TECNOLOGÍA SALAZAR RAMOS (hereinafter "FIXO", "we", "our", or "the Company"), domiciled in Calle General Francisco Villa, Población Francisco I Madero, Centla, Tabasco, Mexico, in strict compliance with the Mexican Federal Law for the Protection of Personal Data Held by Private Parties (LFPDPPP), its Regulations and the Privacy Notice Guidelines, hereby provides this Comprehensive Privacy Policy applicable to Users (Clients) and Technicians (Professionals) of the FIXO digital platform (the "Platform").

1. PURPOSE

This Privacy Policy explains in a transparent and clear manner how FIXO collects, uses, transfers, stores, and protects your personal data, as well as the mechanisms available for exercising your ARCO rights (Access, Rectification, Cancellation, and Opposition), within the framework of digital intermediation of home services and the secure payment management through the Escrow model operated by Stripe (the "Payment Processor").

2. PERSONAL DATA WE COLLECT

To provide our services, we collect the following categories of personal data, depending on whether you register as a Client or as a Technician:

2.1 From Clients (Users who request services)

• Identification and Contact Data: Full name, email address, phone number, profile photo (optional).
• Location Data (Geolocation): Exact GPS location and address(es) where the service is requested. Geolocation is essential to connect your request with nearby Technicians.
• Service and Transaction Data: Photos of the problem to be repaired, text descriptions, chat history with Technicians, and ratings and reviews provided.
• Financial/Payment Data: Information necessary to process payments (credit/debit card tokenization). FIXO does NOT directly store complete card numbers or CVV codes. This information is collected, processed, and stored in PCI-DSS Level 1 infrastructure directly by Stripe Payments México, S. de R.L. de C.V. and its global affiliates. FIXO only receives secure-use tokens and payment confirmations.
• Technical and Device Data: IP address, iOS/Android device type, operating system, unique device identifiers for push notifications (FCM token), and transactional browsing history within the Platform.

2.2 From Technicians (Associated Professionals)

In addition to the data required from Clients, Technicians provide:

• Biometric Data (Sensitive): Real-time photograph (selfie) taken at registration to be biometrically matched against their official identification, preventing identity fraud. You must provide express written consent (by checking the corresponding box) for the processing of this sensitive data in accordance with the Law.
• Official Identification and Professional Data: Voter ID (INE) or valid Mexican Passport, recent proof of address (no older than 3 months), and certificates, diplomas, or licenses proving technical expertise (optional, but improves search ranking).
• Financial Data: Standardized Banking Key (CLABE) in the Technician's name for fund disbursement (payout) of escrowed funds. Income history through the platform, and personal and/or professional references collected during the background check process.
• Reputation and Performance Data: Ratings, reviews received, acceptance rate, dispute metrics, and real-time location while traveling to or performing a service.

3. PURPOSES OF DATA PROCESSING

3.1 Primary Purposes (Necessary for service delivery)

• Identity Validation and Security (Background Check): Especially for Technicians, to confirm identity, residence, and absence of records that pose a risk to the FIXO community. Generation of Digital Credential with QR Code.
• Service Intermediation: Connecting Clients with suitable Technicians based on specialty and GPS location. Facilitating the quotation system, service acceptance, and routing navigation to the Client's address.
• Settlement and Escrow System: Generating secure fund holds (PaymentIntent and Hold) when the Client approves the quotation, and executing fund disbursement (Payout) via Stripe Connect to the Technician's CLABE account once the Client confirms work completion, automatically deducting the Platform commission.
• Communication and Support: Facilitating in-app chat between Client and Technician before and during the service. Handling incidents, reports, and managing the FIXO Guarantee system in case of dispute resolution. Notifying about service statuses via push and/or email.
• Billing and Regulatory Compliance: Issuing tax receipts for platform usage to Clients and for commissions to Technicians, and ensuring compliance with Anti-Money Laundering (AML) regulations required by the payment processor (KYC/KYB).

3.2 Secondary Purposes (Not strictly necessary)

• Marketing and Promotions: Sending offers, discounts, or satisfaction surveys to improve the service.
• Statistical Analysis: Use of anonymized data to analyze industry trends, optimize the AI engine for recommendations, and improve the application's UI/UX design.

You may opt out of secondary data processing purposes by sending an email to privacidad@fixo.com.mx or through the settings in your Platform profile. Your refusal will not be grounds for denying you FIXO services.

4. DATA TRANSFERS

FIXO commits to not transferring your personal information to unrelated third parties without your consent, except as provided in Article 37 of the LFPDPPP (legal compliance, competent authority requests, medical emergencies, etc.).

However, to fulfill the operational model (Escrow system and infrastructure), the following transfers are strictly necessary and, by accepting this Policy, you consent to them:

• To Stripe (Escrow Payment and Identity Processor): To process payments, hold funds in escrow, verify identity (biometric KYC algorithms), and execute interbank deposits (Stripe Connect).
• To Google LLC and Alphabet Inc. (Infrastructure, AI, and Logs): For database hosting (Firebase Firestore), authentication (Google Auth), push notification delivery (Firebase Cloud Messaging), secure evidence storage (Cloud Storage), and generative model analysis (Gemini API) on anonymized text data for service suggestions.
• Between Users (Client and Technician): To enable the agreed service delivery, FIXO will transfer the Client's name, partial/exact address, and problem photographs to the Technician; and in turn, will display to the Client the FIXO Digital Credential, photograph, name, review rating, and GPS location of the Technician.

5. ACCOUNT DELETION AND DATA RETENTION

You have the right to delete your account at any time through the profile settings in the Platform, or by requesting it at privacidad@fixo.com.mx.

In accordance with our Account Deletion Policy v3.2:

• For Clients: Deletion will be effective immediately for app access. However, per e-commerce regulations and fraud prevention, transactional records (paid services) and payment security records will be retained in a blocked state for up to 5 years before definitive purging from Firebase databases.
• For Technicians: To guarantee consumer safety per PROFECO regulations, dispute reports, evidence of failed work, and background check records will be retained for 5 years. Operational information will be immediately revoked from the public profile.

For more details, please refer to our Account Deletion Policy.

6. DATA SECURITY

FIXO implements administrative, technical, and physical security measures to protect your personal data against damage, loss, alteration, theft, unauthorized access, or processing, including:

• Data encryption in transit (TLS/SSL) and at rest.
• Firebase Security Rules to restrict unauthorized database access.
• PCI-DSS Level 1 compliance through Stripe for all payment data.
• Access controls and authentication for internal systems.
• Regular security audits and monitoring.

7. YOUR RIGHTS (ARCO RIGHTS)

Under Mexican law, you have the right to:

• Access: Know what personal data we hold about you.
• Rectification: Request correction of inaccurate or incomplete data.
• Cancellation: Request deletion of your data when it is no longer necessary for the purposes consented.
• Opposition: Object to the processing of your data for specific purposes.

To exercise these rights, please send a request to privacidad@fixo.com.mx with your full name, email associated with your account, a description of the data and the right you wish to exercise, and any documentation supporting your request.

FIXO will respond to ARCO requests within twenty (20) business days from receipt, in accordance with Article 32 of the LFPDPPP.

8. COMPLAINTS BEFORE INAI

If you believe that your right to personal data protection has been violated by any conduct of FIXO, or if you suspect that the processing of your data violates the LFPDPPP and/or its Regulations, you may file a complaint or report with the National Institute of Transparency, Access to Information and Personal Data Protection (INAI).

For more information, visit: www.inai.org.mx or call the Citizen Service Line: 800 835 4324.

9. CONTACT

For any matter related to this Privacy Policy or the processing of your personal data:

• 📧 Data Protection Department: privacidad@fixo.com.mx
• 📧 General support: soporte@fixo.com.mx
• 📱 In-app channel: "Privacy" and "Help & Support" sections