VETLOOP, INC. Platform Terms and Conditions Effective Date: March 2026 | Version 1.1 These Platform Terms and Conditions (“Agreement”) set forth the terms and conditions under which VetLoop, Inc., including its subsidiaries and affiliates (“VetLoop”), will provide access to its proprietary veterinary referral management platform to the veterinary practice, organization, or authorized individual accessing the Software (“Customer”). This Agreement supplements any additional online terms acknowledged by Customer or any separate written agreement executed by the parties (“Order”). Customer cannot use the Software until Customer has carefully read and agreed to this Agreement by clicking “I Accept.” If Customer disagrees with the terms and conditions of this Agreement, Customer cannot use the Software. By accessing, loading, or otherwise using the Software, which may include related materials and documentation, or any portion thereof, Customer agrees to be bound by all of the terms of this Agreement, including the Business Associate Agreement (https://vet-loop.com/legal/baa), Data Processing Addendum (https://vet-loop.com/legal/data-processing-addendum), Privacy Policy (https://vet-loop.com/legal/privacy), and Data Retention Policy (https://vet-loop.com/retention-policy), each of which is incorporated by reference into this Agreement. For purposes of this Agreement, “Beta Period” refers to the period during which Customer participates in VetLoop’s structured operational Beta program, subject to the terms described in Section 2. 1. SUBSCRIPTION GRANT, RIGHT OF USE, AND SERVICES 1.1 Subscription Grant. Subject to all limitations and restrictions contained herein and any applicable Subscription Order, VetLoop grants Customer a subscription-based, software-as-a-service (SaaS), nonexclusive and nontransferable right to use the VetLoop platform as hosted by VetLoop (“Use”). The Software is owned and operated by VetLoop. The Software and its content (“Content”) and the VetLoop SaaS service (“Service”) may only be accessed in accordance with this Agreement. 1.2 VetLoop’s Role as Medical Record Custodian. Customer acknowledges and agrees that VetLoop functions as a system of record for veterinary referral transactions and associated clinical data. When a referral is created, case information transmitted, or discharge documentation exchanged through the VetLoop platform, VetLoop becomes a custodian of a required component of the veterinary medical record under applicable state veterinary practice acts. VetLoop’s obligations as a medical record custodian, including data retention requirements, survive the termination or expiration of this Agreement as described in Section 10. 1.3 Customer Account & User Access. The designated practice representative (“Practice Champion”) is responsible for creating the Customer’s practice account, registering authorized team members, and accepting this Agreement on behalf of the Customer’s practice. The Practice Champion represents and warrants that they are authorized to bind the Customer to this Agreement. Customer and its users may be verified prior to gaining access to Customer account(s). Each user of the Software must have a separate and unique login. Users may not share, loan, or transfer any username or password, or otherwise give access to a login in a manner designed to evade this prohibition. A single user login account with a generic email address and/or generic name may be terminated at VetLoop’s sole discretion. 1.4 Protected Health Information. Customer agrees that it is authorized to view and transmit Protected Health Information (“PHI”) and veterinary clinical data through the Software. Customer is responsible for ensuring that all users accessing the Software are authorized to view PHI within the scope of their professional duties. While HIPAA does not directly govern veterinary data, VetLoop implements HIPAA-equivalent technical safeguards as a best practice and expects Customer to handle all clinical and patient data with equivalent care. 1.5 Additional Restrictions. In no event shall Customer disassemble, decompile, or reverse engineer the Software or Confidential Information or permit others to do so. Customer shall not modify any copyright notices, proprietary legends, trademark and service mark attributions, patent markings, or other indicia of ownership on the Content or other materials accessed through the Service. Customer shall not frame any portion of the Software or use data mining, robots, or similar data gathering and extraction tools. VetLoop reserves all rights not specifically granted herein. 2. BETA PROGRAM TERMS 2.1 Beta Participation. Customer may be invited to participate in VetLoop’s structured operational Beta program. The Beta is designed to validate that VetLoop can measurably improve referral operations by increasing referral conversion, improving capacity utilization, and closing the referral loop with greater consistency and visibility. The Beta is a structured operational program, not a product experiment. 2.2 Beta Duration. The Beta period begins on the date of first site go-live and continues for the duration specified in the applicable Beta schedule, onboarding communication, or as otherwise agreed between VetLoop and Customer. The Beta period will include a ramp period for training and adoption followed by a measurement window for operational performance evaluation. VetLoop reserves the right to extend or modify the Beta period by mutual agreement. 2.3 Beta Access — No Charge. During the Beta period, Customer shall have access to the Software at no charge. There are no platform subscription fees, implementation fees, or other charges associated with Beta participation. 2.4 Transition to Commercial Terms. At the conclusion of the Beta period, or at such time as VetLoop introduces commercial pricing, VetLoop will notify Customer in writing of the applicable pricing, plan details, and proposed effective date. No fees will be charged until Customer has received at least sixty (60) days’ advance written notice and has had the opportunity to review and accept the commercial terms. If Customer does not wish to continue under commercial terms, Customer may terminate this Agreement prior to the commencement of any fees without penalty. The specific commercial tier, pricing, and terms applicable to each Customer will be communicated separately and are not governed by this Agreement. 2.5 Beta Acknowledgement. By accepting this Agreement, Customer acknowledges that: • The Software is currently in Beta and may contain bugs, errors, or incomplete features; • VetLoop is actively pursuing SOC 2 Type 1 and Type 2 certifications but has not yet completed formal certification (see VetLoop’s Security Overview for current security posture and roadmap); • VetLoop implements HIPAA-equivalent technical safeguards including encryption in transit and at rest, role-based access controls, multi-factor authentication, audit logging, and multi-tenant data isolation; • The Software is provided “as is” during the Beta period, subject to the warranty disclaimers in Section 8; and • Customer’s participation in the Beta does not obligate Customer to purchase a commercial subscription. 2.6 Beta Metrics and Data Use. VetLoop will capture operational telemetry across the referral lifecycle (referral created, records requested/received, first contact, scheduling, treatment, discharge, and GP acknowledgement). This data will be used exclusively for operational performance improvement, ROI analysis, and aggregated executive-level reporting. Customer consents to VetLoop’s use of de-identified, aggregated Beta data for product improvement and benchmarking purposes. 3. PAYMENT 3.1 Beta Period. No fees are due during the Beta period as described in Section 2.3. 3.2 Post-Beta Fees. Following Customer’s acceptance of commercial terms as described in Section 2.4, Customer shall pay VetLoop the agreed-upon fees for the Software by recurring credit card, ACH, or invoice as agreed. If Customer has negotiated to pay fees by invoice, all fees shall be paid within thirty (30) days of receipt of invoice. Any late payment shall be subject to costs of collection (including reasonable legal fees) and shall bear interest at the rate of one and one-half percent (1.5%) per month or at the maximum rate permitted by law, whichever is less. 3.3 Non-Payment. VetLoop may disable Customer’s account(s) for non-payment of fees due under commercial terms. Customer acknowledges that if VetLoop disables access, Customer may be prevented from accessing the Services, account details, or any files or materials contained in the account until full payment has been made. Notwithstanding the foregoing, VetLoop will not delete or destroy any data classified as medical record data (as defined in VetLoop’s Data Retention Policy) due to non-payment; such data will be retained in accordance with applicable veterinary medical record retention requirements. 3.4 Taxes. Fees do not include any amount for taxes or levies. Customer shall reimburse VetLoop for all sales, use, VAT, excise, property, or other taxes which VetLoop is required to collect or remit, excluding VetLoop’s income or franchise taxes, or any taxes for which Customer provides a valid exemption certificate. 4. DATA OWNERSHIP, RETENTION, AND PRIVACY 4.1 Customer Data Ownership. Customer retains all right, title, and interest in Customer’s patient data, clinical records, pet data, owner personally identifiable information (“PII”), and practice data (“Customer Data”). VetLoop acts as a steward of Customer Data, not an owner. VetLoop holds Customer Data on behalf of Customer and the pet owners whose information is processed through the platform, under explicit consent, with the obligation to protect, port, and delete it on request — subject to applicable legal retention requirements. 4.2 Medical Record Data Retention. Because VetLoop functions as a custodian of medical record components (referral records, transmitted clinical data, discharge summaries, and related documentation), VetLoop is obligated to retain such data in accordance with applicable state veterinary medical record retention requirements. VetLoop applies a 7-year retention baseline from the date of last treatment, which meets or exceeds the retention requirements of all U.S. states and territories. This retention obligation survives the termination or expiration of this Agreement. 4.3 De-Identified and Aggregated Data. Customer authorizes VetLoop, to the extent permitted by applicable law, to use Customer Data in its de-identified, aggregated form to: (a) improve the Software, products, and services; (b) develop new features and products; (c) analyze, compare, and benchmark operational performance; and (d) produce industry insights and reporting. VetLoop will not use individually identifiable patient or owner data for any commercial purpose beyond serving that patient’s own care coordination without explicit consent from the data subject. 4.4 AI/ML and Analytical Use. VetLoop may use de-identified and aggregated Customer Data to train, develop, and improve artificial intelligence, machine learning, and analytical models for purposes including operational efficiency optimization, referral workflow improvement, process modeling, and platform enhancement. VetLoop will not use individually identifiable Customer Data — including patient records, owner PII, or clinical data from which a specific patient, pet, owner, or practice can be identified — to train AI or ML models without Customer’s express written consent. All de-identification will be performed in accordance with industry-standard methods such that re-identification of individuals is not reasonably possible. 4.5 Consumer Privacy Rights. VetLoop will support Customer in complying with applicable consumer privacy laws, including the Texas Data Privacy and Security Act (TDPSA), CCPA/CPRA, and equivalent state laws. Pet owners and other data subjects may exercise rights to access, correct, delete, port, and opt out of data processing through VetLoop’s documented intake channels. VetLoop will respond to authenticated consumer rights requests within 45 days, with a possible 45-day extension if reasonably necessary. Deletion requests are subject to the medical record retention hold described in Section 4.2. 4.6 Data Processing Addendum. Customer’s use of the Software is subject to VetLoop’s Data Processing Addendum (“DPA”), available at https://vet-loop.com/legal/data-processing-addendum, which is incorporated by reference into this Agreement. The DPA sets forth the controller/processor relationship, data processing purposes and scope, sub-processor obligations, and data breach notification procedures. 4.7 Data Portability and Export. Customer may request a complete export of all Customer Data at any time during the term of this Agreement. Upon termination, VetLoop will provide a data export within thirty (30) days of the effective termination date. Pet owners may separately request export of their individual records through VetLoop’s consumer rights process. 5. SECURITY 5.1 Security Controls. VetLoop maintains commercially reasonable administrative, technical, and physical safeguards designed to protect Customer Data. Current security controls include, without limitation: • Encryption in transit (TLS 1.3) and at rest (AES-256) • Role-based access controls (RBAC) with practice-level data isolation • Multi-factor authentication via Google OAuth • Web Application Firewall (WAF) and DDoS protection via Cloudflare • Comprehensive audit logging of authentication, referral actions, and data access events • Automated security testing in CI/CD pipeline including data isolation verification • API rate limiting on all endpoints 5.2 Security Certification Roadmap. VetLoop is currently pursuing the following certifications: SOC 2 Type 1 (target Q4 2026), SOC 2 Type 2 (target Q2 2027), and HIPAA-aligned security framework (ongoing). VetLoop will notify Customer of material changes to its security posture or certification status. Customer may review VetLoop’s current security documentation, including the Vendor Risk Assessment and Security Overview, at VetLoop’s Trust Center or upon request to security@vet-loop.com. 5.3 Breach Notification. In the event of a confirmed data breach affecting Customer Data, VetLoop will notify Customer without unreasonable delay and in no event later than 72 hours after confirmation of the breach. VetLoop will comply with all applicable breach notification requirements, including the Texas Identity Theft Enforcement and Protection Act (ITEPA), and will cooperate with Customer in fulfilling Customer’s own notification obligations. 5.4 Insurance. VetLoop maintains Technology Errors and Omissions (Tech E&O) insurance and Cyber Liability insurance with coverage limits appropriate for VetLoop’s stage and risk profile. Certificates of insurance are available upon request. 6. CONFIDENTIALITY 6.1 Definition. “Confidential Information” includes all information marked as confidential or that a reasonable person would understand to be confidential, disclosed by either party before or after the Effective Date, whether tangible or intangible and in whatever form or medium provided, as well as any information generated by a party that contains, reflects, or is derived from such information. The Software and all related materials furnished by VetLoop are deemed VetLoop Confidential Information regardless of marking. 6.2 Exceptions. Confidentiality obligations shall not apply to information that: (a) is or becomes publicly available through no fault of the receiving party; (b) is independently developed without use of the disclosing party’s Confidential Information; (c) is rightfully obtained from a third party without confidentiality restriction; or (d) was already known to the receiving party without restriction. Neither party shall be liable for disclosure made in response to a valid court order or government agency request, provided prompt notice is given to the disclosing party. 6.3 Non-Disclosure. Each party agrees to keep strictly confidential all Confidential Information belonging to the other party and to restrict access to those employees or contractors who require access in the course of their duties and who are bound by confidentiality obligations no less restrictive than those in this Section. 6.4 HIPAA and Business Associate Agreement. VetLoop and Customer each agree to comply with their respective obligations in the Business Associate Agreement (“BAA”) located at https://vet-loop.com/legal/baa. The BAA is incorporated by reference into this Agreement and is accepted by Customer upon Customer’s acceptance of this Agreement. While HIPAA does not directly govern veterinary clinical data, VetLoop offers a BAA that applies HIPAA-equivalent safeguards to all data processed through the VetLoop platform, including Owner PII linked to health-related information and veterinary clinical records. In the event of a conflict between the BAA and this Agreement with respect to the treatment of PHI, the BAA shall control. 7. MAINTENANCE AND SUPPORT SERVICES 7.1 Maintenance. VetLoop shall use commercially reasonable efforts to provide corrections to reported problems that prevent the Software from conforming in material respects to its specifications. VetLoop shall use commercially reasonable efforts to begin working on a resolution within five (5) business days of written notice. A response is not a guarantee of a solution; however, VetLoop will keep Customer apprised of resolution progress. 7.2 Service Availability. VetLoop’s goal is to provide Software availability 24 hours per day, 7 days per week, except during scheduled maintenance windows. VetLoop shall use reasonable efforts to achieve 99% Software availability. VetLoop disclaims liability for interruptions caused by third-party infrastructure providers, internet service providers, or other causes beyond VetLoop’s reasonable control. 7.3 Beta Support. During the Beta period, VetLoop will provide: platform configuration and onboarding support, training materials and live training sessions, weekly adoption and performance monitoring, a designated support channel for issue intake and resolution, and participation in midpoint and final Beta review meetings. 8. WARRANTY 8.1 Authorized Representative. Customer and VetLoop each warrant that they have the right to enter into this Agreement and that the Agreement is accepted or executed by an authorized representative. VetLoop warrants that all Services performed under this Agreement shall be performed in a professional manner consistent with industry standards. 8.2 Disclaimer of Warranties. EXCEPT AS OTHERWISE STATED IN THIS AGREEMENT, THE SOFTWARE IS PROVIDED “AS IS” AND VETLOOP MAKES NO WARRANTIES, EXPRESS OR IMPLIED, INCLUDING EXPRESS OR IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT. DURING THE BETA PERIOD, CUSTOMER ACKNOWLEDGES THAT THE SOFTWARE MAY CONTAIN BUGS, ERRORS, OR INCOMPLETE FEATURES AND THAT VETLOOP DOES NOT GUARANTEE UNINTERRUPTED OR ERROR-FREE OPERATION. 9. LIMITATION OF LIABILITY 9.1 Liability Cap. IN NO EVENT SHALL VETLOOP BE LIABLE UNDER ANY THEORY OF LIABILITY, WHETHER IN AN EQUITABLE, LEGAL, OR COMMON LAW ACTION ARISING HEREUNDER FOR CONTRACT, STRICT LIABILITY, INDEMNITY, TORT (INCLUDING NEGLIGENCE), OR OTHERWISE, FOR DAMAGES WHICH, IN THE AGGREGATE, EXCEED THE GREATER OF (A) THE AMOUNT OF FEES PAID BY CUSTOMER IN THE TWELVE (12) MONTHS PRIOR TO THE CLAIM, OR (B) ONE THOUSAND DOLLARS ($1,000), AND NOTWITHSTANDING THE FAILURE OF ESSENTIAL PURPOSE OF ANY REMEDY. DURING ANY PERIOD IN WHICH NO FEES ARE DUE, THE LIABILITY CAP SHALL BE ONE THOUSAND DOLLARS ($1,000). 9.2 Disclaimer of Damages. IN NO EVENT SHALL VETLOOP BE LIABLE FOR ANY SPECIAL, INCIDENTAL, INDIRECT, EXEMPLARY, PUNITIVE, OR CONSEQUENTIAL DAMAGES OF ANY KIND AND HOWEVER CAUSED INCLUDING, BUT NOT LIMITED TO, BUSINESS INTERRUPTION OR LOSS OF PROFITS, BUSINESS OPPORTUNITIES, OR GOODWILL, EVEN IF NOTIFIED OF THE POSSIBILITY OF SUCH DAMAGE. 9.3 Exclusions. The limitations in this Section 9 shall not apply to: (a) VetLoop’s breach of its confidentiality obligations under Section 6; (b) VetLoop’s breach of its data security obligations under Section 5; or (c) either party’s willful misconduct or gross negligence. 10. TERM AND TERMINATION 10.1 Term. This Agreement is effective upon Customer’s acceptance (by clicking “I Accept” or by accessing the Software) and continues until terminated as provided herein. 10.2 Termination by VetLoop. VetLoop may terminate this Agreement: (a) if Customer fails to make any payments due under agreed commercial terms within fifteen (15) days of the due date; (b) on thirty (30) days’ written notice if Customer fails to perform any material obligation and such failure is not cured within the 30-day period; or (c) if Customer files for bankruptcy or insolvency. 10.3 Termination by Customer. Customer may terminate this Agreement at any time on thirty (30) days’ written notice to support@vet-loop.com. During the Beta period, no fees are due upon termination. Following acceptance of commercial terms, all fees incurred within the notice period remain due. 10.4 Effects of Termination — Data Export. Upon termination or expiration, VetLoop will provide Customer with a complete export of Customer Data within thirty (30) days of the effective termination date. Customer shall confirm receipt of the exported data in writing. 10.5 Effects of Termination — Medical Record Retention. Notwithstanding termination, VetLoop will continue to retain all data classified as medical record data (Tier 1 data under VetLoop’s Data Retention Policy) for the duration of the applicable retention period (7 years from date of last treatment). This obligation survives termination of this Agreement. Non-medical-record data (practice operational data, platform logs, and similar data) will be deleted within ninety (90) days of termination, unless a longer retention period is required by law. 10.6 Effects of Termination — Confidential Information. Upon termination, each party shall return or destroy all Confidential Information of the other party, except that VetLoop may retain Customer Data as required under its medical record retention obligations and any copies reasonably necessary for legal compliance. 11. CUSTOMER OBLIGATIONS 11.1 Accurate Information. Customer is responsible for ensuring that all patient, owner, and clinical data entered into the Software is accurate and complete. VetLoop is not responsible for clinical decisions made based on data entered by Customer or its users. 11.2 Authorized Submission of Records. When Customer submits a pet record, referral, or clinical data to VetLoop as part of a referral transaction, Customer represents that it has the right to share that information and that any required client/owner consent has been obtained. Customer’s accountability for the data it submits is part of VetLoop’s trust architecture. 11.3 Compliance With Laws. Customer agrees to comply with all applicable laws, regulations, and ordinances relating to its performance under this Agreement, including applicable state veterinary practice acts, the TDPSA, and HIPAA where applicable to Customer’s own operations, including account maintenance, configuration, operation, and user access security. 11.4 Facility Cooperation. To the extent required by VetLoop for onboarding, training, or support, Customer will make available such personnel, workflows, and business information as are reasonably required. VetLoop agrees to comply with Customer’s rules and regulations regarding safety, security, and conduct as provided to VetLoop in writing. 12. MISCELLANEOUS 12.1 Independent Contractor. VetLoop is an independent contractor. Nothing in this Agreement shall be deemed to make VetLoop an agent, employee, partner, or joint venturer of Customer. Neither party shall have authority to bind or obligate the other party. 12.2 Assignment. Customer may not assign this Agreement or transfer any subscription without VetLoop’s prior written consent. Any assignment in violation of this Section shall be null and void. 12.3 Force Majeure. VetLoop shall not be liable for any delay or failure to perform its obligations arising from causes beyond its reasonable control, including acts of God, natural disasters, pandemics, loss of utilities, or delays by Customer in providing required resources. 12.4 Notices. Any notice required under this Agreement shall be given in writing and shall be deemed effective upon delivery. Notices to VetLoop shall be sent to support@vet-loop.com or to VetLoop, Inc., [Address to be provided]. Notices to Customer shall be sent to the email address on file with VetLoop. 12.5 Publicity and Referenceability. VetLoop may include Customer’s name and logo on customer lists, including VetLoop’s website, with Customer’s prior written consent. Any case study or testimonial use of Customer’s name, data, or experience requires Customer’s express written approval and may be anonymized at Customer’s request. 12.6 Entire Agreement. This Agreement, the Business Associate Agreement (https://vet-loop.com/legal/baa), the Data Processing Addendum (https://vet-loop.com/legal/data-processing-addendum), the Privacy Policy (https://vet-loop.com/legal/privacy), and the Data Retention Policy (https://vet-loop.com/retention-policy) are hereby incorporated by reference and constitute the entire agreement between the parties regarding the subject matter hereof and supersede all proposals and prior discussions and writings between the parties with respect thereto. In the event Customer is signing on behalf of a third party, Customer represents and warrants that it has the authority as such third party’s agent to bind such third party to this Agreement and that all of Customer’s actions related to this Agreement will be within the scope of such agency relationship. 12.7 Modifications. VetLoop may update these Terms from time to time. Material changes will be communicated to Customer via email or in-platform notification at least thirty (30) days prior to the effective date. Continued use of the Software after the effective date of a modification constitutes acceptance of the updated Terms. If Customer does not agree to the updated Terms, Customer may terminate this Agreement as provided in Section 10.3. 12.8 Severability. Each provision of this Agreement is separately enforceable. If any provision is determined to be unenforceable, it shall be reformed to the minimum extent necessary for this Agreement to remain in effect. 12.9 No Waiver. No failure or delay in enforcing any right shall be deemed a waiver of any right or remedy. 12.10 Choice of Law. THIS AGREEMENT SHALL BE GOVERNED AND INTERPRETED BY THE LAWS OF THE STATE OF TEXAS WITHOUT REGARD TO CONFLICTS OF LAW PROVISIONS. ANY ACTION ARISING OUT OF THIS AGREEMENT SHALL BE BROUGHT IN THE STATE OR FEDERAL COURTS LOCATED IN THE STATE OF TEXAS. ACCEPTANCE By clicking “I Accept” or by accessing or using the VetLoop platform, the Practice Champion confirms that they have read and understood this Agreement, that they are authorized to bind the Customer to this Agreement, that Customer acknowledges VetLoop’s current security posture and certification roadmap as described herein and in VetLoop’s Security Overview, and that Customer agrees to be bound by all terms and conditions of this Agreement, including the incorporated Business Associate Agreement (https://vet-loop.com/legal/baa), Data Processing Addendum (https://vet-loop.com/legal/data-processing-addendum), Privacy Policy (https://vet-loop.com/legal/privacy), and Data Retention Policy (https://vet-loop.com/retention-policy). [ ☐ ] I Accept the VetLoop Platform Terms and Conditions This document is version 1.1, effective March 2026. Questions: legal@vet-loop.com | Security: security@vet-loop.com | Support: support@vet-loop.com