GDPR Subprocessors

Subprocessor List – Last Updated October 15, 2021

Capitalized terms used and not defined below have the meaning ascribed to them in the European Union General Data Protection Regulation 2016/679 (the “GDPR”).

To support the delivery of services we provide to our customers, Appgate, Inc. and its subsidiaries (collectively, “Appgate”) may engage and use certain Processors (“Subprocessors”) having access to certain Personal Data of Data Subjects located in the European Union (“EU Personal Data”).

Appgate undertakes to use a commercially reasonable selection process by which it evaluates the security, privacy and confidentiality practices of proposed Subprocessors that will or may have access to EU Personal Data.

The following Subprocessors may have access to EU Personal Data as necessary for the support of Appgate’s business activities:

SUBPROCESSOR NAME	SERVICE PROVIDED	LOCATION
Amazon Web Services (AWS)	Hosting provider for Apgate’s fraud protection products	United States
Microsoft Azure	Hosting provider for Appgate’s Compliance Sheriff and SDP products	United States
Salesforce	Customer relationship management and customer service provider	United States
CustomerGauge	Service delivery and customer support provider	United States
Pegasus	Service delivery and customer support provider	United States
Outreach	Sales engagement platform provider	United States
Thinkific	Learning management platform	United States
Jotform	Digital form platform	United States
Stripe	Payment platform	United States
DocuSign	Contract management platform	United States
Eventbrite	Event management platform	United States
SAP	Accounting software	United States

As our Subprocessors change, Appgate will, in compliance with the GDPR, applicable law, and our existing agreements with our customers, endeavor to provide our customers with notice of any new Subprocessors, along with posting such updates here. Please check back frequently for updates.