ExiaHost.com, Inc. ("ExiaHost", "our", "us", or "we") collects, uses, processes and discloses information in different ways. This Privacy Policy is designed to provide guidance to customers, visitors, business partners and our customer's customers (End Users) about how ExiaHost uses this information. In this Privacy Policy, these individuals and entities are referred to collectively as "Users." This Privacy Policy is part of ExiaHost's contract with its customers. If you are a customer, you must review all of our contracts to fully understand how this Privacy Policy fits with these contracts. Our contracts are set out here.

1. ExiaHost's Privacy Statement

ExiaHost does not offer for sale, share, or lease any information given to ExiaHost by an individual or entity subject to this Privacy Policy, except as provided in it. If you have questions about how ExiaHost may use information provided to it, and that question is not covered by this Privacy Policy, please contact us at the address provided in paragraph 14 prior to providing the information to ExiaHost. ExiaHost's services are for individuals over the age of eighteen. ExiaHost does not knowingly market to individuals under that age.

2. Third Parties May Have Different Privacy Policies from ExiaHost

This Privacy Policy only applies to information provided to ExiaHost. ExiaHost services may incorporate products provided by third parties (Third Party Products). To the extent this incorporation is transparent to ExiaHost's customers, the privacy policies of the providers of Third Party Products have been incorporated into this Privacy Policy. However, if a customer has the option of choosing a Third Party Product, or incorporates it into ExiaHost's services on its own, those privacy policies are specifically excluded from this Privacy Policy. It is a customer's obligation to determine how the privacy policies of Third Party Products not covered by this Privacy Policy affect their information, and that of their End Users.

3. ExiaHost complies with Safe Harbor Privacy Principles

ExiaHost complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce. These frameworks address the collection, use, and retention of personal information from European Union member countries and Switzerland. ExiaHost has certified that it adheres to both Safe Harbor Privacy Principles' respective provisions addressing notice, choice, onward transfer, security, data integrity, access, and enforcement. The EU has recognized the US Safe Harbor as providing adequate data protection. The seven applicable Safe Harbor Principles can be found in this Privacy Policy. ExiaHost has further committed to refer unresolved privacy complaints under the US-EU and US-Swiss Safe Harbor Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by ExiaHost, please visit the BBB EU SAFE HARBOR web site at http://www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.

4. How ExiaHost Collects Information

Depending on their use of ExiaHost's services, ExiaHost collects information from Users in the following ways:

1. From ExiaHost's web server
2. Using temporary internet files such as cookies, transparent gifs, and other similar tools (Identification Tools)
3. Directly from Users.

5. Information ExiaHost Collects from Web Server Logs

ExiaHost's web servers collect information from visitors to the websites linked to this Privacy Policy. Because each User's computer and browser configurations are different, ExiaHost may collect some, or all, of the following information during a User's visit:

1. Internet protocol address
2. The type of browser or computer used
3. The number of links clicked within ExiaHost's website
4. The state or country from which our website was accessed
5. The date and time of visit
6. The name of internet service provider used to access ExiaHost's website
7. The web page visited prior to coming to ExiaHost's website
8. The pages viewed on ExiaHost's website

6. Information Collected by ExiaHost Directly from Users

a. Registration Information
To purchase services from ExiaHost, Users must provide detailed information including contact information to ExiaHost. Users are required to provide this information to ExiaHost in order to purchase ExiaHost services. During the purchase process, Users may provide optional information to ExiaHost. If that information is provided, it is covered by this Privacy Policy; however, providing it is voluntary. This information is a subset of Identification Tools, and is referred to individually as "Registration Information."
b. Identification Tools
ExiaHost may use automated Identification Tools like cookies and Google Analytics. Each of these Identification Tools work differently, however, they all collect information related to the website you came to ExiaHost from, a User's operating system, browser type, where Users go on ExiaHost's website, length of time on ExiaHost's website, and where a User goes after visiting ExiaHost's website. In addition, Identification Tools may keep Users logged into ExiaHost's system. From time-to-time, ExiaHost may use Identification Tools that will be used to serve advertising and other information to Users after they visit ExiaHost's website. Because the technologies underlying Identification Tools differ, Users may, or may not, be able to choose not to provide information to them.
c. Support Information
When Users contact ExiaHost for support for their services they will be asked to match certain information that is in their Registration Information. This information will be used to identify them personally. In the course of providing support to Users, ExiaHost may annotate the Registration Information with information disclosed while providing support (Support Information).

7. Security Monitoring

ExiaHost takes the security of its network very seriously. To ensure network security, data integrity, and privacy, ExiaHost uses programs that monitor network traffic and access to its network. These programs collect information regarding User's use of ExiaHost's services, website and network (Traffic Information).

8. How ExiaHost Uses Information Covered by this Privacy Policy

a. Generally

1. ExiaHost is required to comply with relevant laws, regulations and judicial orders. Information covered by this Privacy Policy may be disclosed outside ExiaHost if ExiaHost determines, in its sole discretion, that such a disclosure is necessary or required. ExiaHost may also disclose this information if, in its sole discretion, such disclosure is necessary or required to protect its interests or the interests of its customers.
2. ExiaHost may disclose information covered by this Privacy Policy in connection with the sale of its business.
3. ExiaHost may aggregate information covered by this Privacy Policy and disclose it outside its business. This information will not identify Users individually.
4. ExiaHost may use information covered by this Privacy Policy to contact you directly to respond to questions, provide its services to you, manage your account, or to inform you of service announcements.
5. ExiaHost may use information covered by this Privacy Policy to inform you of new products and services. In informing you of new products and services, ExiaHost may include third party products and services. While ExiaHost may use information that identifies you individually to market these third party products and services, that information is not disclosed to the third parties. In this use of User information, third parties will only receive aggregate information. However, should a User respond to a marketing announcement, third parties will become aware of the User individually. Users may opt-out of receiving this information by clicking "unsubscribe" in any marketing material, or unsubscribe from your client profile. Only the email address from that communication will be removed from marketing lists.

b. Specific Information

1. Web Server Logs (described in paragraph 5)
   Information collected from Web Server Logs is not disclosed beyond ExiaHost except as set out in paragraph 5 in this Privacy Policy.
2. Registration Information (described in paragraph 6)
   ExiaHost will use Registration Information throughout its business and will pass Registration Information on to third parties for processing and use as necessary to provide ExiaHost's services to Users. ExiaHost requires these third parties to limit their use of Registration Information to those uses that facilitate providing ExiaHost's services to Users.
3. Identification Tools (described in paragraph 6)
   Information collected using Identification Tools, other than Registration Information, may identify Users individually. This information will be used to provide ExiaHost's marketing information to Users. Third parties may use this information in the aggregate; however, they are contractually prohibited from using this information to identify Users individually. ExiaHost uses cookies to save User's preferences and login information, and provide personalized functionality.
4. Support Information (described in paragraph 6)
   Support Information may identify Users individually. In addition to providing support to Users, ExiaHost may disclose Support Information to third party vendors in order to provide the support requested by the User. These third parties may disclose and use Support Information to improve their business processes and for marketing. Unless necessary to provide support to Users, ExiaHost will not disclose Support Information containing information that identifies Users individually to these third parties. During a support request, Users may request that ExiaHost not disclose Support Information to third parties. This request will prevent ExiaHost from providing support to Users.
5. Traffic Information (described in paragraph 7)
   Traffic Information may identify Users individually. ExiaHost will only use Traffic Information to ensure the integrity of its network, and for no other purpose. Traffic Information may be disclosed by ExiaHost to comply with its legal obligations and to law enforcement when obligated to do so.

9. How ExiaHost Protects your Information

ExiaHost uses technical security measures to prevent the loss, misuse, alteration, or unauthorized disclosure of information under our control. ExiaHost uses security measures including and not limited to: firewalls, nonpublic facing systems, complex passwords, anti-virus, and mitigation, and detection software. When ExiaHost asks Users to provide financial information (such as a credit card number) that data is protected using Transport Layer Security (TLS) technology. Electronic communication (for example: email) that Users may send ExiaHost may not be secure unless ExiaHost advises a User in advance that security measures will be in place prior to transmitting the information. Users should not send confidential information such as financial information, social security numbers, or passwords to ExiaHost through unsecured electronic communication.

10. How Users can Access and Correct Information Covered by this Privacy Policy

If a User wishes to access and/or update the information ExiaHost has collected, the User may either login to the ExiaHost website or client systems and view and change its information or contact ExiaHost's Accounting team via https://www.exiahost.com/clients/. If a User would like a list of client systems related to their account, this can also be obtained by contacting our Accounting team. Information covered by this Privacy Policy may be deleted upon a User's request. However, we reserve the right to retain information necessary to protect our interests. Unless specifically set out herein, information covered by this Privacy Policy will be retained by ExiaHost following termination of a User's Agreement.

11. Users May Transfer Information Covered by this Privacy Policy to Third Parties

Users may transfer their accounts to a third party by submitting a request in their client portal. The new owner will be bound by this Privacy Policy and the agreements set out in paragraph 2.

12. How and When this Privacy Policy is Modified

ExiaHost may modify this Privacy Policy at any time. Users will be notified of any change, other than a typographical change, by email and by an announcement in the client portal. Modifications are effective as set out in the notification.

13. How ExiaHost Assesses its Compliance with the Privacy Policy

ExiaHost uses a self-assessment approach to ensure compliance with this Privacy Policy and regularly verifies that the Privacy Policy is accurate, displayed, accessible and within the guidelines of the Safe Harbor Privacy Principles for both the EU and Switzerland.

14. Contacting ExiaHost about this Privacy Policy

If Users have any questions, comments or feedback regarding this Privacy Policy or the use and disclosure of personal information, please contact ExiaHost via email at clients@exiahost.com and ExiaHost will respond within a timely manner.