Effective Date: October 1, 2017

CloudVisit Information Technology, Inc. (“DBA CloudVisit”) adopted this Privacy Policy (“Privacy Policy”) to inform the user (“you”, “your”) that it collects personal, personally identifiable, and non-personal information when you use Ericsson Remote Access and to explain how this information is used. CloudVisit has also adopted this Privacy Policy because it respects your privacy and believes that it should clearly and transparently disclose its privacy practice to the User. You should contact CloudVisit directly with any questions or concerns.

CLOUDVISIT MAY CHANGE, MODIFY, AMEND, SUSPEND, TERMINATE, OR REPLACE THIS PRIVACY POLICY FROM TIME TO TIME AND WITHIN ITS SOLE AND ABSOLUTE DISCRETION. IN THE EVENT CLOUDVISIT CHANGES, MODIFIES, AMENDS, OR REPLACES THIS PRIVACY POLICY, THE EFFECTIVE DATE, LOCATED ABOVE, WILL CHANGE. YOUR CONTINUED USE OF THE WEBSITES AND OR APP AFTER A CHANGE IN THE EFFECTIVE DATE OF THIS PRIVACY POLICY CONSTITUTES YOUR MANIFESTATION OF ASSENT TO THE CHANGE, MODIFICATION, AMENDMENT, OR REPLACEMENT CONTAINED WITHIN.

CloudVisit may collect the following personal or Personally Identifiable Information (“PII”) from you:

• First and last name
• Business Name or Company
• E-mail Address
• Country
• State
• Phone number
• Language
• Any other information that you voluntarily submit to Remote Access directly, such as by registering, filling out a form, or using chat functionality

CloudVisit may also collect the following additional information from you:

• Your geolocation
• Your IP address
• Your geoIP
• Your browser and search engine information
• Your device information
• Your visitor history
• Your usage of the Portal, including, without limitation, any links or items clicked or pages viewed and statistics
• Information stored in cookies, pixel tags, or web beacons
• Analytical data from system proprietary reporting data
• Any other additional analytic data that you voluntarily submit to the Ericsson Remote Access

CloudVisit may collect this personal information from you through various channels, including, but not limited to, through your voluntary submission of information to the Ericsson Remote Access, through requests initiated by you through Ericsson Remote Access, through communication with third parties, through the collection and analysis of information concerning your computer and browsing activities such as speed tests, through the use of cookies and through other sources permitted by law.

Ericsson Remote Access also utilizes Cookies. Cookies are identifiers that are shared between your computer and Ericsson Remote Access to enable the software to recognize your browser and to provide certain features. Remote Access uses cookies to understand and save your preferences for future visits; to compile aggregate data about site traffic and site interactions in-order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.

CloudVisit uses this personal or personally identifiable information to:

• Provide you with access to Remote Access
• Personalize your experience to deliver the content and product offerings in which you are most interested
• Process any requests made by you; process any functionality or business contemplated by Remote Access
• Communicate with you, respond to customer service requests
• Improve Ericsson Remote Access
• Identify and fix problems with Remote Access
• Update you on changes to Remote Access
• Communicate with you concerning your account
• Complete a session you initiated or are a participant in
• Inform you of additional products, services, and functionality being made available through Remote Access or related services being made available by Ericsson

You further authorize the following specific uses:

• Enable your use of Ericsson Remote Access and its associated services
• Improve algorithms
• Measure service usage
• Develop new features
• Contact and communicate with you, whether through email, telephone, live chat, video and audio conferences or messages within Ericsson Remote Access
• Customize and/or tailor Ericsson Remote Access and your User experience
• Aggregate certain information that does not include your personal information and discloses it for analysis, demographic profiling
• Transmit and process your information and actions within the Website
• Provide statistical information, and include you in the same, where applicable
• Provide you with technical service and support, including updates
• Store, archive, retrieve, and make copies of your User generated content
• Understand your needs and requests
• Prevent and detect illegal activities or violations of your Terms of Use
• Facilitate your use of Ericsson Remote Access and upgrades/replacements to the Remote Access

We use a proprietary reporting system to log when users view specific pages or take specific actions within Ericsson Remote Access. This information is only shared with Ericsson, Inc. in-order to improve system performance.

CloudVisit stores and protects your personal or personally identifiable information in the following manner:

Your personal information is stored and processed on computers and servers in the United States, and European Union to which only a limited number of individuals have access and, through your use of Ericsson Remote Access, you acknowledge the processing and storage of your personal and personally identifiable information. You understand that CloudVisit may continue to store your information for a predetermined time after you cease use of the service or disable your account as defined in retention rules and limited by the agreement between CloudVisit and Ericsson.

CloudVisit uses commercially reasonable efforts and standard technology, such as Malware scanning, and encryption to store and help prevent against the unauthorized disclosure of your information. Though it undertakes commercially reasonable efforts to protect your information, no website, software, or online service is completely safe.

To protect your Personal Information, CloudVisit uses specific security measures, such Secure Sockets Layer (SSL) protocol, which encrypts information you input at 128-bit strength. This is denoted in most web-browsers by a small padlock appearing on the bottom bar of the window and the address of the window changing from http:// to https://, meaning a secure connection.

We retain files, including audio and video recordings, screen captures, checklists, images, and exports, for two years. During this two-year period, CloudVisit users with host, editor, customer and supplier access permissions will have the ability to review retained personal information.

After the two year period we retain files for an additional year during which time only system administrators will have the ability to review and/or restore files. In the case where an administrator restores a file, personal data will be available for host, editor, customer and supplier review for a 30-day period prior to being moved back into restricted view.

CloudVisit does not collect or share any of your personal information with any third parties for direct marketing purposes. CloudVisit may share your personal or personally identifiable information with third parties in the following circumstances:

• Where CloudVisit has obtained your consent
• Where sharing or disclosure of your personal or personally identifiable information is necessary to provide you with Remote Access and/or associated services (We may share your personal or personally identifiable information with trusted third parties who assist CloudVisit in operating Remote Access, providing the associated services, and conducting our business)
• Where sharing or disclosure of your personal or personally identifiable information is necessary to share with CloudVisit parents, subsidiaries, successors, assigns, licensees, affiliates, or business partners
• Where CloudVisit has been purchased by a third-party or in the event of a sale of a substantial share of Aurora’s assets
• Where sharing or disclosure of your personal or personally identifiable information is necessary to respond to requests by government authorities
• Where your personal or personally identifiable information is demanded by a court order or subpoena
• Where sharing or disclosure of your personal or personally identifiable information is needed to protect the employees, independent contractors, officers, directors, members, Users, or owners/shareholders of Aurora
• Where sharing or disclosure of your personal or personally identifiable information is needed to help prevent against fraud or the violation of any applicable law, statute, regulation, ordinance, or treaty
• Where CloudVisit is otherwise legally obligated to share your personal or personally identifiable information

You understand and agree that CloudVisit may share your information with other users that have been pre-approved or approved by Ericsson to complete the services offered.

You may stop CloudVisit from collecting your personal or personally identifiable information by ceasing your use of Ericsson Remote Access. You may contact CloudVisit with any requests regarding your information, but CloudVisit reserves the right to act or not act upon such requests.

Purchase or sale of the Website and/or other assets

CloudVisit may purchase other businesses or sell components of its business, including, but not limited to, Ericsson Remote Access. In the event CloudVisit purchases another business or sells any component of its business, your personal and personally identifiable information will continue to be used consistent with the terms of this Privacy Policy.

Your obligations when using the Ericsson Remote Access

Inform CloudVisit of any changes to your personal or personally identifiable information, and protect the security of your Username, password, and your personal or personally identifiable information.

Third party services and third party links

CloudVisit may outsource or subcontract some of our technical support, tracking and reporting functions, database management functions, and other services to third parties. We may share information from or about you with them so that they can perform their services as long as they comply with this Privacy Policy. You understand and agree that CloudVisit will not be held responsible for any third party communications sent by entities that CloudVisit does not own or control any third party links (including advertisements). You are encouraged to review any third party privacy policies before utilizing any such third party service.

CloudVisit may include or offer third party links, products, and/or services on Ericsson Remote Access and provide third party links to the same. These third party Websites have separate and independent privacy policies. CloudVisit has no responsibility or liability for the content and activities of such third parties and their technology systems. We encourage you to read carefully the privacy policies of all such third party Websites or systems. We seek to protect the integrity of Ericsson Remote Access and therefore welcome any feedback about any such third party websites or systems.

Minors

The Website is not intended for or directed to Users under the age of 13, and CloudVisit does not knowingly or intentionally collect Personal Information from children under the age of 13 or other minors. Where appropriate, CloudVisit takes reasonable measures to determine that Users are adults of legal age and to inform minors not to submit such information to the Website or in response to advertisements. If you are concerned that personal or personally identifiable information may have been inadvertently provided to or collected by Aurora, please contact us immediately so appropriate steps may be taken to remove such information from the CloudVisit database.

Fair Information Practice Principles (“FIPPs”)

The Website is in compliance with the Federal Trade Commission’s FIPPs. In the event of a data breach, we take responsive action by notifying you via e-mail within seven (7) business days of any such breach. Specifically, we adhere to the Individual Redress Principle, which requires individuals to have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law.

EU/US Privacy Shield Framework:

CloudVisit complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.

CloudVisit has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms of this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.

CloudVisit certifies that it adheres to the Privacy Shield Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement for personal data submitted by our customers in participating European countries through the Services, and our Privacy Shield certification will be available here. We may also process personal data our customers submit relating to individuals in the EU via other compliance mechanisms, including data processing agreements based on the EU Standard Contractual Clauses.

Data Processed

We process the data so that our customers can effectively manage the utilization of the software products they pay for. In providing these Services, we process data our customers submit to the Services or instruct us to process on their behalves in connection with the Services ("Customer Data"). While our customers decide what data to submit, Customer Data typically includes profile information and communications between users or among groups of users (e.g., channels), including message text, files, comments, and links.

Purposes of Data Processing

We process Customer Data submitted by customers for the purpose of providing the Services to customers. To fulfill these purposes, we may access data to provide the Services, to prevent or address service or technical problems, to respond to customer support matters, to follow the instructions of our customer who submitted the data, or in response to contractual requirements with our customers.

Third Parties with Whom We May Share Customer Data

We use a limited number of third party providers to assist us in providing the Services to our customers. As of the date hereof, these third party providers perform technical operations such as database monitoring, data storage and hosting services and customer support software tools. These third parties may access, process or store personal data in the course of providing these services, but based on our instructions only.

If we receive personal data subject to our certification under the Privacy Shield and then transfer it to a third-party service provider acting as an agent on our behalf, we have certain liability under the Privacy Shield if both (i) the agent processes the personal data in a manner inconsistent with the Privacy Shield and (ii) we are responsible for the event giving rise to the damage.

Questions or Complaints

If you are a resident of a European country participating in the Privacy Shield and you believe we maintain your personal data within the scope of this Privacy Shield certification, you may direct any questions or complaints concerning our Privacy Shield compliance to privacy@cloudvisittm.com or at our mailing address:

We will work with you to resolve your issue.

Dispute Resolution

If you are a resident of a European country participating in Privacy Shield and you have not received timely response to your concern, or we have not addressed your concern to your satisfaction, you may seek further assistance, at no cost to you, from JAMS (formerly known as “Judicial Arbitration and Mediation Services”), which is an independent dispute resolution body in the United States. JAMS maintains a website at https://www.jamsadr.com .

We also commit to cooperate with competent EU data protection authorities (DPAs) with regard to our customers end users’ human resources data transferred from a European country participating in the Privacy Shield in the context of the employment relationship.

Arbitration

You may also be able to invoke binding arbitration for unresolved complaints but prior to initiating such arbitration, a resident of a European country participating in the Privacy Shield must first: (1) contact us and afford us the opportunity to resolve the issue; (2) seek assistance from JAMS; and (3) contact the U.S. Department of Commerce (either directly or through a European Data Protection Authority) and afford the Department of Commerce time to attempt to resolve the issue. If such a resident invokes binding arbitration, each party shall be responsible for its own attorney’s fees. Please be advised that, pursuant to the Privacy Shield, the arbitrator(s) may only impose individual-specific, non-monetary, equitable relief necessary to remedy any violation of the Privacy Shield Principles with respect to the resident.

U.S. Federal Trade Commission Enforcement

Our Privacy Shield compliance is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).

Right of Access

Some international users (including those whose personal data is within the scope of this Privacy Shield certification) have certain legal rights to access certain personal data we hold about them and to obtain its correction, amendment or deletion. Those users may exercise some of those rights through the options described in our Privacy Policy. Please be advised that because our personnel have a limited ability to identify and access an individual user’s personal data that a customer has submitted to the Services, if you wish to request access, to limit use, or to limit disclosure, we may first refer your request to the customer who submitted your personal data, and we will support them as needed in responding to your request.

Requirement to Disclose

We may disclose personal data when we have a good-faith belief that such action is necessary to: conform to legal requirements or to respond to lawful requests by public authorities, including to meet national security or law enforcement requirements; or to enforce our contractual obligations.

https://www.privacyshield.gov

Contact and Notices

Any questions or concerns regarding this Privacy Policy may be submitted to CloudVisit at: