Table of contents

Privacy Notice

Last Updated: June 30, 2025

At BD Emerson LLC., (doing business as BD Emerson) ("we," "us," or "our") safeguarding your privacy is our top priority. This Privacy Notice explains how we may collect, use, and disclose (“process”) your personal information when you access and use our services that link to this Privacy Notice (including, our website, https://www.bdemerson.com/ (the “Site”), any sales, consulting services, marketing activities, events, social media platforms and other activities described in this Privacy Notice) (collectively, our “Services”). This Privacy Notice does not apply to your use of any third-party sites linked to this website.

BD Emerson primarily acts as a “data processor,” meaning we process personal information on behalf of our clients, who act as the “data controllers.” In this role, our clients determine the purposes and means of the data processing, and we process personal data strictly in accordance with their instructions and the terms of our data processing agreements.

However, in certain situations, BD Emerson may act as a “data controller.” This occurs when we independently determine the purposes and means of processing. This Privacy Notice applies only to the personal information we process in our capacity as a data controller. It does not apply to data we process on behalf of our clients. For information on how our clients handle your personal data, including your rights and how to exercise them, please refer to their respective privacy policies and contact them directly.

We reserve the right to update this Privacy Notice periodically. Any changes will be posted on our website and will take effect immediately. Your continued access to the Services constitutes your acceptance of the changes. We encourage you to review this Notice periodically to stay informed about how we are protecting your data.

What is Personal Information?

Personal Information refers to any information that identifies, relates to, or is reasonably capable of being associated with an identifiable individual or household. This includes, but is not limited to names, addresses, geolocation data, online identifiers, and other unique characteristics. Personal Information can also include indirect identifiers such as device identifiers and aggregated data if it can reasonably be linked to an individual.

An identifiable natural person, or "Data Subject," is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location information, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

Personal Information We Collect from You

We collect personal information you voluntarily provide when you express interest in our company, services, participate in related activities, or contact us directly. The type of information collected depends on the nature of your interaction, your choices, and the specific services you use.

We do not process sensitive information.

The personal information we collect may include the following:

Context	Types of Information	Primary Purpose for Collection and Use of Information
Client Information	We collect the names, usernames, and contact data of our clients and their employees with whom we may interact.	We are executing on a contractual obligation in contacting our clients and communicating with them concerning normal business administration such as billing, registration, and our services.
Client and User Account Information	We collect personal information from our clients and users of our Services when they create an account with us to access and use our Services. This information could include business contact data such as name, email address, title, company information and phone number.	We are executing on our contract by delivering services to our clients and managing the associated client relationship.
Cookies and First-Party Tracking	We use cookies and small data files. “Cookies” are small pieces of data that a website sends to a computer’s hard drive while a website is viewed.	We have a legitimate interest in making our website operate efficiently and in improving our marketing efforts and Services. See our Cookie Policy below.
Cookies and Third-Party Tracking	We participate in behavior-based advertising and the gathering of analytics. This means that a third-party uses technology (e.g., a cookie) to collect data about your use of our websites so that they can provide us with website and user analytics, as well as for the purposes of advertising products and services tailored to your interests on our website, or on other websites.	We have a legitimate interest in engaging in behavior-based advertising and capturing website analytics in improving our marketing efforts. For additional information on our use of cookies, please see our Cookie Policy below. Additionally, you can manage your cookie consent preferences in the cookie consent manager via our website’s cookie banner.
Email Interconnectivity	If you receive an email from us, we may use certain tools to capture data related to when you open our message or click on any links or banners contained within.	We have a legitimate interest in understanding how you interact with our communications to improve relevance and engagement.
Employment-related information	If you apply for a job posting or become an employee of BD Emerson, we collect the information necessary to process your application or to retain you as an employee. This may include, among other things, your name, address, email address, I-9 information, Social Security Number or Personal Public Service Number, work history, resume, EEO information, veteran status, disability status, healthcare information, and bank account information. Providing this information is required for employment.	We use information about current employees to fulfil our contract of employment or the anticipation of a contract of employment with you. In some contexts, we are also required by law to collect information about our employees. We are executing on a contractual obligation in using your information to have efficient staffing and workforce operations.
Feedback and Support	We collect personal information from you contained in any inquiry you submit to us regarding our Services, such as completing our online forms, calling, or emailing for the purposes of general inquiries, support and chat requests, or to report an issue. When you communicate with us through our live support chat or over the phone, your messages and calls may be recorded and analyzed for training, quality control, and for sales and marketing purposes. During such interactions, we will notify you of the recording via either voice prompt or script.	We have a legitimate interest in receiving and acting upon, your feedback, issues, or inquiries to improve support and service offerings.
Mailing List	When you sign up for one of our blogs, newsletter, mailing lists, or webinars, we collect contact information such as your name, email address and company affiliation.	We collect this information based on your consent, which you provide when you sign up for our blog, newsletter, mailing list, or webinar. You may withdraw your consent at any time by using the unsubscribe link in our communications or by contacting us directly.
Payment Information	We collect payment and billing information when you receive certain Services. For example, we ask you to designate a billing representative, including name and contact information, upon registration. You might also provide payment information, such as payment card details, which we collect via secure payment processing services.	We are executing on a contractual obligation in obtaining payments for certain Services.
Website Interactions	We use technology to monitor how you interact with our Services. This may include which links you click on, or information that you type into our online forms. This may also include information about your device or browser.	We have a legitimate interest in understanding how you interact with our Services to better improve them, and to understand your preferences and interests in order to select offerings that you might find most useful. We also have a legitimate interest in detecting and preventing fraud.
Social Media	When an individual interacts with our Services through various social media networks, such as when someone follows us or shares our content on Facebook, YouTube, LinkedIn, or other social networks, we may receive some information about individuals that they permit the social network to share with third-parties. The information we receive is dependent upon an individual’s privacy settings with the social network, and may include your profile information, profile picture, gender, username, user ID associated with your social media account, age range, language, country, and any other information you permit the social network to share with third-parties.	We use this information to update and maintain the page to provide you with content and features of our Services, as well as to improve our product outreach. Individuals should always review and, if necessary, adjust their privacy settings on third-party websites and social media networks and services before sharing information and/or linking or connecting them to other services. We have a legitimate interest and/or may obtain your consent to collect this information.
Web Logs and Usage Data	Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type, and settings and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called "crash dumps"), and hardware settings.	We have a legitimate interest in monitoring our networks and visitors to our Services. Among other things, it helps us to monitor performance and to understand which of our Services and features are the most popular.
Device Data	We collect device data such as information about your computer, phone, tablet, or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.	We have a legitimate interest in collecting device data to ensure the security, stability, and performance of our Services. This information helps us detect and prevent fraudulent activity, monitor system usage, optimize compatibility across different devices, and understand how users interact with our Services to improve functionality.
Location Data	We collect location data such as information about your device's location, which can be either precise or imprecise. How much information we collect depends on the type and settings of the device you use to access the Services. For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address). You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. However, if you choose to opt out, you may not be able to use certain aspects of the Services.	We collect geolocation information based on our legitimate interest in enhancing service relevance, optimizing user experience, and ensuring compliance with applicable location-based legal requirements.
User-generated Content (UGC)	Reviews, comments, or questions you submit, including feedback provided through surveys, contact forms, social media channels, or direct communications with our team.	We have a legitimate interest in collecting user-generated content to enhance our services and improve user experience.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

In addition to the information that we collect from you directly, we may also receive information about you from other sources, including third-parties, business partners, our affiliates, or publicly available sources. For example, if you submit a job application, or become an employee, we may conduct a background check.

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

BD Emerson has committed to complying with laws applicable to individual privacy and privacy breach notification that are enacted in the various jurisdictions in which it operates and offers its Services, collectively referred to as "Data Protection Laws."

If you are located in:

the European Economic Area, UK, or Switzerland, please also see the Supplemental European Privacy Statement below.
One of the United States with legislation protecting individual privacy, please also see the Specific Privacy Rights for United States Residents below.

How We Use Personal Information

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

To deliver and facilitate delivery of services to the user. We may process your information to provide you with the requested service.

To respond to user inquiries/offer support to users. We may process your information to respond to your inquiries and solve any potential issues you might have with the requested service.

To send administrative information to you. We may process your information to send you details about our products and services, changes to our terms and policies, and other similar information.

To enable user-to-user communications. We may process your information if you choose to use any of our offerings that allow for communication with another user.

To request feedback. We may process your information when necessary to request feedback and to contact you about your use of our Services.

To send you marketing and promotional communications. We may process the personal information you send to us for our marketing purposes, if this is in accordance with your marketing preferences. You can opt out of our marketing emails at any time. For more information, see “Your Privacy Rights” below.

To deliver targeted advertising to you. We may process your information to develop and display personalized content and advertising tailored to your interests, location, and more.

To protect our Services. We may process your information as part of our efforts to keep our Services safe and secure, including fraud monitoring and prevention.

To identify usage trends. We may process information about how you use our Services to better understand how they are being used so we can improve them.

To determine the effectiveness of our marketing and promotional campaigns. We may process your information to better understand how to provide marketing and promotional campaigns that are most relevant to you.

To save or protect an individual's vital interest. We may process your information when necessary to save or protect an individual’s vital interest, such as to prevent harm.

Although the sections above describe our primary purpose in collecting your information, in many situations we have more than one purpose. For example, if you sign up for our Services, we may collect your information to complete that transaction, but we also collect your information as we have a legitimate interest in maintaining your information after your transaction is complete so that we can quickly and easily respond to any questions about our Services.

If we wish to use your personal information for a purpose which is not compatible with the purpose for which it was collected for, we will request your consent, unless there is an exception which applies under applicable law. In all cases, we balance our legal use of your personal information with your interests, rights, and freedoms in accordance with applicable laws and regulations.

Cookie Policy

We use cookies (small text files placed on your device to track activity) and similar tracking technologies (such as web beacons and pixels) to collect information when you interact with our Services. These technologies help us:

Maintain the security and functionality of our Services
Fix bugs and prevent crashes
Save your preferences
Improve performance and user experience

We also permit third parties and service providers to use cookies and similar technologies for analytics and advertising purposes. These technologies may:

Help manage and display advertisements
Tailor ads to your interests
Send you reminders based on your communication preferences.

These advertisements may appear both on our Services and across other websites.

To the extent that the use of such technologies constitutes a “sale” or “sharing” (which includes targeted advertising under applicable U.S. state laws), you may opt out by following the instructions provided below in the section titled “Specific Privacy Rights for United States Residents.”

Google Analytics

BD Emerson uses Google Analytics to understand how users engage with our website. Google Analytics collects information such as:

Frequency of site visits
Pages visited and time spent on them
Actions taken while browsing
Device and browser information (IP address, browser type, operating system)
Approximate geolocation data.

This helps us enhance our website’s performance and improve the overall user experience.

Google Analytics operates through cookies that may remain on your device even after your session ends. You can control your preferences for Google Analytics through:

The cookie consent manager on our website.
Your browser settings (e.g., blocking or deleting cookies).
Installing the Google Analytics Opt-out Browser Add-on, which prevents Google Analytics from collecting data across websites.
Adjusting your ad settings via Google Ads Settings or mobile device settings.

For additional options, you may visit:

For more details on how Google collects and processes data, please see the Google Privacy and Terms page.

Note: Disabling Google Analytics may affect some functionality but will not prevent you from using our Services.

If you have further questions about the use of Google Analytics, please contact us at privacy@bdemerson.com .

Disclosure of Personal Information

We may share Personal Information with:

Vendors, Consultants, and Other Third-Party Service Providers. We may share your data with third-party vendors, service providers, contractors, or agents ("third parties") who perform services for us or on our behalf and require access to such information to do that work. These third parties are bound by contracts requiring them to protect your data, act only on our instructions, and not share your information with others.

The categories of third parties we may share personal information with are as follows:

Data Analytics Services
Ad Networks
Sales and Marketing Tools

With Business Partners: To provide integrated services or co-branded offerings, where applicable.
As Required by Law: To comply with legal obligations, protect against fraud, and ensure compliance with law enforcement and regulatory mandates.
Affiliates: We may share your information with our affiliates, in which case we will require those affiliates to honor this Privacy Notice. Affiliates include our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.
In Business Transactions: In connection with mergers, acquisitions, or sales of business assets, where Personal Information may be considered a transferrable asset.
Other Users: When you share personal information (for example, by posting comments, contributions, or other content to the Services) or otherwise interact with public areas of the Services, such personal information may be viewed by all users and may be publicly made available outside the Services in perpetuity. Similarly, other users will be able to view descriptions of your activity, communicate with you within our Services, and view your profile.
With Consent: Where you explicitly permit the sharing of your information, ensuring transparency and choice.

Use of Subprocessors

BD Emerson engages certain third-party service providers (“subprocessors”) to support the delivery of our Services. We maintain an up-to-date list of these subprocessors in our Trust Center, where we disclose the nature of the services provided. We may add or replace subprocessors as our business needs evolve and will update our subprocessor list accordingly.

We encourage users to review our Trust Center periodically to stay informed of any updates. In situations where we are required to provide notice under applicable law or a specific contractual obligation, we will notify users of such changes directly. By continuing to use our Services, you acknowledge and accept any changes made to our subprocessor list. If you have questions or concerns about our subprocessors, please contact us at privacy@bdemerson.com .

Legal Basis for Processing your Information

If you are located in the EU or UK, this section applies to you.

The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases to process your personal information:

Consent. We may process your information if you have given us permission (i.e., consent) to use your personal information for a specific purpose. You can withdraw your consent at any time.
Performance of a Contract. We may process your personal information when we believe it is necessary to fulfill our contractual obligations to you, including providing our Services or at your request prior to entering into a contract with you.

Legitimate Interests. We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms. For example, we may process your personal information for some of the purposes described in order to:

Send users information about special offers and discounts on our products and services.

Develop and display personalized and relevant advertising content for our users.

Analyze how our Services are used so we can improve them to engage and retain users.

Support our marketing activities.

Diagnose problems and/or prevent fraudulent activities.

Understand how our users use our products and services so we can improve user experience.

Legal Obligations. We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved.

Vital Interests. We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.

If you are located in Canada, this section applies to you.

We may process your information if you have given us specific permission (i.e., express consent) to use your personal information for a specific purpose, or in situations where your permission can be inferred (i.e., implied consent). You can withdraw your consent at any time by sending an email to privacy@bdemerson.com .

In some exceptional cases, we may be legally permitted under applicable law to process your information without your consent, including, for example:

If collection is clearly in the interests of an individual and consent cannot be obtained in a timely way.

For investigations and fraud detection and prevention.

For business transactions provided certain conditions are met.

If it is contained in a witness statement and the collection is necessary to assess, process, or settle an insurance claim.

For identifying injured, ill, or deceased persons and communicating with next of kin.

If we have reasonable grounds to believe an individual has been, is, or may be victim of financial abuse.

If it is reasonable to expect collection and use with consent would compromise the availability or the accuracy of the information and the collection is reasonable for purposes related to investigating a breach of an agreement or a contravention of the laws of Canada or a province.

If disclosure is required to comply with a subpoena, warrant, court order, or rules of the court relating to the production of records.

If it was produced by an individual in the course of their employment, business, or profession and the collection is consistent with the purposes for which the information was produced.

If the collection is solely for journalistic, artistic, or literary purposes.

If the information is publicly available and is specified by the regulations.

How Long We Keep Your Information

We retain your personal information only for as long as necessary to fulfill the purposes described in this Privacy Notice, unless a longer retention period is required or permitted by law (such as for tax, accounting, or other legal obligations), or unless you request that we delete it.

The specific retention period depends on the nature of the personal information and the reasons for which it was collected. When determining how long to retain personal information, we consider several factors, including:

The amount, nature, and sensitivity of the information.
The potential risk of harm from unauthorized use or disclosure.
The purposes for processing and whether those purposes can be achieved through other means.
Any applicable legal, regulatory, or contractual requirements.

When we no longer have a legitimate business need to process your personal information, we will either delete or anonymize it. If immediate deletion is not possible (for example, because the information is stored in backup archives), we will securely store and isolate it from further processing until deletion becomes feasible.

In some cases, we may anonymize your personal information (so that it can no longer be associated with you) for research, statistical, or other business purposes. Aggregated, anonymized, or de-identified data may be retained indefinitely. Additionally, we may retain personal data for a commercially reasonable period to meet backup, archival, audit, dispute resolution, or legal compliance needs.

Information Security

We implement appropriate and reasonable technical, physical, and organizational safeguards to protect your personal information from accidental loss, unauthorized access, disclosure, alteration, or destruction. These measures include access restrictions, encryption, procedural safeguards, and secure data hosting environments. For more details on our security protocols and certifications, please visit our Trust Center.

Access to your personal information is limited to authorized personnel who require the data to perform their duties and who are trained on the importance of maintaining its confidentiality. Our service providers and business partners are contractually obligated to protect personal information and are prohibited from using it for unauthorized purposes.

However, despite our efforts, no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee that cybercriminals, hackers, or other unauthorized third parties will never be able to defeat our security measures or improperly access, steal, or modify your data.

Transmission of personal information to and from our Services is at your own risk. You should only access our Services through secure networks and environments. If we are legally required to inform you of a data breach, we may notify you electronically, in writing, or by telephone, in accordance with applicable laws.

Data Transfers

We transfer and store data in the United States. Where required, we implement appropriate safeguards for international data transfers, such as industry best practices and compliance with applicable regulations. These measures ensure that personal data remains protected even when transferred outside these jurisdictions.

Children’s Policy

We do not knowingly collect, solicit data from, or market to children under 18 years of age, nor do we knowingly sell such personal information. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at privacy@bdemerson.com.

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

· Right to Access: You have the right to access your personal data. If required by law, upon request, we will grant you reasonable access to the personal information that we have about you.

· Right to Rectification: You have the right to correct inaccurate or incomplete data.

· Right to Erasure: You have the right to request the deletion of your data under certain conditions.

· Right to Restrict Processing: You have the right to limit the use of your data in specific scenarios.

· Right to Data Portability: You have the right to receive your data in a machine-readable format to enable transfer to another service provider.

· Right to Object: You have the right to object to the processing of your data for specific purposes, such as direct marketing or automated decision-making. Verification of identity may be required to process requests.

· Right Not to Be Subject to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal or similarly significant effects concerning you.

To exercise any of the above rights, please email privacy@bdemerson.com . We will consider and act upon any request in accordance with applicable data protection laws.

If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your Member State data protection authority or UK data protection authority. If you are located in Switzerland, you may contact the Federal Data Protection and Information Commissioner.

Withdrawing your consent: If we are relying on your consent to process your personal information, which may be express and/or implied consent depending on the applicable law, you have the right to withdraw your consent at any time. You can withdraw your consent at any time by emailing us at privacy@bdemerson.com , by calling toll-free at +1 (800) 882-0994, or by referring to the contact details at the bottom of this document.

However, please note that this will not affect the lawfulness of the processing before its withdrawal nor, when applicable law allows, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.

Opting out of marketing and promotional communications: You can unsubscribe from our marketing and promotional communications at any time by clicking on the unsubscribe link in the emails that we send, or by contacting us by emailing us at privacy@bdemerson.com. You will then be removed from the marketing lists. However, we may still communicate with you — for example, to send you service-related messages that are necessary for the administration and use of your account, to respond to service requests, or for other non-marketing purposes.

Controls For Do-Not-Track Features

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Notice.

California law requires us to let you know how we respond to web browser DNT signals. Because there currently is not an industry or legal standard for recognizing or honoring DNT signals, we do not respond to them at this time.

Specific Privacy Rights for United States Residents

If you are a resident of California, Connecticut, Colorado, Delaware, Virginia, Utah, Texas, Tennessee, Oregon, New Jersey, New Hampshire, Montana, Kentucky, Iowa, Indiana or Florida, you may have the right to request access to and receive details about the personal information we maintain about you and how we have processed it, correct inaccuracies, get a copy of, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. These rights may be limited in some circumstances by applicable law.

Depending upon the state where you live, you may also have the following rights:

Right to obtain a list of the categories of third parties to which we have disclosed personal data (as permitted by applicable law, including California's and Delaware's privacy law).

Right to obtain a list of specific third parties to which we have disclosed personal data (as permitted by applicable law, including Oregon’s privacy law).

Right to limit use and disclosure of sensitive personal data (as permitted by applicable law, including California’s privacy law).

Right to opt out of the collection of sensitive data and personal data collected through the operation of a voice or facial recognition feature (as permitted by applicable law, including Florida’s privacy law).

We have collected the following categories of personal information in the past twelve (12) months:

Category	Examples	Collected
Identifiers	Contact details, such as real name, alias, postal address, telephone or mobile contact number, unique personal identifier, online identifier, Internet Protocol address, email address, and account name	NO
Personal information as defined in the California Customer Records statute	Name, contact information, education, employment, employment history, and financial information	NO
Protected classification characteristics under state or federal law	Gender, age, date of birth, race and ethnicity, national origin, marital status, and other demographic data	NO
Commercial information	Transaction information, purchase history, financial details, and payment information	NO
Biometric information	Fingerprints and voiceprints	NO
Internet or other similar network activity	Browsing history, search history, online behavior, interest data, and interactions with our and other websites, applications, systems, and advertisements	NO
Geolocation data	Device location	YES
Audio, electronic, sensory, or similar information	Images and audio, video or call recordings created in connection with our business activities	NO
Professional or employment-related information	Business contact details in order to provide you our Services at a business level or job title, work history, and professional qualifications if you apply for a job with us	YES
Education Information	Student records and directory information	NO
Inferences drawn from collected personal information	Inferences drawn from any of the collected personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics	NO
Sensitive personal Information	Sensitive personal information may include data revealing an individual’s racial or ethnic origin, religious or philosophical beliefs, sexual orientation, gender identity, health information, genetic or biometric data, precise geolocation, or information concerning a person’s political opinions or union membership. In certain jurisdictions, this also includes government-issued identification numbers, financial account credentials, and information about a person’s sex life or criminal history.	NO

We may also collect other personal information outside of these categories through instances where you interact with us in person, online, or by phone or mail in the context of:

Receiving help through our customer support channels;

Participation in customer surveys or contests; and

Facilitation in the delivery of our Services and to respond to your inquiries.

How to Exercise Your Rights

To exercise these rights, you can contact us by submitting a data subject access request, by emailing us at privacy@bdemerson.com , by calling toll-free at +1 (800) 882-0994, or by referring to the contact details at the bottom of this document.

We will honor your opt-out preferences if you enact the Global Privacy Control (GPC) opt-out signal on your browser.

Under certain US state data protection laws, you can designate an authorized agent to make a request on your behalf. We may deny a request from an authorized agent that does not submit proof that they have been validly authorized to act on your behalf in accordance with applicable laws.

Request Verification

Upon receiving your request, we will need to verify your identity to determine you are the same person about whom we have the information in our system. We will only use personal information provided in your request to verify your identity or authority to make the request. However, if we cannot verify your identity from the information already maintained by us, we may request that you provide additional information for the purposes of verifying your identity and for security or fraud-prevention purposes.

If you submit the request through an authorized agent, we may need to collect additional information to verify your identity before processing your request and the agent will need to provide a written and signed permission from you to submit such request on your behalf.

Appeals

Under certain US state data protection laws, if we decline to take action regarding your request, you may appeal our decision by emailing our DPO at privacy@bdemerson.com . We will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If your appeal is denied, you may submit a complaint to your state attorney general.

California "Shine the Light" Law

California Civil Code Section 1798.83, also known as the "Shine The Light" law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we shared personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us by sending an email to privacy@bdemerson.com .

Updates to this Privacy Notice

We may update this Privacy Notice from time to time. The updated version will be indicated by an updated "Revised" date at the top of this Privacy Notice. If we make material changes to this Privacy Notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Notice frequently to be informed of how we are protecting your information.

CONTACT US ABOUT THIS NOTICE

If you have questions or comments about this Notice, you may send us an email at privacy@bdemerson.com or by phone at (800) 882-0994, or contact us by post at:

BD Emerson LLC

Data Protection Officer

9702 Gayton Road, Suite 303

Richmond, VA 23238

United States

Last Updated: June 30, 2025

Supplemental European Privacy Rights Statement

If you are a resident of the European Economic Area, we rely on our legitimate interest, contractual relationship, and you consent as described in this Privacy Notice to process your personal information. Additionally, subject to any exemptions as provided by law, you may have certain rights regarding the personal information we maintain about you. We offer you certain choices about what personal information we collect from you, how we use that information, and how we communicate with you. If at any time you wish to exercise your rights, please reach out to us in accordance with the “Contact Us” section below.

According to the GDPR, UK GDPR, and FADP, you have the following rights:

Right of Access. If you ask us, we will confirm whether we are processing your personal information and, if so, provide you with a copy of that personal information along with certain other details. If you require additional copies, we may charge a reasonable fee.

Right to Rectification. If your personal information is inaccurate or incomplete, you may be entitled to ask that we correct or complete it.

Right to Erasure. You may ask us to erase your personal information in some circumstances, such as where we no longer need it, or you withdraw your consent (where applicable) and where there is no other legal basis for processing.

Right to Restrict Processing. You may ask us to restrict or ‘block’ the processing of your personal information in certain circumstances, such as if you contest its accuracy or object to us processing it.

Right to Data Portability. You may have the right to obtain your personal information from us that you consented to give us or that was provided to us as necessary in connection with our contract with you, and if the processing is carried out by automated means.

Right to Object. You may ask us at any time to stop processing your personal information, and we will do so: (a) if we are relying on a legitimate interest to process your personal information, unless we demonstrate compelling legitimate grounds for the processing or your data is needed to establish, exercise, or defend legal claims; or (b) we are processing your personal information for direct marketing and, in such case, we may keep minimum information about you (for example, in a suppression list) as necessary for our and your legitimate interest to ensure your opt out choices are respected in the future and to comply with data protection laws.

Right to Withdraw Consent. If we rely on your consent to process your personal information, you may have the right to withdraw that consent at any time, but this will not affect any processing of your data that has already taken place.

Right to lodge a Complaint. If you have a concern about our privacy practices, including the way we handled your personal information, you can report it to the data protection authority that is authorized to hear those concerns.

Please note that the above rights are not absolute, and we may be entitled to refuse requests, wholly or partly, where exceptions under applicable law apply. We will not discriminate against you for exercising such rights.

Except as described in this Notice or provided for under applicable privacy laws, there is no charge to exercise your legal rights. However, if your requests are manifestly unfounded or excessive, in particular because of their repetitive character, we may charge a reasonable fee taking in account the administrative costs of providing the information or taking the action requested; or refuse to act on the request and notify you of the reason for refusing the request.

Contact Us

If you are a resident in the European Economic Area, we are the "data controller" of your personal information. We have appointed to be our representative in the EEA. You can contact them directly regarding our processing of your information via email at datarep@h4t.io .

If you are a resident in the United Kingdom, we are the "data controller" of your personal information. We have appointed H4T to be our representative in the UK. You can contact them directly regarding our processing of your information via email at datarep@h4t.io .

If you have questions or comments about this Statement, you may send us an email at privacy@bdemerson.com or by phone at (800) 882-0994, or contact us by post at:

BD Emerson LLC

Data Protection Officer

9702 Gayton Road, Suite 303

Richmond, VA 23238

United States