ID Asset Group, Inc. and ID Asset Advisory — Website Privacy Policy

Effective Date: June 2026

This Privacy Policy explains how ID Asset Group, Inc. (“IDAG”) and ID Asset Advisory (“IDAA,” a sole proprietorship operated by Imee Rose Tagaca Chellevold) collect, use, share, and protect personal information through the website www.idassetgroup.com and in the course of providing their respective services. It also describes your privacy rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (together, the “CCPA/CPRA”).

IDAG and IDAA are affiliated but separate businesses. IDAG sponsors and operates real estate and business assets and is not an investment adviser or broker-dealer. IDAA is a financial-planning and investment-advisory practice whose investment-adviser registration is pending with the California Department of Financial Protection and Innovation (CRD #342260). Where this Policy refers to “we,” “us,” or “our,” it means IDAG and IDAA together, except where a specific entity is named.

1. Scope

This Policy applies to: (a) visitors to our website; (b) individuals who submit our online forms, quizzes, or checklists; (c) prospective and current investors in IDAG-sponsored offerings; and (d) prospective and current financial-planning and advisory clients of IDAA. For IDAA advisory clients, this Policy supplements the privacy notice IDAA provides under Regulation S-P (the federal privacy rule for investment advisers).

2. Information We Collect

We collect personal information in three contexts:

A. When you use the website. When you visit the site or submit a form, quiz, or checklist (including our cyber-safety quiz and contact form), we collect the information you choose to provide — typically your name, email address, and phone number — and limited technical information your browser sends automatically (such as device and usage data through the website platform and any analytics).

B. When you engage IDAA for planning or advisory services. To provide financial-planning or investment-advisory services, IDAA may collect non-public personal information such as your financial goals, assets, income, net worth, investment objectives, risk tolerance, and account information, and identifying information needed to open accounts.

C. When you invest in an IDAG offering. If you pursue an IDAG-sponsored offering, IDAG (and its administrators) may collect the information required to verify your status as an accredited investor and to complete subscription, tax, and anti-money-laundering documentation, which can include your legal name, address, taxpayer identification number, and financial and accreditation documentation.

We collect only the information reasonably necessary for these purposes.

3. How We Use Your Information

We use personal information to: respond to your inquiries and send materials you request; provide financial-planning, advisory, and investor-relations services; evaluate suitability and verify accredited-investor status; open and administer accounts and process transactions; operate, maintain, and improve the website; send service and educational communications (from which you may unsubscribe); and comply with legal, tax, and regulatory obligations.

We do not use sensitive personal information for purposes other than those permitted by law and reasonably expected by you.

4. How We Share Your Information

We do not sell your personal information, and we do not share it for cross-context behavioral advertising. We share personal information only as follows:

•             Service providers that perform functions on our behalf (for example, website hosting, form and email providers, custodians, fund administrators, accountants, and attorneys), under contracts that require them to protect the information and use it only for the services they provide to us.

•             Between IDAG and IDAA, as affiliates, only to the extent necessary to facilitate a referral or a service you have requested, as disclosed in your advisory agreement and in the IDAG Referral Disclosure.

•             Government agencies and regulators, and other parties, when required by law, subpoena, or lawful process, or to protect our legal rights.

•             In a business transfer, if we reorganize or transfer assets, subject to this Policy.

5. Your California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have the right to:

•             Know / Access — request the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of third parties with whom we share it.

•             Delete — request deletion of personal information we collected, subject to legal exceptions (including records we must retain under securities, tax, and other laws).

•             Correct — request correction of inaccurate personal information.

•             Opt out of sale or sharing — we do not sell or share personal information, so no opt-out is necessary; this Policy serves as notice of that practice.

•             Limit use of sensitive personal information — we use sensitive personal information only as permitted by law and as needed to provide the services you request.

•             Non-discrimination — we will not discriminate against you for exercising any of these rights.

How to exercise your rights. Email connect@idassetgroup.com or call 424-274-1611. We will verify your request (and may ask for information to confirm your identity) and respond within the timeframes required by law (generally 45 days, extendable once). An authorized agent may submit a request on your behalf with proof of authorization.

Note on financial information. Certain personal information that IDAA or IDAG collects, processes, or discloses in connection with financial services is governed by the federal Gramm-Leach-Bliley Act (GLBA) and Regulation S-P and is exempt from some CCPA/CPRA provisions. Where an exemption applies, we still handle that information under GLBA, Regulation S-P, and our applicable privacy notices.

6. How We Protect Your Information

We restrict access to personal information to those who need it to provide services to you, and we maintain physical, electronic, and procedural safeguards intended to comply with applicable standards. These include encryption of sensitive data in transit and at rest, multi-factor authentication for systems containing personal information, secure cloud storage with regular backups, and periodic security reviews. No method of electronic storage or transmission is completely secure, and we cannot guarantee absolute security.

7. Data-Breach Notification

If we become aware of a breach affecting your personal information, we will notify you in accordance with applicable California law (Cal. Civ. Code §1798.82) and take reasonable steps to mitigate the impact.

8. Data Retention

We retain personal information for as long as necessary to provide services and to comply with record-retention requirements under applicable federal and state laws (for advisory records, generally at least five years after the end of the relationship). After the applicable period, we destroy or de-identify the information using reasonable methods.

9. Your Responsibilities

You are responsible for safeguarding your own login credentials and devices, notifying us promptly of any suspected compromise, keeping your contact information accurate, and reviewing statements and communications from your custodian. Email is not a fully secure channel; please do not send confidential information by unsecured email.

10. Electronic Communications

By submitting a form or entering into an agreement with us, you consent to receive communications electronically (such as by email or secure portal). You may withdraw consent for non-required communications at any time by contacting us or using the unsubscribe link in our emails; required regulatory or account communications may then be sent by mail, which can cause delays.

11. Third-Party Links

Our website and communications may link to third-party websites and services (for example, our cyber-safety quiz provider and document-hosting providers). We are not responsible for the privacy practices of those third parties. Please review their policies before providing personal information.

12. Children’s Privacy

The website and our services are intended for adults and are not directed to children under 16. We do not knowingly collect personal information from children under 16.

13. Changes to This Policy

We may update this Policy from time to time. We will post the revised Policy with a new effective date and, where required, provide additional notice.

14. Contact Us

ID Asset Group, Inc. / ID Asset Advisory 19528 Ventura Blvd, Ste 108, Tarzana, CA 91356 Phone: 424-274-1611 · Email: connect@idassetgroup.com