PRIVACY POLICY & DATA STEWARDSHIP PROTOCOL
Montana Auto Wholesales LLC d/b/a Montana Auto Group
Effective Date: February 23, 2026
Standard: Institutional Grade (MTCDPA & NY SHIELD Act Compliant)

1. CORPORATE MISSION ON DATA INTEGRITY
At Montana Auto Group, we treat data privacy as a fundamental fiduciary duty. This policy establishes a gold standard for transparency and security, designed to protect the interests of our institutional partners, corporate clients, and financial backers. We do not merely manage data; we custody it under a "Zero-Trust" framework.

2. CORPORATE IDENTITY & OPERATIONAL HUBS
Montana Auto Group operates as a multi-jurisdictional wholesale entity:
- Corporate Headquarters (MT): 127 N Higgins Ave Ste 307D #2364, Missoula, MT 59802.
- Regional Operations (NY): 295 E 207th St, Bronx, NY 10467.
- Official Website: www.montanaautogroup.com
- Compliance Uplink: info@montanaautogroup.com | +1 (406) 306-0990

3. DATA MINIMIZATION & CLASSIFICATION
We collect only "Transaction-Critical" information required for wholesale execution and banking compliance (KYC/AML):
- Institutional Identifiers: EINs, corporate resolutions, and government credentials.
- Financial Telemetry: Non-public personal information (NPI) necessary for floor-plan financing and credit underwriting.
- Asset Intelligence: VIN-specific history and vehicle provenance.

4. DUAL-JURISDICTIONAL SECURITY FORTRESS
Our security infrastructure is fortified to meet the most rigorous standards of Montana and New York:
- NY SHIELD Act Alignment: Reasonable security protocols, encryption for data at rest and in transit, and access controls.
- Administrative Safeguards: MFA, internal security reviews, and least-privilege access.
- Human-in-the-Loop: We reject opaque algorithmic decision-making; significant financial or credit interactions involve qualified human oversight.

5. THE "NON-COMMERCIALIZATION" GUARANTEE
Montana Auto Group prohibits the sale, rental, or licensing of client data. We do not monetize metadata. Information sharing is strictly limited to:
- Licensed Financial Institutions: Solely for securing credit lines or executing asset transfers.
- Regulatory Authorities: Only when mandated by federal or state statutes.

6. INSTITUTIONAL RIGHTS & AUDITS
We grant partners control over their digital footprint:
- Right of Audit: Partners may request a summary of their data for internal risk management audits.
- Right to Erasure: Beyond statutory record-keeping mandates, we honor requests for permanent data destruction where permissible.
- Global Opt-Out: We honor Global Privacy Control (GPC) signals by default where applicable.

7. CONTINUITY OF PROTECTION
In the event of a corporate transition or merger, all data remains subject to these protections, ensuring continuity of institutional trust.

Contact: info@montanaautogroup.com | +1 (406) 306-0990