Legal

Privacy Policy

Effective April 23, 2026 · Last updated April 23, 2026 · Version 1.0

Who we are
Information we collect
How we use it
When we share information
How we protect it
Retention & deletion
Your rights
Cookies & analytics
Children
Changes to this policy
Contact us

1. Who we are

This Privacy Policy describes how [Magnara Global Capital LLC] ("Magnara Global," "we," "our," or "us") collects, uses, stores, and protects information submitted through the capital underwriting portal at portal.magnaraglobal.com (the "Portal").

We are a capital advisory and SPV-structuring firm. We are not a direct lender or depository institution. We act as an intermediary between applicants and a network of licensed lending partners.

2. Information we collect

To underwrite and route applications, we collect the following categories of information directly from you:

Identity & contact

Legal name, date of birth, residential address, email, phone number
Social Security Number (SSN) for personal credit evaluation
Government-issued ID images when requested (driver's license, passport)

Business information

Legal business name, DBA, entity type, state of formation
Employer Identification Number (EIN)
Business address, time in business, industry classification
Ownership structure and beneficial-ownership disclosures

Financial information

Stated annual revenue, monthly deposits, existing debt obligations
Bank statements, tax returns, financial statements, and related uploads you provide
Requested facility amount, intended use of proceeds

Technical information

IP address, browser type, device identifiers, approximate geolocation
Timestamps and page-interaction metadata used for fraud prevention and audit logging

3. How we use it

We use the information you provide for the following purposes:

Underwriting. Assessing eligibility, tier-routing, and generating soft pre-approval estimates.
Lender matching. Preparing a lender-ready package and transmitting it to one or more of our licensed lending partners.
Identity and fraud verification. Validating that you are who you claim to be and that the information submitted is consistent with available records.
Communication. Emailing status updates, document requests, and funding decisions.
Legal and regulatory compliance. Meeting obligations under applicable federal and state law, responding to lawful requests, and supporting anti-money-laundering and know-your-customer programs.
Service improvement. Operating, maintaining, and improving the Portal's reliability and security.

We do not sell personal information. We do not use your SSN, EIN, bank statements, or tax returns for marketing, advertising, or model training.

We share information only with the following parties, and only to the extent necessary for the purposes above:

Licensed lending partners you are being matched with, so they can make a credit decision.
Service providers who support our operations under written confidentiality obligations: cloud hosting (Render, Hostinger), email delivery, and document processing.
Government authorities when required by subpoena, court order, or applicable law.
Successors in the event of a merger, acquisition, or sale of assets, subject to continued protection of this information.

We do not share information with advertising networks, data brokers, or unaffiliated marketers.

5. How we protect it

Technical safeguards Social Security Numbers and Employer Identification Numbers are encrypted at rest using AES-256-GCM field-level encryption with unique initialization vectors. All Portal traffic is transported over TLS 1.2+. Administrative access to applicant records is restricted to authenticated personnel, rate-limited, and recorded in an immutable audit log capturing actor, IP, user-agent, and timestamp for every read.

In addition to the above, we apply the principle of least privilege across our infrastructure, enforce strong password hashing (bcrypt) on administrator accounts, and operate routine backups of production data. No method of electronic transmission or storage is 100% secure; we continuously work to improve our safeguards but cannot guarantee absolute security.

6. Retention & deletion

We retain application data for as long as necessary to service your inquiry, comply with legal obligations (including financial-services recordkeeping requirements, generally up to seven (7) years), resolve disputes, and enforce our agreements. When data is no longer required, we securely delete or anonymize it.

You may request deletion of your application and supporting documents by emailing privacy@magnaraglobal.com. We will honor deletion requests to the extent permitted by law; records we are legally required to retain will be preserved in a restricted-access archive.

7. Your rights

Depending on your jurisdiction, you may have the right to (a) know what personal information we hold about you, (b) request correction of inaccurate information, (c) request deletion, (d) request portability of information you have provided, and (e) opt out of certain processing.

California residents (CCPA/CPRA)

California residents have the right to request disclosure of categories and specific pieces of personal information collected, sources, purposes, and recipients; to request deletion; and to not receive discriminatory treatment for exercising these rights. We do not sell personal information.

European residents (GDPR)

Where we process personal data of residents of the European Economic Area, our lawful bases are the performance of a contract, compliance with legal obligations, and our legitimate interest in operating an underwriting platform. You have the right to access, rectify, erase, restrict processing, object to processing, and data portability, and to lodge a complaint with a supervisory authority.

To exercise any right, contact privacy@magnaraglobal.com.

8. Cookies & analytics

The Portal uses only functional localStorage and session storage necessary to maintain your draft application, authentication state, and reference token. We do not use third-party advertising or cross-site tracking cookies on the Portal. Font assets are loaded from Google Fonts, which may receive your IP address as part of normal content delivery.

9. Children

The Portal is intended for use by applicants who are at least 18 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will promptly delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be reflected in an updated "Effective" date at the top of this page, and where appropriate, we will provide additional notice (such as via email). Continued use of the Portal after any change constitutes acceptance of the revised policy.

11. Contact us

For any privacy-related inquiry, including to exercise a right listed above:

Magnara Global — Privacy Office
Email: privacy@magnaraglobal.com
General: info@magnaraglobal.com
Mail: [Street Address], [City, State ZIP], United States