Bring My Device (BMD) Policy (Philippine Employees)

INTRODUCTION
The purpose of this policy is to define the procedures and expectations for employees of Alorica
Teleservices, Inc.; Alorica Philippines, Inc.; Alorica Clark Philippines, Inc.; and Alorica Asia (ROHQ),
Ltd.) (“Alorica” or the “Company”) who use personal cellular phones, smartphones, personal
computers, laptops, tablets, other media devices, accessories, services such as internet and
telecommunications services, telephones, printers, and peripherals (such as mice, keyboards, power
and network cords, printers, paper and ink) (“Personal Devices”)1 for Alorica business purposes, either
at the employee’s home or other remote location, in a Company facility, or during travel or other
remote assignments.

By connecting their Personal Devices to the Company’s network (as applicable) and using them for
Company purposes, an employee consents to the provisions of this policy.

Using a Personal Device for business purposes is a privilege. The Company reserves the right to
disconnect Personal Devices from the Company network or disable company-provided services used
with them without notification. Further, the Company may also revoke the privilege of using a
Personal Device for business purposes if an employee does not abide by this policy or otherwise at
the discretion of the Company. Failure to abide by Company policy in connection with the use of a
Personal Device for Company purposes may result in disciplinary action up to and including
employment termination.

ACCEPTABLE AND UNACCEPTABLE USE

The Company defines acceptable business use as activities which directly or indirectly support
the business of Alorica. When using a Personal Device for business purposes, employees must:

• Comply with all Company policies, as applicable, when using Personal Devices for Company
purposes, including without limitation the Company's Workplace Technology and other IT
policies; Harassment, Discrimination and Retaliation policy; Media and Social Media policies;
Business Ethics policies; Timekeeping policy; and other policies in the Employee Handbook.
• Comply with applicable law, including those which regulate our business and that of our clients.
• Employ reasonable measures to physically secure their Personal Devices, whether they
are actually in use. These measures include but are not limited to the following:

-Make sure that any device has the necessary updates, such as operating
system updates (like iOS or android) and software/antivirus updates.
-Ensure that the computer, laptop, or device, is used in a safe location,
for example, the employee must keep sight of it and minimize who else can view
the screen, particularly if working with confidential information.
-Lock the device if it will be left unattended for any reason.
-Make sure that the devices are turned off, locked, or stored carefully
when not in use.
-When a device is lost or stolen, take steps immediately to ensure a
remote memory wipe, where possible.

1
References to Personal Devices in this policy may refer to all Personal Devices or a subset of them, as applicable.
 • Regularly update their Personal Devices with the latest software and/or security updates.
• Immediately notify their supervisor of any of the following:
o when any Personal Device necessary to perform one’s job duties becomes
irreparably damaged, lost, or stolen
o when any Personal Device which had access to the Company information
systems or maintained confidential Company information is lost or stolen
o if the employee has a reasonable belief that his or her personal device or the
data contained therein has been accessed or acquired by an unauthorized party
o if the use of the Personal Device is no longer required for business purposes or if the
Personal Device is transferred to third party, whether on a permanent or temporary
basis (e.g. in case of support or repair)
o the employee wishes to sell, transfer, or dispose of the Personal Device

Personal Devices may not be used at any time to:

• Store or transmit illicit or illegal materials
• Engage in illegal activity
• Improperly store, copy, download, print, or transmit proprietary or confidential information
belonging to Alorica, its clients, or their customers
• Otherwise engage in conduct which is contrary to Company policy

Except as permitted by applicable law (such as permissible use of a GPS/navigation feature), employees
are prohibited from using Personal Devices while driving a vehicle in connection with performing
services for the Company, whether the use is personal or Company-related.

Alorica also strongly recommends against bringing a Personal Device to a location identified by the U.S.
State Department as “high risk” to minimize threats to the security and integrity of Alorica’s data and
technology infrastructure.

DEVICE COMPATIBILITY
Personal Devices may be evaluated for compatibility with Alorica’s BMD program. For Personal
Devices which will be used for business purposes by customer service representatives (“CSR”),
agents, or other production employees, the devices will be subject to inspection and/or testing
protocols developed by Alorica’s IT Department.

REIMBURSEMENT
Employees are personally and solely responsible for the cost as well as any maintenance, repair,
and replacement (and associated costs) of their Personal Devices. Employees are not entitled to
and will not receive any reimbursement for business use of Personal Devices by an employee for
his or her convenience or preference. Further, the Company will not reimburse employees for
business use of Personal Devices necessary for work unless and as required by applicable law.

DEVICE SECURITY
In order to prevent unauthorized access, Personal Devices must be password protected using the
features of the device as well as any additional software or hardware as reasonably required by the
Company such as dual factor authentication, privacy screens, cameras, and/or remote monitoring
software. As part of any registration and testing process conducted by Alorica, the Company will
automatically enable encryption on the devices (transparent to the user) as necessary and will
enable a password requirement to access the device if not initially configured that way. When an
employee leaves the Company, Alorica will remotely reset the device to remove any Alorica-owned
or licensed information or software.

PRIVACY
The Company has significant business interests for regulating and monitoring employee usage of
its information systems (including business-related activity on an employee’s Personal Device) for
all lawful purposes including protecting the Company’s assets; promoting workplace productivity;
protecting employees, our clients, and their customers; and ensuring compliance with applicable
law and Company policies.

Use of passwords to gain access to Company systems does not mean that employees should have
any expectation of privacy in the material they access, view, create, transmit, store or receive via
or on Personal Devices. Employees must ensure any Company data stored on a Personal Device
must be made readily available when requested by Company management. To this end,
employees agree to cooperate, including, without limitation, temporarily relinquishing a Personal
Device to Alorica’s IT Department so the Company may comply with requirements to safeguard
information either in connection with litigation (such as litigation hold ), or as reasonably
determined by the Company concerning matters relating to Company's business, its employees,
clients or customers. For these reasons, employees have a limited expectation of privacy with
respect to Personal Devices.

PERSONAL RESPONSIBILITY
By using a Personal Device for business purposes, an employee assumes full liability for associated
risks including, but not limited to, the partial or complete loss of Company and personal data due to
an operating system crash, errors, bugs, viruses, malware, and/or other software or hardware
failures, or programming errors that render the device unusable.

Further, the Company reserves the right to completely erase any and all Company data stored on
a Personal Device. While Alorica IT will attempt to prevent the employee’s personal data from
being lost during this process, the Company reserves the right in its sole discretion to completely
“wipe” any device. The employee is responsible for taking precautions to safeguard personal
data, such as regularly backing up personal information on a device. The Company is not
responsible for any loss of any personal data as the result of a “wipe.”

HOW TO PARTICIPATE
Generally, in order for an employee to be eligible to participate in the BMD program, there must
be a business need for the employee to use their device: 1) outside of regular working hours; or
2) during regular working hours, but the employee’s duties require them to frequently be away
from an Alorica site due to business travel or other temporary or permanent personal
considerations.

Approval for a CSR, agent, or other production employee to use their own Personal Device as part
of the Alorica @ Home program must be provided by an Operations Level VP and an Information
Technology VP as part of a designated client services program.
ACKNOWLEDGMENT
By signing below, I acknowledge and understand my obligation and agree to abide by the expectations
set forth in this Bring My Device policy.

_____________________________________________________________________________________
Printed Name Signature Date