PRIVACY POLICY

This privacy policy (the “Privacy Policy”) outlines the types of personal information Symrise Inc. and its affiliated companies (collectively referred to herein as “we”, “us” or “our”) may receive or collect when you (“you” or “your”) access our https://vnllaextractco.com/ website (the “Site”), as well as some of the practices we use regarding your personal data and how we will treat it. This Policy applies to information obtained in connection with our operations at or through the Site, our social media presence, our messaging platforms, and other digital and omni-channel properties owned or controlled by us that link to this Policy (collectively, our “Sites”). Emails, social media, marketing campaigns and digital and online advertising are referred to collectively as, our “Internet Marketing Channels.”

INFORMATION COLLECTED
By using and interacting with the Site (including without limitation completing forms to request additional information, requesting to be contacted by one of our employees or agents or downloading reports or information) or receiving products or services from us, you agree to allow us to collect your name, email address and other personal information (the “Information”).

Cookies, Web Beacons and Automated Information. When you visit our Site or interact with us through your device, (we may collect “Automated Information” through Cookies, Web Beacons and other similar or related automated means (collectively, “Information Technologies”). “Cookies” are small text files sent to your device as you visit our Sites or utilize our Internet Marketing Channels and saved on your device via your browser or hard drive. “Web Beacons” (also known as pixel tags) are a form of technology that may be placed within our Site and our Internet Marketing Channels to monitor visits to certain pages within, interactions with, and the effectiveness of and our Site and our Internet Marketing Channels. Automated Information we collect via Information Technologies may include, without limitation, internet protocol (IP) address(es), operating system(s) and browser specifics of your device, device characteristics, location information, user ID(s), clickstream data, and specifics regarding your interactions with (i.e., the path you take through) our Site and our Internet Marketing Channels. Automated Information may also include your mobile device information (e.g., device model, operating system version, device date and time, unique device identifiers, mobile network information); how you use our Site (including mobile applications) and Internet Marketing Channels, search terms, pages you visit on our Site and application performance information. In addition, while Automated Information does not generally identify or relate to you as an individual, we may associate this type of information with you as an individual and may also determine your location from this information. In addition, others might seek to make such associations or determinations, and we cannot guarantee that parties with whom we may share such information might not succeed in re-identifying or associating non-personal information with particular individuals; we cannot be responsible for such parties’ use of such
{00066149.1}} information.

Social Media Access. We engage with current and prospective customers through multiple Internet Marketing Channels and social media services (e.g., Facebook, LinkedIn and Twitter). If you contact us on one of our Internet Marketing Channels, request customer service via social media or otherwise direct us to communicate with you via social media, we may contact you via direct message or use other social media tools to interact with you. In these instances, your interactions with us are governed by this Policy as well as the privacy policy of the social media platform you use. If you choose to access, link to, or log-in to our Sites or Internet Marketing Channels or otherwise communicate with us through a third-party social media service, you are granting us permission to access and use the information that you post or store on the applicable social media service in accordance with the privacy policy of that service and the privacy settings that are applicable to your account, and to store the user name and password you use to log-in to the applicable social media service. By accessing or logging into our Site or Internet Marketing Channels via a social media service, any information you provide may also become accessible to that service, subject to that service’s privacy policy. For additional information and more details on how you can manage the information provided to us by these social media services, please review the privacy settings applicable to your account with the applicable social media service. We do not control, and are not responsible for, the privacy practices of such services. Please consult the privacy policy of such services for additional information.

You acknowledge that transmission of Information via the internet or through cellular connections is not completely secure. Although we have procedures and security measures in place, we cannot guarantee the security of your data transmitted to us.

HOW WE STORE YOUR INFORMATION
By submitting your Information to us, you agree to the storage of the Information within our servers, computers and other electronic devices as well as in a 3rd party system or systems with which we utilize. We will take all steps reasonably necessary to ensure that your Information is treated securely and in accordance with this Privacy Policy. Once we receive your information, we will use procedures and security features to try to prevent unauthorized access to the Information.

HOW WE USE YOUR INFORMATION
By submitting your Information to us, you consent to our use of the Information collected about you in the following ways:
Transaction Purposes

We may use your Information to respond to your queries and requests, to personalize our services and to manage transactions such as payments for our services, etc. We will need to use your Information in order to carry out our obligations arising from any contracts entered into
{00066149.1}} between you and us.

We may disclose your Information to third parties who assist us in providing services to you. Such third parties may be engaged in, amongst other things, the processing of your request for services, payment details, etc. This could mean that the Information we collect from you may be transferred to and stored at a destination outside the United States of America (“USA”). In submitting your Information and requesting our services, you are consenting to your Information being used in the manner set out herein in countries which may not have data protection laws.

Services
We may use your Information in order to provide you with the services and support that you request from us. Your information may be aggregated with other users’ information on a purely non-identifiable basis so that we can understand how our services and products are used and make them better.

Marketing Communications and Your Choices Generally
We may use your Information in order to communicate with you about our products and services and those of specially selected third parties.

Email and Text Message Opt-Out. You may unsubscribe to future e-mail communications from us by clicking on the unsubscribe link provided in our e-mail communications. Regardless of your decision to opt-out of future e-mail communications, we may still contact you to respond to an inquiry, regarding transactions and for transactional purposes (e.g., sales confirmations and service/reminder notices). In addition, you may also opt out of receiving marketing communications from us at any time by informing us at the following email address: vnllaExtractCo@symrise.com.

Disabling Cookies. Based upon your interactions with our Site and elsewhere on the internet and your (and your device’s) interaction with our Internet Marketing Channels, we may personalize your experience via our Site and via our Internet Marketing Channels. However, you have choices relating to how your device interacts with our Site and our Internet Marketing Channels. You may choose to access our Site and our Internet Marketing Channels without accepting certain Information Technologies on your device(s), and you may opt-out or modify certain elements that are tailored specifically to you and served to you based upon your browsing history. If you choose to restrict Information Technologies, you may access our Site and Internet Marketing Channels, but you may NOT be able to take full advantage of certain features. You may also manage third party tracking by turning off cookies and changing your browser settings. Learn more at allaboutcookies.org.

DISCLOSURE OF YOUR INFORMATION

Sale and Transfer
We may disclose your Information to third parties (which third parties may be based in the USA
{00066149.1}} or elsewhere, including in various destinations outside the USA) in the event that we sell or buy business assets, in which case we may disclose your Information to the prospective seller or buyer of such business assets. We may also send or transfer your Information in connection with strategic partnerships, or other business relationships with third parties whom we shall require to abide by our Privacy Policy or have in place a privacy policy substantially similar to our Privacy Policy.

Legal Purposes
We may collect, use or disclose your Information if permitted by law or required to do so by law or where we believe such action is necessary in order to protect or defend us or other third parties against error, negligence, breach of contract, theft, fraud and other illegal or harmful activity and to comply with our audit and security requirements.

Service Providers and Sub-Contractors
In addition to disclosures identified in the purposes above, from time to time we may disclose your Information to our service providers and sub-contractors retained to perform functions on our behalf or to provide services to us, such as data processing; software development; website hosting and management; market research; information technology and office services; legal, accounting, insurance, audit and other professional service providers.

CHILDREN
Our Site is a “general audience” website and not directed toward children under the age of 13. We do not knowingly collect Information from children under the age of 13 without express parental consent.  If you are a parent or guardian and think we have unauthorized information about your child who is under the age of 13, please let us know by contacting us at vnllaExtractCo@symrise.com.

PERSONAL DATA RELATING TO THIRD PARTIES
Please ensure that any data you supply to us which relates to third parties is provided to us with their consent and knowledge of our proposed use of their data.

CHANGES TO PRIVACY POLICY
We may, from time to time, update and revise this Privacy Policy. Please periodically check this Privacy Policy for any updates or revisions. In the event we make a material change to how we use your Information that would materially adversely affect your rights, we will provide you advance notice including by posting the proposed change on the Sites at least thirty (30) days in advance of the effective date of the changes. We encourage you to keep the email and other addresses you provide to us current so that you may receive any additional notices we send to you regarding material changes to this Privacy Policy. If you do not agree to the changes and do not wish to be bound by such changes, you should stop using the Site. Otherwise, any material changes will take effect after thirty (30) days.
{00066149.1}}

CALIFORNIA PRIVACY RIGHTS
Notice to California Residents – Your California Privacy Rights: California Civil Code Section 1798.83 permits those users that are California residents to request that we not share your personal information with third parties for their direct marketing for personal, household or family use. In addition, you have the right to: a) receive information identifying any third-party company(ies) to whom we may have disclosed, within the past year, personal information pertaining to you and your family for that company’s direct marketing purposes; b) receive a description of the categories of personal information disclosed; and c) correct or delete your personal information. To make such a request or obtain such information, please email your request to vnllaExtractCo@symrise.com.

VIRGINIA PRIVACY RIGHTS
Notice to Virginia Residents – Your Virginia Privacy Rights: pursuant to the Virginia Consumer Data Protection Act, effective January 1, 2023, users that are Virginia residents have the right to request access, correct or delete your personal information. To make such a request or obtain such information, please email your request to vnllaExtractCo@symrise.com.

COLORADO PRIVACY RIGHTS
Notice to Colorado Residents – Your Colorado Privacy Rights: pursuant to the Colorado Privacy Act, effective July 1, 2023, users that are Colorado residents have the right to access, correct, delete, and obtain a copy of your personal information on a portable format. To make such a request or obtain such information, please email your request to vnllaExtractCo@symrise.com.

EU PRIVACY POLICY
For EU residents, please see https://www.symrise.com/privacy-policy/ regarding additional notices and privacy disclosures applicable to you.

Last Updated December 15, 2022.