Privacy Policy

NoahTech, Corp. (“NoahTech,” “we,” “us,” or “our”) is a clinical-stage neuroscience company developing novel regenerative and cognitive enhancement therapies. We are deeply committed to protecting the privacy and security of all personal information entrusted to us — whether from website visitors, clinical trial participants, healthcare providers, or business partners.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you:

• Visit our website www.noahtech.health
• Contact us via email, forms, or Calendly
• Express interest in or participate in our clinical trials
• Use any of our services

1. Information We Collect

1.1 Personal Information You Provide

• Contact details (name, email address, phone number)
• Professional information (title, institution, specialty)
• Correspondence and communication records
• Clinical trial screening data (age range, medical history, MoCA scores — only with explicit consent)

1.2 Automatically Collected Information

• IP address, browser type, operating system
• Pages visited, time spent, referring site
• Cookies and similar tracking technologies (Google Analytics 4 with anonymized IP)

1.3 Health Information (Clinical Trial Context Only)

During clinical trial eligibility screening or participation, we collect protected health information (PHI) under a separate IRB-approved Informed Consent Form and HIPAA Authorization. This includes:

• Medical and cognitive assessment results
• Genetic or biomarker data (if applicable)
• Adverse event reports

2. How We Use Your Information

Purpose	Legal Basis
Respond to inquiries and schedule consultations	Legitimate Interest / Consent
Evaluate clinical trial eligibility	Explicit Consent + IRB Approval
Conduct and manage clinical research	Regulatory Compliance (21 CFR Part 11, ICH-GCP)
Improve website functionality	Legitimate Interest
Comply with legal obligations	Legal Obligation

3. Data Sharing & Disclosure

We do not sell your personal information. We may share data with:

• Contract Research Organizations (CROs) under strict confidentiality agreements
• Institutional Review Boards (IRBs) / Ethics Committees
• Regulatory authorities (FDA, EMA, COFEPRIS, etc.)
• Cloud service providers (AWS, encrypted at rest & in transit)
• Legal counsel in the event of litigation or regulatory inquiry

4. International Data Transfers

Data may be transferred to and processed in the United States and other countries. We implement EU Standard Contractual Clauses (SCCs) and UK International Data Transfer Agreement where required.

5. Data Security

We maintain administrative, technical, and physical safeguards including:

• End-to-end TLS 1.3 encryption
• AES-256 encryption at rest
• Role-based access control and audit logging
• Regular penetration testing and vulnerability scans
• Employee training and confidentiality agreements

6. Data Retention

We retain personal data only as long as necessary:

• Website inquiries: 3 years
• Clinical trial records: 25 years post-study (per FDA/ICH requirements)
• Marketing opt-ins: Until withdrawal

7. Your Rights (GDPR, CCPA, etc.)

You have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion (“right to be forgotten”)
• Object to or restrict processing
• Data portability
• Withdraw consent at any time

Contact: privacy@noahtech.health

8. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect data from children.

9. Changes to This Policy

We may update this policy. Material changes will be notified via website notice or email.

10. Contact Information

Data Protection Officer
Email: privacy@noahtech.health
Noah Tech, Corp., 930 S 4th St Ste 209, Las Vegas, NV 89101, USA