Please read the following policy to understand how your personal information will be treated as you make full use of our many features.

ExpenseWire.com knows that you care about the treatment of your personal information and ExpenseWire.com is committed to safeguarding your privacy online. This notice describes our privacy policy. By visiting ExpenseWire.com, you are accepting the practices described in this Terms of Use and Privacy Notice. If you do not accept any of the terms and conditions stated herein, do not use any of our sites. We may, in our sole discretion, change these terms and conditions at any time by updating this web site. You are bound by all such modifications, and it is your responsibility to review these terms and conditions on a regular basis. Your continued use of this site following the amendments shall constitute your acceptance of the amendments.

Terms of Use

ExpenseWire.com is not responsible for the content and accuracy of external websites. Links to such websites are provided solely for your convenience. The photographs, graphics, logos and service marks displayed on this site are the property of ExpenseWire.com and other parties. Content displayed is protected by copyright. Users are prohibited from using any content without written permission. Users are prohibited from using any content in any form for any commercial, public, or unlawful purpose.

Statements contained in news releases which are not historical facts may be forward-looking statements as that term is defined in the Private Securities Litigation Reform Act of 1995. Such forward-looking statements are subject to risks and uncertainties which could cause actual results to differ materially from those currently anticipated due to a number of factors. ExpenseWire.com undertakes no obligation to update these forward-looking statements to reflect events or circumstances that occur after the date on which such statements were made.

Information Collected

ExpenseWire.com collects personally identifying information as a means to help improve the products and services it offers as well as the content offered on its web sites. The information we collect includes the following:

- Personal Information.

ExpenseWire.com does not collect any personally identifiable information about you except for the information that you provide to us in order to establish your account, including name, billing address, credit card number and credit card expiration date. We receive, store and use this information to help us communicate with you, respond to your requests and improve the content and services that ExpenseWire.com has available.

- Other Information.

We collect certain types of other information whenever you access our web sites. This includes the use of "cookies", which are explained further below, and the information is used to help us provide content specific to your interests.

- Electronic Mail Communications.

To enable us to more effectively communicate with our customers, you may receive a confirmation when you open e-mail correspondence, including your account registration, from us. We also may compare our list of e-mail addresses with those of our affiliates in order to avoid duplicative or otherwise unnecessary messages being sent to you.

- Information from Other Sources.

To enable us to serve our customers' needs, we may receive some limited information about you from our affiliates, partners and other third parties. We use the data to ensure the accuracy of our records and we integrate this data with your personal account information.

Use of Information

We intend to use the data provided to us above to operate the web site and to assist us with the delivery of content and other products and services. Your information may also be used to contact you when necessary and may be shared with other companies that may want to contact you with offers consistent with your preferences and approval.

If you send us personal correspondence, such as emails or letters, or if other users or third parties send us correspondence about your activities or postings on the Site, we may collect such information into a file specific to you.

By accessing and using our web sites, you agree that, with respect to other users' personally identifiable information that you obtain through the Site or through a ExpenseWire.com-related communication or ExpenseWire-facilitated transaction, ExpenseWire.com hereby grants to you a license to use such information only for: (a) ExpenseWire.com-related communications that are not unsolicited commercial messages, and (b) any other purpose that such user expressly opts into after adequate disclosure of the purpose(s). In all cases, you must give users an opportunity to remove themselves from your database and a chance to review what information you have collected about them. In addition, under no circumstances, except as defined in this section, can you disclose personally identifiable information about another user to any third party without our consent and the consent of such other user after adequate disclosure.

Use of IP Addresses

An IP address is a number assigned to your computer automatically when you access the Internet. Where possible, we may use your IP address to help diagnose problems with our site and/or to improve our services to you.

Use of Cookies

We may use cookies on certain pages of our site. We may also offer certain features that are only available through the use of a cookie. Among other reasons why we use cookies, cookies allow you to enter your password less frequently during a session. Cookies can also help us provide information which is targeted to your interests or service needs. Cookies are stored on your hard drive, not on our site. Most cookies are "session cookies," meaning that they are automatically deleted at the end of a session. You are always free to decline our cookies if your browser permits, although in that case you may not be able to use certain features on our site and you may be required to reenter your password more frequently during a session.

Sharing of Information

Your account information is very important to us and we share such information only in limited situations. For example, we may share the information with affiliates of ExpenseWire.com, including those entities that control the content on some of our web pages.

Unfortunately, due to the existing regulatory environment, we cannot ensure that all of your private communications and other personally identifiable information will never be disclosed in ways not otherwise described in this Privacy Policy. By way of example (without limiting the foregoing), we may be forced to disclose information to the government or third parties under certain circumstances, or third parties may unlawfully intercept or access transmissions or private communications. We can (and you authorize us to) disclose any information about you to law enforcement or other government officials as we, in our sole discretion, believe necessary or appropriate, in connection with an investigation of fraud, intellectual property infringements, or other activity that is illegal or may expose us to legal liability.

Further, we can (and you authorize us to) disclose your name, street address, city, state, zip code, country, phone number, email, and company to ExpenseWire.com participants as we in our sole discretion believe necessary or appropriate in connection with an investigation of fraud, intellectual property infringement, piracy, or other unlawful activity. Therefore, although we use industry standard practices to protect your privacy, we do not promise, and you should not expect, that your personally identifiable information or private communications will remain private.

As a general proposition, we do not sell or rent any personally identifiable information about you to any third party.

Security

ExpenseWire.com uses industry standard efforts to safeguard the confidentiality of your personal identifiable information, such as firewalls, system security measures and Secure Socket Layers (SSL). Please be advised that "perfect security" does not exist in commercial Internet applications and that such security measures may not prevent all loss, misuse or alteration of information on our web sites.

The registration pages, where you enter your personal and credit card information, are secure. This means that any information you send us is protected by encryption. It is easy to tell when you are protected by encryption - your browser displays a lock or a key which is no longer broken or it changes color when you are on a secure page. The actual icon and its location may vary depending on your browser. For example, Netscape has a "Security" padlock icon at the top of the page, which closes when you have entered a secure page. Internet Explorer displays a closed padlock at the bottom of the page when a page is secure.

Except as specifically permitted by this section, you may not disclose your ExpenseWire.com password to any third parties nor share it with any third parties. If you lose control of your password, you may lose substantial control over your personally identifiable information and may be subject to legally binding actions taken on your behalf. Therefore, if your password has been compromised for any reason, you should immediately change your password. You may, however, disclose your password to certain third parties with whom ExpenseWire.com has entered into specific contractual and technical arrangements designed to safeguard your password ("Authorized Password Users"), in order to enjoy the benefits of those third parties' services in relation to the ExpenseWire.com services.

Other Web Sites; Links

Our web sites contain links to other third-party Web sites. ExpenseWire.com is not responsible for the privacy practices, content, use of cookies or the gathering of other information of such third-party web sites.

Public Forums

This site may make chat rooms, forums, message boards and/or news groups available to its users. Please remember that any information that is disclosed in these areas becomes public information and you should exercise caution when deciding to disclose your personal information. Views reflected in these forums do not reflect the views or opinions of ExpenseWire.com.

Children

ExpenseWire.com does not knowingly collect personal information on children. The content of our web sites and the products and services available are not intended for children. If you are under 18, you may only use ExpenseWire.com with the involvement of a parent or guardian.

Questions

If you have any questions or concerns about this privacy notice, the practices of this site or your interaction with this web site, please contact info@expensewire.com.

ExpenseWire.com Application Systems Information

Client Requirements

ExpenseWire.com Solutions recommends the following minimum requirements to access our application environment.

- Color monitor capable of 800 x 600 resolution

- Internet Explorer web browser version 5.5 or greater

Server Network Configuration

ExpenseWire.com's application environment runs in a networked environment on Microsoft Windows 2003 Server, accessed through a web browser over the Internet. Our web applications are served by IIS 6 running on Windows Server 2003 in a clustered configuration. Our application data is served by Microsoft SQL Server 2000 running on Windows Server 2003 in a clustered configuration. All internet-accessible servers are protected by firewalls and monitored with adaptive intrusion detection systems.

Security Policies and Procedures

ExpenseWire.com maintains a strategy of defense-in-depth. Our information security systems are configured in a tiered environment, with programs and processes running on many levels, to provide a transparent, robust level of security and service while maintaining a robust user level performance. Any breach of the below mentioned systems or policies would be immediately communicated to a designated client contact.

Physical Security

All primary servers are housed in an on-site, state-of-the-art data center, with monitored intrusion and fire systems. Physical access to the data center is restricted to authorized ExpenseWire.com technical staff. We maintain a redundant data center at a co-location facility in Columbus, OH. Access to the redundant data center is also restricted to authorized ExpenseWire.com technical staff.

Network Security

ExpenseWire.com maintains separate internal and external networks to separate our application servers from our data storage servers. All internal network database and document storage servers are accessible only from dedicated application servers on the external network, and have no Internet accessibility whatsoever. All external Internet accessible servers are protected with active firewall technology in default deny mode, which allows access only to a limited IP port range on designated servers. All network traffic is monitored with an adaptive intrusion detection system. A team of professional network technicians maintains all systems.

All data transmitted using the ExpenseWire.com application environment is encrypted using 128 bit SSL. All access to the ExpenseWire.com application environment is username and password controlled.

Network penetration tests are performed regularly. These are self audits performed using standard network penetration tools patched to include latest exploits for the network services and operating systems that are in use in the ExpenseWire.com production and corporate network environment.

Host Security

All ExpenseWire.com servers are hardened and maintained to the latest tested level of security and systems patches. New patches and service packs are first tested in a separate, controlled network environment before being applied to production servers. All servers are monitored and maintained by a team of dedicated technicians.

All application and database servers are run in a clustered configuration to maintain the highest levels of application performance and availability.

Application Security

All access to the ExpenseWire.com application environment are controlled with a username and password combination. Users are created by ExpenseWire.com customer representatives or a designated administrative client contact, from within the Administrative section of our application environment. Our standard procedure is to email the user their information including URL, username and password. Our tandard password policy is that passwords must be greater than 8 characters and contain letters, numbers, and symbols. Users are "locked out" of the application after 4 incorrect logon attempts. Password and user notification policies are flexible and can be tailored to suit a clients needs or concerns.

ExpenseWire.com application environment has a robust, granular permissions system that can be used to restrict user access to the application down to the individual record level. User rights can be easily granted or revoked from within the Administration section of our application environment.

Data Security

All client data is maintained in separate, secure databases. Backups of this data will be provided to clients at any time. Client data is accessible only to the Client and authorized ExpenseWire.com personnel via our application environment. All client databases are backed up on a hourly basis using redundant methods of hard disk and data tape. Backups of client data are by default stored on an hourly basis for the past 24 hours, and then on a daily basis for two months, with weekly backups being stored indefinitely. Backup storage is flexible and can be tailored to suit a clients needs or concerns. Backup of client data can be provided at any time to the client.

Disaster Recovery

Our disaster recovery plan is provided by supplying layers of redundancy in power (battery backup, with generator fail over), servers (all servers run in a clustered configuration), data (frequent reliable backups), network connectivity (Main ISP at data center failing over to backup ISP which fails over to a collocated data center in a different city). Backups of data occur on an hourly basis. Clients have an option of having this data replicated to a redundant collocated data center in Columbus, OH. Redundant systems are tested on a daily basis.