Subject: Number: IM 010

Effective Date: January 1, 2017

Electronic Device Policy
Supersedes: New Policy
Dated:

SCOPE
Conduent Corporation, its Subsidiaries (individually and collectively “Conduent”).

SUMMARY

The purpose of this policy is to reinforce existing Conduent policies and standards while promoting a better work life
balance for Conduent employees and supporting an increasingly mobile and/or remote workforce.

DEFINITIONS
Business Partner: Includes third parties such as non-Conduent Information Service Suppliers, co-developers,
contractors, sales agents, vendors, and any other non-Conduent organization or individual engaged in a contractual
arrangement with Conduent.
Electronic Device: Any device owned by or made available to an Information User that is used to store Conduent
Information and/or connect to any Electronic Information System via the Conduent Internal Network, including without
limitation:
 Cellular/Mobile phones
 Desktop Computers
 Feature Phones
 E-readers
 Gaming Devices
 Laptops, Netbooks and Notebooks
 Personal Digital Assistants
 Portable Media devices
 Smartphones
 Tablet Computers
 Ultra Mobile PCs
Electronic Information System: Any hardware, software, media or network, including non-Conduent owned devices,
used to originate, store, process, display, print, or transmit Conduent Information in electronic form, including, but not
limited to, mainframe computers, minicomputers, hand-held computers, personal workstations (PCs), Personal File
and Shared Workgroup (SWG) Space, Internet access applications and devices, departmental computers, personal
digital assistants (PDAs), smart phones, portable storage devices, electronic printers, facsimile machines, telephones,
voice mail, email, wireless devices including wireless networks, audio/video devices and audio/video conferencing
equipment, and their associated operating systems, support software and application software.
Information Owner: The person or organization entrusted by Conduent with the authority for acquiring, creating, and
maintaining electronic information systems and the information created, stored, and used by such systems in their
assigned area of business responsibilities. An Information Owner does not necessarily own the electronic system that
contains the information. Information Owners are responsible for authorizing information disclosure.
Information Service Supplier: An individual or an organization providing user services or operational support for an
Electronic Information System, including, but not limited to, software development, server operations, communications,
system administration and mainframe operation and support. Information Service Suppliers may be Conduent
employees, non-Conduent organizations or individuals under contract to Conduent.
Conduent Internal Use Only
CONDUENT GLOBAL ETHICS HELPLINE www.conduent.com/ethicshelpline or 844-330-0221
Conduent Ethics and Compliance Program Internet Site: www.conduent.com/ethics Page 1 of 4
 Subject: Number: IM 010
Effective Date: January 1, 2017
Electronic Device Policy
Supersedes: New Policy
Dated:

Information User: An individual employed by Conduent or a Conduent Business Partner who has been authorized by
the Information Owner to originate, access, receive, modify, delete, display, process, or utilize Conduent Information or
connect to the Conduent Internal Network or Electronic Information Systems either on-site or remotely.
Malware - Malware, short for malicious software, consists of programming (code, scripts, active content, and other
software) designed to disrupt or deny operation, gather information that leads to loss of privacy or exploitation, gain
unauthorized access to system resources, and other abusive behavior . The expression is a general term used by
computer professionals to mean a variety of forms of hostile, intrusive, or annoying software or program code. This can
also be related to viruses, Trojan horse, and logic bomb software.
Conduent Information: Any information in verbal, electronic, or hard copy format that is the property of Conduent, a
Conduent Business Partner or a customer. Customer data entrusted to Conduent is to be treated as Conduent
Confidential and may be governed by other laws and regulations, as well as contractual arrangements.
Conduent Internal Network: Conduent internal network segments and networks, both LAN and WAN and supporting
infrastructure, and includes those networks commonly referred to as “ACSnet”, “Conduent Global Intranet (XGI)”,
“xnet”.

POLICY
The purpose of this policy is to reinforce existing Conduent policies and standards while promoting a better work life
balance for Conduent employees and supporting an increasingly mobile and/or remote workforce. This policy is
designed to help Conduent manage potential costs and threats to Conduent Information, Electronic Information
Systems or the Conduent Internal Network arising out of or in connection with Malware or any other damage to or loss
or Theft of Electronic Devices. This policy applies to all Electronic Devices. This policy is subject to applicable law and
some portions of this policy may not apply in all jurisdictions.

General
Information Users may use their personally owned Electronic Device(s) to access Conduent Information, Electronic
Information Systems or the Conduent Internal Network, solely for Conduent legitimate business purposes. For
purposes of clarity Information Users are not required to use their personally owned Electronic Device(s) to access
Conduent Information, Electronic Information Systems or the Conduent Internal Network.
Information Users are not obligated to install any Conduent specified software on personal Electronic Devices;
however, failure to do so may result in the loss of the ability to connect those devices to the Conduent Internal Network
or some or all Electronic Information Systems.
At Conduent’s discretion, Conduent may use any tool, process and/or methodology to enforce this and other
applicable Conduent corporate policies with respect to any Electronic Device. These tools may include the ability
remotely to (a) inventory content on the Electronic Device; (b) disable Electronic Device access to Conduent
Information, Electronic Information Systems or the Conduent Internal Network; and/or (c) erase all or selected data in
the event the Electronic Device is lost or stolen, or the security or integrity of Conduent data is compromised.
Information Users are encouraged to back up their personal data and related configuration information on a regular
basis to minimize data loss in such events.
Conduent Managers at the local and/or regional level may elect to limit use of Electronic Devices by Information Users
under their direction to access Electronic Information Systems, Conduent Information or the Conduent Internal

Conduent Internal Use Only

CONDUENT GLOBAL ETHICS HELPLINE www.conduent.com/ethicshelpline or 844-330-0221
Conduent Ethics and Compliance Program Internet Site: www.conduent.com/ethics Page 2 of 4
 Subject: Number: IM 010
Effective Date: January 1, 2017
Electronic Device Policy
Supersedes: New Policy
Dated:

Network. Examples include restrictions by job role, by certain hours, etc.

Conduent prohibits the use of GPS or similar location based services on a personal Electronic Device to determine the
location of an Information User without the recorded permission of the Information User.
Conduent reserves the right to take disciplinary action, up to and including termination, against any Information User
who violates this policy. Willful violation of Conduent Policies and Standards may also subject a violator to civil and/or
criminal penalties.
Regional or local policies within Conduent may supplement this policy to address local issues or concerns. Such
supplemental policies will also apply in addition to this policy to the extent set forth therein. No regional or local policy
may directly or indirectly supersede this policy except where local laws take precedence.

Information Security
In the event an Electronic Device containing Conduent Information is lost or stolen, or unauthorized access to an
Electronic Device is suspected, the Information User must report the incident to Conduent Corporate Security
immediately upon discovery. Please follow your local (In country) process for reporting lost/stolen equipment. Contact
your local XIM department with any questions concerning this process or email your request to
Mobile.Communications.Services@Conduent.com.
Whenever Conduent authorizes a Business Partner to access Conduent Information, Electronic Information Systems
or the Conduent Internal Network, the applicable written and executed agreement must include specific requirements
as defined in this and all other applicable Conduent corporate policies, including without limitation Section 6.2.3 of
InfoSec 001.1.

Financial
Unless explicitly stated by Conduent, Information Users are responsible for the cost of acquiring and maintaining their
personally owned Electronic Devices, including all connectivity charges. Conduent will not pay for or reimburse the
Information User for any costs or expenses associated with a personally owned Electronic Device. In addition,
Conduent shall not be responsible for any increased or additional connectivity charges incurred by the Information
User as a result of accessing Electronic Information Systems with a personally owned Electronic Device.
The Information User who owns an Electronic Device may be responsible for the cost to procure and install software
required by Conduent Information Management to centrally manage devices and/or comply with Conduent’s
Information Security Policy and Standards.
At Conduent Information Management’s discretion, the number of personal devices a Conduent Information User may
connect simultaneously or within a period of time to Conduent Internal Network/Electronic Systems may be limited.

Information Management and Administration

In order to establish and maintain access from Electronic Devices to Conduent Information, Electronic Information
Systems or the Conduent Internal Network, or store Conduent Information on Electronic Devices, Information Users
will be required on a periodic basis to electronically review and acknowledge this and other related policies, guidelines
and standards.
Conduent Internal Use Only
CONDUENT GLOBAL ETHICS HELPLINE www.conduent.com/ethicshelpline or 844-330-0221
Conduent Ethics and Compliance Program Internet Site: www.conduent.com/ethics Page 3 of 4
 Subject: Number: IM 010
Effective Date: January 1, 2017
Electronic Device Policy
Supersedes: New Policy
Dated:

Conduent may provide self-help collaterals to assist and advise Information Users, but Information Users are not
entitled to technical support of any kind for personal Electronic Devices.

Exceptions
N/A

Responsibilities
N/A

Forms/Exhibits
N/A

REFERENCES

Information Security Policies InfoSec 001

http://xww.internal.world.xerox.com/Insight/Display8.cfm?ID=2EA8315C-B360-4190-BF1F-
30E807091AF2&SectionID=B4026AE4-2A46-47C7-B887-
2521ED41BBFE&SID=20&QPID=D3203E81BC4811A60B38DDB757AE6A12

Conduent Technology Information Security Standards

http://xww.docushare.world.xerox.com/dsweb/Get/Document-84236/Electronic%20Security%20Standards.doc#table

Information Management IM 002 – IM 007

http://xww.internal.xerox.com/Insight/Display8.cfm?ID=2EA8315C-B360-4190-BF1F-
30E807091AF2&SectionID=B4026AE4-2A46-47C7-B887-
2521ED41BBFE&SID=20&QPID=D3203E81BC4811A60B38DDB757AE6A12
Information Management IM 003 -Appropriate Usage Electronic Information Systems
http://xww.docushare.world.xerox.com/dsweb/Get/Document-311595/IM003.pdf

Conduent Internal Use Only

CONDUENT GLOBAL ETHICS HELPLINE www.conduent.com/ethicshelpline or 844-330-0221
Conduent Ethics and Compliance Program Internet Site: www.conduent.com/ethics Page 4 of 4