Policy Overview

Section Summary: This Policy explains how we may Process your information. This Policy may
be amended or updated from time to time, so please check it regularly for updates. This Policy
applies to all information collected about you by eDiligence, regardless of how it is collected or
stored, and describes, among other things, the types of information collected about you when you
interact with the Services, how your information may be used, when your information may be
disclosed, how you can control the use and disclosure of your information, and how your
information is protected.


eDiligence Inc. (“eDiligence”) directly complies with the Federal Communication Commission
(FCC) to ensure accuracy and protect the privacy of every individual whose protected
information is stored. eDiligence decides how and why the information you provide to us is
processed. You can contact us using the information shown in the Contact Details section below.
This Policy may be amended or updated from time to time to reflect changes in our practices
with respect to the Processing of your information, or changes in applicable law. We encourage
you to read this Policy carefully and to regularly check this page to review any changes we might
make. This Policy covers information collected through eDiligence’s website.


Sensitive Personal Information


Sensitive Personal Information Section Summary: We do not seek to collect or otherwise process
your Sensitive Personal Information.


We do not collect or otherwise Process Personal Information about race or ethnicity, political
opinions, religious or philosophical beliefs, trade union membership, physical or mental health,
any actual or alleged criminal offences or penalties, or any other information that may be deemed
to be sensitive under GDPR (collectively, “Sensitive Personal Information”) in the ordinary
course of our business. We do not collect or save any Personal information. eDiligence, however,
will store your preferred payment method, along with the appropriate billing information (i.e,
credit card number, CVV, routing number, etc).


Related Entities


Diligence stores and aggregates report data within Customer Applications so we can build and
continually improve our industry benchmark database, financial models, and other products.
eDiligence will not publish or sell User Information or Personal Information without your
express permission, and we agree to maintain the confidentiality of your information within these
applications. eDiligence reserves the right to use any User Information for internal quality
control and product development as necessary to support product development. In addition,
eDiligence reserves the right to freely use, sell, and distribute all data provided by users from
which eDiligence has removed Personal information or otherwise de-identified such data.
eDiligence’s use may include the future development of financial models, indices, or other
reports derived from the financial data entered. You should not enter data or other information
into our applications if you do not want your or your client data being used in this manner or
contributed to our aggregate database.


Data Security


We implement appropriate technical and organizational security measures to protect your User
Information. Please ensure that any Personal Information that you send to us is sent securely. We
have implemented appropriate technical and organizational security measures designed to protect

your User Information against accidental or unlawful destruction, loss, alteration, unauthorized
disclosure, unauthorized access, and other unlawful or unauthorized forms of Processing, in
accordance with applicable law.


eDiligence further protects User Information, Personal Information, and other content stored on
our systems used to host the Customer Applications. These systems use industry standard
computer security products and perimeter protections that include firewalls, intrusion detection
systems, host and firewall logging, and real-time monitoring. In addition to the encryption of
data in transit as described above, data entered into Customer Applications also remains
encrypted at rest using Advanced Encryption Standard database-level encryption.


Because the internet is an open system, the transmission of information via the internet is not
completely secure, and we cannot guarantee there will not be a breach, and we are not
responsible for any breach of security or for the actions of any third parties. Although we will
implement reasonable measures to protect your information, we cannot guarantee the security of
your data transmitted to us using the internet. Any such transmission is at your own risk and you
are responsible for ensuring that any Personal Information that you send to us are sent securely.


Data Accuracy


We take reasonable precautions to ensure that your User Information is kept accurate and up-to-
date and are erased or rectified if we become aware of inaccuracies. We take reasonable
precautions to ensure that your User Information that we Process is accurate and, where
necessary, kept up to date, and any of your User Information that we Process that you inform us
is inaccurate (having regard to the purposes for which they are Processed) is erased or rectified.


Data Minimization


We take reasonable precautions to limit the volume of your User Information that we Process to
what is necessary. We take reasonable precautions to ensure that your User Information that we
Process is limited to the User Information reasonably necessary in connection with the purposes
set out in this Policy or as required to provide you services or access to the Services.


Data Retention


We take reasonable precautions to ensure that your User Information is only retained for as long
as they are needed. We take reasonable precautions to ensure that your User Information is only
Processed for the minimum period necessary for the purposes set out in this Policy. The criteria
for determining the duration for which we will keep your User Information are as follows: we
will retain copies of your User Information in a form that permits identification only for as long
as is necessary in connection with the purposes set out in this Policy, unless applicable law
requires a longer retention period. Unless there is a specific legal requirement for us to keep the
information, we plan to retain it for no longer than is necessary to fulfill a legitimate business need.


eDiligence utilizes a third-party company and historical data to provide users with accurate
predictive analytics. However, to deliver specific predictions to our customers, your company’s
data may be requested and stored. Ownership of the data entered into Customer Applications
remains that of the customer, and eDiligence. Customer Application users have full control of all
data, including User Information and Personal Information, that is entered in the application.
eDiligence commits to maintaining the above measures and to working with our customers to
monitor and modify our programs as needed to address any security concerns.

Cookies & Similar Technologies


We may Process your User Information by placing or reading Cookies and similar technologies
on the Services and Channels. Certain tracking technologies enable us to assign a unique
identifier to you, and relate information about your use of the Services to Other Information
about you, including your User Information for the purposes of learning more about you so we
can provide you with relevant content. We and our partners also use these technologies to
analyze trends; administer the Services; collect and store information such as user settings and
anonymous browser identifiers; supplement to our server logs and other methods of traffic and
response measurement; track users’ location and movements around the Services; gather
demographic information about our user base; and to improve our understanding of traffic on the
Services, visitor behavior, and responses to marketing campaigns.


When you receive email messages or newsletters from us, we may use web beacons, customized
links, clear GIFs, or similar technologies to determine whether the email has been opened and
which links you click in order to provide you with more focused email communications or other
information, and/or to aggregate that information with other data we collect to use for some or all
of the purposes outlined in this Policy.


We and our partners (including but not limited to e-commerce partners, affiliates, and analytics
providers) also may use technologies such as pixel tags, e-tags, IP addresses, Local Shared
Objects, Local Storage, Flash cookies and HTML5 to analyze trends; administer the Services;
collect and store information such as user settings, anonymous browser identifiers and video
viewing history; supplement our server logs and other methods of traffic and response
measurement; track users’ location and movements around the Services; gather demographic
information about our user base; and to improve our understanding of traffic on the Services,
visitor behavior, and responses to promotional campaigns. We may receive reports based on the
use of these technologies by these third-party companies on an individual and aggregated basis.
For example, we may connect information about your IP address to known corporate or User
Information and use the associated information related to aggregate content preferences to assist
in our efforts to market services to you or the originating corporation(s). Various browsers may
offer their own management tools for removing Local Storage.


Disclosure to Third Parties


We may disclose your User Information to legal and regulatory authorities, our external advisors,
parties who Process User Information on our behalf (“Processors”), any party as necessary in
connection with legal proceedings, any party as necessary for investigating, detecting or
preventing criminal offense, any purchaser of our business, and any third party providers of
advertising, plugins or content used on the Services.


We may disclose your User Information to other entities within the Company for legitimate
business purposes (including operating the Services, and providing services to you), in
accordance with applicable law.


In addition, we may disclose your User Information to:


1. Legal and regulatory authorities, upon request, or for the purposes of reporting any actual or
suspected breach of applicable law or regulation.
2. Outside professional advisors (such as accountants, auditors, or lawyers), subject to binding
contractual obligations of confidentiality.
3. Third-party Processors (such as analytic providers; data centers; etc.) subject to the
requirements noted in this section.

4. Relevant party, law enforcement agency or court, to the extent necessary for the establishment,
exercise, or defense of legal rights.
5. Relevant party for the purposes of prevention, investigation, detection or prosecution of
criminal offense or the execution of criminal penalties, including safeguarding against and the
prevention of threats to public security.
6. Third-party acquirer(s) if we sell or transfer all or any relevant portion of our business or
assets (including in the event of a reorganization, dissolution or liquidation).
7. Third-party provider, where our Services use third-party advertising, plugins or content.
8. Sponsors of contests, competitions, sweepstakes and prize draws, or white papers, webcasts or
other downloads.


With respect to surveys, if responses are publicly disclosed, users will be notified at the time they
take the survey. Otherwise we will disclose only aggregate information regarding its users’
responses in surveys to other participants in the survey. Where surveys allow users to submit
written comments, and where eDiligence advises users of the possibility of such disclosure at the
time they take the survey, eDiligence reserves the right to disclose any information provided by
users, provided that no User Information identifying a specific user is disclosed.


We may share your User Information with our partners such as your name, postal address, email,
or other identifier. Our partners may also:
1. Collect information directly from your device, such as your IP address, device ID, advertising
ID, and information about your browser or operating system.
2. Combine User Information about you received from eDiligence with information about you
from other sites or services.
3. Place or recognize a unique cookie on your browser.


If we engage a third-party Processor to Process your User Information, the Processor will be
subject to binding contractual obligations to:
1. only Process the User Information in accordance with our prior written instructions; and
2. use measures to protect the confidentiality and security of the User Information; together with
any additional requirements under applicable law.


The Services contain links to other sites or partners whose information practices may be different
from ours. You should consult the privacy policy of these third parties to learn how your privacy
is protected.


User Information, Personal Information, and other data entered into Customer Applications will
remain within US-based datacenter facilities.


Controlling Your Information


Users may have the option to access their Personal Information.


Cookies & Pixel Tags


You may stop or restrict cookies and pixel tags on your computer or purge cookies from your
browser by adjusting your web browser preferences. However, if you “turn off,” purge, or
disable cookies or pixel tags, although you may still use the Services, you may not be able to use
all the features, functions, or services available on the Services.


California Users


The California Consumer Privacy Act (CCPA) provides certain rights for California users. These
rights include, in accordance with applicable law, the right to object to or request specific access,

portability, and deletion information of your own information. If you are a California resident
and wish to make such a request, please submit your request in writing using the information
found in the Contact Details section below.


eDiligence remains responsible for any of your Personal Information that is shared under the
onward transfer principle with third parties for external processing on our behalf, as described in
the “Disclosure to Third Parties” section. In compliance with the Principles, eDiligence commits
to resolve complaints about our collection or use of your personal information. Users with
inquiries or complaints regarding this Privacy Policy should first contact eDiligence using the
information in the “Contact Details” section below.


For more information concerning your use of the Services, please visit the eDiligence Terms of
Use. The eDiligence Terms of Use is incorporated by reference into this Policy. We recommend
that you review our Terms of Use regularly in order to review any changes we might make from
time to time.


Contact Details
If you have any comments, questions or concerns about any of the information in this Policy, or
any other issues relating to the Processing of User Information carried out by us, or on our
behalf, please contact: support@eDiligence.ai


Changes to This Policy


This policy was last updated on March.01.2022.


We may change this Policy from time to time, and all changes will be effective at the time we
post them. If we believe there is a significant change to this Policy or our data collection and use
practices, we will indicate on our websites that our Policy has changed prior to the change
becoming effective. The then-posted version of the Policy supersedes all prior versions. Your
continued access to or use of any of the Services shall be deemed your acceptance of the Policy.
We urge you to come back to this web page and review this Policy regularly so that you remain
aware of the terms and conditions that apply to you.