Investor Privacy Notice

Last Updated: April 2025

This investor privacy notice (this “Privacy Notice”) is being provided to you by Golden Gate Private Equity, Inc., and its affiliated management entities (collectively, “Golden Gate”) in connection with a (proposed) investment in one or more Golden Gate funds or separately managed accounts (together, “Investments”) and on behalf of those funds or accounts.

Golden Gate is committed to handling personal data about investors (and connected persons) responsibly and consistent with applicable data protection and privacy requirements. This Privacy Notice describes why and how Golden Gate and the relevant Investment vehicles, their respective affiliates, and the Golden Gate and Investment vehicle administrators, legal and other advisors and agents, (the “Authorized Entities”, “we”, “our”, or “us”) collect, use, and disclose personal data collected in connection with Investments, the care with which we treat that information, and how we use that information. For the purposes of this Privacy Notice, we refer to “personal data” and “personally identifiable information” interchangeably to mean any information which, directly or indirectly, identifies or is capable of identifying any natural person.

Please read this Privacy Notice carefully. Please note that this Privacy Notice is supplemented by the “Additional Region-Specific Disclosures” to the extent that the EEA-UK and Cayman Data Protection Legislation or CCPA (each as defined below) apply to our processing of your personal data.

Please contact us at GGCinfo@goldengatecap.com with any questions or concerns about this Privacy Notice.

Who This Affects

If you are a natural person, this will affect you directly. If you are a corporate investor (including, for these purposes, legal arrangements such as trusts or exempted limited partnerships) that provides us with personal data on individuals connected to you for any reason in relation to your Investment, the information in this Privacy Notice, and the Additional Regional-Specific Disclosures, as applicable, will be relevant for those individuals and you should transmit this document (and any updated versions you receive from us) to such individuals or otherwise advise them of its content. For simplicity, where we refer to “investors” (or “you” or “your”) in this Privacy Notice and the Additional Regional-Specific Disclosures, except where the context otherwise requires, we mean individual and corporate investors, or persons connected to them, whose personal data we are processing in connection with the relevant Investment.

How We Collect and Use Personal Data

Categories of personal data we collect: In connection with forming and operating our Investments and/or performing asset management services for our limited partners and clients, Authorized Entities may collect (including via third parties) and maintain the following categories of personal data about investors:

  • Contact information: name, address, email, telephone number, and other contact details;
  • Identification information: signature, date of birth, social security number, nationality, citizenship and location of residence, taxpayer identification number, driver’s license, passport, other government identification and numbers;
  • Background information: information revealed in know-your-customer (KYC) and anti- money laundering (AML) due diligence, investor accreditation and consents, PEP status, sanctions status, and related parties’ power of attorney;
  • Financial information: assets, income, net worth, amounts and types of investments, capital account balances, capital commitments, capital contributions, account data, other investment participation information, funds transfer information, beneficiaries, positions, percentages of fund, share or option numbers and values, vesting information, investment history, transaction information, tax information, and banking information; and
  • Technical information: electronic device and usage information about an investor’s use of any Authorized Entities’ website, data room and/or investor reporting portal (for example, from cookies and similar technology), registration information, and online account data.

Any Authorized Entity may, in certain circumstances, combine personal data it receives from an investor with other information that it collects from, or about such investor. This will include information collected in an online or offline context. In addition, personal data of investors could be processed and controlled irrespective of whether such investor is admitted as a limited partner in connection with an Investment.

Sources of personal data: The Authorized Entities collect and maintain this personal data from the following sources:

  • Documentation or forms you complete, such as subscription agreements, investor questionnaires, applications, or other forms (including, without limitation, any anti-money laundering, identification, and verification documentation);
  • Your telephone conversations (including voicemails) or written correspondence with us (including e-mails and other electronic correspondence);
  • Your transactions with us or other persons;
  • Third party service providers (g., background screening, investor placement, or public databases) who perform services on our behalf or verify or supplement our information;
  • Our website, data rooms and/or investor reporting portal (as applicable) and any information provided through online forms or captured via cookies (or similar technology); and
  • Public sources (g., publicly available and accessible directories and sources; bankruptcy registers; tax authorities, including those that are based outside the U.S., the UK, and the EEA if you are subject to tax in another jurisdiction; governmental and competent regulatory authorities to whom any Authorized Entity has regulatory obligations; credit agencies; and fraud prevention and detection agencies and organizations).

Purposes of processing personal data: The Authorized Entities process or disclose this personal data for the business or commercial purposes of:

  • Complying with legal or regulatory obligations, such as our obligations regarding KYC and AML, as well as for tax purposes;
  • Other legitimate business interests, such as:
    • for our everyday business purposes – such as to process your transactions, administer, maintain or service your account(s), communicate with you and other investors and your or their representatives, advisors, and/or agents (including in connection with the negotiation, preparation and signature of Investment-related agreement(s)), pay funds, manage records, respond to court orders and legal investigations, administer and provide services to you, including onboarding, marketing, research and due diligence, and perform other administrative, accounting, reporting, and other processes required to operate our business;
  • for our marketing purposes – to keep investors informed about our business generally, to offer our services to you, including offering opportunities to make investments other than in the relevant Investment, to improve and customize our services for you and to understand how our services are used;
  • for our risk mitigation purposes – to protect against fraud and security risks, including through background screening; and
  • to enable any actual or proposed assignee or transferee of the Investment to evaluate proposed transactions and to facilitate business asset transactions involving the relevant Investment.
  • Performing a contract with you or taking steps at your request before entering into a contract; and
  • Any other purpose that has been notified, or has been agreed to, in writing.

We may, in certain circumstances, combine personal data that we receive from an investor with other personal data that we collect about such investor. This will include personal data collected in an online or offline context.

In some cases, we rely on your consent for processing your personal data, but only in those cases where we specifically ask for your consent.

How We Disclose Personal Data

We may disclose any of the categories of your personal data set out in the “Categories of personal data we collect” section above as permitted or required by law or regulation and to affiliates and service providers, including to:

  • Our affiliates for purposes and uses that are consistent with this Privacy Notice;
  • Legal or government regulatory authorities as required in connection with legal or regulatory matters, including in connection with background screens, claims, disputes or litigation, tax matters, or if we determine disclosure is necessary to enforce our legal rights or contractual commitments;
  • Service providers who, on our behalf or for your benefit, provide services to Golden Gate for business purposes, which may include our accountants, auditors, bankers, prime brokers, insurers, lawyers, AML service providers, and other back-office service providers;
  • Employees, portfolio companies, consultants, and placement agents and service providers who have a reasonable need to know the information in connection with the conduct of Golden Gate’s business as an investment advisor; and
  • Third parties to which you request or authorize us to disclose your personal

We do not sell or disclose your personal data to unrelated third parties, and we have not sold your personal data in the preceding twelve (12) months. For clarity, we do not disclose any of your personal data, including your phone number or other contact information, to any unaffiliated third party for marketing purposes, unless you authorize us to do so.

Safeguards

We use appropriate organizational, technical, and administrative measures to protect personal data, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity of investors’ rights, including physical, electronic and procedural safeguards to protect personal data in their possession or under their control (such as pseudonymisation and encryption of personal data, imposing appropriate confidentiality obligations, ensuring the integrity and resiliency of systems, carrying out regular testing, etc.).

We retain personal data pursuant to our records retention program for as long as we determine is necessary, including, but not limited to, for the purposes set out in this Privacy Notice, to perform contractual obligations, or, where longer, as long as is required to comply with applicable legal or regulatory obligations, or as needed to resolve disputes or protect our legal rights. We maintain personal data of our former investors and clients and apply the same policies that apply to current investors and clients.

Further Information

Although most changes are likely to be minor, Golden Gate may change this Privacy Notice from time to time, and at Golden Gate’s sole discretion. Upon any substantive change to this Privacy Notice, Golden Gate will make an updated version of this Privacy Notice available to you. The examples contained within this Privacy Notice are illustrations only and are not intended to be exhaustive. This notice complies with the privacy provisions of Regulation S-P under the Gramm-Leach-Bliley Act and certain privacy provisions of other laws. To the extent there is any conflict between this Privacy Notice and the privacy requirements under the Gramm-Leach-Bliley Act or Regulation S-P (collectively, the “GLB Rights”), the GLB Rights shall apply to you, including as set forth in our additional privacy notices.

Contact Us

If you have any questions, comments, requests or concerns about this Privacy Notice or other privacy- related matters, please contact:

Golden Gate Capital
One Embarcadero Center, Suite 3900 San Francisco, CA 94111
+1 (415) 983-2700
GGCinfo@goldengatecap.com

Generally, we verify communications by matching information provided in or in connection with your communication to information contained in our records. Depending on the sensitivity of the communication and the varying levels of risk in responding to such communications (for example, the risk of responding to fraudulent or malicious communications), we may request further information or your investor portal access credentials, if applicable, in order to verify your communication.

Additional Region-Specific Disclosures

The following information supplements (and, in the case of conflict, takes precedence over) the information provided in the above Privacy Notice, and will apply if and to the extent that certain regional data protection and privacy laws apply to our processing of your personal data.

Privacy Notice Supplement: United Kingdom, European Union, European Economic Area, and Cayman Islands

This privacy notice supplement: United Kingdom, European Union, European Economic Area, and Cayman Islands (the “GDPR Privacy Notice”) incorporates, supplements (and, in the case of conflict, takes precedence over) the general Privacy Notice above if and to the extent that the EEA-UK and Cayman Data Protection Legislation (as defined below) applies to our processing of personal data in connection with offering, forming and operating Investments for investors.

For the purpose of this GDPR Privacy Notice, the “EEA-UK and Cayman Data Protection Legislation” means all applicable legislation and regulations relating to the processing or protection of personal data in force from time to time in the United Kingdom (“UK”), European Union (and its member states) (“EU”), and/or European Economic Area (and its member states) (“EEA”), including (without limitation) Regulation (EU) 2016/679 (the “EU GDPR”), the EU GDPR as it forms part of the laws of England and Wales, Scotland and Northern Ireland by virtue of section 3 of the European Union Withdrawal Act 2018 (the “UK GDPR”), the UK Data Protection Act 2018, , the Cayman Islands Data Protection Law, 2017 (the “DPL”), and any national implementing or successor legislation, and any amendment or re-enactment, of any of the foregoing. The terms “controller”, “processor”, “data subject”, “personal data” and “processing” in this GDPR Privacy Notice shall be interpreted in accordance with the applicable EEA-UK and Cayman Data Protection Legislation.

Additional Processing Information

One or more of the Authorized Entities are “controllers” of personal data collected in connection with the Investment. In simple terms, this means such Authorized Entities: (i) “control” the personal data that they or other Authorized Entities collect from potential investors or other sources; and (ii) make certain decisions on how to use and protect such personal data.

The Authorized Entities may process the personal data for the following purposes and in accordance with the following legal bases:

Purpose for processsing and Legal basis for processing

  • The performance of obligations under and/or in connection with the limited partnership agreement (and all applicable anti-money laundering, know-your-customer and other related laws and regulations), including in connection with assessing suitability of investors for the Investments. The processing is necessary:(i) pursuant to applicable legal obligations; and/or(ii) as a matter of contractual necessity.
  •  The administrative processes (and related communication) carried out between the Authorized Entities in preparing for the admission of investors to the Investments. The processing is necessary as a matter of contractual necessity.
  • Ongoing communication with investors (including in relation to the negotiation, preparation and execution of documentation) during the process of admitting investors to the Investments. The processing is necessary:(i) as a matter of contractual necessity; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests.
  • The ongoing administrative, accounting, reporting and other processes and communications required to operate the business of the Authorized Entities (including any website, data rooms and/or portals) in accordance with the limited partnership agreement and other applicable documentation between the parties. The processing is necessary:(i) pursuant to applicable legal obligations;(ii) as a matter of contractual necessity; and/or(iii) for the purposes of the Authorized Entities’ legitimate interests.
  • To administer, manage and set up investor account(s) to allow investors to purchase holdings of shares and/or other interests in the Investments. The processing is necessary:(i) as a matter of contractual necessity; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests.
  • To facilitate the execution, continuation or termination of the contractual relationship between investors and the relevant Authorized Entities. The processing is necessary:(i) as a matter of contractual necessity; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests.
  • To facilitate the transfer of funds, and administering and facilitating any other transaction, between investors and the relevant Authorized Entities. The processing is necessary:(i) as a matter of contractual necessity; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests.
  • To enable any actual or proposed assignee or transferee, participant or sub-participant of the Investment-related rights or obligations to evaluate proposed transactions.The processing is necessary:(i) as a matter of contractual necessity; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests.
  • To facilitate business asset and/or similar transactions involving any Authorized Entity and/or Authorized Entity-related vehicles.
    The processing is necessary for the purposes of the Authorized Entities’ legitimate interests.
  • Any Legal or regulatory requirement. The processing is neccessary:(i) pursuant to applicable legal obligations; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests
  • Keeping investors informed about the business of Golden Gate and its affiliates generally, including offering opportunities to make investments other than into the Investments.
    The processing is necessary for the purposes of the Authorized Entities’ legitimate interests.
  • Monitoring communications between investors and the Authorized Entities. The processing is necessary:(i) pursuant to applicable legal obligations; and/or(ii) for the purposes of the Authorized Entities’ legitimate interests; and/or(iv)where the data subject has given consent to the processing of their personal data for the specific purpose.
  • Any other purpose for which notice has been provided, or has been agreed to, in writing. The processing is necessary:(i) pursuant to applicable legal obligations; and/or(ii) as a matter of contractual necessity; and/or(iii) for the purposes of the Authorized Entities’ legitimate interests; and/or(iv)where the data subject has given consent to the processing of their personal data for the specific purpose.

A failure to provide the personal data requested to fulfil the purposes described in this GDPR Privacy Notice may result in the applicable Authorized Entities being unable to provide the services in connection with the relevant Investment-related agreement(s).

We monitor communications where the law requires us to do so. We also monitor communications, where required to do so, to comply with regulatory rules and practices and, where permitted to do so, to protect our business and the security of our systems.

International Data Transfers

Your personal data may be transferred to, stored, and processed in a country other than the one in which it was collected. We may transfer your personal data to a Non-Equivalent Country (as defined below) outside the UK, EEA and Cayman Islands, including to the United States, and when we do so, we rely on appropriate or suitable safeguards recognized under data protection laws, including:

  • Entering into international data transfer agreements (including, where relevant, incorporating the EU’s standard contractual clauses, UK international data transfer agreement and Cayman Islands’ standard contractual clauses) to legitimize such transfer under the applicable EEA-UK and Cayman Data Protection Legislation;
  • Obtaining your consent to transfer personal data to a Non-Equivalent Country after first informing you about the possible risks of such a transfer, as well as providing you with details about the transfer, including the identity of the receiver, the country to which the personal data will be transferred, the reason for making the restricted transfer and the type of personal data to be transferred;
  • When the transfer is necessary for the performance of a contract between you and Golden Gate, or if the transfer is necessary for the performance of a contract between Golden Gate and a third party, and the contract was entered into in your interest; and
  • When the transfer is necessary to establish, exercise or defend legal claims or to protect your vital

For the purposes of this GDPR Privacy Notice, “Non-Equivalent Country” means a country or territory other than: (1) in respect of the processing of personal data to which the EU GDPR applies, a member state of the EEA or a country or territory which has at the relevant time been decided by the European Commission to ensure an adequate level of protection for personal data; (2) in respect of the processing of personal data to which the UK GDPR applies, a third country or territory which has at the relevant time been decided or the Government of the United Kingdom to ensure an adequate level of protection for personal data; and (3) the Cayman Islands for transfers governed by the DPL.

Data Subject Rights

If our processing of your personal data is governed by the EEA-UK and Cayman Islands Data Protection Legislation, you will have certain data subject rights. These rights include the right to:

  • Obtain information about the processing of your personal data;
  • Access and receive a copy of your personal data;
  • Request rectification of your personal data;
  • Request erasure of your personal data;
  • Object to certain processing of your data by us, on grounds relating to your particular situation, when the processing is based on the legitimate interest basis in the circumstances described above, unless we can demonstrate compelling legitimate grounds for the processing, and object to the processing of your personal data for direct marketing (if applicable);
  • Exercise your right to data portability where this is technically feasible; and
  • Not be subject to automated decision-making.

Additionally, in the circumstances where you may have provided your consent to the collection, processing and transfer of your personal data for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. If you decline to provide or consent to our use of the data and we are relying on consent as the legal basis for its processing, there are circumstances in which we will not be able to provide you with services or take action on your behalf.

Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) you originally agreed to, unless we have another legitimate basis for doing so in law. If you wish to withdraw any consent given for processing, please contact us at GGCinfo@goldengatecap.com.

Please note that the right to erasure is not absolute and it may not always be possible to erase personal data on request, including where the personal data must be retained to comply with a legal or regulatory obligation. In addition, erasure of the personal data requested to fulfil the purposes described in the general Privacy Notice, may result in the inability to provide the services required pursuant to the Investment-related governing agreement(s).

You can exercise these rights by contacting us at GGCinfo@goldengatecap.com. We will review your requests and respond accordingly.

We will not take decisions producing legal effects concerning data subjects, or otherwise significantly affecting data subjects, based solely on automated processing of personal data, unless we have considered the proposed processing in a particular case and concluded in writing that it meets the applicable requirements under the EEA-UK and Cayman Data Protection Legislation.

In the event that you have a complaint that is not resolved by us to your satisfaction, you may refer the matter to your local data protection authority in the UK or EEA or, for purposes of the DPL, with the Ombudsman of the Cayman Islands.

Privacy Notice Supplement: California Consumer Privacy Act

California’s “Shine the Light” law permits California residents to annually request and obtain information free of charge about what personal information is disclosed to third parties for direct marketing purposes in the preceding calendar year. We do not distribute your personal information to outside parties without your consent for their direct marketing.

If you are a natural person California resident, as defined in Section 17014 of Title 18 of the California Code of Regulations, the following privacy notice (the “California Privacy Notice”) supplements the Privacy Notice and sets out your rights with respect to any personal data that we process subject to the California Consumer Privacy Act of 2018, as amended, and together with any implementing or successor legislation to the foregoing (the “CCPA”). Information required to be disclosed to California residents under the CCPA regarding the collection of their personal information that is not set forth in this California Privacy Notice is otherwise set forth above in the Privacy Notice. To the extent there is any conflict with the GLB Rights, the GLB Rights shall apply.

Categories of Personal Information We Collect

We collect or have collected within the last twelve (12) months some or all the following categories of personal information from individuals:

Personal information Categories and Examples

  • Identifiers: Name, contact details and address (including physical address, email address and Internet Protocol address), and other identification (including social security number, passport number and drivers’ license or state identification card number). Collected name, contact details and address (including physical address and email address), and other identification (including social security number).
  • Additional data subject to Cal. Civ. Code § 1798.80: Telephone number, signature, bank account number, other financial information (including accounts and transactions with other institutions and anti-money laundering information), and verification documentation and information regarding investors’ status under various laws and regulations (including social security number, tax status, income, and assets). Collected.
  • Protected classification characteristics under California or federal law: Date of birth, citizenship, and birthplace. Collected date of birth and citizenship.
  • Commercial information: Account data and other information contained in any document provided by investors to authorized service providers (whether directly or indirectly), risk tolerance, transaction history, investment experience and investment activity, information regarding a potential and/or actual investment in the applicable fund(s), including ownership percentage, capital investment, income and losses, source of funds used to make the investment in the applicable fund(s). Collected
  • Biometric information: Imagery of the iris, retina, fingerprint, face, hand, palm, vein patterns, and voice recordings or keystroke patterns or rhythms, gait patterns or rhythms, and sleep, health, or exercise data that contain identifying information. Not Collected
  • Internet or other similar network activity: Use of our website, fund data room and investor reporting portal (e.g., cookies, browsing history and/or search history), as well as information you provide to us when you correspond with us in relation to inquiries. Collected fund data room and investor reporting portal, as well as information you provide to us when you correspond with us in relation to inquiries.
  • Geolocation data: Physical location or movements. Not Collected
  • Sensory data: Audio, electronic, visual, thermal, olfactory, or similar information. Not Collected
  • Professional or employment-related information: Current or past job history or performance evaluations. Not Collected
  • Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)): Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. Not Collected
  • Inferences drawn from other personal information: Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. Not Collected
  • Sensitive Personal Information: Social security, driver’s license, state identification card, or passport numbers; account log-in, financial account, debit card, or credit card number in combination with any required security or access code, password, or credentials allowing access to an account; precise geolocation; racial or ethnic origin; religious or philosophical beliefs; union membership; genetic data; the contents of a consumer’s mail, email, and text messages unless you are the intended recipient of the communication; biometric information for the purpose of uniquely identifying a consumer; and personal information collected and analyzed concerning a consumer’s health, sex life, or sexual orientation. Collected social security numbers and driver’s licenses.

We do not collect or use sensitive personal information other than:

  • To perform services, or provide goods, as would reasonably be expected by an average consumer who requests those goods or services;
  • As reasonably necessary and proportionate to detect security incidents that compromise the availability, authenticity, integrity, and confidentiality of stored or transmitted personal information;
  • As reasonably necessary and proportionate to resist malicious, deceptive, fraudulent, or illegal actions directed at us and to prosecute those responsible for such actions;
  • As reasonably necessary and proportionate to ensure the physical safety of natural persons;
  • For short-term, transient use (but not in a manner that discloses such information to another third party or is used to build a profile of you or otherwise alter your experience outside of your current interaction with us);
  • To perform services on behalf of your business;
  • To verify or maintain the quality or safety of a service or to improve, upgrade, or enhance such service or device; and
  • To collect or process sensitive personal information where such collection or processing is not for the purpose of inferring characteristics about a consumer.

Purpose for Collecting Personal Information

We collect personal information for any of the business or commercial purposes set out in the “Purposes of processing personal data” section in the Privacy Notice above.

We collect personal information from the sources set forth in “Sources of personal data” in the Privacy Notice above. We retain the categories of personal information set forth above in the “Categories of Personal Information We Collect” section of this California Privacy Notice for only as long as is reasonably necessary for those purposes set forth in “Purposes of processing personal data” in the Privacy Notice above, except as may be required under applicable law, court order or government regulations.

 Disclosure of Information

We do not share for the purpose of cross-context behavioral advertising or sell (as such terms are defined in the CCPA) any of the personal information we collect about you to third parties. In the preceding twelve (12) months, we have not shared for the purpose of cross-context behavioral advertising or sold any of the personal information we collect about you to third parties. We do not disclose any personal information about you to anyone, except as permitted or required by law or regulation and to service providers.

Within the last twelve (12) months, we have disclosed personal information collected from you for a business purpose to the categories of third parties indicated in the chart below. We may disclose your information to other parties as required by law or regulation, or in response to regulatory inquiries.

Personal Information Category: Category of Third-Party Recipients

  • Identifiers:  Administrators, lenders, banks, auditors, law firms, governmental agencies or pursuant to legal process, self-regulatory organizations, consultants, and placement agents.
  • Additional data subject to Cal. Civ. Code § 1798.80: Administrators, lenders, banks, auditors, law firms, governmental agencies or pursuant to legal process, self-regulatory organizations, consultants, and placement agents.
  • Protected classification characteristics under California or federal law:  Administrators, lenders, banks, auditors, law firms, governmental agencies or pursuant to legal process, self-regulatory organizations, consultants, and placement agents.
  • Commercial information:  Administrators, lenders, banks, auditors, law firms, governmental agencies or pursuant to legal process, self-regulatory organizations, consultants, and placement agents.
  • Biometric information: None.
  • Internet or other similar network activity: Administrators, lenders, banks, auditors, law firms, governmental agencies or pursuant to legal process, self-regulatory organizations, consultants, and placement agents.
  • Geolocation data: none.
  • Sensory data: none.
  • Professional or employment-related information: None.
  • Non-public education information: None.
  • Inferences drawn from other personal information: None.

California residents have a right to:

  • Request that we disclose certain information related to our collection, use, and disclosure of personal data that we hold from the past twelve (12) month Such information includes:
  • the categories of personal information we collected about you;
  • the categories of sources from which the personal information is collected;
  • our business or commercial purpose for collecting such personal information;
  • categories of third parties to whom we disclose the personal information;
  • the specific pieces of personal information we have collected about you; and
  • whether we disclosed your personal information to a third party, and if so, the categories of personal information that each recipient obtained.
  • Request deletion of your personal data that we retain, subject to certain exceptions, including, but not limited to, to comply with U.S., state, local, and non-U.S. laws, rules, or We will notify you in writing if we cannot comply with a specific request and provide an explanation of the reasons; and
  • Request that we correct any inaccuracies in the personal information that we retain, subject to certain statutory exceptions, including, but not limited to, our compliance with U.S., state, local, and non-U.S. laws, rules, and regulations. We will notify you in writing if we cannot comply with a specific request and provide an explanation of the reasons.
  • We will not discriminate against you for exercising your rights under the CCPA, including by denying service, suggesting that you will receive, or charging, different rates for services or suggesting that you will receive, or providing, a different level or quality of service to you.

How to Exercise Your Rights

California residents can make requests for disclosure, correction, or deletion of their personal data, or make requests to view this California Privacy Notice in an alternate format or to exercise any other rights under the CCPA, by contacting us at +1 (415) 983-2700 or at GGCinfo@goldengatecap.com. If you would like to contact us by telephone without incurring telephone charges, please submit your request and telephone number by email at the GGCinfo@goldengatecap.com, and we will call you between 9 a.m. and 6 p.m. Pacific Time.

Our goal is to review your requests and respond to your requests accordingly within forty-five (45) days. We will notify you in writing if we are unable to complete review of your requests within forty-five (45) days. The rights described herein are not absolute and we reserve all our rights available to us at law in this regard. You will not have to pay a fee for the disclosure of your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for disclosure is manifestly unfounded or excessive. We will not provide disclosure of your personal data more than twice in any twelve (12) month period.

We will contact you to confirm receipt of your request under the CCPA and request any additional information necessary to verify your request. We verify requests by matching information provided in connection with your request to information contained in our records. Depending on the sensitivity of the request and the varying level of risk in responding to such requests (for example, the risk of responding to fraudulent or malicious requests, we may request your investor portal access credentials to verify your request.

You may designate an authorized agent to submit a request on your behalf, provided that you provide a signed agreement verifying such authorized agent’s authority to make requests on your behalf, and we may verify such authorized person’s identity using the procedures above. If we request you verify your request and we do not receive your response, we will pause processing your request until such verification is received.

*          *          *          *          *