Privacy Policy

Future Pipe Industries Group Limited Privacy Policy

1. Introduction

1.1 At Future Pipe Industries Group (FPIG), we respect your privacy and value the trust you place in us. As a

global provider of advanced composite piping solutions, we are committed to safeguarding your personal

information and ensuring transparency in how we handle it.

1.2 Future Pipe Industries Group (FPIG) is committed to ensuring that its data handling practices comply with all

applicable data protection and privacy laws in the jurisdictions where it operates. This Privacy Policy has been

developed to align with globally recognized frameworks, including the European Union’s General Data Protection

Regulation (GDPR), the California Consumer Privacy Act and its amendments (CCPA/CPRA), the United Arab

Emirates Federal Decree Law No. 45 of 2021 on the Protection of Personal Data, and the Dubai International

Financial Centre (DIFC) Data Protection Law No. 5 of 2020. In addition, FPIG adheres to other local and

international regulatory obligations where relevant. Where multiple laws may apply, FPIG seeks to implement the

highest applicable standard to ensure consistency, uphold individual rights, and promote responsible data

stewardship across all regions in which it operates.

2. FPIG Privacy Principles

FPIG’s Privacy Principles reflect our commitment to protecting your personal information. We value the trust

you place in us when sharing your data, and we strive to be transparent about what we collect, how we use it, and

with whom it is shared. We are committed to addressing any concerns you may have and take reasonable steps to

secure your personal information and protect it from misuse.

3. Scope

3.1 This Privacy Policy describes how FPIG and its affiliates collect, use, share, and protect personal information

in connection with our websites, applications, platforms, and any offline interactions (such as phone, email, or in –

person engagements) that reference this Privacy Policy. This Policy does not constitute a contract.

3.2 “Personal Information” means any information that identifies or relates to an individual, directly or indirectly.

This does not include aggregated or anonymized data that cannot reasonably be linked to an individual.

4. Types of Personal Information We Collect and How We Use It

4.1 FPIG collects various categories of personal information to support its business operations, fulfill contractual

obligations, ensure compliance, and enhance service delivery. The table below outlines the types of personal

information we collect, typical use cases, and the categories of recipients with whom this information may be

shared for legitimate business purposes .

4.2 FPIG collects a range of personal information categories to support its operations and legal obligations.

These include identifiers such as name, email address, and phone number, which are used to communicate with

individuals, deliver services, process transactions, and ensure security and compliance. This information may be

shared with service providers, IT vendors, logistics partners, regulators, auditors, and FPIG affiliates.

4.2.1 We also collect business information like job title, company name, and transaction history to

facilitate customer engagement, business operations, and contract management. Such data may be

shared with service providers, legal advisors, and other FPIG entities.

4.2.2 Commercial data , including purchase history and inquiry records, is collected to enhance services,

manage relationships, and support procurement activities, with relevant data shared with sales teams,

operations, and ERP/CRM vendors .

4.2.3 To support platform functionality and security, internet/network data such as IP addresses, browser

types, and access logs is collected and may be provided to IT service providers and cybersecurity

vendors for fraud prevention and IT support.

4.2.4 FPIG may also collect geolocation data , typically based on IP addresses, for regional service

customization, security, and internal analytics. This may be shared with hosting and analytics

providers.

4.2.5 In the context of customer service, sensory data , including call or meeting recordings, may be

collected for quality assurance and compliance purposes and shared with authorized service partners

or regulatory authorities as necessary.

4.2.6 We may derive inferences from interactions (such as user preferences) to tailor experiences and

improve our services. This information is handled internally or with selected service partners for

analytics and personalization.

4.2.7 Lastly, FPIG may collect sensitive personal information , such as account credentials or health

declarations (e.g., for site access). This data is used for authentication, to meet safety requirements,

or for contractual necessity, and is shared only with relevant internal departments, security vendors,

or compliance bodies.

4.2 Types of Sensitive Personal Information (Employees Only) : FPIG may collect and process certain categories

of Sensitive Personal Information (SPI) about its employees in accordance with applicable labor, data protection,

and occupational health and safety laws. We will process such information only for legitimate business purposes, as

required by law, or with your explicit consent where necessary.

4.2.1 Account Credentials : We collect system usernames, passwords, and access tokens to authenticate access to

systems, manage user authorization, and support IT and physical security. This data may be shared with internal IT

teams, cybersecurity vendors, and internal audit or compliance departments.

4.2.2 Health -Related Informatio n: This includes medical certificates, health declarations, disability status, and

occupational health records. It is processed to comply with labor laws, support workplace safety, manage sick leave

and health benefits, and conduct return -to-work assessments. It may be shared with HR teams, occupational health

providers, insurers, legal departments, and relevant regulators.

4.2.3 Biometric Data : Where implemented, biometric data such as facial recognition or fingerprint scans may be

used for secure access control and time or attendance tracking. This data may be handled by IT security vendors,

HR system providers, internal security teams, and regulatory authorities (where required).

4.2.4 Demographic and Identity Information : We may collect data on race, ethnicity, religion, sexual orientation,

nationality, citizenship, or immigration status as required for compliance with labor and immigration laws, visa

processing, or diversity monitoring. It is shared with HR, legal teams, immigration authorities, and labor regulators

as applicable.

4.2.5 Precise Geolocation Data : In some cases, we may collect location data from badge swipes, IP logs, or GPS

tracking for mobile employees. This supports access logging, security, travel coordination, and incident response. It

may be shared with internal IT and security teams and HR where relevant.

4.2.6 Emergency Contact and Dependent Information : For emergency response and employee welfare, we may

collect contact details of dependents or emergency contacts. This information is accessible to HR, emergency

officers, and medical support personnel as needed.

4.2.7 Special Note: FPIG does not use or disclose employee sensitive personal information for any purposes that

are not legally required or necessary to fulfil employment obligations. We do not sell or share Sensitive Personal

Information. In the event of a corporate transaction (e.g., merger, acquisition, restructuring), Sensitive Personal

Information may be processed as part of required legal due diligence or continuity of employee obligations, always

in accordance with applicable law.

5. Sources of Information

We collect personal information through various channels, depending on how you interact with FPIG, whether as an

employee, customer, supplier, or visitor. The categories of personal information listed in this Privacy Policy may be

obtained from the following sources:

5.1 Directly From You

We collect personal information directly from you when you voluntarily provide it to us. This may occur when you

complete onboarding or HR forms as an employee; enter into contracts or commercial discussions with us as a

customer, supplier, or partner; visit one of our facilities and complete visitor access or safety documentation;

communicate with us via email, phone, in -person meetings, or during site visits, events, or exhibitions; or submit

inquiries or feedback through our website or official company channels.

5.2 Automatically Through Use of Our Systems and Platforms :

We may automatically collect certain technical and usage -related data when you interact with our systems.

This can include access logs, IP addresses, device identifiers, and approximate location data (e.g., through

company VPN, ERP systems, or security badge logs); usage data from internal or external platforms such as

supplier portals, HRIS systems, learning management systems, or company -issued devices; as well as

information from time and attendance systems, CCTV footage, and site access control infrastructure.

5.3 From Our Affiliates and Group Companies

FPIG may receive personal information from other entities within the FPIG Group for internal reporting, HR

alignment, commercial cooperation, or shared service support. This may include employee information for regional

operations, or customer/vendor data exchanged between group companies to fulfill a contract or facilitate service

delivery.

5.4 From Third Parties

We may obtain personal information from third parties through legitimate sources, including recruitment agencies,

background screening providers, or labor supply companies for employee -related data; customers, contractors, or

project owners when they nominate individuals for access to our sites or systems; government or regulatory

authorities for purposes such as immigration, visa processing, or compliance -related disclosures; service providers

supporting our finance, IT, logistics, or security operations; and professional platforms such as LinkedIn, but only

when individuals engage with our official profiles or voluntarily submit professional information.

5.5 By Combining or Cross -Referencing Information

We may combine personal information collected from different sources to ensure accuracy, compliance, and

consistency. For example, HR records may be combined with time and attendance systems to ensure payroll

accuracy; supplier performance data may be linked with contact details for effective contract governance; visitor

information may be validated across our security systems and access logs; and legal or compliance documentation

may be cross -referenced with public or regulatory records. .

6. Tracking Technologies and Cookie Use

We may automatically collect certain usage and technical information when you interact with FPIG digital

platforms, systems, or communications. This includes interaction with our websites, internal portals, or emails sent

to you by FPIG.

6.1 Cookies and Similar Technologies

We use cookies, web beacons, pixels, and similar technologies to ensure system integrity, support security protocols,

and enhance user experience. These technologies collect information such as device identifiers, browser type, IP

address, network location, date and time of access, pages visited or files viewed, email engagement (e.g., whether an

FPIG email was opened or a link clicked), and activity across the platforms and devices you use. This data helps us

maintain and secure our systems, ensure authorized access, analyze performance, troubleshoot issues, monitor

usage, and support compliance with audit, IT governance, and internal control standards. Some of this information

may also be collected by third -party service providers that support our infrastructure, including platform monitoring,

cybersecurity services, and cloud hosting providers.

6.2 Pixels in Communications

Certain FPIG emails or alerts may contain tracking pixels (invisible markers) that allow us to confirm delivery and

measure engagement. This ensures the effectiveness of communications related to compliance, HR notifications,

platform access, and business operations.

6.3 Mobile Applications and Location -Based Services

Where FPIG platforms or mobile applications are used, you may manage device -level permissions to restrict access

to location data. If location access is disabled, we may still estimate your general region based on IP address or

network routing. Uninstalling the application will fully opt you out of its data collection

7. Promotional Emails and Text Message Communications

If you are subscribed to FPIG informational emails , such as newsletters, updates, or awareness messages , you may

opt out at any time using the unsubscribe link provided in each message. Please note that you will continue to

receive transactional or operational communications related to your role, system access, or account activity. To

manage your email or SMS preferences, you may also contact us at:

Future Pipe Industries Group

Attention: Legal & Compliance Department

Email: Legal@futurepipe.com

8. How You Can Control Cookies

You can manage how cookies operate through your browser or device settings. Most browsers allow you to block or

delete cookies, and you can also disable access to certain types of device data or notifications through your device’s

system settings. Please note that blocking cookies may limit functionality on some FPIG platforms, and your

preferences may need to be configured separately on each browser or device you use.

9. Your Privacy Rights

Future Pipe Industries Group (FPIG) recognizes your rights over your personal information and is committed to

respecting these rights in accordance with applicable data protection laws. You may exercise the following rights,

subject to legal limitations and verification of your identity:

9.1 Right to Know:

You have the right to request information regarding how FPIG collects, uses, and discloses your personal

information. This includes the categories of personal data collected, the sources from which it was collected, the

business or operational purposes for processing it, and the categories of recipients with whom such data has been

shared for legitimate purposes.

9.2 Right to Access and Data Portability:

You have the right to access specific personal information that FPIG holds about you. Where technically feasible,

you may request to receive this data in a structured, commonly used, and machine -readable format, and you may

also request its transfer to another entity.

9.3 Right to Correction:

If you believe that any personal information we maintain about you is inaccurate or outdated, you have the right to

request that we correct or update it without undue delay.

9.4 Right to Deletion:

You may request that we delete the personal information we hold about you. This is subject to certain exceptions,

such as where we are required to retain the data for legal, regulatory, or contractual purposes, or to establish or

defend legal claims.

9.5 Right to Restrict Use of Sensitive Personal Information:

If FPIG processes sensitive personal information (such as health or biometric data), you have the right to limit its

use or withdraw previously given consent, except where processing is necessary for legitimate business or legal

purposes.

9.6 Right to Withdraw Consent:

Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal of

consent will not affect the lawfulness of processing carried out prior to such withdrawal.

10. How to Exercise Your Privacy Choices

At Future Pipe Industries Group (FPIG), we respect your right to exercise control over your personal data.

Depending on your jurisdiction, and subject to verification, you may exercise the rights described in this Notice by

contacting our Legal & Compliance team as outlined below.

10.1 Submitting a Request

10.1.1 To submit a request regarding your personal data – including to access, correct, or delete your information, or

to limit the use of sensitive personal data – please contact us by email at: legal @futurepipe.com .

10.1.2 When submitting a request, please include your full name, email address, and any relevant reference or

identifier (e.g., employee number or inquiry ID). This will help us verify your identity and locate your information

within our systems. We may request additional details to verify your identity before processing your request. Any

information provided for this purpose will be used strictly to authenticate and fulfill your request and will not be

retained beyond what is necessary.

10.2 Requests on Behalf of Others

If you are submitting a request on behalf of another individual, you must provide written authorization from that

individual. We may also ask to verify the individual’s identity directly, and to confirm their consent for you to act on

their behalf.

10.3 Limiting Use of Sensitive Personal Information

Where applicable, you may also request that we limit our use of your sensitive personal information (e.g., health

data or national ID) to only what is strictly necessary. Please include this in your written request if applicable.

10.4 Withdrawing Consent

Where our processing is based on your consent, you may withdraw that consent at any time. This can also be done

by emailing legal@futurepipe.com and indicating which consent(s) you wish to revoke.

10.5 Right to Appeal

If your request is denied, you have the right to receive an explanation and to request a review of the decision.

Appeals may be submitted via the same contact channel noted above.

10.6 Non discrimination

FPIG will never deny employment, services, or engagement opportunities based on your exercise of privacy rights.

We are committed to fair and transparent handling of personal data.

11. Data Security

We implement appropriate technical and organizational safeguards to protect personal information against

unauthorized access, disclosure, loss, or misuse. However, no system can be 100% secure. You are responsible for

maintaining the confidentiality of your access credentials.

12. Data Storage and International Transfers

Your data may be stored and processed in any country where FPIG or its service providers operate. By using our

services, you consent to the transfer of your data to countries outside your country of residence, which may have

different data protection laws.

13. Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected, comply with

legal obligations, resolve disputes, and enforce agreements. The retention period varies based on legal, operational,

and contractual obligations.

14. Links to Third -Party Sites

Our websites and platforms may contain links to third -party sites or applications. FPIG is not responsible for the

privacy practices or content of these external platforms. We recommend reviewing their privacy policies separately.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through our

website or other appropriate means. Please review this Policy periodically for updates.