Privacy Statement

2. Customer Data

Customer Data is all the data, including all text, sound, software or image files that you provide, or are
provided on your behalf, to us through your use of the Services. For example, Customer Data includes
data that you upload for storage or processing in the Services and applications that you or your end
users upload for hosting in the Services. It does not include configuration or technical settings.

We only use Customer Data to provide the Services. This may include troubleshooting aimed at
preventing, detecting and repairing problems affecting the operation of the Services and the
improvement of features that involve the detection of, and protection against, emerging and evolving
threats to the user (such as malware or spam).

3. Administrator Data

Administrator Data is the information about administrators (including account contact and subscription
administrators) provided during sign-up, purchase, or administration of the Services, such as name,
address, phone number, and e-mail address.

We use Administrator Data to complete the transactions you request, administer your account, improve
the Services and detect and prevent fraud.

We may contact you to provide information about new subscriptions, billing and important updates
about the Services, including information about security or other technical issues.We may also contact
you regarding third-party inquiries we receive regarding your use of the Services, as described in your
agreement(s). You will not be able to unsubscribe from these communications. Subject to your contact
preferences, we may also contact you, by phone or e-mail, regarding information and offers about other
products and services or to request your feedback.

You may manage your contact preferences or update your information in your account profile.

4. Payment Data

When you make online purchases, you will be asked to provide information, which may include your
payment instrument number (e.g., credit card, PayPal), your name and billing address, and the security
code associated with your payment instrument (e.g., the CSV) and other financial data (“Payment
Data”).

We use Payment Data to complete transactions, as well as for the detection and prevention of fraud.

When you provide Payment Data while authenticated, we will store that data to help you complete
future transactions without your having to provide the information again. We do not, however, retain
the security code associated with your Payment instrument (e.g., the CSV) in this manner.

To remove or modify Payment Data, please contact Customer Support. After you close your account or
remove Payment Data, however, SierraBay may retain your Payment Data for as long as reasonably
necessary to complete your existing transaction and for the detection and prevention of fraud.

5. Support Data

Support Data is the information we collect when you submit a support request or run an automated
troubleshooter, including information about hardware, software, and other details related to the
support incident, such as: contact or authentication information, chat session personalization,
information about the condition of the machine and the application when the fault occurred and during
diagnostics, system and registry data about software installations and hardware configurations, and
error-tracking files.

Support may be provided through phone, e-mail, or online chat. We may use Remote Access (RA), with
your permission, to temporarily navigate your machine. Phone conversations, online chat sessions, or
Remote Access sessions with support professionals may be recorded and/or monitored. For RA, you may
also access the recording after your session. For Online Chat or RA, you may end a session at any time of
your choosing. We use Support Data as described in this privacy statement, and additionally use it to
resolve your support incident and for training purposes.

Following a support incident, we may send you a survey about your experience and offerings. You must
opt-out of support surveys separately from other communications provided by SierraBay, by contacting
Support or through the e-mail footer.

To review and edit your personal information collected through our support services, please contact us
by using our Web form.

Some business customers may purchase enhanced support offerings (e.g., Premier). These offerings are
covered by separate terms and notices.

6. Cookies & Other Information

Some Precis websites use “cookies,” which are small text files placed on a device’s hard disk by a web
server. We may use cookies and similar technologies such as web beacons for storing users’ preferences
and settings, for fraud prevention, to authenticate users and to collect operational information about
the Services.

In addition to the cookies SierraBay may set when you visit our web sites, third parties that we have
hired to provide certain services on our behalf, such as site analytics, may also set certain cookies on
your hard drive when you visit SierraBay sites.

7. Local Software

Some features of Precis may enable or require that you install local software (e.g., agents). This software
may collect data from your local environment in order to provide the services that you have requested.
Local agents may also collect telemetry information that will be sent to SierraBay for operating and
improving the Services. For more information about agents, please consult the relevant service
documentation.

8. Sharing Your Information

We will not disclose Customer Data, Administrator Data, Payment Data or Support Data (“your
information”) outside of SierraBay or its controlled subsidiaries and affiliates except as you direct, or as
described in your agreement(s) or this privacy statement.

We occasionally contract with other companies to provide services (such as customer support)
on our behalf. We may provide these companies with access to your information where
necessary for their engagement. These companies are required to maintain the confidentiality
of your information and are prohibited from using it for any purpose other than that for which
they are engaged by SierraBay.

We will not disclose Customer Data to a third party (including law enforcement, other
government entity, or civil litigant; excluding our subcontractors) except as you direct or unless
required by law. Should a third party contact us with a demand for Customer Data, we will
attempt to redirect the third party to request it directly from you. As part of that, we may
provide your basic contact information to the third party. If compelled to disclose Customer
Data to a third party, we will use commercially reasonable efforts to notify you in advance of a
disclosure unless legally prohibited.

SierraBay may share Administrator Data or Payment Data with third parties for purposes of
fraud prevention or to process payment transactions.

The Services may enable you to purchase, subscribe to, or use services, software, and content
from companies other than SierraBay (“Third Party Offerings”). If you choose to purchase,
subscribe to, or use a Third Party Offering, we may provide the third party with your
Administrator Data or Payment Data to enable the third party to provide its offering to you (and
subject to your contact preferences, send you promotional communications). That information
and your use of a Third Party Offering will be governed by the applicable privacy statement and
policies from the third party.

We will not substantively respond to data protection and privacy requests from your end users
without your prior written consent, unless required by applicable law.

9. Security

Data Location

You may specify the geographic region of the SierraBay data centers in which Customer Data will be
stored. SierraBay may transfer Customer Data within a major geographic region (for example, within the
United States or within Europe) for data redundancy or other purposes. SierraBay will not transfer
Customer Data outside the major geographic region you specify (for example, from the United States to
Asia or from Europe to the United States) except:

– where you configure the account to enable this, including through use of features that may not
enable regional selection or may use multiple regions, as specified in the Precis Trust Center
(which SierraBay may update from time to time but SierraBay will not add exceptions for
existing features in general release); or

– where necessary to provide customer support, to troubleshoot the service or to comply with
legal requirements.

SierraBay does not control or limit the regions from which you or your End Users may access or move
Customer Data.

Subject to the above restrictions, Customer Data that SierraBay processes on your behalf may be
transferred to, and stored and processed in, the United States or any other country in which SierraBay
or its affiliates or subcontractors maintain facilities. You appoint SierraBay to perform any such transfer
of Customer Data to any such country and to store and process Customer Data in order to provide the
Services. SierraBay abides by the EU Safe Harbor and the Swiss Safe Harbor frameworks as set forth by
the U.S. Department of Commerce regarding the collection, use, and retention of data from the
European Union, the European Economic Area, and Switzerland.

10. SierraBay Account

In order to access the Services, you or your users may be required to sign in with a SierraBay Account or
another authentication mechanism. Use of SierraBay Account is subject to the privacy statement set
forth here. By signing into one SierraBay service, you may be automatically signed into other SierraBay
services that use these credentials.

11. Preview Releases

Precis preview, beta or other pre-release services (“Previews”) are optional evaluation versions of the
Services offered by SierraBay to obtain customer feedback prior to general release. This section
describes the different or additional terms specific to Previews:

Administrator Data: We may contact you to obtain your feedback about the Preview or your
interest in continuing to use it after general release.

Customer Data: We may use Customer Data from Previews to improve the Preview, Services and
related SierraBay products and services.

Customer Data Location: Previews may not enable geographic regional selection or may use
multiple geographic regions, as specified in the Precis Trust Center.

Security: Previews may employ lesser or different security measures than those typically present
in the Services. Some Customer Data may be particularly sensitive to you or your organization,
and hence may require a level of security that Previews do not provide.