illegally transfer user data.

Page 4: How We Share, Transfer, and Publicly Disclose Information We are fully aware of the sensitivity and importance of user data, and therefore have established strict regulations and approval procedures for sharing, transferring, and disclosing information: 1. Information Sharing We only share user information with third parties under the following circumstances, ensuring they fulfill their data protection obligations: Business Partners: To achieve certain service functions (such as payment settlement, risk control review, data statistics), we may share necessary information with compliant partners. Legal Requirements: When required by laws, regulations, or regulatory bodies, we will provide necessary information after careful consideration. User Authorization: With the user’s explicit consent, we may share specific data for service expansion or functional integration needs.

2. Information Transfer When the company undergoes asset restructuring, mergers, acquisitions, or other changes, it may involve the transfer of user information. We will conduct a legal risk assessment and ensure that the new party continues to be bound by this privacy policy. If not, we will seek user authorization again. 3. Information Disclosure We will never publicly disclose user personal information unless: We have obtained explicit consent from the user; It is required by laws, regulations, court judgments, or administrative authorities; When you post comments or content, some of your account information (such as your nickname or avatar) may be displayed. We promise not to disclose user private information for commercial purposes without authorization.

Page 5: How We Protect Your Information Security GT1 AI prioritizes user data security as a core part of our operations. We employ both technical and managerial measures to ensure your information is protected from leaks, tampering, or loss: 1. Data Encryption and Transmission Protection We use industry-standard SSL/TLS encryption protocols to ensure that information transmitted between users and the platform is not intercepted illegally. Sensitive data stored in the database, such as passwords and identity verification information, is encrypted multiple times and cannot be viewed in plain text. 2. Storage Security and Access Control All servers are deployed in data centers with international compliance credentials and are equipped with distributed backup and disaster recovery mechanisms. Internal employees must follow strict permission controls and access data based on the ‘minimum authorization’ principle, accessing only the necessary data within their job responsibilities. 3. Risk Monitoring and Vulnerability Response We maintain a 7×24 system security monitoring mechanism to detect abnormal behavior in real time. We collaborate with leading global security teams to conduct regular penetration tests and vulnerability fixes, ensuring our system’s defense capabilities are continuously updated. 4. Emergency Response Mechanism for Security Incidents If we detect risks such as data breaches or system attacks, we will immediately activate the early warning response program and inform regulatory authorities and users within 72 hours. If users notice any account anomalies or data leakage risks, they can contact the security team through the platform’s reporting channel at any time, and we will prioritize their concerns. We are committed to continuously improve the level of information security, and strive to create a credible and stable digital trading environment for users.

Page 6: Cookie and Tracking Technology Usage Policy To enhance user experience and optimize services, the GT1 AI Platform uses Cookies and related tracking technologies when you visit. We adhere to the principles of transparency, fairness, and user consent, ensuring that data collection is kept within reasonable limits. 1. What are Cookies? Cookies are small text files stored on your device’s browser by the website server. They help us remember your preferences, login status, language settings, and more, providing a more efficient service experience. 2. What types of Cookies do we use? Necessity Cookies: These ensure basic website functions, such as account login, transaction initiation, and data encryption. Functional Cookies: These record user preferences, such as theme color, language selection, and market settings. Analytical Cookies: These collect user behavior data using tools like Google Analytics and Matomo, optimizing the website’s structure and layout. Marketing Cookies (Optional): These identify the source of visits or push personalized content in specific scenarios, which users can opt to enable. 3. User Control You can choose whether to allow the platform to store Cookies through your browser settings. Disabling some Cookies may affect your login status or interface preferences. In addition, GT1 AI will not obtain any sensitive information that can directly identify you through Cookies, nor will it sell or rent the Cookie data to any third party.

Page 7: Data Transmission and Cross-border Processing GT1 AI To provide global, stable, and secure financial services, we may need to transmit some of your personal information across different countries or regions. We are committed to strictly adhering to applicable laws and implementing encryption protection for all cross-border data transmissions. 1. Scenarios of Cross-border Data Transmission To ensure the platform’s functionality, such as data storage and backup, AI model iteration training, and cloud server architecture deployment, we may need to transfer your data to the location of the data center (including but not limited to the United States, EU, Hong Kong, Singapore, etc.). 2. Legal Compliance All cross-border transmissions will comply with applicable laws and regulations (such as GDPR, PDPA, etc.). Before data transfer, GT1 AI will ensure that the recipient has adequate data protection mechanisms or has signed standard contract terms (SCC). 3. Data Encryption and Security Measures Regardless of where the data is located, the platform will implement end-to-end encryption for all transmitted data and will have access control, audit logs, and anomaly alerts in place to prevent unauthorized access, theft, or tampering. 4. User Right to Information and Right to Withdrawal Users can request an explanation of the data flow at any time from GT1. If you wish to restrict the use of data in specific regions, we will cooperate to impose reasonable restrictions or handle the data anonymously.

Page 8: Information Usage and Third-Party Sharing Explanation GT1 AI is committed to transparently using user information and ensuring the maximum protection of user privacy during cooperation with third parties. This page explains when we use, disclose, or share user data. 1. Scope of Information Use The information provided by users will be used for the following purposes: -Providing and optimizing platform services (such as transaction execution, intelligent strategy matching) -Conducting system risk control, behavior recognition, and account security verification-Analyzing user behavior and providing personalized product recommendations-Sending users updates, notifications, or marketing content related to the service (users can opt out) 2. Scenarios for Third-Party Cooperation In the following scenarios, we may share user data with trusted third parties: -Payment processing institutions (such as Stripe, Circle) for recharge and withdrawal operations-Risk control and identity verification service providers (such as Sumsub, Jumio) -Data hosting and technical service providers for cloud deployment and platform maintenance-Compliance and audit partners to meet regulatory requirements 3. Security and Constraint Mechanisms All third-party institutions collaborating with GT1 must sign a strict Data Processing Agreement, committing to process user data for specific purposes and to implement data protection measures equivalent to those of our platform. 4. Non-Sharing Principle We will never sell users’ personal information or transaction data. All information sharing is conducted only within the scope permitted by law or authorized by users.

Page 9: Data Security Protection Mechanism To prevent user information from being misused, leaked, or accessed illegally during the use of the GT1 AI platform, we have established a multi-layered data security protection system. 1. System Encryption Mechanism We employ internationally leading encryption technologies, including but not limited to: AES-256-bit encryption for storing sensitive user data (such as identity information and wallet addresses), SSL/TLS transmission encryption protocols to ensure that data communication between the client and server is secure, and data desensitization and encryption signature mechanisms for risk control and behavior analysis models. 2. Access Control The platform follows the principle of least privilege (Least Privilege), ensuring that only authorized technical personnel can access user data within specific scopes, with all access activities being recorded, monitored, and regularly audited. 3. Abnormal Behavior Detection The GT1 AI features an intelligent security module that continuously monitors for abnormal logins, device changes, and high-frequency sensitive operations. It also includes an abnormal behavior verification mechanism, such as two-factor authentication and facial recognition, allowing users to view and manage their account’s historical login records and authorized devices. 4. Data Backup and Disaster Recovery All user data is backed up asynchronously across multiple locations daily, ensuring rapid data recovery in case of unexpected events (such as system crashes or hacker attacks), thus safeguarding user assets and data.

Page 10: User Rights and Terms of Service Update Statement GT1 AI respects the control over personal data that each user has and is committed to protecting users ‘legal rights throughout the data processing process. 1. User Rights Explanation Within the scope allowed by applicable laws, users can exercise the following rights: Right to Access: You have the right to request access to your personal data held by us. Right to Correct: If you find any errors in your information, you can request us to correct or supplement it. Right to Delete: Provided that it does not affect the platform’s compliance obligations, you can request the deletion of certain data. Right to Restrict Processing: You can request that we limit the processing of your personal data, retaining only the most essential information. Data Portability: If you wish to transfer your data to another service provider, we can assist with the export. Right to Opt Out: You can choose not to accept certain forms of data use, such as marketing notifications. 2. Privacy Policy Update Mechanism GT1 AI may update this privacy policy due to business development, legal changes, or technological advancements. We will notify users of any significant changes through platform announcements, emails, or in-app pushes. By continuing to use the platform services after the change takes effect, you agree to the updated terms. If you do not agree with the changes, you have the right to stop using the services provided by GT1 AI. 3. Contact and Feedback Mechanism If you have any questions, suggestions, or complaints about this privacy policy or the data processing process, please feel free to provide feedback through the official channels provided by the platform. We promise to respond within 7 working days.