Purpose
To protect the privacy and confidentiality of Personal Information that may be shared with Exlog from time to time by Client personal that require personal safety or security support.

Scope
This policy applies to any Exlog employees with role-based access to our infrastructure and/or systems.

Collecting & Use of Personal Information
Exlog may need to collect limited Personal Information during risk profile impacting events, to plan and conduct contingency operations that ensure the safety and security of Client personnel.

Exlog may also share limited Personal Information with our vetted ground/sea/air resources, that perform services under Exlog operational control, based on the situation and logistical requirements needed to mitigate the risk and safeguard the impacted Client personnel.

Exlog will only process Personal Information in a way that is compatible with the purpose for which it has been collected or subsequently authorized by the individual. Personal Information will be deleted when no longer required to support life safety or upon request.

Privacy Policy Notice & Agreement
When collecting Personal Information directly from individuals, we will strive to provide clear and appropriate notice about:

• The purposes for and why we require their Personal Information.
• On the ground resources to which we may disclose that information during life safety events.

Security
Exlog takes reasonable and appropriate measures to protect Personal Information from loss, misuse, and unauthorized access, including role and permission-based access processes and oversight. Exlog utilizes a cyber detection and response process which provides complete visibility over all endpoints regardless of location. Immediate triage efforts are taken on cyberthreats by the Cybersecurity Team to prevent, detect, and respond.