Privacy Policy
Xenon Innovations, Inc.
Last Updated: May 2026

Xenon Innovations, Inc. (“Xenon Innovations,” “Xenon,” “Company,” “we,” “us,” or “our”) respects privacy and is committed to providing notice regarding how we may collect, use, disclose, retain, and otherwise process information. This Privacy Policy applies to information collected through our websites, online forms, communications, business development activities, recruiting activities, customer and vendor interactions, and other services, platforms, or activities that link to or reference this Privacy Policy.

By using our website, submitting information to us, communicating with us, or otherwise interacting with Xenon Innovations, you acknowledge that we may collect, use, disclose, retain, and process information as described in this Privacy Policy, subject to applicable law.

1. Scope of This Policy

This Privacy Policy applies to information we collect from or about website visitors, prospective customers, customers, vendors, suppliers, subcontractors, consultants, job applicants, business contacts, and other individuals who interact with Xenon Innovations.

This Privacy Policy does not apply to information processed on behalf of a government customer, prime contractor, subcontractor, or other third party where a separate contract, security requirement, data processing agreement, nondisclosure agreement, classified program requirement, controlled unclassified information requirement, or other written obligation governs the handling of that information.

2. Information We May Collect

We may collect any information that you choose to provide to us, information generated through your interaction with our website or systems, and information obtained from third-party sources. Depending on the context, this may include:

A. Contact and Identity Information

We may collect name, company name, job title, mailing address, email address, telephone number, professional affiliation, employer, business role, and similar identifying or contact information.

B. Business and Professional Information

We may collect information regarding your organization, business needs, procurement requirements, technical requirements, contracting interests, vendor or supplier qualifications, teaming interests, past performance, business capabilities, and other professional or commercial information.

C. Communications Information

We may collect the contents of emails, forms, messages, attachments, inquiries, requests for information, proposals, meeting notes, call records, correspondence, and other communications you send to us or that we generate in connection with our business activities.

D. Website, Device, and Usage Information

We may collect information about your device and interaction with our website, including IP address, browser type, operating system, device identifiers, pages viewed, referring pages, links clicked, date and time of access, approximate location derived from IP address, cookies, analytics data, and similar technical information.

E. Recruiting and Employment-Related Information

If you apply for employment or contract opportunities, we may collect resumes, employment history, education history, certifications, professional licenses, references, citizenship or work authorization information, security clearance information, veteran status information, self-identification information, compensation expectations, background check information, and other information relevant to employment, contracting, compliance, or security requirements.

F. Sensitive, Regulated, or Compliance-Related Information

Where necessary or appropriate, and subject to applicable law, we may collect information that may be considered sensitive or regulated, such as government identifiers, citizenship or immigration-related information, security clearance-related information, background screening information, export-control-related information, protected veteran status, disability-related information, demographic information collected for legally required reporting, or information needed for security, compliance, defense contracting, facility access, or personnel eligibility purposes.

G. Information From Third Parties

We may collect information from customers, prime contractors, subcontractors, vendors, service providers, government sources, public databases, professional networking platforms, background screening providers, references, recruiters, data providers, and other third-party sources.

3. How We May Use Information

We may use information for any lawful business purpose, including to:

1. Operate, maintain, improve, and secure our website, systems, facilities, and business operations.
2. Respond to inquiries, requests, proposals, and communications.
3. Develop, market, provide, evaluate, price, and improve our products, services, capabilities, and offerings.
4. Conduct business development, capture management, proposal development, teaming, subcontracting, customer relationship management, and opportunity tracking.
5. Communicate with customers, prospective customers, vendors, subcontractors, consultants, employees, applicants, and other business contacts.
6. Evaluate vendors, suppliers, subcontractors, consultants, applicants, and business partners.
7. Recruit, evaluate, hire, onboard, manage, and retain employees, consultants, and contractors.
8. Verify identity, qualifications, credentials, employment history, work authorization, eligibility, background, or security-related information.
9. Support government contracting, defense contracting, national security, export control, facility security, personnel security, classified work, controlled unclassified information, cybersecurity, and related compliance obligations.
10. Protect the rights, property, safety, security, and interests of Xenon Innovations, our personnel, our customers, our partners, and others.
11. Detect, prevent, investigate, or respond to fraud, security incidents, unauthorized access, misconduct, legal claims, or other potentially unlawful or harmful activity.
12. Conduct audits, compliance reviews, due diligence, accounting, tax, finance, insurance, legal, corporate governance, and recordkeeping activities.
13. Enforce contracts, policies, terms, and other legal rights.
14. Comply with applicable laws, regulations, contractual obligations, government requests, subpoenas, court orders, law enforcement requests, and other legal processes.
15. Support mergers, acquisitions, financing, restructuring, due diligence, corporate transactions, or transfers of business assets.
16. Create, use, sell, license, disclose, or otherwise process aggregated, anonymized, de-identified, or statistical information, to the extent permitted by law.
17. Use information for any other purpose disclosed at the time of collection, authorized by you, or permitted by applicable law.

4. How We May Disclose Information

We may disclose information to any person or entity when we determine that doing so is appropriate, necessary, useful, or legally permitted. This may include disclosure to:

A. Service Providers and Contractors

We may disclose information to service providers, consultants, contractors, vendors, hosting providers, IT providers, cybersecurity providers, cloud providers, analytics providers, professional advisors, background screening providers, recruiters, payroll providers, benefits providers, and other parties that support our operations.

B. Customers, Prime Contractors, Subcontractors, and Business Partners

We may disclose information to customers, prospective customers, prime contractors, subcontractors, teaming partners, joint venture partners, vendors, suppliers, and other business partners in connection with proposals, contracts, performance, staffing, procurement, business development, due diligence, and related activities.

C. Government, Regulatory, Security, and Law Enforcement Entities

We may disclose information to government agencies, contracting officers, security officers, law enforcement agencies, regulators, courts, auditors, inspectors, investigators, and other authorities when we believe disclosure is required, appropriate, or useful for compliance, security, legal, contractual, or national security purposes.

D. Professional Advisors

We may disclose information to attorneys, accountants, auditors, bankers, insurers, consultants, and other professional advisors.

E. Corporate Transaction Parties

We may disclose information in connection with a merger, acquisition, financing, sale, transfer, restructuring, bankruptcy, dissolution, due diligence review, or other corporate transaction involving all or part of our business, assets, or operations.

F. Affiliates and Related Entities

We may disclose information to current or future parent companies, subsidiaries, affiliates, successors, assigns, or entities under common ownership or control.

G. Other Parties With Consent or as Permitted by Law

We may disclose information to other parties when you consent, direct us to do so, when disclosure is reasonably necessary to fulfill the purpose for which the information was provided, or when otherwise permitted by law.

5. Cookies, Analytics, and Tracking Technologies

We may use cookies, pixels, tags, log files, analytics tools, and similar technologies to operate our website, improve user experience, analyze traffic, understand engagement, secure our systems, support marketing, and conduct business analytics.

You may be able to adjust your browser settings to refuse or remove cookies. Some website features may not function properly if cookies are disabled.

We may use third-party analytics or advertising-related tools that collect information about your use of our website and other online services over time. These third parties may use cookies and similar technologies according to their own policies.

6. Marketing and Communications

We may use contact information to send business, marketing, recruiting, proposal, vendor, customer, or informational communications. You may opt out of certain marketing emails by following the unsubscribe instructions in the communication or by contacting us. Even if you opt out of marketing communications, we may continue to send transactional, legal, security, contractual, employment-related, or administrative communications.

7. Data Retention

We may retain information for as long as we determine is reasonably necessary or appropriate for business, legal, operational, contractual, security, compliance, tax, audit, employment, dispute-resolution, recordkeeping, or evidentiary purposes.

Retention periods may vary depending on the type of information, the purpose for which it was collected, applicable legal or contractual requirements, government contracting obligations, security requirements, litigation holds, and our internal policies.

We may retain aggregated, anonymized, de-identified, backup, archival, or residual information for longer periods, subject to applicable law.

8. Data Security

We use administrative, technical, and physical safeguards that we deem appropriate under the circumstances to help protect information. However, no website, system, transmission, storage environment, or security measure is completely secure. We do not guarantee that information will be secure, error-free, or protected from unauthorized access, disclosure, loss, misuse, or alteration.

You are responsible for using appropriate safeguards when communicating with us, including avoiding the submission of sensitive, classified, export-controlled, proprietary, or regulated information through unsecured channels unless specifically authorized.

9. Defense Contracting, Classified, CUI, Export-Controlled, and Regulated Information

Xenon Innovations may operate in environments involving government contracts, defense contracts, controlled unclassified information, export-controlled information, cybersecurity requirements, facility security requirements, personnel security requirements, and other regulated information.

You should not submit classified information, controlled unclassified information, export-controlled technical data, proprietary customer information, government-sensitive information, or other regulated information through our public website or general contact forms unless we have expressly authorized that method of transmission in writing and appropriate safeguards are in place.

Where separate contractual, legal, regulatory, security, or program-specific requirements apply, those requirements may supplement or supersede this Privacy Policy.

10. Third-Party Websites and Services

Our website may link to third-party websites, platforms, services, forms, or resources. We are not responsible for the privacy, security, content, or practices of third parties. Your interactions with third parties are governed by their own terms and policies.

11. Children’s Privacy

Our website and services are not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we may delete it or take other appropriate action.

12. Your Choices and Rights

Depending on where you reside and the laws that apply, you may have certain rights regarding your personal information. These rights may include the right to request access to information, correction of information, deletion of information, portability of information, restriction of processing, objection to processing, or the ability to opt out of certain disclosures, sales, sharing, targeted advertising, or profiling.

These rights are not absolute. We may deny or limit requests where permitted by law, including where necessary to protect security, comply with legal or contractual obligations, retain business records, complete transactions, prevent fraud, protect rights or interests, comply with government contracting obligations, preserve evidence, or exercise legal rights.

To submit a privacy request, contact us using the information provided in the “Contact Us” section below. We may need to verify your identity before responding. We may also decline requests that are excessive, repetitive, unfounded, legally restricted, or otherwise not required by applicable law.

13. California Privacy Notice

This section applies only to California residents to the extent the California Consumer Privacy Act, as amended by the California Privacy Rights Act, applies to Xenon Innovations.

We may collect the categories of personal information described in this Privacy Policy, including identifiers, commercial information, internet or electronic network activity information, professional or employment-related information, education information, sensitive personal information, and other information you provide or that we collect in connection with our business.

We may use and disclose such information for the purposes described in this Privacy Policy. We may disclose information to service providers, contractors, customers, business partners, government entities, professional advisors, and other parties described above.

We do not knowingly sell personal information of individuals under 16 years of age. Depending on our activities, certain uses of cookies, analytics, advertising technologies, or business partner disclosures may be considered a “sale” or “sharing” under California law. If applicable, California residents may have the right to opt out of such sale or sharing.

California residents may also have rights to know, access, correct, delete, and obtain a copy of certain personal information, as well as the right not to be discriminated against for exercising applicable privacy rights.

To exercise California privacy rights, contact us using the information below.

14. Virginia Privacy Notice

This section applies only to Virginia residents to the extent the Virginia Consumer Data Protection Act applies to Xenon Innovations.

Virginia residents may have rights to confirm whether we process their personal data, access personal data, correct inaccuracies, delete personal data, obtain a copy of personal data, and opt out of certain processing for targeted advertising, sale of personal data, or profiling in furtherance of decisions that produce legal or similarly significant effects.

We may deny requests where permitted by law. If we deny a request, Virginia residents may have the right to appeal by contacting us using the information below and stating that they are submitting a privacy appeal.

15. International Users

Xenon Innovations is based in the United States. If you access our website or provide information from outside the United States, you understand that your information may be collected, transferred to, stored in, processed in, and disclosed from the United States and other jurisdictions. These jurisdictions may have privacy laws that differ from those in your location.

By interacting with us or submitting information, you acknowledge such transfer, storage, processing, and disclosure, subject to applicable law.

16. Changes to This Privacy Policy

We may update, revise, or replace this Privacy Policy at any time. The updated version will be posted on our website with an updated “Last Updated” date. Changes are effective when posted unless otherwise stated.

Your continued use of our website or interaction with Xenon Innovations after an updated Privacy Policy is posted means that you acknowledge the updated Privacy Policy, subject to applicable law.

Where required by law, we may provide additional notice or obtain consent for material changes.

17. Contact Us

If you have questions about this Privacy Policy or wish to submit a privacy request, you may contact us at:

Xenon Innovations, Inc.
Email: privacy@XenonInnovations.com

18. No Contract or Guarantee

This Privacy Policy is intended to provide notice of our privacy practices. It does not create contractual rights, employment rights, third-party beneficiary rights, or guarantees of any kind beyond those required by applicable law.