Infor’s GDPR Program Validation

TRUSTe LLC Independent GDPR Privacy Program Management Validation Findings Summary

Expiration date: July 19, 2023

Scope

TRUSTe LLC¹ reviewed the global privacy program of Infor (“Organization”) as of July 19, 2022 against the 40 GDPR Privacy Program Management Validation Requirements(the “Validation Requirements”) comprising the TrustArc GDPR Privacy Program Management Compliance Validation. A validation review of the Organization’s GDPR Privacy Program involves a comprehensive evaluation of program-level measures and evidence of those measures to ensure that the processing of personal information conducted by them, or by a third-party processor on their behalf, is performed in compliance with the EU General Data Protection Regulation (GDPR).

Inherent Limitations

Because of their nature and inherent limitations, program-level measures of the Organization may not always operate effectively to meet the applicable Validation Requirements.

Furthermore, our findings herein are subject to the risk that the Privacy Program, or any component of the program, may change or that program-level measures implemented by the Organization may become ineffective or fail.

Findings

In our opinion, in all material respects, based on the descriptions and supporting evidence of program-level measures identified in Infor’s GDPR Validation Assessment:

• the applicable program-level measures as further described in the Findings Letter and TRUSTe Validation Report have been implemented as of July 19, 2022.
• the measures described in the GDPR Validation Assessment were suitably designed to provide reasonable assurance that the Validation Requirements would be met if the program-level measures operated effectively as of July 19, 2022.

Restricted Use

This summary² of the Findings Letter and accompanying report is for the intended use of Infor as of July 19, 2022.

• This summary provided by TRUSTe may be used by the Organization until its expiration date listed below.
• This summary expires on July 19, 2023.

It is not intended to be, and should not be used nor relied upon by anyone other than the Organization and, as determined in the sole discretion of the Organization, the Organization’s customers, contractors and other permitted stakeholders.

---

¹TRUSTe LLC is an independent subsidiary of TrustArc Inc.

²This summary is solely an abbreviated unofficial version of the full Findings Letter and accompanying report. It is intended solely for the Organization to display on its website. No modifications to this document are permitted and shall render it invalid.

Only the full Findings Letter and report represent the official determination of TRUSTe.

Download the TRUSTe Review of Infor's GDPR Privacy Practices Compliance