Академический Документы
Профессиональный Документы
Культура Документы
docx
POL-001, Rev. 8 Release Date: 09/04/2018
Effective Date: 09/04/2018 Owner: Salaets, Steven
Next Review: 08/28/2019
Record Location: EchoSign, Record Retention: Permanent
1. Summary of Changes
• Updated list of entities in Section 3.1.
• Added new sections for Users in New Zealand and Singapore.
2. Purpose
This Acceptable Use Policy Agreement (“Policy”) sets forth the policies of Rimini Street with respect to use and access
of software, materials and computer resources. Appropriate use of Rimini Street’s computer resources and access
by Rimini Street Personnel (as defined below) is of critical importance to Rimini Street’s successful global operations,
and the successful operations of our clients, contractors, and other affiliated third parties.
This Policy is in place for compliance and information security reasons, but also to ensure that Rimini Street computer
resources are being used effectively, safely, and in compliance with established Rimini Street policies and applicable
laws. This Policy applies to the use or access of any Rimini Street Computer Resource (defined below) or other
computer resources in connection with Rimini Street business, or the use or access of any other computer resource
that connects directly or indirectly to Rimini Street’s computer network (through VPN or otherwise).
It is the responsibility of all Rimini Street Personnel to read, understand, and comply with this Policy as a condition
of the use of Rimini Street computer resources or other computer resources in connection with Rimini Street
business. Any questions or concerns about this Policy should be directed to the security@riministreet.com,
administered by Rimini Street’s Global Security and Compliance and Legal departments.
VIOLATIONS
As Rimini Street Personnel, your compliance with this Policy is a required condition of your use of Rimini Street
Computer Resources and a violation of this Policy during your time with Rimini Street may subject you to
disciplinary action, as permitted by applicable law (including but not limiting to withholding of bonuses,
temporary suspension of duties, and even termination of your employment or contract with Rimini Street), and
may subject you to civil and/or criminal legal penalties during and after your employment or contract. While
violations of this Policy do not in any way imply violation of laws or other’s rights, you are expected to follow this
Policy out of an abundance of caution to help prevent violation of laws or other’s rights.
___________________________
SEE ‘CAN’T COPY CONTENT’ RULES (PAGE 26 - APPENDIX) AS A QUICK REMINDER OF HOW TO HANDLE OTHER
COMPANIES’ SOFTWARE AND MATERIALS UNDER THIS POLICY.
3. Definitions
The following terms are used as defined terms throughout this Policy:
3.1 “Rimini Street” means Rimini Street, Inc., Rimini Street Indian Operations Pvt. Ltd., Rimini Street
Brazil Serviços de Tecnologia Ltda, Rimini Street Australia Pty Limited, Rimini Street GmbH, Rimini
Street Limited, Nihon Rimini Street KK, Rimini Street (HK) Ltd., Rimini Street Israel Ltd., Rimini
Street Korea, Inc., Rimini Street AB, Rimini Street New Zealand, Ltd., Rimini Street SAS, Rimini
Street Singapore Pte. Ltd., and their subsidiaries and affiliates;
3.2 “Client Archives” include the identified and obtained copies of the client’s individual product
modules licensed to client as set forth in the client’s Statement(s) of Work with Rimini Street (i.e.,
the client’s “Covered Products”), software updates to the Covered Products, and other support-
related materials for the Covered Products.
3.3 “Client’s Computer” includes any network, computer, virtual machine, storage device, portable
electronic device, or any combination of these systems that is owned, operated, leased, or
otherwise controlled by a Client, including any cloud computing resource that (i) it rents, leases,
or obtains as or through a cloud service provider.
3.5 “Non-Rimini Street Computer Resource(s)” means a computer resource other than a Rimini Street
Computer Resource, including without limitation any computer network, internet, intranet, e-mail
system, host computer, data center, file server, application server, mail server, web server,
workstation, computer, laptop, tablet, software, data file, portable data storage device, wireless
device, mobile phone, or smart phone.
3.6 “Other Companies’ Software and Materials” mean all the materials that comprise software
applications produced by an outside company or person (e.g., Oracle, SAP), including the object
and source computer code, database designs, software updates, custom solutions, environments,
software bug fixes and patches (code error corrections), and related documentation.
3.7 “Rimini Street Computer Resource(s)” means any of Rimini Street’s computer resources, including
without limitation the entire Rimini Street internal and external computer network, internet,
intranet, host computer, file server, application server, mail server, web server, workstation,
computers, laptop, tablet, software, data file, portable data storage device, wireless device, mobile
phone, smart phone, or any internal or external system or network (including without limitation
internet, intranet, commercial online service, value-added network, or e-mail system) that may be
accessed directly or indirectly from or through a Rimini Street computer network, Rimini Street
workstations and virtual workstations, Rimini Street client gateways, Rimini Street owned or client
provided USB or other external media, Rimini Street licensed third party services (e.g., Salesforce
or Citrix ShareFile).
3.8 “Rimini Street Data” or “Data” shall mean all data materials and information, in any form, of Rimini
Street that are not available in the public domain or that require protection by law, as well as all
data, materials and information, in any form, of Rimini Street clients and other third parties to
which Rimini Street has access and that Rimini Street is legally obligated to keep confidential or
otherwise protect.
3.9 “Rimini Street Personnel” includes Rimini Street employees, temporary employees, hired
contractors, and retained consultants.
3.10 “User(s),” “you” and “your(s)” refers to any person or entity using or accessing any Rimini Street
Computer Resource, including without limitation all Rimini Street Personnel or other third parties
using or accessing any Rimini Street Computer Resource.
We understand that Users will, from time to time, make reasonable incidental personal use of Rimini Street
Computer Resources. However, all Rimini Street Computer Resources are to be used primarily for authorized
business purposes.
Users are responsible for the Rimini Street Computer Resources issued to, or accessed by, them. IT should be
informed immediately in the event of loss or theft of any Rimini Street Computer Resource.
Rimini Street Computer Resources must be properly cared for to maintain their appearance and functionality, though
it is understood that use of tangible equipment results in some unavoidable wear and tear. Any malfunction or
damage should be reported to IT in prompt fashion. To the extent permissible under applicable laws and regulations,
Rimini Street reserves the right to inspect all Rimini Street Computer Resources at any time to ensure compliance
with this Policy, without notice to the User and even in the User’s absence.
All Rimini Street property must be returned to Rimini Street immediately upon termination of the User’s
employment, contract, services or job responsibilities to Rimini Street, or at any other time as requested by Rimini
Street.
Users cannot delete or destroy data stored on Rimini Street Computer Resources.
Rimini Street’s respect for the intellectual property of clients, vendors, partners, and other third parties is vital to
Rimini Street’s continued business success. Rimini Street is committed, both as a matter of law and as a matter of
good business practice, to ongoing compliance with related laws and regulations. Your compliance with this Policy
helps protect both you and Rimini Street from the legal consequences of alleged or actual violations of intellectual
property rights.
5.1 We will comply with licensing terms and conditions regulating the use of Other Companies’
Software and Materials or other intellectual property that we acquire; and
5.2 We will not permit (or endorse) the making or using of unauthorized copies of Other Companies’
Software and Materials or other intellectual property; and
5.3 We will enforce strong controls within our organization to help observe the intellectual property
rights of others, including by performing periodic audits of Rimini Street Computer Resources and
investigative audits for cause; and
5.4 We will provide sufficient quantities of legally acquired software to meet our organization’s
software or other intellectual property requirements.
Your use of all Rimini Street Computer Resources must be in compliance with other Rimini Street policies and all
applicable laws, including, but not limited to, those policies and laws regarding intellectual property, misuse of Rimini
Street property, discrimination, harassment, sexual harassment, bullying, information and data security,
misappropriation of proprietary information, confidentiality, data privacy, anti-spam, export control and other topics
affecting the use or access of Rimini Street Computer Resources.
Rimini Street Computer Resources may not be used in any manner that would be discriminatory, harassing,
defamatory, obscene, or other manner that is illegal, against Rimini Street company policies, or otherwise not in the
best interests of Rimini Street. Users shall at all times comply with all data privacy and protection laws and associated
frameworks (E.g. Privacy Shield) applicable with respect to the Rimini Street Data, including but not limited to, the
Gramm-Leach-Bliley Act (GLB), Health Information Portability and Accountability Act (HIPAA), Massachusetts 201
SMR 17.00, EU General Data Protection Regulation (GDPR), the Canadian Personal Information Protection and
Electronic Documents Act (PIPEDA), the Australia Privacy Act, the Japanese Personal Information Protection Law,
1“Other Companies’ Software and Materials” mean all the materials that comprise software applications produced by an outside
company or person (e.g., Oracle, SAP), including the object and source computer code, database designs, software updates,
custom solutions, environments, software bug fixes and patches (code error corrections), and related documentation.
the Korean Personal Information Protection Act, Indian Information Technology Act, the Hong Kong Personal Data
Privacy Ordinance the Israeli Protection of Privacy Law, 5741-1981, the Taiwan Personal Information Protection Act
and the Singapore Personal Data Protection Act 2012, as may be updated or amended from time to time. Users shall
not disclose, access, use or otherwise process any Rimini Street Data for any purpose other than for the purposes of
performing its obligations and duties in accordance with the terms and conditions of its employment or of its
agreement (as applicable) with Rimini Street.
Users shall at all times comply with all applicable anti-spam laws, including but not limited to, Canada’s Anti-Spam
Legislation (CASL), EU Directive on Privacy and Electronic Communications, Japan’s Law on Regulation of
Transmission of Specified Electronic Mail, the United States CAN-SPAM Act, Korea’s Act on Promotion of
Information and Communications Network Utilization and Information Protection and Information Protection, Hong
Kong unsolicited Electronic Messages Ordinance, the Israeli Communications Law (Telecommunications And
Broadcasting), 5742-1982 and the Singapore Spam Control Act, as may be updated or amended from time to time.
All Users must understand and abide by the various “opt in” and “opt out” requirements in geographic locations in
which Rimini Street conducts business to remain in compliance with the anti-spam laws.
Users shall at all times comply with all applicable export control laws, including but not limited to, Export
Administration Regulations (EAR), International Traffic in Arms Regulations (ITAR), Economic Sanctions Regulations
and the Singapore Strategic Goods (Control) Act, as may be updated or amended from time to time. Rimini Street
is obligated to comply with its clients’ requests to restrict access of certain Users based on nationality to avoid an
export of technical information that is prohibited by international export control laws.
If you have questions or require further information on any specific law or Rimini Street policy, contact
security@riministreet.com.
7. User Privacy and Rimini Street’s Right to Review, Inspect and Monitor Rimini Street
Computer Resources
To ensure compliance with Rimini Street’s internal security policies as well as applicable laws and regulations, Rimini
Street reserves the right, in accordance with applicable laws, to review, inspect, and monitor any Rimini Street
Computer Resource at any time, in any manner, with or without notice to the User, with or without the User’s
permission, and with or without the User’s knowledge or presence. Accordingly, use of Rimini Street Computer
Resources is not private, and no User should have any expectation of privacy as to his or her use or access of Rimini
Street Computer Resources. Rimini Street’s right to review, inspect and monitor Rimini Street Computer Resources
extends to Rimini Street e-mail systems, installed programs, any data files stored on the network, hard drives or
detachable devices connected to Rimini Street Computer Resources, User’s Internet browsing activity, file and data
transmissions, receipt activity, telephone call logs, voice mail messages, faxes, computer data, and any other
information contained or transmitted through such resources.
You acknowledge and agree that certain private or personally identifiable information (including, for example, name,
address, social security number, passport number and related supporting evidence) may be transferred between
the Rimini Street group of companies and/or externally to a third party service provider, including outside of your
jurisdiction of employment, for authorized business purposes, such as for payroll processing, benefits
administration, and other purposes and/or in connection with the group’s recordkeeping and business procedures
and activities.
Rimini Street business frequently requires its employees to access intellectual property that is owned by other
companies and people (Other Companies’ Software and Materials). Any use of Other Companies’ Software and
Materials, business processes, images, videos, and trademarks and logos, must be specifically permitted by this
Policy or have prior approval from the Rimini Street Legal department.
You may use Other Companies’ Software and Materials licensed to a Client to provide services to that Client
a) in compliance with this Policy, and b) as instructed by the following Rimini Street management:
You may install Other Companies’ Software and Materials on a Client’s Computer at the
Client’s direction and as approved by the Rimini Street Legal department, and:
9.1.1.1 Other Companies’ Software and Materials are in an environment that is owned,
operated, leased or otherwise controlled by the Client, or
9.1.1.2 Other Companies’ Software and Materials are on a website that the Client has
provided Rimini Street permission to access, including for example the SAP
Support Portal for SAP licensees (pre-maintenance end date).
9.1.1.3 You may use a Client’s installation media (i.e., any CD, DVD, tape, electronic file,
or other media used to install materials) to install Other Companies’ Software
and Materials on the Client’s Computer.
9.1.1.4 You may not share a Client’s a) installation media or b) Other Companies’
Software and Materials with any other Client’s or use it for another Client.
9.1.2.1 Permissible Downloading: You may access and download SAP Software and
Materials onto a Client’s Computer to create a SAP Client Archive only if:
9.1.2.1.1 You Have Proper Confirmation: You have confirmed that the client has
a current license or maintenance agreement that permits accessing and
downloading the Other Companies’ Software and Materials; and
9.1.2.1.2 You Have Proper Credentials: You only use the credentials provided to
you by Client to access and download Other Companies’ Software and
Materials for that Client.
9.1.2.2 You do not share such credentials or use someone else’s credentials for such
Client.
9.1.2.3 You do not use credentials provided by a Client for anyone other than the Client.
If you have downloaded any Other Companies’ Software and Materials other than as
authorized by a Client’s SAP license, maintenance agreement or this Policy, or you
become aware that other Rimini Street Personnel have done so, you should promptly
contact security@riministreet.com.
9.2.1 Client Locations: You may request that a Client or someone they designate ship or
transfer Other Companies’ Software and Materials to that Client’s physical location or to
that Client’s Computer.
9.2.2 Other Locations: You may request that Other Companies’ Software and Materials be
shipped or transferred to a location other than the Client’s physical location or a Client’s
Computer only if the Client provides written permission to do so.
9.3.1 You may review a Client’s license or maintenance agreement applicable to Other
Companies’ Software and Materials only with permission from the Client or from the
owner of the Other Companies’ Software and Materials; and
9.3.2 You may review technical terms and maintenance end dates.
9.3.2.1 Check with the Rimini Street Legal department to review legal terms.
If you have downloaded, copied, distributed, or otherwise used any Other Companies’ Software
and Materials other than as authorized by a Client’s license or maintenance agreement, or this
Policy, or you become aware that other Rimini Street Personnel have done so, promptly contact
security@riministreet.com.
10.1 Copying/Installation:
10.1.1 You may not copy or install any Software and Material to any Client’s Computer unless
such Client has a current Master Services Agreement and Statement of Work, or
Onboarding Agreement, covering such Rimini Street Services to be performed.
10.1.2 You may not copy Software and Material from one Client to another.
10.1.2.1.2 You may not use Non-Use Data for any purpose.
10.1.2.1.3 You may not delete Non-Use Data from any Rimini Street
Computer unless directed by the Rimini Street Global
Compliance and Security department.
10.2 Notices: You may not remove any notices, including attribution, copyright notices, patent and
trademark registrations, authors and owners, or dates of creation, from Other Companies’
Software and Materials, unless you have prior written approval from the Rimini Street Legal
department.
10.3 Patents: If you know or have reason to believe that a product you wish to build or a process that
you wish to use may be covered by a patent or a pending patent, you may not proceed unless you
have prior approval from the Rimini Street Legal department.
10.4 Confidential Information: If you have been provided with other companies’ or persons’
confidential information that you know or believe Rimini Street is not entitled to have in its
possession (whether from clients, other Rimini Street Personnel, or other companies’ employees):
10.4.1 You are prohibited from making any use of that information and from disclosing it to
others (except Rimini Street’s Global Security and Compliance and Legal departments).
For example, you may not use confidential, proprietary or non-public materials obtained
from your prior employer.
10.5 Trademarks: You may not use another company’s trademark in any way that indicates:
10.5.1 the other company is the source of Rimini Street’s services or products;
10.5.2 that Rimini Street is the source of another company’s services or products;
10.5.4 that the company endorses Rimini Street unless the company does so in writing.
10.6 No Installation on Rimini Street’s Resources: You may not install any Other Companies’ Software
and Materials on Rimini Street Computers unless you have received prior approval from the Rimini
Street Legal department. This restriction includes any free software, open source software or
other openly accessible programs. Further, this restriction includes any free or open source
decompilers.
10.7 Downloading: You may not download or store any Other Companies’ Software and Materials on
Rimini Street Computers unless you have received prior approval from the Rimini Street Legal
department.
10.8 Decompiling, Disassembling, and Reverse Engineering: You may not decompile, disassemble or
reverse engineer any Software and Material without prior permission from the Rimini Street Legal
department. The terms “decompile,” “disassemble,” and “reverse engineer” are viewed as legal
terms and any interpretation or question about the meaning of these terms in the course of your
employment should be discussed with the Rimini Street Legal department.
Users shall not use Rimini Street Computer Resources to create, transmit, post, share, display, or
download any material that is fraudulent, sexually explicit, profane, obscene, intimidating, likely
to make other Users or third parties feel uncomfortable, or otherwise unlawful or inappropriate
for the workplace.
Users shall not use Rimini Street Computer Resources to intentionally visit or access any website
that contains any material that is fraudulent, sexually explicit, profane, obscene, intimidating, likely
to make other Users or third parties feel uncomfortable, or otherwise unlawful or inappropriate
for the workplace. This includes, without limitation:
11.2.3 Websites that incite or endorse ethnic, racial or religious hatred, strife or intolerance;
11.2.6 Restricted business websites (not specifically authorized for User’s job responsibilities);
and
Such websites are not only inappropriate for the workplace, but also represent a significant
security risk for Rimini Street, as they can result in damage, infection with viruses, and other
compromises of Rimini Street Computer Resources. Rimini Street may prohibit access to any
website it deems inappropriate.
Rimini Street disavows and disclaims any ownership interest in information downloaded or viewed
that is illegal in nature or in violation of this Policy.
11.3 Misuse of Other Companies’ Software and Materials and Other Intellectual Property
11.3.1 Use any Other Companies’ Software and Materials or other intellectual property in
violation of applicable law or regulations;
11.3.2 Download or install on any Rimini Street Computer Resource, without written pre-
authorization from IT, any software that may cause performance issues or instability for
any Rimini Street Computer Resource, any software without a valid license for the
software, or any software that may create a security risk for any Rimini Street Computer
Resource or any client, vendor or partner of Rimini Street;
11.3.3 Remove or disable any company-installed software, tools, or programs on any Rimini
Street Computer Resource; or
11.3.4 Copy or install any software from a Rimini Street Computer Resource to any Non-Rimini
Street Computer Resource.
Under no circumstance shall any Rimini Street Personnel request, facilitate, or encourage the
transmission of confidential client production data (for example, PII, personally identifying
information) to any Rimini Street Computing Resources or via any mechanism, unless the client
provides such confidential information to Rimini Street to resolve the client’s particular request
for support.
If any confidential information is provided by the client, under no circumstance shall any Rimini
Street Personnel use such data or provide such data to any other party, until such data has been
first reported to security@riministreet.com and except as reasonably necessary to provide the
requested support to the client. If you suspect or know that any confidential client data is being
used or stored on a Rimini Street Computing Resource, you should promptly report the matter to
security@riministreet.com.
Rimini Street Personnel may only connect to the networks or online resources of Rimini Street
clients through Rimini Street Client Gateways set up for each client. All access to client production
data will be via the Remote Access established during the client’s onboarding process, except for
such data provided by a client to Rimini Street Personnel on Rimini Street Computer Resources
which may be accessed on Rimini Street Computer Resources as necessary to resolve the client’s
particular request for support.
11.5.1 Users shall not use Rimini Street Computer Resources to:
11.5.1.1 Make fraudulent offers of products, items, or services using any Rimini Street
Computing Resource;
authorized to access or logging into a server or account that the User is not
authorized to access;
11.5.1.4 Provide directly or indirectly (via any communication means, including for
example only, email, instant messenger or social media) any confidential
information of Rimini Street, its clients, partners, contractors, or other affiliated
third parties to unauthorized recipients outside Rimini Street;
11.5.1.5 Access any Rimini Street Data without a reasonable need to fulfill contractual,
legal or professional obligations;
11.5.1.7 Establish or access any peer-to-peer (P2P) network (or file sharing mechanism)
with any Rimini Street Computer Resource, other than specifically required and
authorized for the User’s job responsibilities. Examples of prohibited P2P
networks include BitTorrent, Morpheus, Napster, Kazaa, and similar networks;
11.5.1.8 Install or use any application or software that allows the User to remotely control
a Rimini Street Computer Resource from a Non-Rimini Street Computer
Resource. Examples of prohibited applications include, but are not limited to,
Remote HD, Splashtop Remote Desktop, and PocketCloud;
11.5.1.10 Introducing hacking, password cracking tools into the network (e.g.
metasploit, Nmap );
11.5.1.11 Installing proxy tools like tor to circumvent Rimini Street’s policies and
controls; or
11.6.1 Connect to networks or online resources of any Rimini Street clients from any machine
not authorized by Rimini Street;
11.6.3 Retrieve or share credentials or attempt to access Rimini Street client networks, systems,
or online resources without authorization; or
11.6.4 Copy data from the network or resource of a Rimini Street client to a network or resource
of another Rimini Street client or any other third party, unless you have prior approval
from the Rimini Street Legal department.
11.6.5 Copy, clone or index any data of Rimini Street Client Archives to, or store confidential
client production data on, Rimini Street Computer Resources excluding directory listings
of Rimini Street Client Archives, without the prior written consent of the Rimini Street
Global Security and Compliance department.
Rimini Street employees and temporary employees shall not access or use or attempt to access or
use any Oracle single sign-on account, including personal accounts, or any
support.oracle.com,
edelivery.oracle.com,
updatecenter.oracle.com, and
login.oracle.com
websites without prior express permission from the Rimini Street Legal department. Any violation
of this Policy may result in discipline, up to and including termination.
11.8 FOR RIMINI STREET HIRED CONTRACTORS AND RETAINED CONSULTANTS ONLY
Rimini Street hired contractors and retained consultants shall not access or use or attempt to
access or use any Oracle single sign-on account, including personal accounts, or any
support.oracle.com,
edelivery.oracle.com,
updatecenter.oracle.com, and
login.oracle.com
websites on any Rimini Street Computer Resource or on any Non-Rimini Computer Resource
accessing in connection with Rimini Street business without prior express permission from the
Rimini Street Legal department. Any violation of this Policy may result in discipline, up to and
including termination.
12. Backups
Users shall not use any backup solution not provided by Rimini Street.
Backups to local systems, devices or media are strictly forbidden without written authorization of the Rimini Street
Global Security and Compliance department.
To better protect data on Rimini Street laptops in case of system failure, the Company uses MozyPro, a cloud-
based/backup solution. All files are backed up, excluding system, executable, movie, video and music files.
Users shall not use any online backup solution other than MozyPro to backup Rimini Street Computer Resources.
Prohibited online backup solutions include, for example, Google Drive, Dropbox, and iDrive.
The purpose of this Policy is to help prevent data leakage and secure Rimini Street's Data and that of its clients, and
to use authorized methods or tools. Users shall not use unauthorized file sharing solutions such as Dropbox, iDrive,
Google Drive or personal e-mail accounts to transfer Rimini Street intellectual property, files, company or client
information.
13.1.1 The easiest way to share files internally is email. However, keep in mind that there is a
file size limitation of 35 megabytes.
13.1.2 When sharing files within your department you can use your department share to share
files. The Department file shares can be found here --
> \\internal.rsi\DFS\DepartmentShares\
13.1.3 When sharing files with someone at Rimini Street outside of your department, you can
use the FileTransfer fileshare. The share can be found here -->
\\internal.rsi\DFS\DepartmentShares\FileTransfer
13.2.1 The easiest way to share files with outside parties is through use of email. However, keep
in mind that there is a file size limitation of 35 megabytes.
13.2.2 For files larger than 20 Megabytes, please use our corporate solution, Sharefile (from
Citrix). The easiest way to send files is to use the Sharefile Desktop Widget. Once you
have your account, please review these simple instructions to obtain, install, and use
the Sharefile Desktop Widget. Instructions on how to obtain, install, and use the Sharefile
Desktop Widgetcan be obtained from IT.
14. Use of Salesforce, Rimini Street Email (Webmail) or Other Web-Based Rimini Street
Applications from a Non-Rimini Street Computer Resource
Non-Rimini Street Computer Resources are not approved for Rimini Street operations and using web-based Rimini
Street applications, such as Salesforce and Rimini Street email, from a Non-Rimini Street Computer Resource is
discouraged because of the potential security risks inherent in such use.
For example, even without intentionally downloading any documents or files, the Non-Rimini Street Computer
Resource may automatically collect copies, metadata, or other information about the documents or files that are
viewed or accessed.
Since Rimini Street cannot control the security of Non-Rimini Street Computer Resources, any information collected
on a Non-Rimini Street Computer Resource becomes vulnerable from a security perspective.
However, Rimini Street recognizes the need to occasionally use Non-Rimini Street Computer Resources to access
Salesforce and Rimini Street email accounts when circumstances require. Therefore, Users with Rimini Street
Salesforce and/or Rimini Street email accounts may access such accounts using a Non-Rimini Street Computer
Resource subject to the following guidelines:
14.1 The Non-Rimini Street Computer Resource should have updated/current security patches and
virus/malware protection;
14.2 In order to protect Rimini Street and our clients, no documents or data should be saved and stored
on the Non-Rimini Street Computer Resource. If unauthorized client production data or third party
intellectual property is mistakenly opened or stored on a Non-Rimini Street Computer Resource,
the User is required to promptly report the incident to security@riministreet.com, for assistance.
15.1 Skype for Business is Rimini Street’s corporate standard instant messaging system, which is used
to communicate internally and with other Skype for Business users and Skype consumer users.
15.2 Never open pictures, send or download files, or click on links in messages from people you don't
know. Be aware that computer viruses can be transmitted via instant message (“IM”);
15.3 Be mindful of the authenticity of incoming IMs. If an IM with an attachment comes from someone
you do know but seems suspicious, confirm with the sender through a different communication
tool (e.g., phone or e-mail) that the IM and its attachment are trustworthy. If not trustworthy,
close the instant message without clicking or opening the attachment;
15.4 Never provide or attach any Rimini Street Data or other confidential or sensitive information,
including, for example, Rimini Street computer files, passwords or other sensitive information,
client confidential information, or third party intellectual property. IMs can be easily intercepted
by anyone on the internet;
15.5 Block unwanted messages and restrict your contact list and also block messages from anyone
except people you know. Most IM programs allow you to build a contact list (also known as a
"buddy list"), which is similar to the address book in your e-mail program, and also allow you to
customize contacts settings; and
16. Passwords
Users are responsible for keeping their passwords and accounts safe and secure. Passwords should not be printed,
stored online (including through any online password management system), written down or shared with others,
even other Users, friends or family members. A password is an authentication tool, and any User who provides their
password to another User or third party will be held accountable for any unauthorized, forbidden or inappropriate
use of Rimini Street Computer Resources usage, as well as any related damage.
For more information, you may request a copy of the Rimini Street Password Policy security@riministreet.com.
It is crucial to protect sensitive Rimini Street and client information from unauthorized disclosure. Offices – including
both company offices and home offices – may be entered by visitors, consultants, vendors, cleaning crews, and
fellow Users. Accordingly, Users shall ensure that no sensitive information is visually accessible to passersby and
that Rimini Street Computer Resources are adequately password protected and otherwise appropriately secured to
prevent unauthorized persons from accessing or viewing such information.
Due to confidentiality agreements and requirements, Users are not allowed to provide access to Rimini Street
Computer Resources to non-Users such as friends, family, or other unauthorized third parties.
Rimini Street strictly forbids the connection of Non-Rimini Street Computer Resources (including, for example,
personal tablets, smart phones, and laptops) to any Rimini Street network.
Remote Access to the Rimini Street network is permitted only through authorized Rimini Street Computer Resources.
For remote Users, home office wireless networks must be protected with at least WPA encryption, but WPA2
encryption is preferred.
Only Rimini Street Computer Resources are allowed on the Rimini Street network. Personal devices such as personal
computers, digital music players, tablet devices, and netbooks are allowed on the Rimini Street guest network,
subject to the applicable provisions of this Policy.
Users shall not access, alter, or copy files to which they do not have authorized access rights.
Users are prohibited from using Rimini Street Computer Resources to gain unauthorized access to any external, Non-
Rimini Street owned or controlled computers or networks. Further, Users are prohibited from installing or using on
Rimini Street Computer Resources any software program for the purpose of gaining unauthorized access to other
computers or networks for any reason or purpose.
Users shall not create “shared drives” on Rimini Street Computer Resources without authorization from IT.
Except as expressly authorized by Rimini Street in the performance of the User’s job responsibilities (i.e., Security, IT
or other expressly designated personnel whose responsibilities include improving Rimini Street’s security measures),
Users shall not intentionally circumvent any security measure or data protection mechanism when using or accessing
Rimini Street Computer Resources (including without limitation any host, network, or account accessed through any
Rimini Street Computer Resource), nor otherwise intentionally evade any aspect of this Policy. Users shall not utilize
any software program designed to identify security loopholes, decrypt encrypted data, or otherwise tamper with
the security of any Rimini Street Computer Resource or the data stored therein.
You may copy, distribute, display, or otherwise use Rimini Street Custom Content for any legitimate Rimini
Street business purpose.
If Other Companies’ Software and Materials are incorporated into Rimini Street Custom Content, Rimini
Street or the Client must have a license to incorporate, copy, distribute, or otherwise use the Other
Companies’ Software and Materials as part of Rimini Street Custom Content.
From time to time, you may receive notice of “Litigation Holds” from the Rimini Street Legal
department to preserve materials and information. It is your responsibility to read, understand,
and comply with all Litigation Holds.
2“Rimini Street Custom Content” is software content, including source code, documentation and other software and support
material, including content provided in the course of providing Rimini Street Services, created by Rimini Street for one or more
Client(s), that does not include any copyright-protected code, wording or other expression in or from Software and Materials.
20.1.1 You may not delete, alter or destroy any materials and information that are being
preserved under a Litigation Hold for any threatened, likely or pending litigation between
Rimini Street and any other company or person (“Litigation Hold Materials”).
20.1.2 When in doubt about whether or not some materials or information should be preserved,
always choose to preserve the materials or information.
Users are expected to promptly report any known or suspected violations of this Policy to security@riministreet.com
and Users shall also cooperate with any investigations related to known or potential violations of this Policy. All
Rimini Street Managers are responsible for ensuring that their reports comply with this Policy and should promptly
report any violations to security@riministreet.com.
All Users have obligations under this Policy to protect Rimini Street Data that may be accessed through the use of
Rimini Street Computer Resources. If any data or confidential information of a Rimini Street client or any other third
party is either inadvertently or otherwise disclosed to you as a User, you are required to comply with this Policy and
all applicable privacy legislation applicable thereto. Any unauthorized access, use, storage or disclosure of such data
or information is strictly prohibited.
To ensure compliance with Rimini Street’s internal security policies as well as applicable laws and regulations, Rimini
Street will conduct ongoing and continuous surveillance of Users' use of Rimini Street Computer Resources, including
reviewing, inspecting, and monitoring any Rimini Street Computer Resource use at any time, in any manner, with or
without further notice to the User, with or without the User’s permission, and with or without the User’s further
knowledge or presence. Such surveillance will commence from the start of a User's employment or engagement or
14 days after the implementation of this Policy (if later).
Use of Rimini Street Computer Resources is not private and no User should have any automatic expectation of
privacy as to his or her use or access of Rimini Street Computer Resources. Users should also be aware that certain
private or personally identifiable information (including, for example, name, address, and social security number)
may be transmitted externally to affiliated third party service providers for bona fide business purposes, such as for
payroll processing, benefits administration, and other purposes, which transmissions may include transfers outside
of the European Economic Area.
Declaro que sou fluente no idioma inglês, e que li, entendi e concordo com o conteúdo deste documento.
私は英語に堪能であることを保証し、また、私は本書を読み、その内容を理解した上で、本書の内容に同意いたします。
Use of Rimini Street Computer Resources is not private and no User should have any automatic expectation of
privacy as to his or her use or access of Rimini Street Computer Resources. Unless otherwise prohibited by law,
Rimini Street has the right to review any items on Rimini Street Computer Resources, without notice to or consent
from the User. Rimini Street also has the right to examine a User's Internet access if he/she use Rimini Street’s
computers, including laptops.
Users should also be aware that certain private or personally identifiable information (including, for example, name,
address, and Hong Kong identy card number) may be transmitted externally to affiliated third party service providers
for bona fide business purposes, such as for payroll processing, benefits administration, and other purposes, which
transmissions may include transfers outside of Hong Kong.
使用者知悉、瞭解且同意,使用者在使用本公司的電腦資源或經由本公司的電腦資源存取或處理
相關事務時,並不具有任何對於隱私權之合理期待,除法律特別禁止外,使用者上開使用、存取
或處理行為,本公司有權隨時對相關軟硬體為適當之檢視及稽查,毋庸事先通知使用者,更無需
經過使用者之同意,以維護本公司資產合法與安全。
The User is aware of, understands and agrees that he/she has no reasonable expectation of privacy when using
Rimini Street Computer Resources or accessing to or processing relevant matters via Rimini Street Computer
Resources. Unless expressly prohibited by the law, with respect to the above use, access or processing by the User,
Rimini Street has the right to perform proper inspections and checks on the relevant hardware and software at any
time without prior notice to or consent from the User, in order to maintain the legitimacy and security of its assets.
使用者知悉、瞭解且同意,本公司得依台灣個人資料保護法、相關法令、本政策或本公司之其他
政策與規範,蒐集、處理及利用您的個人資料,使用者應提供正確、最新及完整的個人資料;若
使用者無法提供個人資料予本公司,本公司將有可能無法提供使用者相關服務或是無法履行使用
者與本公司間之契約義務,如因此所生之損害,應由使用者承擔,本公司不負任何責任。
The User is aware of, understands and agrees that Rimini Street may collect, process and utilize his/her personal
information in accordance with the Taiwan Personal Information Protection Act, other relevant laws of Taiwan, this
Policy or other policies and standards of Rimini Street. The User shall provide correct, updated and complete
personal information. If the User fails to provide his/her personal information to Rimini Street, Rimini Street may be
unable to provide relevant services to the User or perform its obligations under the contract with the User. Damages
caused thereby, if any, shall be borne by the User, rather than Rimini Street.
使用者知悉、瞭解且同意,將使用者之個人資料提供本公司、本公司之關係企業及相關連或受本
公司委託之第三人等使用;且本公司為提供使用者相關服務或履行使用者與本公司間之契約義務,
得於必要範圍內,基於特定目的,將使用者之個人資料為國際傳輸。
The User is aware of, understands and agrees that his/her personal information will be provided for use by Rimini
Street, Rimini Street’s affiliates, related parties or third parties entrusted by Rimini Street. To the extent necessary
for Rimini Street to provide relevant services to the User or perform its obligations under the contract with the User,
Rimini Street may, for certain purposes, transfer the User’s personal information out of Taiwan.
使用者知悉、瞭解且同意,本公司保留您個人資料之期間,以提供使用者相關服務或履行使用者
與本公司間之契約義務之特定目的之必要期間為準,惟如法律另有規定或許可更長之期間者,不
在此限。
The User is aware of, understands and agrees that Rimini Street may retain his/her personal information for a period
necessary for it to provide relevant services to the User or perform its obligations under the contract with the User,
unless a longer period is required or permitted by the law.
使用者知悉、瞭解且同意,本公司有隨時修改本規範之權利,使用者並應經常閱覽之,且本公司
於修改時,將另行公告修改之事實並實施,不作個別通知。
The User is aware of, understands and agrees that Rimini Street has the right to modify this Policy at any time. The
User shall check and read this Policy regularly. Any modification hereto will be implemented by Rimini Street after a
public announcement without any further notice.
使用者應確認其英文閱讀能力足以充分理解本政策之所有內容,且使用者知悉、瞭解且同意本政
策之內容,一經使用者簽署,或使用者於知悉本政策之內容後仍繼續使用本公司的電腦資源或經
由本公司的電腦資源存取或處理相關事務,即表示使用者同意本政策之內容,並願意謹守本政策
之規範。
The User shall confirm whether he/she has sufficient English reading skills to fully understand all of the contents of
this Policy and whether he/she is aware of, understands and agrees with such contents. The User’s execution of this
Policy or continued use of Rimini Street Computer Resources or continued access to or processing of relevant
matters via Rimini Street Computer Resources after being aware of the contents of this Policy shall constitute his/her
acceptance of the contents hereof and willingness to comply herewith.
Use of Rimini Street Computer Resources is not private and no User should have any automatic expectation of
privacy as to his or her use or access of Rimini Street Computer Resources. Unless otherwise prohibited by law,
Rimini Street has the right to review any items on Rimini Street Computer Resources, without notice to or consent
from the User. Rimini Street also has the right to examine a User's Internet access if he/she use Rimini Street’s
computers, including laptops.
Users should also be aware that certain private or personally identifiable information (including, for example, name
address, employment details, may be transmitted externally to affiliated third party service providers for bona fide
business purposes, such as for payroll processing, benefits administration, and other purposes, which transmissions
may include transfers outside New Zealand.
Use of Rimini Street Computer Resources is not private and no User should have any automatic expectation of
privacy as to his or her use or access of Rimini Street Computer Resources. Unless otherwise prohibited by law,
Rimini Street has the right to review any items on Rimini Street Computer Resources, without notice to or consent
from the User. Rimini Street also has the right to examine a User's Internet access if he/she use Rimini Street’s
computers, including laptops.
Users should also be aware that certain personal data (including, for example, name, address, and NRIC number)
may be transmitted externally to affiliated third party service providers for bona fide business purposes, such as for
payroll processing, benefits administration, and other business and administrative purposes relating to the Users’
relationship with Rimini Street, which transmissions may include transfers outside of Singapore. In connection with
the foregoing, the User acknowledges that all of his or her personal data that he or she has provided to Rimini Street
is current, complete and accurate.
------------------------------------------------------------------------------------------------------------------------------------------
USER ACKNOWLEDGMENT
BY SIGNING THIS POLICY OR BY USING OR ACCESSING ANY RIMINI STREET COMPUTER RESOURCES (EVEN WITHOUT
SIGNING THIS POLICY), YOU ACKNOWLEDGE AND AGREE TO BE BOUND BY THE TERMS AND CONDITIONS OF THIS
POLICY INCLUDING ALL CONFIDENTIALITY AND NON DISCLOSURE REQUIREMENTS HEREIN. YOU FURTHER
ACKNOWLEDGE THAT BEFORE SIGNING THIS POLICY YOU WERE GIVEN AN OPPORTUNITY TO READ IT AND ASK ANY
QUESTIONS TO MAKE SURE YOU FULLY UNDERSTOOD IT.
THIS POLICY MAY BE MODIFIED OR AMENDED BY RIMINI STREET AT ANY TIME, FOR ANY REASON, WITHOUT NOTICE.
IF YOU ARE RIMINI STREET PERSONNEL, YOUR COMPLIANCE WITH THIS POLICY IS A REQUIRED CONDITION OF YOUR
USE OF RIMINI STREET COMPUTER RESOURCES. THIS POLICY MAY CHANGE FROM TIME TO TIME DURING YOUR
EMPLOYMENT. A VIOLATION OF THIS POLICY DURING YOUR EMPLOYMENT WITH RIMINI STREET MAY SUBJECT YOU
TO DISCIPLINARY ACTION, UP TO AND INCLUDING TERMINATION OF YOUR EMPLOYMENT, AND MAY SUBJECT YOU
TO CIVIL AND/OR CRIMINAL LEGAL PENALTIES DURING YOUR EMPLOYMENT AND THEREAFTER.
IF YOU ARE A CONTRACTOR, CONSULTANT OR OTHER THIRD PARTY WORKING FOR RIMINI STREET, YOUR
COMPLIANCE WITH THIS POLICY IS A REQUIRED CONDITION OF YOUR USE OF RIMINI STREET COMPUTER
RESOURCES. THIS POLICY MAY CHANGE FROM TIME TO TIME DURING YOUR WORK WITH RIMINI STREET. A
VIOLATION OF THIS POLICY DURING YOUR WORK WITH RIMINI STREET MAY SUBJECT YOU TO DISCIPLINARY ACTION,
UP TO AND INCLUDING TERMINATION OF YOUR CONTRACT, AND MAY SUBJECT YOU TO CIVIL AND/OR CRIMINAL
LEGAL PENALTIES DURING THE CONTRACT PERIOD AND THEREAFTER.
A FAILURE BY RIMINI STREET TO ENFORCE ANY PROVISION UNDER THIS POLICY SHALL NOT CONSTITUTE A WAIVER
OF ITS RIGHT TO ENFORCE SUCH PROVISION OR ANY OTHER PROVISION IN THE FUTURE.
By signing below or electronically acknowledging this Policy, by agreeing to comply with this Policy under a
separate contract, or by using or accessing any Rimini Street Computer Resource (even without signing below or
electronically acknowledging this Policy), you acknowledge, and agree to be bound by, the terms and conditions
of this Policy as a condition of using or accessing any Rimini Street Computer Resource.
I certify that I am fluent in English, and I read, understood and agree with the contents of this document.
RajuJanagani
Signature: ________________________________________
RajuJanagani (Nov 22, 2019)
32. References
32.1 Standards:
32.1.1 ISO 27001: 2013: 5.1 d), 5.2 f) & g), 6.2 d) A. 8.1.3, A.6.1.1,
32.2.1 6.1.1, 8.1.3, 7.2.1, 13.2, 9.3.1, 11.2.8, 11.2.9, 9.1.2, 18.1.2, 18.1.4
33. APPENDIX
‘CAN’T COPY CONTENT’ means Other Companies’ Software and Materialsi that are not licensed to Rimini Street (e.g.,
Oracle or SAP software documents and code). It may include Other Companies’ Software and Materials from our
clients’ systems or from other sources.
1. DON’T BRING ‘CAN’T COPY CONTENT’ onto Rimini Street Computer Resourcesii.
3. DON’T MOVE ‘CAN’T COPY CONTENT” onto a client’s system unless Rimini Street has permission to do so
(e.g., when we perform SAP archiving).
i“Other Companies’ Software and Materials” mean all the materials that comprise software applications produced by an outside
company or per, Oracle, SAP), including the object and source computer code, database designs, software updates, custom
solutions, environments, software bug fixes and patches (code error corrections), and related documentation.
ii
“Rimini Street Computer Resource(s)” means any of Rimini Street’s computer resources, including without limitation the entire
Rimini Street internal and external computer network, internet, intranet, host computer, file server, application server, mail
server, web server, workstation, computers, laptop, tablet, software, data file, portable data storage device, wireless device,
mobile phone, smart phone, or any internal or external system or network (including without limitation internet, intranet,
commercial online service, value-added network, or e-mail system) that may be accessed directly or indirectly from or through a
Rimini Street computer network, Rimini Street workstations and virtual workstations, Rimini Street client gateways, Rimini Street
owned or client provided USB or other external media, Rimini Street licensed third party services (e.g., Salesforce or Citrix
ShareFile).
This Non-Disclosure Agreement (“Agreement”) is made by and between Rimini Street, Inc.
(“Rimini Street”), a Delaware corporation having a principal place of business at 3993 Howard
Hughes Parkway, Suite 500, Las Vegas, Nevada 89169, United States of America, and Paul Robert
Engelhardt (“Candidate”), an individual residing at 10205 Barrel Ridge St. Las Vegas, NV 89183.
Rimini Street and Candidate shall each individually be referred to as a “Party” and jointly
referred to as the “Parties.” This Agreement is effective as of the date of the last signature of
the Parties below (“Effective Date”) but is retroactive to the date of first disclosure of
Confidential Information as defined below. The Parties are having discussions and exchanging
information for the purpose of exploring a possible employment relationship (the “Purpose”),
and want to ensure the confidentiality of such discussions and information, so the Parties agree
as follows:
1. Confidential Information. The term “Confidential Information” means any information
relating to the services, products, customers, markets, inventions, software, systems,
processes, personnel, designs, marketing, business strategies, trade secrets, finances,
and other nonpublic information of Rimini Street or its affiliates (“Disclosing Party”)
disclosed to Candidate (“Receiving Party”) for the Purpose. Confidential Information
does not include information that the Receiving Party can establish by legally sufficient
evidence: (i) was in the possession of, or was rightfully known by the Receiving Party
without an obligation to maintain its confidentiality prior to its disclosure by the
Disclosing Party; (ii) is or becomes generally known to the public without breach of this
Agreement; (iii) is obtained by the Receiving Party in good faith from a third party
without any communicated obligation of confidentiality; (iv) is independently developed
by the Receiving Party without use of the Disclosing Party’s Confidential Information; or
(v) is authorized in writing by the Disclosing Party to be released from the confidentiality
obligations of this Agreement.
2. Non-Disclosure. The Receiving Party shall use the Disclosing Party’s Confidential
Information only for the Purpose and shall not disclose it to any person or entity except
as authorized in writing by Disclosing Party. The Receiving Party will use at least
reasonable care to protect the Disclosing Party’s Confidential Information. If it becomes
necessary for the Receiving Party to disclose any Confidential Information to enforce this
Agreement or comply with a judicial or administrative proceeding or similar process, the
Receiving Party shall, to the extent legally permitted, provide the Disclosing Party with
prompt written notice so the Disclosing Party may, at the Disclosing Party’s expense,
seek a protective order or other appropriate remedy to protect such information. If such
The undersigned individuals represent and warrant that they are authorized to sign this
Agreement on behalf of their respective Party