Privacy

• Identifiers such as your name, address, email address, account name, or other unique identifiers. 
• Personal or physical characteristics protected under federal or state law, such as gender, race, ethnicity, age, disability, AIDS/HIV status. 
• Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
• Professional or employment-related information, including job title, employment history.
• Financial and insurance information, including bank account information, enrollment in government-funded prescription benefit programs, insurance information, and redemption of co-pay assistance offers.
• Audio, electronic, visual, or similar information, including voice recordings or recordings of customer service or patient support calls made to us or our call center providers. 
• Information in relation to questions or complaints you have submitted in relation to any of our products. 
• Inferences drawn from any of the information to create a profile about individuals reflecting preferences, characteristics, psychological trends, preferences, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. 
• Information that may be considered “sensitive” under applicable law including:
  • Health-related data, including information related to your medical history, conditions, and treatment, and provided in connection with reported adverse events or product complaints related to our products; and 
  • Personal information revealing racial or ethnic origin.

• Identifiers, such as IP addresses, device identifiers, and other unique identifiers.
• Internet or other electronic network activity information, including, but not limited to, computer or mobile phone model, operating system version, mobile network information, browsing history, search history, and information regarding a consumer’s interaction with an internet website, application, or advertisement, including materials downloaded from our Services. 
• Geolocation data, such as device location.
• Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
• Inferences drawn from any of the information to create a profile about individuals reflecting preferences, characteristics, psychological trends, preferences, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. 

• A cookie is a small text file that is sent to or accessed from your web browser or your computer’s hard drive. A cookie typically contains the name of the domain (internet location) from which the cookie originated, the “lifetime” of the cookie (i.e., when it expires) and a randomly generated unique number or similar identifier. A cookie also may contain information about your computer, such as user settings, browsing history and activities conducted while using the Service. 
• A web beacon (also called a pixel tag or clear GIF) is a piece of computer code that enables us to monitor user activity and website traffic.

(To learn more about cookies and web beacons, visit www.allaboutcookies.org.)

• Provide the Services, including to personalize the Services, process any transactions you request, and provide access to certain functionalities and features of Services such as account creation.  
• Improve the Services, including research and analytics regarding use of the Services and to ask you about your experiences with us. 
• Communicate with you in order to fulfill your requests, respond to your comments and inquiries, inform you about our products and services, and inform you of policy changes. 
• Authenticate your identity. 
• Deliver advertising, including interest-based advertising on our websites and on other websites and applications and providing you with other information about products and services offered by us. 
• Communicate with shareholders on matters relating to regulatory filings, governance guidelines, sustainability, and similar topics.
• Support our clinical trials and research activities, including by providing you with information about clinical trial opportunities. 
• Investigate and report adverse events to regulators. 
• Manage our vendors, including due diligence, contract signing, compliance with regulations, screening, auditing, on-going monitoring, etc.
• Enable any due diligence and other appraisals or evaluations for any actual or proposed merger, acquisition, financing transaction or joint venture contemplated by us.
• Ensure network and information security, including monitoring authorized users’ access to our Services for the purpose of preventing cyber-attacks, unauthorized use of our systems and Services, prevention or detection of crime and protection of your personal information. 
• Defend and enforce our rights, including against legal claims that involve us. 
• Detect, investigate, and prevent activities that may violate our policies or be fraudulent or illegal.
• Comply with our legal, regulatory, operational, and fiscal obligations. 

• To our service providers who work on our behalf to help us provide and support our products and the Services. For example, we use service providers to provide us with customer relationship management services, tax and financial advice and services, auditing services, data hosting, information technology support, email hosting, marketing and analytics services, support for patient assistance programs, support in running clinical trials, and other services. We require these service providers to treat all information we provide as confidential and to use it only for providing the services for which they have been engaged.
• Within the Keenova family of affiliated companies to provide you products and services as described in this Privacy Notice.
• To third parties, such as media and marketing service providers, and data management and analytics service providers.
• To third parties, where disclosure is necessary in connection with other business purposes including, without limitation, patient care, service quality, business management and operation, risk assessment, security, fraud and crime prevention/detection, monitoring, research and analysis, marketing, customer purchasing preferences, and trends and dispute resolution.
• To a successor entity or purchaser if we are involved in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy, or other change of ownership or control by Keenova or its parent or affiliated companies (in each case, whether in whole or in part). The acquiring party or the merged entity may have different privacy practices and provide you with a new Privacy Notice.
• To government, regulatory, legal authorities, outside legal counsel, and other third parties (i) as required or permitted by law, including any requirements from government agencies and taxing authorities; (ii) if we determine that disclosure of specific information is necessary to comply with the request of a law enforcement or regulatory agency or other legal process; (iii) to protect the rights, privacy, property, interests, or safety of Keenova or our affiliated companies, customers, employees, or the general public; (iv) to pursue available remedies or limit damages; (v) to enforce Keenova’s agreements with you; and (vi) to respond to an emergency. 
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

Keenova does not rent, sell, or disclose, outside of a service provider relationship, text messaging opt-in lists or lists of mobile phone numbers.

• The right to request access to the personal information we hold about you. 
• The right to request that we correct any incorrect personal information we hold about you. 
• The right to request that we delete information we hold about you. 
• The right to request that we stop processing your personal information under certain circumstances. 

Last Updated: November 3, 2025

This EEA and UK Supplemental Privacy Notice (“EEA Notice”) supplements the Keenova Privacy Notice and provides additional information about Keenova Therapeutics plc, and their affiliates and subsidiaries processing of personal data of individuals in the European Economic Area (“EEA”), United Kingdom (“UK”), and Switzerland. The data controller for this processing is Keenova Therapeutics plc with a registered office at College Business & Technology Park, Cruiserath Road, Blanchardstown,Dublin 15 D15 TX2V (“Keenova,” “we,” “us,” “our”). 

This EEA Notice is intended to provide transparency regarding the personal data Keenova holds in relation to you and how we use that information as a data controller. Please read the following carefully to understand our processing of your personal data.

1.    SCOPE 
This EEA Notice applies to any information collected, maintained, stored, transmitted, retained, or otherwise used (collectively, “processed”) about individuals located in the EEA or UK when they interact with us and use our Services.  

Please note this EEA Notice does not apply to personal information we collect about employees, job applicants, independent contractors, or business contacts, including health care professionals. For disclosures applicable to individuals who interact with us in those contexts, please see our Job Applicant Privacy Notice, and Business Contacts Privacy Notice. 

2.    CHANGES TO THIS EEA NOTICE 
The Effective Date of this EEA Notice is set forth at the top of this notice. We reserve the right to change our EEA Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use personal data, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted here before the changes take effect. Your continued use of our Services after the Effective Date of the revised EEA Notice constitutes your acceptance of the revised EEA Notice. The revised EEA Notice replaces and supersedes all previous versions.

3.    WHAT IS PERSONAL DATA 
“Personal data” means any information relating to a living individual who can be identified directly from that data or indirectly in conjunction with other information. We collect the categories of personal data listed in Section 1, “Personal Information We Collect and How We Collect It” of the Keenova Privacy Notice. 

4.    SOURCES OF PERSONAL DATA
We collect personal data about consumers directly from consumers that they voluntarily provide, such as when a consumer contacts us via our Services, sends us an email, calls our call centers or otherwise interacts with us and through automated means, such as cookies and other tracking technologies, when consumers utilize the Services. Keenova may also collect personal data from our affiliated organizations, research partners, collaborators, and service providers and non-affiliated parties who you direct or authorize to share information with us, such as your health care providers, insurance companies, or pharmacies. We also sometimes collect information from publicly accessible sources such as government records, websites, social media, and other digital platforms.

5.    PURPOSE AND LEGAL BASIS FOR PROCESSING 
We have set out below, in a table format, the purposes for our processing of your personal data and the legal bases we rely on to process your personal data under the EU GDPR and UK GDPR. If you choose not to provide personal data, we may not be able to provide the Services to you or respond to your other requests. We do not use automated processing, including profiling, in furtherance of decisions that have legal or similarly significant effects.

6.    SENSITIVE CATEGORIES OF PERSONAL DATA 
Certain categories of your personal data are regarded as “sensitive.” The personal data that we collect that is regarded as sensitive includes information relating to your physical or mental health and ethnic or racial origin.  

We only process such sensitive personal data where (in addition to having a legal basis as set out under Section 5 above) it is necessary for the establishment, exercise, or defense of legal claims, where it is necessary for reasons of public interest in the area of public health (such as ensuring high standards of quality and safety of medicinal products), or where we have obtained your explicit consent to process such data or where we are required or allowed to do so under EU member state or UK data protection law, as applicable. Where processing is based on your consent, you have the right to withdraw that consent at any time.

7.    RECIPIENTS OF YOUR PERSONAL DATA 
We may disclose your personal data to the categories of recipients listed in Section 4, “Our Disclosures of Personal Information” of the Keenova Privacy Notice. We take all reasonable steps, as required by law, to ensure the safety, privacy, and integrity of such data and information and, where appropriate, enter into contracts with the recipients to protect the privacy and integrity of such data and any information supplied.

8.    TRANSFERS OF YOUR PERSONAL DATA OUTSIDE THE EEA AND UK
Due to the global nature of our business, the personal data that we collect from you may be transferred to, and stored at, a destination outside the jurisdiction where you are located for the purposes described above. It may also be processed by personnel operating outside the EEA/UK who work for us or for one of our suppliers who act on our behalf. Those countries may not provide an adequate level of protection in relation to processing your personal data. We will ensure appropriate safeguards are in place to protect the privacy and integrity of personal data transferred outside of the EEA/UK (e.g., by making use of standard contractual clauses). You can obtain information concerning such safeguards, including obtaining a copy of the standard contractual clauses, by emailing us at Privacy@mnk.com and Privacy@endo.com, where applicable.

9.    DATA RETENTION 
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, the amount, nature and sensitivity of the personal data are considered, together with the necessity and purposes for the processing (including whether such purposes can be achieved through other means) and the potential risk of harm from unauthorized use or disclosure of the personal data. In certain cases (e.g., in pending litigation matters or where the law requires us to) your personal data may need to be kept for longer periods of time. 

10.    YOUR RIGHTS 
Individuals located in the EEA and UK have the following rights to their personal data, subject to certain exceptions.

• Right of Access: you have the right to confirm what data is being processed, obtain information about the processing activities and to receive a copy of your personal data.
• Right to Rectification: you have the right to request rectification / correction of your personal data where it is inaccurate or incomplete.
• Right to Erasure: you have the right to request deletion of your personal data.
• Right to Restriction: you have the right to ask that we restrict or suspend the processing of your personal data in certain contexts. 
• Right to Data Portability: you have the right to request to receive your personal information in a structured, commonly-used, and machine-readable format and have the right to transmit that information to another data controller.
• Right to Object: you have the right to object to the processing of your personal data in certain contexts, including for any direct marketing purposes.
• Right to Withdraw Consent: to the extent our processing of your personal data is based on your consent, you have the right to withdraw your consent, at any time, without hindrance or cost, to prevent further processing. Please note that withdrawing your consent does not affect the lawfulness of our processing of your personal data based on such consent before the withdrawal.
• Right to Lodge a Complaint: you have the right to file a complaint concerning our processing of your personal information with the competent data protection supervisory authority in the relevant jurisdiction. A full list of supervisory authority contacts for EU countries is available at: https://www.edpb.europa.eu/about-edpb/about-edpb/members and information about the UK’s Information Commissioner’s Office is available at: https://ico.org.uk/ .

You can make such a request by sending an email to Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, email address, and relationship to Keenova (e.g., former employee, patient in a clinical trial), and type of request. We will respond to your request consistent with applicable law. 

11.    FURTHER INFORMATION 
If you require any further clarification regarding this EEA Notice, please contact us via email at Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. 

Last Updated: November 3, 2025

This U.S. State Supplemental Privacy Notice (“U.S. Notice”) supplements the Keenova Privacy Notice and provides additional information about Keenova’s processing of personal information about residents in states with comprehensive privacy legislation, including California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia (collectively, the “U.S. Privacy Laws”).

Some portions of this U.S. Notice only apply to consumers who reside in particular U.S. states. In those instances, we have indicated that such language applies only to those residents.

Please note this U.S. Notice does not apply to personal information we collect about employees, job applicants, independent contractors, or business contacts. For disclosures applicable to California residents with who we interact in those contexts, please see our Job Applicant Privacy Notice, and Business Contacts Privacy Notice. 

1. DEFINITIONS

• “Personal information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. Personal information includes “personal data” (or equivalent terms) as that term is defined by U.S. Privacy Laws.
• “Service Provider” means a service provider, vendor, contractor, or processor which collects, stores, or otherwise handles personal information for us and is bound by certain contractual obligations consistent with applicable laws to use your personal information only as directed by us.
• “Third Party” means a person or organization which is not a consumer, Service Provider, or an entity owned or controlled by us.

Other terms used herein that are defined terms under U.S. Privacy Laws shall have the meanings afforded to them by the U.S. Privacy Laws, whether or not capitalized, unless the context indicates otherwise. As there are some variations between such definitions across the U.S. Privacy Laws, the definitions applicable to you are those provided in the statute for the U.S. state in which you are a consumer. For example, if you are a California consumer, terms used in this U.S. Notice that are defined terms in the California Consumer Privacy Act as amended by the California Privacy Rights Act (“CCPA”) shall have the meanings afforded to them in the CCPA as this U.S. Notice applies to you.

2. PERSONAL INFORMATION WE COLLECT
We collect and we have collected in the past twelve months the following categories of personal information:

• Identifiers such as your name, address, email address, account name, IP addresses, device identifiers, or other unique identifiers. 
• Personal or physical characteristics protected under federal or state law, such as gender, race, ethnicity, age, disability, AIDS/HIV status. 
• Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
• Professional or employment-related information, including job title, employment history.
• Financial and insurance information, including bank account information, enrollment in government-funded prescription benefit programs, insurance information, and redemption of co-pay assistance offers.
• Audio, electronic, visual, or similar information, including voice recordings or recordings of customer service or patient support calls made to us or our call center providers. 
• Information in relation to questions or complaints you have submitted in relation to any of our products. 
• Internet or other electronic network activity information, including, but not limited to, computer or mobile phone model, operating system version, mobile network information, browsing history, search history, and information regarding a consumer’s interaction with an internet website, application, or advertisement, including materials downloaded from our Services. 
• Geolocation data, such as device location.
• Inferences drawn from any of the information to create a profile about individuals reflecting preferences, characteristics, psychological trends, preferences, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. 
• Information that may be considered “sensitive” under U.S. Privacy Laws, including:
  
  • Health-related data, including information related to your medical history, conditions, and treatment and provided in connection with reported adverse events or product complaints related to our products; and 
  • Personal information revealing racial or ethnic origin.

Children’s Personal Information. We generally do not knowingly collect or process personal information of children under 13 years of age. If and when we do so, we comply with the Children’s Online Privacy Protection Act (“COPPA”). For more information, please see section 8 of the Keenova Privacy Notice.

3. PURPOSE FOR COLLECTING, PROCESSING, & DISCLOSING PERSONAL INFORMATION 
We collect, process, and disclose, and in the past twelve months, have collected, processed, and disclosed, the categories of personal information, including sensitive personal information, listed in Section 2 of this U.S. Notice to:  

• Provide the Services, including to personalize the Services, process any transactions you request, and provide access to certain functionalities and features of Services such as account creation.  
• Improve the Services, including research and analytics regarding use of the Services and to ask you about your experiences with us. 
• Communicate with you in order to fulfill your requests, respond to your comments and inquiries, inform you about our products and services, and inform you of policy changes. 
• Authenticate your identity. 
• Deliver advertising, including interest-based advertising on our websites and on other websites and applications and providing you with other information about products and services offered by us. 
• Communicate with shareholders on matters relating to regulatory filings, governance guidelines, sustainability, and similar topics.
• Support our clinical trials and research activities, including by providing you with information about clinical trial opportunities. 
• Investigate and report adverse events to regulators. 
• Manage our vendors, including due diligence, contract signing, compliance with regulations, screening, auditing, on-going monitoring, etc.
• Enable any due diligence and other appraisals or evaluations for any actual or proposed merger, acquisition, financing transaction or joint venture contemplated by us.
• Ensure network and information security, including monitoring authorized users’ access to our Services for the purpose of preventing cyber-attacks, unauthorized use of our systems and Services, prevention or detection of crime and protection of your personal information. 
• Defend and enforce our rights, including against legal claims that involve us. 
• Detect, investigate, and prevent activities that may violate our policies or be fraudulent or illegal.
• Comply with our legal, regulatory, operational, and fiscal obligations.  

We may combine information that you provide to us or information that we collect automatically through our Services with other information we obtain from our business records, including your use of Keenova products, services, websites and applications and, where applicable, your preferences and other personal characteristics. We also may use or combine information that we collect with information we obtain from non-affiliated parties, including demographic information and other attributes, such as census data, demonstrated interests, and organizational affiliations. Additionally, information collected from a particular browser or device may be used with another computer or device that is linked to the browser or device on which such information was collected.

We may use information we collect from or about you to create aggregated or de-identified data that does not identify you. Once the data is aggregated or de-identified, we may use it for any purpose permitted by law, and we may disclose it to non-affiliated parties for their own uses. To the extent we deidentify any data originally based on personal information, we will maintain and use such data in deidentified form and will not attempt to reidentify the data.

We do not use personal information for profiling in furtherance of decisions that produce legal or similarly significant effects (which means a decision that results in the provision or denial of financial or lending services, housing, insurance, education enrollment or opportunity, criminal justice, employment opportunities, health-care services, or access to essential goods or services).

4. DISCLOSURE OF PERSONAL INFORMATION 
We disclose, and in the past twelve months, have disclosed the categories of personal information listed in section 2 of this U.S. Notice in the following contexts:

• To our service providers who work on our behalf to help us provide and support our products and the Services. For example, we use service providers to provide us with customer relationship management services, tax and financial advice and services, auditing services, data hosting, information technology support, email hosting, marketing and analytics services, support for patient assistance programs, support in running clinical trials, and other services. We require these service providers to treat all information we provide as confidential and to use it only for providing the services for which they have been engaged.
• Within the Keenova family of affiliated companies to provide you products and services as described in this Privacy Notice.
• To third parties, such as media and marketing service providers, and data management and analytics service providers.
• To third parties, where disclosure is necessary in connection with other business purposes including, without limitation, patient care, service quality, business management and operation, risk assessment, security, fraud and crime prevention/detection, monitoring, research and analysis, marketing, customer purchasing preferences, and trends and dispute resolution.

In addition, Keenova may disclose personal information:

• To a successor entity or purchaser if we are involved in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy, or other change of ownership or control by Keenova or its parent or affiliated companies (in each case, whether in whole or in part). The acquiring party or the merged entity may have different privacy practices and provide you with a new Privacy Notice.
• To government, regulatory, legal authorities, outside legal counsel, and other third parties (i) as required or permitted by law, including any requirements from government agencies and taxing authorities; (ii) if we determine that disclosure of specific information is necessary to comply with the request of a law enforcement or regulatory agency or other legal process; (iii) to protect the rights, privacy, property, interests, or safety of Keenova or our affiliated companies, customers, employees, or the general public; (iv) to pursue available remedies or limit damages; (v) to enforce Keenova’s agreements with you; and (vi) to respond to an emergency.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

5. SALE & SHARING OF PERSONAL INFORMATION 
Under the U.S. Privacy Laws, “Sell,” “Sale,” or “Sold” means renting, releasing, or transferring an individual’s Personal Information to a Third Party for money or other valuable consideration, and “Share,” “Shared,” or “Sharing” means transferring an individual’s Personal Information to a Third Party for cross-context behavioral advertising or targeted advertising purposes, whether or not for money or other valuable consideration. “Share,” “Shared,” or “Sharing” includes processing of Personal Information for targeted advertising, as the term “targeted advertising” is defined by the U.S. Privacy Laws.

We Sell and Share, and in the past twelve months have Sold and Shared, identifiers, such as IP addresses and other device identifiers, internet or other electronic network activity information, commercial information, and inferences to third party media and marketing providers and data management and analytics providers for advertising, marketing, and analytics purposes. Further, because this disclosure of personal information to third party media and marketing providers and data management and analytics providers could potentially suggest that you have a particular health condition or are taking a particular medication, we provide the following notice for compliance with the U.S. Privacy Laws:

NOTICE: We may sell your sensitive data.

You have the right to opt out of the Sale and Sharing of your personal information. To do so click on the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies.

Further, we use sensitive personal information for the purposes listed in Section 3 of this U.S. Notice, which includes purposes other than those expressly permitted by the CCPA.  Depending on your state of residence, you may have the right to limit the use of your sensitive personal information to purposes expressly permitted by law or to revoke your consent to the processing of your sensitive personal information. To exercise that right in the context of sensitive personal information we may disclose via cookies and other online tracking technologies, such as the potential inference that you have a particular health condition or are taking a particular medication, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies. Further, to exercise that right with respect to Sensitive Personal Information we may process about you in other contexts, you can contact us at Privacy@mnk.com and Privacy@endo.com,  by calling (800) 462-3636, or by clicking here and submitting details regarding your request.

We do not have actual knowledge that we Sell or Share personal information of consumers who are under 16 years of age.

6. PERSONAL INFORMATION RETENTION 
We retain personal information for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, the amount, nature and sensitivity of the personal information are considered, together with the necessity and purposes for the processing (including whether such purposes can be achieved through other means) and the potential risk of harm from unauthorized use or disclosure of the personal information. In exceptional cases (e.g., in pending litigation matters or where the law requires us to) your personal information may need to be kept for longer periods of time.

7. SOURCES OF PERSONAL INFORMATION 
We collect personal information about consumers directly from consumers that they voluntarily provide, such as when a consumer contacts us via our Services, sends us an email, calls our call centers or otherwise interacts with us and through automated means, such as cookies and other tracking technologies, when consumers utilize the Services. Keenova may also collect any of the categories of personal information listed in section 2 of this U.S. Notice from our affiliated organizations, research partners, collaborators, and service providers and non-affiliated parties who you direct or authorize to share information with us, such as your health care providers, insurance companies, or pharmacies. We also sometimes collect information from publicly accessible sources such as government records, websites, social media, and other digital platforms.

8. YOUR PRIVACY RIGHTS  
Residents in states with U.S. Privacy Laws have certain rights to their personal information. Depending on the state in which you reside, you may have the following rights under applicable local law regarding our collection and processing of your personal information, subject to certain exemptions. 

Rights that Require Verification

• Right to Know: You may request that we provide you with the following information about how we have handled your personal information in the 12 months preceding your request:
  • The categories of personal information we collected about you; 
  • The categories of sources from which we collect such personal information;
  • The business or commercial purpose for collecting or selling the personal information we collected about you;
  • The categories of personal information about you that we shared, sold, or disclosed; 
  • The categories of third parties with whom we sold or disclosed the personal information collected about you; and
  • The specific pieces of personal information we collected about you.
• Right to Deletion: You may request that we delete any personal information we maintain about you. 
• Right to Correction: You may request that we correct any inaccurate personal information we maintain about you.  
• Right to Access Specific Pieces of Personal Information and Data Portability: You may ask to obtain the specific pieces of personal information we have collected about you in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the PI to another entity without hindrance. You may not exercise this right more than two times in a calendar year. 

Exercising the Right to Know, Deletion, Correction, Access Specific Pieces of PI, and Data Portability: You can make such a request by submitting a request via email at Privacy@mnk.com and Privacy@endo.com or by calling (800) 462-3636. Please include your full name, mailing address, email address, and phone number, relationship to Keenova (e.g., patient prescribed a Keenova product), and type of request. To verify your identity, we will match the information provided in the request to the information we have in our records. If necessary, we may ask the requestor to provide additional information to verify your identity and confirm that the request is valid. You may also authorize an agent to submit a request on your behalf. Authorized agents may submit a request in the same manner listed above. Authorized agents must provide a copy of the Consumer’s signed permission authorizing the agent to submit requests on the individual’s behalf. In some instances, we may decline to honor your request if an exception applies under applicable law. We will respond to your request consistent with applicable law.

Rights that Do Not Require Verification 

• Right to Opt-Out of Sale: You have the right to opt out of the Sale of your personal information. To do so, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies.
• Right to Opt-Out of the Sharing of Your Personal Information or the Use of Your Personal Information for Targeted Advertising. You have the right to opt out of the Sharing of your personal information or our use of your personal information for targeted advertising purposes. To do so, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies. 
• Right to Revoke Consent for or Limit the Use of Your Sensitive Personal Information. You also have the right to revoke consent for or limit the use of your sensitive personal information to the purposes authorized by the applicable U.S. Privacy Laws. To exercise that right in the context of sensitive personal information we may disclose via cookies and other online tracking technologies, such as the potential inference that you have a particular health condition or are taking a particular medication, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies. Further, to exercise that right with respect to sensitive personal information we may process about you in other contexts, you can contact us via email at Privacy@mnk.com and Privacy@endo.com or by calling (800) 462-3636 with details regarding your request.
• As described above, we do not engage in Profiling or automated decision making that have legal or similarly significant effects. But if we did, you would have the right to opt out of the profiling of data in furtherance of solely automated decisions that have legal effects or similarly significant effects concerning consumers.

Opt-Out Preference Signals: We recognize opt-out preference signals that we are required to recognize for compliance with applicable law. Where required by U.S. Privacy Laws, we treat such opt-out preference signals as a valid request to opt-out of Sale, Sharing, and processing for purposes of targeted advertising, as applicable, for the browser or device through which the signal is sent and any consumer profile we have associated with that browser or device, including pseudonymous profiles. Further, if we know the identity of the consumer from the opt-out preference signal, we will also treat the opt-out preference signal as a valid request to opt out of sale and sharing for such consumer. Consumers may use opt-out preference signals by downloading or otherwise activating them for use on supported browsers and setting them to send opt-out preference signals to websites they visit.

Non-Discrimination: You have the right not to receive discriminatory treatment for the exercise of these rights. Keenova will not discriminate against you for exercising your rights under this U.S. Notice.

Appeals: Residents of certain states have the right to appeal our decisions on their data subject requests. This section does not apply to California or Utah consumers, or to residents who reside in other states where the applicable U.S. Privacy Law does not give them the right to appeal controllers’ decisions regarding data subject rights. To appeal our decision on your data subject requests, you may contact our Privacy Office at Privacy@mnk.com and Privacy@endo.com. Please enclose a copy of or otherwise specifically reference our decision on your data subject request, so that we may adequately address your appeal. We will respond to your appeal in accordance with applicable law.

9. OTHER DISCLOSURES 

• California Residents Under Age 18: If you are a resident of California under the age of 18 and a registered user of our Services, you may ask us to remove content or data that you have posted to the Services by writing to Privacy@mnk.com and Privacy@endo.com. Please note that your request does not ensure complete or comprehensive removal of the content or data, as, for example, some of your content or data may have been reposted by another user.
• Disclosure About Direct Marketing for California Residents: California Civil Code § 1798.83 permits California residents to annually request certain information regarding our disclosure of personal information to other entities for their direct marketing purposes in the preceding calendar year. To make such a request, please send an email to Privacy@mnk.com and Privacy@endo.com with the subject “Shine the Light Request.”
• Financial Incentives and Bona Fide Loyalty Programs for California and Colorado Consumers:  We do not provide financial incentives to California consumers or bona fide loyalty programs to Colorado consumers in exchange for allowing us to collect, retain, Sell, or Share their personal information. We will describe such programs to you if and when we offer them to you.
• Disclosure for Nevada Consumers: We may sell “Covered Information” as defined under Nevada law, but we generally do not disclose or share “Personal Information” as defined under Nevada law for commercial purposes. Under Nevada law, you have the right to direct us to not sell your Covered Information to third parties, as defined under Nevada law. To exercise this right, if applicable, you or your authorized representative may contact us at Privacy@mnk.com and Privacy@endo.com or call us toll free at (800) 462-3636.

10. CHANGES TO THIS U.S. NOTICE 
The Effective Date of this U.S. Notice is set forth at the top of this Notice. We reserve the right to change our U.S. Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use personal information, we will (unless otherwise required by law) attempt to notify you through a notice posted here before the changes take effect. Your continued use of our Services after the Effective Date of the revised U.S. Notice constitutes your acceptance of the revised Privacy Notice. The revised U.S. Notice replaces and supersedes all previous versions.

11. CONTACT US
If you have questions about how Keenova uses your personal information, would like further information about our privacy practices, or would like an accessible copy of this Privacy Notice please contact our Privacy Officer at Privacy@mnk.com and Privacy@endo.com or by regular mail at:
9 Great Valley Parkway
Malvern, PA 19355.

Last updated: November 3, 2025

This Consumer Health Data Privacy Policy applies to “Consumer Health Data,” as that term has been defined under applicable law that we collect, use, and share when you interact with our websites, online services, applications, and other offline business operations and services (collectively, the “Services”). Any term appearing in this Consumer Health Data Privacy Policy that has been defined under applicable Consumer Health Data laws shall have the meaning afforded to it therein.

A. Our Collection of Consumer Health Data
We may collect the following categories of Consumer Health Data from Consumers:

• Individual health conditions, treatment, diseases, or diagnosis; 
• Social, psychological, behavioral, and medical interventions; 
• Health-related surgeries or procedures; 
• Use or purchase of prescribed medication; 
• Bodily functions, vital signs, symptoms, or measurements related to health; 
• Diagnoses or diagnostic testing, treatment, or medication; 
• Reproductive or sexual health information; 
• Precise location information that could reasonably indicate a Consumer's attempt to acquire or receive health services or supplies; 
• Data that identifies a Consumer seeking health care services; and
• Health-related data that have been derived or inferred from the above. 

We may collect and use the above-mentioned categories of Consumer Health Data for the following purposes:

• Provide the Services, including to personalize the Services, process any transactions you request, and provide access to certain functionalities and features of Services such as account creation.  
• Improve the Services, including research and analytics regarding use of the Services and to ask you about your experiences with us. 
• Communicate with you in order to fulfill your requests, respond to your comments and inquiries, inform you about our products and services, and inform you of policy changes. 
• Authenticate your identity. 
• Deliver advertising, including interest-based advertising on our websites and on other websites and applications and providing you with other information about products and services offered by us. 
• Communicate with shareholders on matters relating to regulatory filings, governance guidelines, sustainability, and similar topics.
• Support our clinical trials and research activities, including by providing you with information about clinical trial opportunities. 
• Investigate and report adverse events to regulators. 
• Manage our vendors, including due diligence, contract signing, compliance with regulations, screening, auditing, on-going monitoring, etc.
• Enable any due diligence and other appraisals or evaluations for any actual or proposed merger, acquisition, financing transaction or joint venture contemplated by us.
• Ensure network and information security, including monitoring authorized users’ access to our Services for the purpose of preventing cyber-attacks, unauthorized use of our systems and Services, prevention or detection of crime and protection of your personal information. 
• Defend and enforce our rights, including against legal claims that involve us. 
• Detect, investigate, and prevent activities that may violate our policies or be fraudulent or illegal.
• Comply with our legal, regulatory, operational, and fiscal obligations.  

We may use Consumer Health Data we collect from or about you to create aggregated or de-identified data that does not identify you. Once the data is aggregated or de-identified, we may use it for any purpose permitted by law, and we may disclose it to non-affiliated parties for their own uses.

B. The Categories of Sources from Which We Collect Consumer Health Data
We Collect Consumer Health Data directly from Consumers and from the following sources:

• Our affiliated organizations, research partners, collaborators, and service providers when they disclose Consumer Health Data to us; 
• Non-affiliated parties who you direct or authorize to share information with us, such as your health care providers, insurance companies, or pharmacies
• Through automated means, such as cookies and other tracking technologies, when you utilize the Services, where permissible by law. 
• Publicly accessible sources such as government records, websites, social media, and other digital platforms.

C. The Categories of Consumer Health Data that We Share
We may Share all of the categories of Consumer Health Data that we collect. 

D. Third Parties and Affiliates with Whom We Share Consumer Health Data
We may Share Consumer Health Data with the following Third Parties:

• Third party media and marketing providers and data management and analytics providers for advertising, marketing, and analytics purposes
• Other third parties:
  • With your consent or at your direction;
  • In connection with a sale, reorganization, joint venture, or other similar business transaction; and
  • Government and regulatory bodies and courts to comply with our legal and regulatory obligations, ensure compliance with the requirements of our policies and procedures, or prevent fraud or physical harm.

We may Share Consumer Health Data with the following Affiliates: 

E. How to Exercise Your Consumer Health Data Rights
To exercise your rights with respect to your Consumer Health Data, which vary depending on your state of residence, you may contact us at any time through any of the following methods:

• Email. Email us at Privacy@mnk.com and Privacy@endo.com.
  Phone. Call us at (800) 462-3636.

Supplement to Consumer Health Data Privacy Policy for Nevada Consumers

This Supplement applies to Nevada Consumers for purposes of providing additional disclosures required by Nevada’s Consumer Health Data privacy law. Terms used herein that are defined terms under Nevada’s Consumer Health Data privacy law shall have the meanings afforded to them therein.

A. Purposes & Manner of Processing. We Collect, Use, Process, and Share Consumer Health Data for the purposes and in the manners described in our Consumer Health Data Privacy Policy which also provides additional disclosures relevant to Nevada Consumers.

B. Review & Revision of Consumer Health Data. If you would like to review and/or revise your Consumer Health Data, you may submit a request to Keenova via the methods listed in our Consumer Health Data Privacy Policy. We will respond to your requests to exercise your rights in accordance with applicable law, but in any case, no later than 45 days after receiving your request. We may extend this period up to 45 days only where doing so is permitted under applicable law. 

C. Changes to this Supplement. We will notify you before making any changes to our privacy practices with respect to your Consumer Health Data by posting an updated notice on this page, with an updated effective date. 

D. Third Party Collection of Consumer Health Data. Please note that some Third Parties may collect Consumer Health Data about you over time and across different websites or online services you may visit. 

Last Updated: November 3, 2025

This Business Contact Privacy Notice (“Business Contact Notice”) provides information about how Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collects, uses, and discloses personal information about business contacts, including our vendors, healthcare professionals, and other individuals with whom we interact in a business-related capacity (collectively, “Business Contacts,” “you,” or “your”). “Personal information” means any information relating to an identified or identifiable natural person.

Business Contacts located in the European Economic Area or the United Kingdom and residents of California have certain rights with respect to the collection, processing, and disclosure of their personal information. For more information, please see our EEA and UK Business Contact Privacy Notice and California Business Contact Privacy Notice, as applicable. 

Please note that this Business Contact Notice does not apply to information we collect about individuals with whom we do not interact in a business-related capacity. For further details about our privacy practices pertaining to non-Business Contact personal information, please see the Keenova Privacy Notice.

1.    BUSINESS CONTACT PERSONAL INFORMATION WE COLLECT
We collect the following personal information from Business Contacts:  

• Identifiers, such as name, National Provider Identifier (NPI), professional license number, online identifiers, IP address, national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers, other unique identifiers, and physical characteristics or descriptions. 
• Characteristics of protected classes and demographic information, such as military or veteran status, age, and gender. 
• Contact and financial information, such as address, telephone number, email address, payment information, bank account information, and details of any financial relationship with us, and inquiries or requests for assistance regarding our products or services.
• Professional or employment-related information, such as job title, employer, name of your practice, academic background, professional designation, medical specialty, licensing and disbarment status, publications and information about public speeches, and additional personal data you provide in your curriculum vitae or other similar documents or communications. 
• Education information, such as academic background and credentials.
• Internet or electronic network information, such as your browser type, operating system, domain names visited, click activity, referring websites, the date and time and length of visit of your visit to our websites or other websites or mobile applications.
• Audio information, such as recordings of calls made to our information and support lines. 
• Inferences drawn from any above data to create a profile reflecting a Business Contact’s interest as they relate to the types of products and educational offerings provided by Keenova.
• Information that may be considered “sensitive” under applicable law, including personal information that reveals:
  
  • Social security, driver’s license, state identification card, or passport number; or
  • Racial or ethnic origin, religious or philosophical beliefs, or union membership.
    If you choose not to provide personal data, we may not be able to continue in our business relationship or engagement with you.

2.    HOW WE USE BUSINESS CONTACT PERSONAL INFORMATION
We collect, process, and disclose personal information about Business Contacts for the following purposes:  

• Facilitating your registration and attendance at events we sponsor.
• Providing you with promotional information about our products and events.
• Providing you with scientific information about our research and products.
• Communicate with you as appropriate given the nature of our business relationship.
• Communicate other information that we think may be of interest to you through our websites and via e-mail, mail, and other channels, including promotional communications about our products and services. 
• Administrating advisory boards and other committees that we convene.
• Coordinating your participation as a speaker at events we sponsor, including any compensation or honorarium.
• Responding to your inquiries about our products, policies and programs.
• Processing patient requests to participate in programs we offer or administer.
• Satisfaction of our reporting obligations under applicable law or by virtue of our membership in industry certification organizations. 
• Assess and analyze our current interactions with you and personalize your website experience and other interactions with Keenova.
• Monitor and improve our website functionality, and otherwise manage our information technology resources and obligations.
• Process and report adverse event information and product complaints.
• Manage our vendors, including due diligence, contract signing, compliance with regulations, screening, auditing, on-going monitoring etc.
• Defend and enforce our rights, including against legal claims that involve us. 
• Detect, investigate, and prevent activities that may violate our policies or be fraudulent or illegal.
• Comply with our legal, regulatory, operational, and fiscal obligations.  

We may also de-identify any personal information we collect about Business Contacts and analyze that data for statistical or any other purposes permitted by law. When we do so, we take reasonable measures to ensure that the information cannot be associated with a Business Contact or household, and we maintain and use the information in deidentified form. We will not attempt to reidentify the information, except that we may attempt to reidentify the information solely for the purpose of determining whether our deidentification processes satisfy applicable legal requirements. After it has been de-identified, the information is no longer personal information and is not subject to this Business Contact Notice.

3.    HOW WE DISCLOSE BUSINESS CONTACT PERSONAL INFORMATION
We disclose personal information of Business Contacts in the following contexts: 

• To our affiliates and subsidiaries for everyday business purposes as described in this Business Contact Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with customer relationship management services, tax and financial advice and services, auditing services, data hosting, information technology support, email hosting, marketing and analytics services, support for patient assistance programs, support in running clinical trials, and other services. We require these service providers to treat all information we provide as confidential and to use it only for providing the services for which they have been engaged.
• To third parties who provide professional services to us, such as legal practitioners.
• To third parties, such as media and marketing service providers, and data management and analytics service providers.
• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the personal information we disclose to it in accordance with this Business Contact Notice.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

Due to the global nature of our business, the personal information that we collect from you may also be transferred to, and stored at, a destination outside the jurisdiction where you are located, including the United States, for the purposes described above.

4.    RETENTION OF BUSINESS CONTACT PERSONAL INFORMATION 
Business Contact personal information will be stored for as long as required to satisfy the purposes outlined in this Business Contact Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

5.    HOW WE PROTECT BUSINESS CONTACT PERSONAL INFORMATION
Keenova deploys administrative, physical and technical safeguards intended to help protect the confidentiality of Business Contact personal information, including security to protect against unlawful or unauthorized processing of personal information, and against the accidental loss of, or damage to, your personal information. Unfortunately, however, no safeguards are foolproof.

You are responsible for maintaining the security of your account credentials and other authentication involved in obtaining access to password-protected or secure areas of our systems. We will treat access to our systems through your account credentials as authorized by you. Unauthorized access to password-protected or secure areas is prohibited and may lead to criminal prosecution. We may suspend your use of all or part of our systems without notice if we suspect or detect any breach of security.  

6.    BUSINESS CONTACT RIGHTS TO PERSONAL INFORMATION 
Business Contacts who reside in certain jurisdictions may have certain rights to their personal information under applicable data protection law. Those rights may include, subject to certain exceptions: 

• The right to request access to the personal information we hold about you. 
• The right to request that we correct any incorrect personal information we hold about you. 
• The right to request that we delete information we hold about you. 
• The right to request that we stop processing your personal information under certain circumstances. 

You can make such a request by sending an email to Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, email address, and relationship to Keenova (e.g., speaker at a Keenova event), and type of request. We will respond to your request consistent with applicable law.

7.    COMPLAINTS 
If you have any concerns regarding how we have processed your personal information, or if you believe we have processed your personal information in violation of applicable laws, please contact us using the methods described in the “Contact Us” section below and we will do our best to address your concerns. 

8.    CHANGES TO THIS BUSINESS CONTACT NOTICE 
The Effective Date of this Notice is set forth at the top of this Business Contact Notice. We reserve the right to change this Business Contact Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Business Contact personal information, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised Business Contact Notice replaces and supersedes all previous versions.

9.    CONTACT US 
If we have questions about how Keenova uses your personal information, please contact us at Privacy@mnk.com and Privacy@endo.com or by regular mail at: 
9 Great Valley Parkway, Malvern, PA 19355.

Last Updated: November 3, 2025

This EEA and UK Privacy Notice (“EEA Business Contact Notice”) provides additional information about how Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collects, uses, and discloses personal data about business contacts, including our vendors, healthcare professionals, and other individuals with whom we interact in a business-related capacity (collectively, “Business Contacts,” “you,” or “your”) located in the European Economic Area (“EEA”) and the United Kingdom (“UK”). As used in this EEA Notice, “personal data” means any information relating to an identified or identifiable natural person.

Please note that this EEA Business Contact Notice only addresses Keenova’s collection, use, and disclosure of Business Contact-related personal data and only applies to Business Contacts in the EEA and UK. This EEA Business Contact Notice does not apply to individuals who are located in other countries and/or who do not interact with Keenova in a business-related capacity. For further details about our privacy practices pertaining to non-Business Contact personal data, please see the Keenova Privacy Notice.

The data controller for the processing addressed in this EEA Business Contact Notice is Keenova Therapeutics plc with a registered office at College Business & Technology Park, Cruiserath Road, Blanchardstown, Dublin 15 D15 TX2V (“Keenova,” “we,” “us,” “our”). If you have any questions regarding the processing of your personal data or this EEA Business Contact Notice, please contact us by email at Privacy@mnk.com and Privacy@endo.com or by regular mail at: 
9 Great Valley Parkway
Malvern, PA 19355.

CATEGORIES OF BUSINESS CONTACT PERSONAL DATA WE COLLECT AND PROCESS 
We typically collect the following personal data about Business Contacts:

• Identifiers, such as name, National Provider Identifier (NPI), professional license number, online identifiers, IP address, national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers, other unique identifiers, and physical characteristics or descriptions. 
• Characteristics of protected classes and demographic information, such as military or veteran status, age, and gender. 
• Contact and financial information, such as address, telephone number, email address, payment information, bank account information, and details of any financial relationship with us, and inquiries or requests for assistance regarding our products or services.
• Professional or employment-related information, such as job title, employer, name of your practice, academic background, professional designation, medical specialty, licensing and disbarment status, publications and information about public speeches, and additional personal data you provide in your curriculum vitae or other similar documents or communications. 
• Education information, such as academic background and credentials.
• Internet or electronic network information, such as your browser type, operating system, domain names visited, click activity, referring websites, the date and time and length of visit of your visit to our websites or other websites or mobile applications.
• Audio information, such as recordings of calls made to our information and support lines. 
• Inferences drawn from any above data to create a profile reflecting a Business Contact’s interest as they relate to the types of products and educational offerings provided by Keenova.
• Information that may be considered “sensitive” under applicable law, including personal information that reveals racial or ethnic origin, religious or philosophical beliefs, or union membership.

1.    SOURCES OF BUSINESS CONTACT PERSONAL DATA
Keenova collects personal data of Business Contacts directly from Business Contacts when you voluntarily provide it to us, such as when you contact us about our products and services or register for one of our events.  We also collect personal data from cookies and other tracking technologies, public databases, providers of demographic data, publications, professional organizations, institutions, social media platforms, and service providers and third parties when they otherwise disclose information to us.

2.    PURPOSE AND LEGAL BASIS FOR PROCESSING BUSINESS CONTACT PERSONAL DATA
We have set out below, in a table format, the purposes for our processing of Business Contact personal data and the legal bases we rely on to process your personal data under the EU GDPR and UK GDPR. 

If you choose not to provide personal data, we may not be able to continue in our business relationship or engagement with you. Where we need to collect and process your personal data as required by an applicable law, or under the terms of a contract we have with you, and you fail to provide us with that data when requested, we may not be able to perform our legal and contractual obligations.

We may also anonymize any personal data we collect about Business Contacts and analyze that data for statistical or any other purposes permitted by law. After it has been anonymized, the information is no longer personal data and is not subject to this EEA Business Contact Notice.

We do not use automated processing on Business Contact personal data, including profiling, in furtherance of decisions that have legal or similarly significant effects.

3.    SENSITIVE CATEGORIES OF BUSINESS CONTACT PERSONAL DATA 
To the extent we process personal data that is considered sensitive under the GDPR and UK GDPR, in addition to processing such data in reliance on the legal basis set out in section 3 of this EEA Business Contact Notice above, we will also satisfy an applicable GDPR condition with respect to the sensitive personal data, such as a condition under Article 9(2)(a), Article 9(2)(e), Article 9(2)(f), or Article 9(2)(g) GDPR coupled with the conditions set out in relevant EU member state or UK data protection law, as applicable. 

4.    RECIPIENTS OF BUSINESS CONTACT PERSONAL DATA 
We disclose personal data of Business Contacts in the following contexts:

• To our affiliates and subsidiaries for everyday business purposes as described in this EEA Business Contact Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with customer relationship management services, tax and financial advice and services, auditing services, data hosting, information technology support, email hosting, marketing and analytics services, support for patient assistance programs, support in running clinical trials, and other services. We require these service providers to treat all information we provide as confidential and to use it only for providing the services for which they have been engaged.
• To third parties who provide professional services to us, such as legal practitioners.
• To third parties, such as media and marketing service providers, and data management and analytics service providers.
• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal data to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the personal data we disclose to it in accordance with this EEA Business Contact Notice.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

5.    TRANSFER OF BUSINESS CONTACT PERSONAL DATA OUTSIDE THE EEA AND UK
Due to the global nature of our business, the personal data that we collect from you may be transferred to, and stored at, a destination outside the jurisdiction where you are located for the purposes described above. It may also be processed by personnel operating outside the EEA/UK who work for us or for one of our suppliers who act on our behalf. Those countries may not provide an adequate level of protection in relation to processing your personal data. We will ensure appropriate safeguards are in place to protect the privacy and integrity of personal data transferred outside of the EEA/UK (e.g., by making use of standard contractual clauses). You can obtain information concerning such safeguards, including obtaining a copy of the standard contractual clauses, by emailing us at Privacy@mnk.com and Privacy@endo.com, where applicable.

6.    DATA RETENTION
Business Contact personal data will be stored for as long as required to satisfy the purposes outlined in this EEA Business Contact Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

7.    YOUR RIGHTS
Business Contacts located in the EEA and UK have the following rights to their personal data, subject to certain exceptions. 

• Right of Access: you have the right to confirm what data is being processed, obtain information about the processing activities and to receive a copy of your personal data.
• Right to Rectification: you have the right to request rectification / correction of your personal data where it is inaccurate or incomplete.
• Right to Erasure: you have the right to request deletion of your personal data.
• Right to Restriction: you have the right to ask that we restrict or suspend the processing of your personal data in certain contexts. 
• Right to Data Portability: you have the right to request to receive your personal data in a structured, commonly-used, and machine-readable format and have the right to transmit that information to another data controller.
• Right to Object: you have the right to object to the processing of your personal data in certain contexts, including for any direct marketing purposes.
• Right to Withdraw Consent: to the extent our processing of your personal data is based on your consent, you have the right to withdraw your consent, at any time, without hindrance or cost, to prevent further processing. Please note that withdrawing your consent does not affect the lawfulness of our processing of your personal data based on such consent before the withdrawal.
• Right to Lodge a Complaint: you have the right to file a complaint concerning our processing of your personal data with the competent data protection supervisory authority in the relevant jurisdiction. A full list of supervisory authority contacts for EU countries is available at: https://www.edpb.europa.eu/about-edpb/about-edpb/members and information about the UK’s Information Commissioner’s Office is available at: https://ico.org.uk/ . 

You can make such a request by sending an email to Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, email address, and relationship to Keenova (e.g., speaker at a Keenova event), and type of request. We will respond to your request consistent with applicable law. 

8.    CHANGES TO THIS EEA BUSINESS CONTACTS NOTICE
The Effective Date of this EEA Business Contact Notice is set forth at the top of this EEA Business Contact Notice. We reserve the right to change this EEA Business Contact Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Business Contact personal data, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised EEA Business Contact Notice replaces and supersedes all previous versions.

Last Updated: November 3, 2025

The California Consumer Privacy Act, as amended by the California Privacy Rights Act, and its implementing regulations (collectively, the “CCPA”), gives California residents certain rights and requires businesses to make certain disclosures regarding their collection, use, and disclosure of Personal Information. This California Business Contact Privacy Notice (“California Business Contact Notice”) provides additional information about Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collection, use, and disclosure of Personal Information about business contacts, including our vendors, healthcare professionals, and other individuals with whom we interact in a business-related capacity that are residents of California (collectively, “Business Contacts,” “you,” or “your”).

Please note that this California Business Contact Notice only addresses Keenova’s collection, use, and disclosure of Business Contact-related Personal Information and only applies to Business Contacts who are California residents. This California Business Contact Notice does not apply to individuals who are located in other states or countries and/or who do not interact with Keenova in a business-related capacity.  For further details about our privacy practices pertaining to non-Business Contact Personal Information, please see the Keenova Privacy Notice.

1.    DEFINITIONS 

• “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. 
• “Service Provider” means a service provider, vendor, contractor, or processor which collects, stores, or otherwise handles Personal Information for us and is bound by certain contractual obligations consistent with applicable laws to use your Personal Information only as directed by us.
• “Third Party” means a person or organization which is not a consumer, Service Provider, or an entity owned or controlled by us.
• Other CCPA Definitions: As used in this California Business Contact Notice, the terms “Collect,” “Processing,” “Sale,” “Share,” “Consumer,” and other terms defined in the CCPA and their conjugates, have the meanings afforded to them in the CCPA, whether or not such terms are capitalized herein, unless contrary to the meaning thereof.

2.    BUSINESS CONTACT PERSONAL INFORMATION WE COLLECT
We collect and have collected in the past 12 months the following categories of Personal Information about Business Contacts: 

• Identifiers, such as name, National Provider Identifier (NPI), professional license number, online identifiers, IP address, national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers, other unique identifiers, and physical characteristics or descriptions. 
• Characteristics of protected classes and demographic information, such as military or veteran status, age, and gender. 
• Contact and financial information, such as address, telephone number, email address, payment information, bank account information, and details of any financial relationship with us, and inquiries or requests for assistance regarding our products or services.
• Professional or employment-related information, such as job title, employer, name of your practice, academic background, professional designation, medical specialty, licensing and disbarment status, publications and information about public speeches, and additional personal data you provide in your curriculum vitae or other similar documents or communications. 
• Education information, such as academic background and credentials.
• Internet or electronic network information, such as your browser type, operating system, domain names visited, click activity, referring websites, the date and time and length of visit of your visit to our websites or other websites or mobile applications.
• Audio information, such as recordings of calls made to our information and support lines. 
• Inferences drawn from any above data to create a profile reflecting a Business Contact’s interest as they relate to the types of products and educational offerings provided by Keenova.
• Sensitive Personal Information including Personal Information that reveals:
  
  • Social security, driver’s license, state identification card, or passport number; or
  • Racial or ethnic origin, religious or philosophical beliefs, or union membership.

3.    PURPOSE FOR COLLECTION, PROCESSING, & DISCLOSURE OF BUSINESS CONTACT PERSONAL INFORMATION
We collect, process, and disclose, and in the past 12 months we have collected, processed, and disclosed, the categories of Personal Information listed in Section 2 of this California Business Contact Notice for the following purposes: 

• Facilitating your registration and attendance at events we sponsor.
• Providing you with promotional information about our products and events.
• Providing you with scientific information about our research and products.
• Communicate with you as appropriate given the nature of our business relationship.
• Communicate other information that we think may be of interest to you through our websites and via e-mail, mail, and other channels, including promotional communications about our products and services. 
• Administrating advisory boards and other committees that we convene.
• Coordinating your participation as a speaker at events we sponsor, including any compensation or honorarium.
• Responding to your inquiries about our products, policies and programs.
• Processing patient requests to participate in programs we offer or administer.
• Satisfaction of our reporting obligations under applicable law or by virtue of our membership in industry certification organizations. 
• Assess and analyze our current interactions with you and personalize your website experience and other interactions with Keenova.
• Monitor and improve our website functionality, and otherwise manage our information technology resources and obligations.
• Process and report adverse event information and product complaints.
• Manage our vendors, including due diligence, contract signing, compliance with regulations, screening, auditing, on-going monitoring etc.
• Defend and enforce our rights, including against legal claims that involve us. 
• Detect, investigate, and prevent activities that may violate our policies or be fraudulent or illegal.
• Comply with our legal, regulatory, operational, and fiscal obligations.  

We may also de-identify any Personal Information we collect about Business Contacts and analyze that data for statistical or any other purposes permitted by law. When we do so, we take reasonable measures to ensure that the information cannot be associated with a Business Contact or household, and we maintain and use the information in deidentified form. We will not attempt to reidentify the information, except that we may attempt to reidentify the information solely for the purpose of determining whether our deidentification processes satisfy applicable legal requirements. After it has been de-identified, the information is no longer Personal Information and is not subject to this California Business Contact Notice.

4.    PURPOSES FOR COLLECTION, PROCESSING & DISCLOSURE OF BUSINESS CONTACT SENSITIVE PERSONAL INFORMATION 
We, collect, process, and disclose the categories of Sensitive Personal Information described in this Policy only as reasonably necessary for:

• Performing the services or providing the goods reasonably expected by an average Business Contact who requests those goods or services (including offering benefits to Business Contacts and their beneficiaries).
• Preventing, detecting, and investigating security incidents that compromise the availability, authenticity, integrity, or confidentiality of stored or transmitted Personal Information.
• Resisting malicious, deceptive, fraudulent, or illegal actions directed at us and prosecuting those responsible for those actions.
• Ensuring the physical safety of natural persons.
• Short-term, transient use, including, but not limited to, nonpersonalized advertising shown as part of a Business Contact’s current interaction with us, provided that we will not disclose the Business Contact’s Personal Information to a Third Party and/or not build a profile about the Business Contact or otherwise alter the Business Contact’s experience outside the current interaction with the business.
• Performing services on our behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on our behalf.
• Verifying or maintaining the quality or safety of a product, service, or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured by, manufactured for, or controlled by us.
• Collecting or processing Sensitive Personal Information where such collection or processing is not for the purpose of inferring characteristics about a Business Contact.

5.    RETENTION OF BUSINESS CONTACT PERSONAL INFORMATION
Business Contact Personal Information will be stored for as long as required to satisfy the purposes outlined in Section 3 and 4 of this California Business Contact Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

6.    SALE & SHARING OF BUSINESS CONTACT PERSONAL INFORMATION
We generally do not sell or share Personal Information that we collect about our Business Contacts. Under the CCPA, “sell” or “sold” means the disclosure of Personal Information to third parties for monetary or other valuable consideration, and “share” or “shared” means disclosure of Personal Information to third parties for cross-context behavioral advertising, regardless of whether the disclosure is made for monetary or other valuable consideration.

However, we do sell and share, and we have sold and shared in the past 12 months, Personal Information in other contexts. This includes Personal Information collected via cookies and other tracking technologies, including identifiers, such as IP addresses and other device identifiers, internet or other electronic network activity information, and inferences that we have sold to or shared with third party media and marketing providers and data management and analytics providers for advertising, marketing, and analytics purposes.

California Business Contacts have the right to opt out of sale and sharing. To do so click on the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies. 

We do not knowingly sell or share Personal Information of consumers we know to be under the age of 16. 

7.    HOW WE DISCLOSE BUSINESS CONTACT PERSONAL INFORMATION
We disclose and, in the past 12 months have disclosed, the categories of Personal Information listed in Section 2 of this California Business Contact Notice, in the following contexts: 

• To our affiliates and subsidiaries for everyday business purposes as described in this Business Contact Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with customer relationship management services, tax and financial advice and services, auditing services, data hosting, information technology support, email hosting, marketing and analytics services, support for patient assistance programs, support in running clinical trials, and other services. We require these service providers to treat all information we provide as confidential and to use it only for providing the services for which they have been engaged.
• To third parties who provide professional services to us, such as legal practitioners.
• To third parties, such as media and marketing service providers, and data management and analytics service providers.

In addition, Keenova may also disclose Business Contact Personal Information: 

• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the Personal Information we disclose to it in accordance with this Business Contact Notice.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

8.    SOURCES OF BUSINESS CONTACTS PERSONAL INFORMATION
Keenova collects Personal Information of Business Contacts directly from Business Contacts when you voluntarily provide it to us, such as when you contact us about our products and services or register for one of our events. We also collect Personal Information from cookies and other tracking technologies, public databases, providers of demographic data, publications, professional organizations, institutions, social media platforms, and service providers and third parties when they otherwise disclose information to us.

9.    YOUR PRIVACY RIGHTS
California Business Contacts have the following rights regarding our collection and use of their Personal Information, subject to certain exceptions.

Rights that Require Verification 

• Right to Know: You may request that we provide you with the following information about how we have handled your Personal Information in the 12 months preceding your request:
  
  • The categories of Personal Information we collected about you; 
  • The categories of sources from which we collect such Personal Information;
  • The business or commercial purpose for collecting or selling the Personal Information we collected about you; 
  • The categories of Personal Information about you that we shared, sold, or disclosed; 
  • The categories of third parties with whom we sold or disclosed the Personal Information collected about you; and
  • The specific pieces of Personal Information we collected about you.
• Right to Deletion: You may request that we delete any Personal Information we maintain about you. 
• Right to Correction: You may request that we correct any inaccurate Personal Information we maintain about you.  
• Right to Access Specific Pieces of Personal Information and Data Portability: You may ask to obtain the specific pieces of Personal Information we have collected about you in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the Personal Information to another entity without hindrance. You may not exercise this right more than two times in a calendar year. 

Exercising the Right to Know, Deletion, Correction, Access Specific Pieces of Personal Information, and Data Portability: You can make such a request by submitting a request via email at Privacy@mnk.com and Privacy@endo.com, by calling (800) 462-3636, or by clicking here and submitting details regarding your request (select “Privacy Office” in the Contact drop down on the form). Please include your full name, mailing address, email address, and phone number, relationship to Keenova (e.g., Business Contact), and type of request. To verify your identity, we will match the information provided in the request to the information we have in our records. If necessary, we may ask the requestor to provide additional information to verify your identity and confirm that the request is valid. You may also authorize an agent to submit a request on your behalf. Authorized agents may submit a request in the same manner listed above. Authorized agents must provide a copy of the consumer’s signed permission authorizing the agent to submit requests on the individual’s behalf. In some instances, we may decline to honor your request if an exception applies under applicable law. We will respond to your request consistent with applicable law.

Rights that Do Not Require Verification 

• Right to Opt-Out of Sale and Share: You have the right to opt out of the sale and sharing of your Personal Information. To do so, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies.
• Right to Limit the Use of Your Sensitive Personal Information: We do not use Sensitive Personal Information that we collect about Business Contacts for purposes other than those that are permitted by the CCPA regulations. But if we did, you would have the right to limit the use of your Sensitive Personal Information to the purposes permitted by the CCPA.

Non-Discrimination. You have the right not to receive discriminatory treatment for the exercise of these rights. Keenova will not discriminate against you for exercising your rights under this California Business Contacts Privacy Notice. 

Opt-Out Preference Signals: We recognize opt-out preference signals that we are required to recognize for compliance with applicable law. Where required by U.S. Privacy Laws, we treat such opt-out preference signals as a valid request to opt-out of sale and sharing for the browser or device through which the signal is sent and any consumer profile we have associated with that browser or device, including pseudonymous profiles. Further, if we know the identity of the consumer from the opt-out preference signal, we will also treat the opt-out preference signal as a valid request to opt out of sale and sharing for such consumer. Consumers may use opt-out preference signals by downloading or otherwise activating them for use on supported browsers and setting them to send opt-out preference signals to websites they visit.

10.    OTHER DISCLOSURES 

• Financial Incentives for California Consumers. We do not offer financial incentives to California Business Contacts under the CCPA. If and when we do so, we will update this California Business Contact Notice.

11.    CONTACT US 
If we have questions about how Keenova uses your Personal Information, please contact us at Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636, or by regular mail at: 
9 Great Valley Parkway
Malvern, PA 19355

12.    CHANGES TO THIS CALIFORNIA BUSINESS CONTACT NOTICE
The Effective Date of this California Business Contact Notice is set forth at the top of this California Business Contact Notice. We reserve the right to change this California Business Contact Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Business Contact Personal Information, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised California Business Contact Notice replaces and supersedes all previous versions.

Last Updated: November 3, 2025

This Job Applicant Privacy Notice (“Job Applicant Notice”) provides information about how Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collects, uses, and discloses personal information about applicants, candidates, and potential applicants and candidates for employment at Keenova (collectively, “Job Applicants,” “you,” or “your”). “Personal information” means any information relating to an identified or identifiable natural person.

Job Applicants located in the European Economic Area or the United Kingdom and residents of California have certain rights with respect to the collection, processing, and disclosure of their personal information. For more information, please see our EEA and UK Job Applicant Privacy Notice and California Job Applicant Privacy Notice, as applicable. 

Please note that this Job Applicant Notice does not apply to information we collect about Keenova employees or independent contractors. This Job Applicant Notice also does not apply to information we collect in non-employment related capacities. For further details about our privacy practices pertaining to non-Job Applicant personal information, please see the Keenova Privacy Notice.

1.    APPLICANT PERSONAL INFORMATION WE COLLECT
We collect personal information from Job Applicants when Job Applicants apply for career opportunities with Keenova or in connection with Job Applicant inquiries and communications with our talent acquisition team for potential career opportunities. In general, we collect the following categories of Personal Information about Job Applicants:  

• Identifiers, such as name; addresses; phone numbers; fax numbers; email addresses; date of birth; IP addresses and other online identifiers; unique personal identifiers; physical characteristics or descriptions; national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers; or other similar identifiers.
• Financial Information, such as bank account details.
• Characteristics of Protected Classification under applicable law, such as nationality; disability status; marital status; racial or ethnic origin; sexual orientation; religion; and gender.
• Internet or Other Network Information, such as browsing history, interactions with our websites or advertisements, and username and password for Keenova careers sites.
• Geolocation Data, such as device location.
• Audio, Electronic, Visual and Similar Information, such as call and video recordings; security camera footage.
• Professional or Employment-Related Information, such as information on your CV and résumé; details of qualifications; professional certificates and licenses; skills; credentials; positions and roles you are or may be interested in; communication preferences; work authorizations, status, visa, or other immigration information; employment history, including references from previous employers; and conflict of interest information and debarment status.
• Education Information, such as education history, degrees, diplomas, certifications, and institutions. 
• Inferences drawn from any of the personal information listed above to create a profile or summary about, for example, a Job Applicant’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
• Information that may be considered “sensitive” under applicable law, including: 
  
  • Personal information that reveals:
    
    • Social security, driver’s license, state identification card, or passport number;
    • Racial or ethnic origin, religious or philosophical beliefs, or union membership; and
  • Personal Information collected and analyzed concerning a Job Applicant’s health.

2.    HOW WE USE APPLICANT PERSONAL INFORMATION
We collect, process, and disclose personal information about Job Applicants, in connection with our talent-acquisition-related activities, including for the following purposes:  

• Carry out our job application and recruitment process, including background checks (where applicable), drug screenings (where applicable), verifying your information, and/or conducting research about your educational and professional background.
• Assess your job application, including your qualifications, knowledge, and/or skills against the job you are applying for.
• Process job applications submitted by, or on your behalf, and to assist in our determination as to whether to enter into an employment relationship (or engagement) with you.
• Communicate with you about your job application and/or the recruitment process.
• Recommend potential career opportunities.
• Create and/or submit reports as required under applicable laws or regulations.
• Assess our recruitment process.
• Provide you with building and IT network and system access and authentication.
• Pay any applicable expenses associated with the recruitment process (i.e., travel expenses) associated with payroll and finance.
• Monitor and promote equal employment opportunities.
• Manage our business, including for legal, personnel administrative, and management purposes. 
• Comply with any legal or regulatory obligations.
• Manage health and safety at work and incident reporting. 
• Exercise our right to defend, respond to, or conduct legal proceedings.  
• In connection with disputes, legal proceedings and government investigations, including preservation of relevant data.
• Comply with civil, criminal, judicial, or regulatory inquiries, investigations, subpoenas, or summons.

We may also de-identify any personal information we collect about Job Applicants and analyze that data for statistical or any other purposes permitted by law. When we do so, we take reasonable measures to ensure that the information cannot be associated with a Job Applicant or household, and we maintain and use the information in deidentified form. We will not attempt to reidentify the information, except that we may attempt to reidentify the information solely for the purpose of determining whether our deidentification processes satisfy applicable legal requirements. After it has been de-identified, the information is no longer personal information and is not subject to this Job Applicant Notice.

3.    HOW WE DISCLOSE APPLICANT PERSONAL INFORMATION
We disclose personal information of Job Applicants in the following contexts: 

• To our affiliates and subsidiaries for everyday business and talent acquisition purposes as described in this Job Applicant Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with candidate selection and related hiring services, benefits and wellness services, website services, as well as other products and services, such as web hosting, data analysis, customer service, infrastructure services, technology services, email delivery services, legal services, and other similar services. These service providers may need personal information about you to perform their obligations. We contractually require our service providers to keep the personal information they process on our behalf confidential and to use it only to provide services on our behalf.
• To third parties who provide professional services to us, such as legal and medical practitioners.
• To relatives or legal representatives of Job Applicants. 
• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the personal information we disclose to it in accordance with this Job Applicant Notice.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

Due to the global nature of our business, the personal information that we collect from you may also be transferred to, and stored at, a destination outside the jurisdiction where you are located, including the United States, for the purposes described above.

4.    RETENTION OF APPLICANT PERSONAL INFORMATION 
Job Applicant personal information will be stored for as long as required to satisfy the purposes outlined in this Job Applicant Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

5.    HOW WE PROTECT APPLICANT PERSONAL INFORMATION
Keenova deploys administrative, physical and technical safeguards intended to help protect the confidentiality of Job Applicant personal information, including security to protect against unlawful or unauthorized processing of personal information, and against the accidental loss of, or damage to, your personal information. Unfortunately, however, no safeguards are foolproof.

You are responsible for maintaining the security of your account credentials and other authentication involved in the application and recruitment process. Keenova will treat access to our career sites through your account credentials as authorized by you. Unauthorized access to password-protected or secure areas is prohibited and may lead to criminal prosecution. We may suspend your use of all or part of our sites without notice if we suspect or detect any breach of security. If you believe that your account credentials may have been compromised, please notify us immediately using the contact information provided below.
 
6.    APPLICANT RIGHTS TO PERSONAL INFORMATION 
Job Applicants who reside in certain jurisdictions may have certain rights to their personal information under applicable data protection law. Those rights may include, subject to certain exceptions:

• The right to request access to the personal information we hold about you. 
• The right to request that we correct any incorrect personal information we hold about you. 
• The right to request that we delete information we hold about you. 
• The right to request that we stop processing your personal information under certain circumstances. 

You can make such a request by sending an email to Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, email address, and relationship to Keenova (e.g., job applicant), and type of request. We will respond to your request consistent with applicable law.

7.    COMPLAINTS 
If you have any concerns regarding how we have processed your personal information, or if you believe we have processed your personal information in violation of applicable laws, please contact us using the methods described in the “Contact Us” section below and we will do our best to address your concerns. 

8.    CHANGES TO THIS JOB APPLICANT NOTICE 
The Effective Date of this Privacy Notice is set forth at the top of this Job Applicant Notice. We reserve the right to change this Job Applicant Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Job Applicant personal information, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised Job Applicant Notice replaces and supersedes all previous versions.

9.    CONTACT US 
If we have questions about how Keenova uses your personal information, please contact us at Privacy@mnk.com and Privacy@endo.com or by regular mail at: 
9 Great Valley Parkway
Malvern, PA 19355.

Last Updated: November 3, 2025

This EEA and UK Privacy Notice (“EEA Job Applicant Notice”) provides additional information about how Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collects, uses, and discloses personal data about applicants, candidates, and potential applicants and candidates for employment at Keenova (collectively, “Job Applicants,” “you,” or “your”) located in the European Economic Area (“EEA”) and the United Kingdom (“UK”). As used in this EEA Notice, “personal data” means any information relating to an identified or identifiable natural person.

Please note that this EEA Job Applicant Notice does not apply to information we collect about Keenova employees or independent contractors. Please also note that this EEA Job Applicant Notice only addresses Keenova’s collection, use, and disclosure of applicant-related personal data and only applies to Job Applicants in the EEA and UK. This EEA Job Applicant Notice does not apply to individuals who are located in other countries and/or who do not interact with Keenova in a job applicant-related capacity. For further details about our privacy practices pertaining to non-Job Applicant personal data, please see the Keenova Privacy Notice.

The Keenova entity to whom you are applying to employment with is the primary controller of your personal data and is responsible for processing the personal data about Job Applicants collected directly from Job Applicants or from other sources. If you have any questions regarding the processing of your personal data or this EEA Job Applicant Notice, please contact us by email at Privacy@mnk.com and Privacy@endo.com or by regular mail at: 
9 Great Valley Parkway
Malvern, PA 19355.

1.    CATEGORIES OF APPLICANT PERSONAL DATA WE COLLECT AND PROCESS 
We typically collect the following personal data about Job Applicants:

• Identifiers, such as name; addresses; phone numbers; fax numbers; email addresses; date of birth; IP addresses and other online identifiers; unique personal identifiers; physical characteristics or descriptions; national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers; or other similar identifiers.
• Financial Information, such as bank account details.
• Characteristics of Protected Classification under applicable law, such as nationality; disability status; marital status; racial or ethnic origin; sexual orientation; religion; and gender.
• Internet or Other Network Information, such as browsing history, interactions with our websites or advertisements, and username and password for the Keenova Careers site.
• Geolocation Data, such as device location.
• Audio, Electronic, Visual and Similar Information, such as call and video recordings; security camera footage.
• Professional or Employment-Related Information, such as information on your CV and résumé; details of qualifications; professional certificates and licenses; skills; credentials; positions and roles you are or may be interested in; communication preferences; work authorizations, status, visa, or other immigration information; employment history, including references from previous employers; and conflict of interest information and debarment status.
• Education Information, such as education history, degrees, diplomas, certifications, and institutions. 
• Inferences drawn from any of the personal information listed above to create a profile or summary about, for example, a Job Applicant’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
• Information that may be considered “sensitive” under applicable law, including: 
  
  • Personal information that reveals racial or ethnic origin, religious or philosophical beliefs, or union membership; or
  • Personal Information collected and analyzed concerning a Job Applicant’s health.

2.    SOURCES OF APPLICANT PERSONAL DATA
Keenova collects personal data of Job Applicants directly from Job Applicants and from their references. We also collect personal data from public databases, providers of demographic data, publications, professional organizations, institutions, social media platforms, and service providers and third parties that help us screen and onboard individuals for hiring purposes as far as we are allowed to do so under applicable law and when they otherwise disclose information to us.

3.    PURPOSE AND LEGAL BASIS FOR PROCESSING APPLICANT PERSONAL DATA
We have set out below, in a table format, the purposes for our processing of Job Applicant personal data and the legal bases we rely on to process your personal data under the EU GDPR and UK GDPR. 

If you choose not to provide personal data, we may not be able to consider you for employment at Keenova or hire you for the position you applied to. Where we need to collect and process your personal data as required by an applicable law and you fail to provide us with that data when requested, we may not be able to perform our legal obligations related to your application with us.

We may also anonymize any personal data we collect about Job Applicants and analyze that data for statistical or any other purposes permitted by law. After it has been anonymized, the information is no longer personal data and is not subject to this EEA Job Applicant Notice.

4.    SENSITIVE CATEGORIES OF APPLICANT PERSONAL DATA 
To the extent we process personal data that is considered sensitive under the GDPR and UK GDPR, in addition to processing such data in reliance on the legal basis set out in section 3 of this EEA Job Applicant Notice above, we will also satisfy an applicable GDPR condition with respect to the sensitive personal data, such as a condition under Article 9(2)(a), Article 9(2)(e), Article 9(2)(f), or Article 9(2)(g) GDPR coupled with the conditions set out in relevant EU member state or UK data protection law, as applicable. 

5.    PROFILING 
We do not use automated processing, including profiling, in furtherance of decisions that have legal or similarly significant effects. 

6.    RECIPIENTS OF APPLICANT PERSONAL DATA 
We disclose personal data of Job Applicants in the following contexts: 

• To our affiliates and subsidiaries for everyday business and talent acquisition purposes as described in this Job Applicant Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with candidate selection and related hiring services, benefits and wellness services, website services, as well as other products and services, such as web hosting, data analysis, customer service, infrastructure services, technology services, email delivery services, legal services, and other similar services. These service providers may need personal information about you to perform their obligations. We contractually require our service providers to keep the personal information they process on our behalf confidential and to use it only to provide services on our behalf.
• To third parties who provide professional services to us, such as legal and medical practitioners.
• To relatives or legal representatives of Job Applicants. 
• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the personal data we disclose to it in accordance with this Job Applicant Notice.
• In aggregated or anonymize form, for our business purposes or any other purposes permitted by applicable law.

7.    TRANSFER OF APPLICANT PERSONAL DATA OUTSIDE THE EEA AND UK
Due to the global nature of our business, the personal data that we collect from you may be transferred to, and stored at, a destination outside the jurisdiction where you are located for the purposes described above. It may also be processed by personnel operating outside the EEA/UK who work for us or for one of our suppliers who act on our behalf. Those countries may not provide an adequate level of protection in relation to processing your personal data. We will ensure appropriate safeguards are in place to protect the privacy and integrity of personal data transferred outside of the EEA/UK (e.g., by making use of standard contractual clauses). You can obtain information concerning such safeguards, including obtaining a copy of the standard contractual clauses, by emailing us at Privacy@endo.com, where applicable.

8.    DATA RETENTION
Job Applicant personal data will be stored for as long as required to satisfy the purposes outlined in this EEA Job Applicant Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

9.    YOUR RIGHTS
Job Applicants located in the EEA and UK have the following rights to their personal data, subject to certain exceptions. 

• Right of Access: you have the right to confirm what data is being processed, obtain information about the processing activities and to receive a copy of your personal data.
• Right to Rectification: you have the right to request rectification / correction of your personal data where it is inaccurate or incomplete.
• Right to Erasure: you have the right to request deletion of your personal data.
• Right to Restriction: you have the right to ask that we restrict or suspend the processing of your personal data in certain contexts. 
• Right to Data Portability: you have the right to request to receive your personal data in a structured, commonly-used, and machine-readable format and have the right to transmit that information to another data controller.
• Right to Object: you have the right to object to the processing of your personal data in certain contexts, including for any direct marketing purposes.
• Right to Withdraw Consent: to the extent our processing of your personal data is based on your consent, you have the right to withdraw your consent, at any time, without hindrance or cost, to prevent further processing. Please note that withdrawing your consent does not affect the lawfulness of our processing of your personal data based on such consent before the withdrawal.
• Right to Lodge a Complaint: you have the right to file a complaint concerning our processing of your personal data with the competent data protection supervisory authority in the relevant jurisdiction. A full list of supervisory authority contacts for EU countries is available at: https://www.edpb.europa.eu/about-edpb/about-edpb/members and information about the UK’s Information Commissioner’s Office is available at: https://ico.org.uk/ . 

You can make such a request by sending an email to Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, email address, and relationship to Keenova (e.g., job applicant), and type of request. We will respond to your request consistent with applicable law. 

10.    CHANGES TO THIS EEA JOB APPLICANT NOTICE
The Effective Date of this EEA Job Applicant Notice is set forth at the top of this EEA Job Applicant Notice. We reserve the right to change this EEA Job Applicant Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Job Applicant personal data, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised EEA Job Applicant Notice replaces and supersedes all previous versions.

Last Updated: November 3, 2025

The California Consumer Privacy Act, as amended by the California Privacy Rights Act, and its implementing regulations (collectively, the “CCPA”), gives California residents certain rights and requires businesses to make certain disclosures regarding their collection, use, and disclosure of Personal Information. This California Job Applicant Privacy Notice (“California Job Applicant Notice”) provides additional information about Keenova Therapeutics plc, and their affiliates and subsidiaries (“Keenova,” “we,” “us,” “our”) collection, use, and disclosure of Personal Information about applicants, candidates, and potential applicants and candidates for employment at Keenova that are residents of California (collectively, “Job Applicants,” “you,” or “your”).

Please note that this California Job Applicant Notice does not apply to information we collect about Keenova employees or independent contractors. Please also note that this California Job Applicant Notice only addresses Keenova’s collection, use, and disclosure of employment-related Personal Information and only applies to Job Applicants who are California residents. This California Job Applicant Notice does not apply to individuals who are located in other states or countries and/or who do not interact with Keenova in a job applicant-related capacity. For further details about our privacy practices pertaining to non-Job Applicant Personal Information, please see the Keenova Privacy Notice.

1.    DEFINITIONS 

• “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. 
• “Service Provider” means a service provider, vendor, contractor, or processor which collects, stores, or otherwise handles Personal Information for us and is bound by certain contractual obligations consistent with applicable laws to use your Personal Information only as directed by us.
• “Third Party” means a person or organization which is not a consumer, Service Provider, or an entity owned or controlled by us.
• Other CCPA Definitions: As used in this California Job Applicant Notice, the terms “Collect,” “Processing,” “Sale,” “Share,” “Consumer,” and other terms defined in the CCPA and their conjugates, have the meanings afforded to them in the CCPA, whether or not such terms are capitalized herein, unless contrary to the meaning thereof.

2.    APPLICANT PERSONAL INFORMATION WE COLLECT
We collect and have collected in the past 12 months the following categories of Personal Information about Job Applicants: 

• Identifiers, such as name; addresses; phone numbers; fax numbers; email addresses; date of birth; IP addresses and other online identifiers; unique personal identifiers; physical characteristics or descriptions; national identity number, social security number, driver’s license number, passport number, or other government-issued identifiers; or other similar identifiers.
• Financial Information, such as bank account details.
• Characteristics of Protected Classification under applicable law, such as nationality; disability status; marital status; racial or ethnic origin; sexual orientation; religion; and gender.
• Internet or Other Network Information, such as browsing history, interactions with our websites or advertisements, and username and password for the Keenova Careers site.
• Geolocation Data, such as device location.
• Audio, Electronic, Visual and Similar Information, such as call and video recordings; security camera footage.
• Professional or Employment-Related Information, such as information on your CV and résumé; details of qualifications; professional certificates and licenses; skills; credentials; positions and roles you are or may be interested in; communication preferences; work authorizations, status, visa, or other immigration information; employment history, including references from previous employers; and conflict of interest information and debarment status.
• Education Information, such as education history, degrees, diplomas, certifications, and institutions. 
• Inferences drawn from any of the personal information listed above to create a profile or summary about, for example, a Job Applicant’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
• Information that may be considered “sensitive” under applicable law, including: 
  
  • Personal Information that reveals:
    
    • Social security, driver’s license, state identification card, or passport number;
    • Racial or ethnic origin, religious or philosophical beliefs, or union membership; and
  • Personal Information collected and analyzed concerning a Job Applicant’s health.

3.    PURPOSE FOR COLLECTION, PROCESSING, & DISCLOSURE OF APPLICANT PERSONAL INFORMATION
We collect, process, and disclose, and in the past 12 months we have collected, processed, and disclosed, the categories of Personal Information listed in Section 2 of this California Job Applicant Notice to: 

• Carry out our job application and recruitment process, including background checks (where applicable), drug screenings (where applicable), verifying your information, and/or conducting research about your educational and professional background.
• Assess your job application, including your qualifications, knowledge, and/or skills against the job you are applying for.
• Process job applications submitted by, or on your behalf, and to assist in our determination as to whether to enter into an employment relationship (or engagement) with you.
• Communicate with you about your job application and/or the recruitment process.
• Recommend potential career opportunities.
• Create and/or submit reports as required under applicable laws or regulations.
• Assess our recruitment process.
• Provide you with building and IT network and system access and authentication.
• Pay any applicable expenses associated with the recruitment process (i.e., travel expenses) associated with payroll and finance.
• Monitor and promote equal employment opportunities.
• Manage our business, including for legal, personnel administrative, and management purposes. 
• Comply with any legal or regulatory obligations.
• Manage health and safety at work and incident reporting. 
• Exercise our right to defend, respond to, or conduct legal proceedings.  
• In connection with disputes, legal proceedings and government investigations, including preservation of relevant data.
• Comply with civil, criminal, judicial, or regulatory inquiries, investigations, subpoenas, or summons.

We may also de-identify any Personal Information we collect about Job Applicants and analyze that data for statistical or any other purposes permitted by law. When we do so, we take reasonable measures to ensure that the information cannot be associated with a Job Applicant or household, and we maintain and use the information in deidentified form. We will not attempt to reidentify the information, except that we may attempt to reidentify the information solely for the purpose of determining whether our deidentification processes satisfy applicable legal requirements. After it has been de-identified, the information is no longer Personal Information and is not subject to this California Job Applicant Notice.

4.    PURPOSES FOR COLLECTION, PROCESSING & DISCLOSURE OF APPLICANT SENSITIVE PERSONAL INFORMATION 
We, collect, process, and disclose the categories of Sensitive Personal Information described in this Policy only as reasonably necessary for:

• Performing the services or providing the goods reasonably expected by an average Job Applicant who requests those goods or services (including offering benefits to Job Applicants and their beneficiaries).
• Preventing, detecting, and investigating security incidents that compromise the availability, authenticity, integrity, or confidentiality of stored or transmitted Personal Information.
• Resisting malicious, deceptive, fraudulent, or illegal actions directed at us and prosecuting those responsible for those actions.
• Ensuring the physical safety of natural persons.
• Short-term, transient use, including, but not limited to, non-personalized advertising shown as part of a Job Applicant’s current interaction with us, provided that we will not disclose the Job Applicant’s Personal Information to a Third Party and/or not build a profile about the Job Applicant or otherwise alter the Job Applicant’s experience outside the current interaction with the business.
• Performing services on our behalf, including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services on our behalf.
• Verifying or maintaining the quality or safety of a product, service, or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured by, manufactured for, or controlled by us.
• Collecting or processing Sensitive Personal Information where such collection or processing is not for the purpose of inferring characteristics about a Job Applicant.

5.    RETENTION OF APPLICANT PERSONAL INFORMATION
Job Applicant Personal Information will be stored for as long as required to satisfy the purposes outlined in Section 3 and 4 this California Job Applicant Notice or for as long as we have a legitimate interest for which it was collected, unless a longer period is necessary for our legal obligations or for the exercise or defense of legal claims.

6.    SALE & SHARING OF APPLICANT PERSONAL INFORMATION
We generally do not sell or share Personal Information that we collect about our Job Applicants. Under the CCPA, “sell” or “sold” means the disclosure of Personal Information to third parties for monetary or other valuable consideration, and “share” or “shared” means disclosure of Personal Information to third parties for cross-context behavioral advertising, regardless of whether the disclosure is made for monetary or other valuable consideration.

However, we do sell and share, and we have sold and shared in the past 12 months, Personal Information in other contexts. This includes Personal Information collected via cookies and other tracking technologies, including identifiers, such as IP addresses and other device identifiers, internet or other electronic network activity information, commercial information, and inferences that we have sold to or shared with third party media and marketing providers and data management and analytics providers for advertising, marketing, and analytics purposes.

California Job Applicants have the right to opt out of sale and sharing. to do so click on the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies. 

We do not knowingly sell or share Personal Information of consumers we know to be under the age of 16. 

7.    HOW WE DISCLOSE APPLICANT PERSONAL INFORMATION
We disclose and, in the past 12 months have disclosed, the categories of Personal Information listed in Section 2 of this California Job Applicant Notice, in the following contexts: 

• To our affiliates and subsidiaries for everyday business and talent acquisition purposes as described in this Job Applicant Notice. 
• To our service providers that provide services on our behalf and in accordance with our instructions. For example, we use service providers to provide us with candidate selection and related hiring services, benefits and wellness services, website services, as well as other products and services, such as web hosting, data analysis, customer service, infrastructure services, technology services, email delivery services, legal services, and other similar services. These service providers may need personal information about you to perform their obligations. We contractually require our service providers to keep the personal information they process on our behalf confidential and to use it only to provide services on our behalf.
• To third parties who provide professional services to us, such as legal and medical practitioners.
• To relatives or legal representatives of Applicants. 

In addition, Keenova may also disclose Job Applicant Personal Information: 

• To government, regulatory, and legal authorities when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose personal information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of our services; to enforce or apply our other agreements; to respond to an emergency; or to protect our own rights or property or the rights, property, or safety of our employees or others.
• To a successor organization or prospective purchaser, if we transfer the ownership or operation of all or a portion of our business to another organization, we merge with or are acquired by another organization, or if we liquidate our assets. If such a transfer occurs, we will seek assurances that the successor organization will treat the personal information we disclose to it in accordance with this Job Applicant Notice.
• In aggregated or de-identified form, for our business purposes or any other purposes permitted by applicable law.

8.    SOURCES OF APPLICANT PERSONAL INFORMATION
Keenova collects personal data of Job Applicants directly from Job Applicants and from their references. We also collect personal data from public databases, providers of demographic data, publications, professional organizations, institutions, social media platforms, and service providers and third parties that help us screen and onboard individuals for hiring purposes as far as we are allowed to do so under applicable law and when they otherwise disclose information to us.

9.    YOUR PRIVACY RIGHTS
California Job Applicants have the following rights regarding our collection and use of their Personal Information, subject to certain exceptions.

Rights that Require Verification 

• Right to Know: You may request that we provide you with the following information about how we have handled your Personal Information in the 12 months preceding your request:
  
  • The categories of Personal Information we collected about you; 
  • The categories of sources from which we collect such Personal Information;
  • The business or commercial purpose for collecting or selling the Personal Information we collected about you; 
  • The categories of Personal Information about you that we shared, sold, or disclosed; 
  • The categories of third parties with whom we sold or disclosed the Personal Information collected about you; and
  • The specific pieces of Personal Information we collected about you.
• Right to Deletion: You may request that we delete any Personal Information we maintain about you. 
• Right to Correction: You may request that we correct any inaccurate Personal Information we maintain about you.  
• Right to Access Specific Pieces of Personal Information and Data Portability: You may ask to obtain the specific pieces of Personal Information we have collected about you in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the Personal Information to another entity without hindrance. You may not exercise this right more than two times in a calendar year. 

Exercising the Right to Know, Deletion, Correction, Access Specific Pieces of Personal Information, and Data Portability: You can make such a request by submitting a request via email at Privacy@mnk.com and Privacy@endo.com or by calling us at (800) 462-3636. Please include your full name, mailing address, email address, and phone number, relationship to Keenova (e.g., job applicant), and type of request. To verify your identity, we will match the information provided in the request to the information we have in our records. If necessary, we may ask the requestor to provide additional information to verify your identity and confirm that the request is valid. You may also authorize an agent to submit a request on your behalf. Authorized agents may submit a request in the same manner listed above. Authorized agents must provide a copy of the consumer’s signed permission authorizing the agent to submit requests on the individual’s behalf. In some instances, we may decline to honor your request if an exception applies under applicable law. We will respond to your request consistent with applicable law.

Rights that Do Not Require Verification 

• Right to Opt-Out of Sale and Share: You have the right to opt out of the sale and sharing of your Personal Information. To do so, click the “Cookie Settings” link that appears in the footer of each Keenova web page and toggle “off” each type of cookie except for strictly necessary cookies.
• Right to Limit the Use of Your Sensitive Personal Information: We do not use Sensitive Personal Information that we collect about Job Applicants for purposes other than those that are permitted by the CCPA regulations. But if we did, you would have the right to limit the use of your Sensitive Personal Information to the purposes permitted by the CCPA.

Non-Discrimination. We will not discriminate against you for exercising your data subject rights. For example, we will not make hiring or similar decisions based on your exercise of your privacy rights.

Opt-Out Preference Signals: We recognize opt-out preference signals that we are required to recognize for compliance with applicable law. Where required by U.S. Privacy Laws, we treat such opt-out preference signals as a valid request to opt-out of sale and sharing for the browser or device through which the signal is sent and any consumer profile we have associated with that browser or device, including pseudonymous profiles. Further, if we know the identity of the consumer from the opt-out preference signal, we will also treat the opt-out preference signal as a valid request to opt out of sale and sharing for such consumer. Consumers may use opt-out preference signals by downloading or otherwise activating them for use on supported browsers and setting them to send opt-out preference signals to websites they visit.

10.    OTHER DISCLOSURES 

• Financial Incentives for California Consumers. We do not offer financial incentives to California Job Applicants under the CCPA. If and when we do so, we will update this California Job Applicant Notice.

11.    CONTACT US 
If we have questions about how Keenova uses your Personal Information, please contact us at (800) 462-3636, Privacy@mnk.com and Privacy@endo.com or by regular mail at: 
9 Great Valley Parkway
Malvern, PA 19355.

12.    CHANGES TO THIS CALIFORNIA JOB APPLICANT NOTICE
The Effective Date of this California Job Applicant Notice is set forth at the top of this California Job Applicant Notice. We reserve the right to change this California Job Applicant Notice as business needs or applicable laws require. If Keenova makes material changes to the way we use Job Applicant Personal Information, Keenova will (unless otherwise required by law) attempt to notify you through a notice posted on this webpage before the changes take effect. The revised California Job Applicant Notice replaces and supersedes all previous versions.