Common use of Privacy and Cybersecurity Clause in Contracts

Privacy and Cybersecurity. (a) The Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the information technology systems used by the Company and its Subsidiaries (the foregoing clauses (i)-(iii), “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) years, any Actions by any Person or, to the knowledge of the Company, by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any Privacy and Cybersecurity Requirements.

Privacy and Cybersecurity. (a) The Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing privacy and/or the privacy, security or Processing of personal informationPersonal Data (“Privacy Laws”), (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, policies and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security security, Processing of Personal Data, and the security of the information technology systems used by the Company and its Subsidiaries IT Systems (the foregoing clauses (i)-(iii), collectively, “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) yearsyears been, any Actions by any Person or, to the knowledge of the Company, by any or Governmental Authority, Authority pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries Subsidiaries, alleging a violation of any Privacy and Cybersecurity RequirementsRequirements or relating to any material incident in which Personal Data was stolen or improperly Processed.

Privacy and Cybersecurity. (a) The Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the information technology systems used by the Company and its Subsidiaries (the foregoing clauses (i)-(iii), “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) years, any Actions by any Person orPerson, to the knowledge of the Company, or any investigations by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any Privacy and Cybersecurity Requirements.

Privacy and Cybersecurity. (a) The Except as set forth on Section 4.22(a) of the Company Disclosure Letter, the Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the information technology systems used by the Company and its Subsidiaries (the foregoing clauses (i)-(iii), “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) yearsyears been, any Actions by any Person orPerson, to the knowledge of the Company, or any investigations by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any Privacy and Cybersecurity Requirements.

Privacy and Cybersecurity. (a) The Company and its Subsidiaries are in compliance with, and during the past three (3) years have been in compliance with, (i) all applicable Laws governing relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ contractual obligations concerning cybersecurity, data security and the security of the information technology systems used by the Company and its Subsidiaries (the foregoing clauses (i)-(iiii) through (iii), “Privacy and Cybersecurity Requirements”), other than any non-compliance that, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its Subsidiaries. There are not, and have not been in the past three (3) years, any Actions by any Person orPerson, to the knowledge of the Company, or any investigations by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries alleging a violation of any Privacy and Cybersecurity Requirements.

Privacy and Cybersecurity. (a) The Company and its Subsidiaries Subsidiary are in compliance with, and during the past three (3) years have maintained and been in compliance with, (i) all applicable Laws governing relating to the privacy and/or security of personal information, (ii) the Company’s and its Subsidiaries’ Subsidiary’s posted or publicly facing privacy policies, and (iii) the Company’s and its Subsidiaries’ Subsidiary’s contractual obligations concerning cybersecurity, personal information and data privacy and security and the security of the Company’s and its Subsidiary’s information technology systems used by the Company and its Subsidiaries (the foregoing clauses collectively, (i)-(iii), “Privacy and Cybersecurity Requirements”), in each case of (i)-(iii) above, other than any non-compliance thatthat would not reasonably be expected to be, individually or in the aggregate, has not been and would not reasonably be expected to be material to the Company and its SubsidiariesSubsidiary. There are not, and have not been in the past three (3) years, any Actions by any Person orPerson, to the knowledge of the Company, or any investigations by any Governmental Authority, pending to which the Company or any of the Company’s Subsidiaries its Subsidiary is a named party or, to the knowledge of the Company, threatened in writing against the Company or its Subsidiaries Subsidiary alleging a violation of any Privacy and Cybersecurity Requirements. During the past three (3) years, neither the Company nor its Subsidiary has received any written notice from any Person (including any Governmental Authority) relating to an alleged violation of Privacy and Cybersecurity Requirements.