Privacy Policy — R.F. MacDonald Co.

Privacy Policy

BUSINESS PRIVACY NOTICE

Last Updated: June 26, 2026

R.F. MacDonald Co. (“RFM,” “we,” “us,” or “our”) is committed to protecting the privacy of individuals who interact with us in connection with our business operations. This Business Privacy Notice (this “Notice”) describes how RFM collects, uses, discloses, and safeguards personal information when individuals visit our website, request information, communicate with us, apply for or maintain commercial accounts or credit relationships, purchase or consider purchasing our products or services on behalf of a business, or otherwise interact with RFM in a commercial or business context.

RFM’s business model is primarily business-to-business (B2B). We provide products and services to commercial, industrial, institutional, governmental, and other business customers. In that context, we may collect personal information relating to business contacts, customer representatives, vendor representatives, prospective customers, website visitors, and other individuals who interact with RFM on behalf of a company or organization.

This Notice applies to all individuals who interact with RFM within the United States. It does not apply to job applicants, employees, or contractors who are subject to a separate privacy notice as required by applicable law, including the California Consumer Privacy Act (as amended by the California Privacy Rights Act) (“CCPA”). This Notice also does not apply to third-party websites or services that may be linked from our website and that are governed by their own privacy practices.

PERSONAL INFORMATION WE COLLECT

The categories of personal information we collect depend on how you engage with RFM. In the preceding twelve (12) months, we have collected the following categories of personal information, as applicable:

Business Contact Information

We collect information from representatives of our customers, prospective customers, vendors, suppliers, service providers, and other commercial counterparties, including:

• Names and aliases
• Business email addresses
• Business telephone numbers
• Job titles, organizational roles, and company affiliations
• Company names, business addresses, and other business contact details
• Account names, customer numbers, or similar identifiers used to manage business relationships

Customer Records, Account, and Transaction Information

We collect information associated with commercial customer relationships, account administration, transactions, and business records. This may include:

• Contact information for authorized business representatives
• Order, purchase, service, billing, shipping, delivery, return, warranty, and customer support records
• Commercial information, such as records of products or services purchased, obtained, considered, or used
• Information included in contracts, purchase orders, invoices, account records, and related business documentation
• Payment-related information, such as credit card, debit card, bank account, or other financial information, where necessary to process transactions or administer accounts
• Information described in California Civil Code Section 1798.80(e), such as name, signature, address, telephone number, financial information, and similar customer records information, to the extent collected in a business context

Credit Application and Financial Information

If a business customer applies for credit, financing, payment terms, or similar account arrangements, we may collect information included in the application or related documentation. This may include business financial information, tax information, banking information, trade references, contact information for authorized representatives, and business operational information necessary to evaluate creditworthiness, process transactions, administer accounts, or comply with legal and accounting requirements.

Website and Device Information

When you visit our website or interact with our online services, we may automatically collect certain internet, electronic, and device information through cookies, pixels, tags, analytics tools, and similar technologies, including:

• Internet Protocol (IP) address, online identifiers, and device identifiers
• Browser type, operating system, and device information
• Pages viewed, links clicked, search terms, referring pages, and interactions with our website or advertisements
• Date, time, duration, and frequency of website visits
• General geographic information derived from IP address or similar technologies

Communications and Inquiry Information

We collect information you choose to provide when communicating with us through forms, email, telephone, trade shows, service requests, customer support channels, sales communications, or other business channels. This may include your contact information, the content of your communications, inquiry details, service needs, product interests, and related records necessary to respond to or manage the interaction.

Sensitive Personal Information

RFM does not seek to collect sensitive personal information in the business-facing contexts covered by this Notice. If any information that may be considered sensitive personal information is collected incidentally or in limited circumstances, RFM will process such information only as reasonably necessary for the purpose for which it was provided or as otherwise permitted by applicable law. RFM does not use sensitive personal information to infer characteristics about individuals.

SOURCES OF PERSONAL INFORMATION

We collect personal information from the following sources:

• Directly from you. For example, when you contact us, submit forms, request information, place orders, complete account or credit documentation, or otherwise communicate with RFM.
• From your company or organization. For example, when your employer or organization identifies you as an account contact, billing contact, service contact, authorized representative, or other business contact.
• From service providers and business partners. For example, from payment processors, credit references, logistics providers, marketing or analytics providers, customer relationship management platforms, and other vendors that support our business operations.
• From public sources. For example, from business websites, directories, trade associations, public records, or professional sources relevant to business relationship management.
• Automatically from website technologies. For example, through cookies, analytics tools, pixels, tags, and similar technologies when you interact with our website or online content.

HOW WE USE PERSONAL INFORMATION

RFM uses personal information for business and commercial purposes, including:

Business Operations

• Managing relationships with customers, prospective customers, vendors, suppliers, service providers, and other commercial counterparties
• Processing and fulfilling orders, service requests, deliveries, returns, warranties, and customer support matters
• Administering customer accounts, billing, payments, collections, credit applications, and related financial records
• Maintaining internal business records, contracts, invoices, purchase orders, and account documentation

Communications

• Responding to inquiries, requests, and communications
• Providing order, service, account, product, warranty, or support updates
• Communicating with business contacts regarding RFM products, services, operations, and business relationships
• Sending B2B marketing, informational, or relationship-management communications where permitted by law

Website Functionality and Improvement

• Operating, maintaining, and improving our website and online services
• Conducting website performance analytics
• Enhancing website usability, content, security, and functionality
• Measuring interactions with our website, communications, and advertisements

Sales Enablement and B2B Marketing

• Identifying and developing business opportunities
• Supporting sales, service, and customer relationship management activities
• Understanding customer needs and improving product and service offerings
• Conducting legally compliant B2B marketing and advertising initiatives

Compliance and Protection

• Complying with legal, tax, accounting, regulatory, and contractual obligations
• Enforcing contracts, terms, policies, and legal rights
• Detecting, preventing, and investigating fraud, security incidents, unlawful activity, or misuse of RFM systems
• Protecting the rights, property, safety, and security of RFM, our customers, vendors, personnel, and others
• Supporting mergers, acquisitions, financing, restructuring, or other corporate transactions

RFM does not sell personal information for monetary consideration. RFM may use certain analytics, advertising, or marketing technologies that may constitute “sharing” personal information under the CCPA, as described below.

HOW WE DISCLOSE PERSONAL INFORMATION

We disclose personal information for legitimate business purposes, including to the following categories of recipients:
Service Providers and Vendors

We disclose personal information to service providers, contractors, and vendors who assist us with:

• Website hosting, IT infrastructure, cybersecurity, and data storage
• Customer relationship management, sales enablement, and account administration
• Payment processing, billing, collections, credit review, and financial administration
• Order fulfillment, logistics, shipping, delivery, installation, service, and customer support
• Marketing automation, analytics, advertising, email communications, and website measurement
• Records retention, document management, and business operations support

Service providers and vendors are required to use personal information only for authorized purposes and to maintain appropriate confidentiality and security measures.

Professional Advisors and Legal Recipients

We may disclose personal information to legal, tax, accounting, insurance, audit, compliance, and other professional advisors, and to courts, regulators, law enforcement, government agencies, or other third parties where required or permitted by law.

Business Transaction Recipients

We may disclose personal information in connection with a merger, acquisition, financing, restructuring, divestiture, sale of assets, bankruptcy, or similar business transaction, including during due diligence and transition activities.

No Sale of Personal Information; Limited Sharing

RFM does not sell personal information for monetary value. Certain disclosures to analytics, advertising, or marketing technology providers may constitute “sharing” under the CCPA where those technologies are used for cross-context behavioral advertising. California residents may opt out of such sharing as described in this Notice. A “Do Not Share My Personal Information” mechanism will be available where required by law.

COOKIES, ANALYTICS, AND TRACKING TECHNOLOGIES

• RFM may use cookies, pixels, tags, analytics tools, and similar technologies to:
• Enable essential website features and functionality
• Analyze website performance and usage
• Measure and improve user engagement with our website and communications
• Support permitted B2B marketing and advertising activities
• Maintain website security and detect potentially harmful activity

You may control cookies through your browser settings. Some states provide additional rights related to cookies or other technologies used for targeted advertising or cross-context behavioral advertising. A separate Cookies Policy is available here to describe these technologies and your choices, where applicable.

AUTOMATED DECISION-MAKING

RFM does not use automated decision-making technology, including profiling, to make decisions that produce legal or similarly significant effects on individuals, including decisions relating to credit eligibility or access to goods or services. Any business decisions involving personal information are subject to human review.

If RFM’s practices change in the future, we will update this Notice as required by applicable law.

INTERNATIONAL PROCESSING AND TRANSFERS

RFM is based in the United States. Our website and business operations are intended primarily for users located in the United States. Personal information may be stored, accessed, transferred, or processed in the United States or in other jurisdictions where RFM, our service providers, contractors, vendors, or other authorized recipients operate. If you access our website or interact with us from outside the United States, you understand that your information may be transferred to and processed in the United States or other jurisdictions that may not provide the same level of data protection as your jurisdiction.

Where personal information is transferred across national borders, RFM will implement safeguards required by applicable law, which may include contractual protections, appropriate transfer mechanisms, or other legally recognized safeguards.

CHILDREN’S PRIVACY

Our products, services, website, and business operations are intended for adults and business or institutional purchasers and are not directed to children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have inadvertently collected personal information from a child under 13, we will delete such information as required by law.

DATA RETENTION

RFM maintains internal policies governing the retention and disposal of business records, including personal information. Retention periods vary based on operational needs, legal requirements, contractual obligations, and the nature of the information. In general:

• Business contact and account information is retained for the duration of the business relationship and as required for business, legal, accounting, tax, audit, and compliance purposes.
• Credit applications, payment, billing, tax, accounting, and transaction records are retained as necessary for financial, audit, collection, legal, and compliance purposes.
• Website analytics, advertising, and marketing engagement data are retained for periods set by applicable tools, providers, or internal policies.
• General business correspondence is retained for operational recordkeeping, relationship management, dispute resolution, and compliance purposes.

Information that is no longer needed is securely deleted, deidentified, or aggregated in accordance with applicable law and RFM’s record retention practices.

SECURITY

RFM maintains reasonable administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of personal information. These safeguards may include access controls, authentication measures, network and infrastructure protections, vendor data-security obligations, internal data handling policies, employee training, and physical safeguards for facilities and systems containing personal information.

No system or method of transmission can guarantee absolute security. If a data security incident affects personal information, RFM will investigate the incident, take appropriate steps to address the incident, and provide legally required notifications

YOUR PRIVACY RIGHTS

Depending on your state of residence and subject to applicable law and legal exceptions, you may have rights regarding your personal information, including the right to:

• Request access to or a copy of personal information we maintain about you
• Request correction of inaccurate personal information
• Request deletion of personal information, subject to legal exceptions
• Request information about the categories of personal information we collect, use, disclose, sell, or share
• Opt out of the sale of personal information or sharing of personal information for cross-context behavioral advertising, where applicable
• Opt out of certain targeted advertising or profiling activities, where applicable
• Authorize an agent to submit privacy requests on your behalf, where permitted by law
• Appeal a denial of a privacy request, where applicable law provides an appeal right

To exercise your rights, you may contact us at:

Email: privacy@RFMacDonald.com
Phone: 1 (800) 922-3032
Mail: 25920 Eden Landing Road
Hayward, CA 94545

We will verify the identity and authority of the requester before responding to a privacy request. RFM does not discriminate or retaliate against individuals for exercising privacy rights.

NOTICE FOR CALIFORNIA RESIDENTS

This section supplements this Notice for residents of California and is intended to satisfy applicable notice requirements under the CCPA.

Categories of Personal Information Collected

In the preceding twelve (12) months, RFM has collected the following categories of personal information in the business-facing contexts covered by this Notice:

• Identifiers, such as name, alias, postal address, unique personal identifier, online identifier, IP address, email address, account name, and similar identifiers
• California customer records information, such as name, signature, address, telephone number, financial information, and similar records maintained in a business or customer context
• Commercial information, such as records of products or services purchased, obtained, considered, or used, and other purchasing or consuming histories or tendencies in a business context
• Internet or other electronic network activity information, such as browsing history, search history, and information regarding interactions with our website, applications, or advertisements

RFM does not seek to collect sensitive personal information in the business-facing contexts covered by this Notice.

Sources of Personal Information

RFM collects personal information from business contacts and representatives, customer and vendor communications, account and credit documentation, transaction records, service providers and vendors, public sources, and automatically through website, analytics, advertising, and similar technologies.

Business and Commercial Purposes

RFM uses personal information for the business and commercial purposes described in this Notice, including managing customer and vendor relationships, providing products and services, processing transactions and credit applications, maintaining business records, conducting analytics, supporting B2B marketing, improving website functionality, protecting RFM and others, and complying with legal obligations.

Disclosure of Personal Information

In the preceding twelve (12) months, RFM has disclosed the categories of personal information described above to service providers, contractors, vendors, professional advisors, payment and financial service providers, logistics and service providers, marketing and analytics providers, legal authorities, and other recipients described in this Notice for business purposes.
No Sale of Personal Information; Limited Sharing

RFM does not sell personal information for monetary value. Certain disclosures to analytics, advertising, or marketing technology providers may constitute “sharing” under the CCPA when those technologies are used for cross-context behavioral advertising. California residents may opt out of such sharing. A “Do Not Share My Personal Information” mechanism will be available where required by law.

California Privacy Rights

California residents may request:

• Access to personal information collected about them
• Information regarding categories of information collected or disclosed
• Deletion of personal information
• Correction of inaccurate information
• Opt-out of sharing
• Use of an authorized agent to submit requests

To submit a request, you may contact RFM using the methods listed under “Your Privacy Rights.” RFM will verify requests consistent with CCPA requirements and will not discriminate or retaliate against individuals for exercising their rights.

THIRD-PARTY WEBSITES AND TOOLS

RFM’s website may include links to third-party websites, platforms, tools, or services, including websites operated by manufacturers, service providers, or recruiting platforms. These third-party websites and tools operate independently from RFM and may use cookies or similar technologies in accordance with their own privacy notices and cookie practices. RFM is not responsible for the privacy or cookie practices of third-party websites or services that are not operated by RFM.

DO NOT TRACK

We do not currently respond to browser “Do Not Track” signals due to a lack of an established industry standard.

CHANGES TO THIS NOTICE

We may update this Notice periodically to reflect changes in our business practices, technologies, or legal requirements. We will post updated versions with a revised “Last Updated” date.

CONTACT US

R.F. MacDonald Co.
Attn: Bryan Walker
25920 Eden Landing Road
Hayward, CA 94545
Email: privacy@RFMacDonald.com
Phone: 1 (800) 922-3032

4937-0951-7496.3