Javelin App Privacy Policy

Effective Date: June 19, 2025

This Privacy Policy describes how G4S ("we," "us," or "our") collects, uses, and discloses information in connection with your use of the Javelin mobile applications (the "App"). We are committed to protecting your privacy and handling your personal information in a transparent and secure manner, in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using the Javelin App, you agree to the collection and use of information in accordance with this policy.

1. Important Information and Who We Are

G4S is the data controller responsible for your personal data processed through the Javelin App. This means we are responsible for deciding how we hold and use personal information about you. We are regulated under the GDPR which applies across the European Union (including in the United Kingdom).

It is important that you read this Privacy Policy carefully so that you are fully aware of how and why we are using your data. This Privacy Policy supplements other notices and privacy policies and is not intended to override them. You can find the main G4S company-wide Privacy Policy here: https://www.g4s.com/site-tools/privacy.

2. Information We May Collect

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

In connection with your use of the Javelin App, we may collect, store, and use the following categories of personal information:

• Identity Data: Such as your name, username, and employee ID (where applicable).
• Technical Data: Including internet protocol (IP) address, device type, operating system, and unique device identifiers.
• Usage Data: Information about how you use the App, including features accessed and time spent on the App.
• Location Data: The Javelin App may access your device's precise or approximate location data. This access is typically dependent on the specific functionalities enabled within the App and your device's permissions.

3. How Location Data May Be Accessed and Used

The Javelin App may access your device's location data to provide specific services and functionalities essential for its operation. This may include:

• Route Optimization: To facilitate optimal routing and navigation for tasks and assignments.
• Emergency Response/Geofencing: To enable location-based alerts or ensure compliance with security protocols within defined geographical areas.
• Proof of Presence: To verify that tasks or security checks are performed at designated locations.

Location data is used solely for the purposes described above, directly related to the operational requirements of the Javelin App, and is not used for marketing or any other unrelated purposes. Your device's settings allow you to control or disable the App's access to location services. However, please note that disabling location services may impact the functionality and performance of certain App features.

4. How We Collect Your Personal Information

We collect personal information about you through the following methods:

• Direct interactions: You may provide us with Identity and Contact Data by filling in forms or by corresponding with us directly when you set up your account for the Javelin App or report an issue.
• Automated technologies or interactions: As you interact with the Javelin App, we will automatically collect Technical, Usage, and potentially Location Data. This is collected through the App's functionalities and your device's sensors, subject to your permissions.

5. How We Use Your Personal Information

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

• Where it is necessary for the performance of a contract we have with you or your employer (e.g., to provide you with the services of the Javelin App).
• Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests (e.g., for operational efficiency, security, or service improvement).
• Where we need to comply with a legal obligation.

We will not use your personal information for purposes incompatible with those stated in this Privacy Policy.

6. Data Sharing

We may share your personal information with other G4S businesses or authorised third-party service providers only as necessary to:

• Provide the services and functionalities of the Javelin App.
• Process data on our behalf for the purposes described in this policy (e.g., hosting services, analytics).

We will not share your personal information with any other third party for their independent marketing purposes. All third parties are required to respect the security of your personal data and to treat it in accordance with the law.

7. Data Security

We have implemented appropriate security measures to prevent your personal information from being accidentally lost, used, or accessed in an unauthorised way, altered, or disclosed. In addition, we limit access to your personal information to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal information on our instructions and are subject to a duty of confidentiality.

We have procedures in place to deal with any suspected data security breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

8. Data Retention

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

9. Your Rights

Under the GDPR, you have a number of important rights regarding your personal information, which you can exercise free of charge. These rights include:

• Right to access: To request access to your personal information and certain supplementary information.
• Right to correction: To request correction of the personal information that we hold about you.
• Right to erasure: To ask us to delete or remove personal information where there is no good reason for us continuing to process it.
• Right to object to processing: To object to our processing of your personal information in certain situations.
• Right to restriction of processing: To ask us to suspend the processing of your personal information in certain circumstances.
• Right to data portability: To request the transfer of your personal information to another party.
• Right to withdraw consent: Where we are relying on consent to process your personal data.

For further information on each of those rights, including the circumstances in which they apply, please refer to the guidance from the UK Information Commissioner's Office (ICO) at https://ico.org.uk/.

If you wish to exercise any of these rights, please contact us using the details provided below.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes we make to this Privacy Policy in the future will be posted on this page. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

This Privacy Policy was last updated on: June 19, 2025