1. Introduction

This SMS Policy describes how ProfitOptics ("we," "our," "us") delivers SMS-based authentication messages through the custom applications we build for our business clients using our Solutions Accelerator. It explains the basis on which end users consent to receive these messages, what those messages contain, and our commitments regarding mobile information.

This policy supplements our Privacy Policy and applies specifically to authentication messages sent in connection with applications delivered through our Solutions Accelerator.

2. Scope and the Solutions Accelerator

The Solutions Accelerator is ProfitOptics's framework for rapidly delivering custom B2B workforce applications to our clients in distribution and manufacturing. SMS-based two-factor authentication is offered as a security feature within applications built using the Solutions Accelerator.

These applications are private internal tools used exclusively by employees of the client companies that engage ProfitOptics. They are not available to the general public and have no public-facing signup. Because the audience is closed and the applications are internal, the consent flow described below takes place inside the client's administrative onboarding process rather than on a public website.

3. How End Users Consent to Receive Messages

Consent to receive SMS authentication messages is established through a two-step process — first by the client company in writing, and then by an authorized administrator at the moment of employee enrollment.

Step 1 — Service agreement with the client. Each ProfitOptics client signs a Master Service Agreement ("MSA") authorizing the use of SMS-based two-factor authentication for their workforce. The agreement obligates the client to obtain consent from each employee before enrolling them in the application built for that client. The relevant clause provides, in substance:

"Client authorizes ProfitOptics to deliver SMS-based authentication messages, including one-time passcodes, to the mobile telephone numbers Client provides for its employees and authorized users. Client represents and warrants that, prior to providing any employee mobile telephone number to ProfitOptics, Client has obtained that employee's consent to receive such authentication messages as part of their employment, and that all numbers provided are work-issued or work-designated mobile numbers belonging to enrolled employees."

Step 2 — Administrator onboarding inside the application. An authorized administrator at the client company onboards each employee through the application's admin portal by entering the employee's work mobile number. At this step, a consent disclosure is shown to the administrator, confirming that the employee has consented to receive authentication SMS at the provided number as part of their employment. The administrator must affirmatively acknowledge the disclosure before the employee record is created.

The disclosure language shown to administrators reads, in substance:

"By adding this employee, I confirm that I am authorized to enroll them and that this employee has consented to receive SMS authentication codes (including one-time passcodes) at the mobile number above as part of their employment. I understand that messages are transactional only and that the employee may reply STOP at any time to opt out. Message and data rates may apply."

4. What We Send

Messages delivered through this system are strictly transactional. The only message types sent are:

• One-time passcodes (OTPs) generated in direct response to a user-initiated login attempt.
• Authentication codes for sensitive in-app actions, such as password resets and security setting changes.

No marketing, promotional, or informational content of any kind is delivered through this system. Messages are sent only in response to an action initiated by the end user; we do not send unsolicited messages.

5. Sample Messages

The following are representative of the content recipients may receive:

ProfitOptics: Your verification code is 123456. This code expires in 10 minutes. Do not share it with anyone. Reply STOP to opt out.

ProfitOptics: Use code 987654 to complete your sign-in. If you didn't request this, ignore this message. Msg&data rates may apply. Reply HELP for help, STOP to opt out.

6. Message Frequency, Opt-Out, and Rates

Message frequency is on-demand and tied entirely to the user's own login activity. Typical volume is approximately one to five messages per user per week, though the actual number varies with how often the employee accesses the application.

Recipients may reply STOP at any time to opt out of further authentication messages, and HELP to receive assistance. STOP and HELP keywords are handled automatically. Once a recipient opts out, they will not receive further authentication SMS unless they re-enroll through their company administrator.

Message and data rates may apply depending on the recipient's mobile carrier and plan. ProfitOptics does not charge recipients for SMS messages.

7. Privacy and Mobile Information

ProfitOptics treats mobile telephone numbers and SMS-related information as confidential business data belonging to our clients and their employees.

We do not share, sell, rent, or transfer mobile information or phone numbers to third parties or affiliates for marketing or promotional purposes. Phone numbers provided by client administrators are used solely to deliver authentication messages within the application built for that client, and are processed by the third-party telecommunications providers required to deliver those messages.

For the full statement of our data practices, see our Privacy Policy and visit our Trust Center.

8. Administrator Responsibilities

Administrators at client companies who enroll employees in applications delivered through our Solutions Accelerator are responsible for:

• Obtaining each employee's consent to receive SMS authentication messages prior to enrollment, consistent with their company's policies and the MSA.
• Providing only work-issued or work-designated mobile numbers belonging to the employee being enrolled.
• Promptly removing employees from the application when they leave the company or when their role no longer requires access.
• Forwarding employee opt-out, help, or support requests to ProfitOptics when appropriate.

9. Updates to This Policy

We may update this SMS Policy from time to time to reflect changes in our practices, applicable regulations, or carrier requirements. The latest version will always be available on this page, with the "Last Updated" date noted below.

Last Updated: April 2026

10. Contact Us

If you have questions about this SMS Policy or about messages you have received, contact us at:

Email: privacy@profitoptics.com

Mail: ProfitOptics, 6802 Paragon Place, Suite 201, Richmond, VA 23230

Employees who receive these messages should direct questions to their company administrator in the first instance.