Privacy Policy

We at Cirrus Logic, Inc., and across the Cirrus Logic group of companies (“Cirrus Logic” or ”we”), respect your “Personal Data” (explained below). This Privacy Policy describes our information practices in relation to personal data that we may gather and use, whether through Cirrus Logic websites and other systems, or otherwise, including what type of information is gathered and tracked, how the information is used, and with whom the information may be shared. All information which we gather is controlled by Cirrus Logic.

This Privacy Policy sets out the basis on which any Personal Data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our practices regarding your Personal Data and how we will treat it. We’ve tried to explain what we do in enough detail to give you the information you need at a glance, with the option of following a link if you want to find out more. If you still can’t find the information you need, please contact us using the details provided in the “Contact” section below.

This Privacy Policy applies to Personal Data collected by us from various third parties in connection with our products/services or otherwise, including through our recruitment processes, from visitors to www.cirrus.com (“our website”), or in connection with visiting our premises. It is important that you read this Privacy Policy together with any other privacy information or fair processing notice(s) we may provide on specific occasions when we are collecting or processing Personal Data about you, so that you are fully aware of how and why we are using your Personal Data. This Privacy Policy supplements other privacy related information and notices and is not intended to override them.

Please click on the links below for further information on our privacy practices:

1. WHO WE ARE

2. WHAT IS PERSONAL DATA?

3. INFORMATION WE MAY COLLECT FROM YOU

4. HOW DO WE USE YOUR PERSONAL DATA?

5. WHY WE USE YOUR PERSONAL DATA?

6. TO WHOM DO WE DISCLOSE YOUR PERSONAL DATA?

7. COOKIES, WEB BEACONS AND OTHER TECHNOLOGIES

8. WHERE WE STORE YOUR PERSONAL DATA & WHAT DO WE DO TO KEEP IT SECURE?

9. CHILDREN’S PRIVACY

10. DATA RETENTION

11. BUSINESS RELATIONSHIPS AND THIRD-PARTY SITES

12. ACCESSING YOUR PERSONAL DATA AND OTHER RIGHTS YOU HAVE

13. YOUR CHOICES (E.G. MARKETING RELATED EMAILS OR OTHERWISE)

14. CHANGES TO THIS PRIVACY POLICY

15. CONTACT

WHO WE ARE

Cirrus Logic, Inc. is a company incorporated in the State of Delaware, USA with identification number 77-0024818 and headquartered at 800W. 6th Street, Austin, TX 78701. We have a number of group companies located around the World, the details of which can be found here https://www.cirrus.com/company/contacts/ (together “Cirrus Logic,” “we,” “us” or “our”).

Cirrus Logic is engaged in providing integrated circuits, software, support and tools for audio and voice signal processing applications to our customers (our “products” and “services” ). We and our group companies may collect information about individuals in connection with the marketing and/or sale of our products and related services, when you visit our premises or our website, when you apply for a role with Cirrus Logic, and as otherwise set out in this Privacy Policy.

WHAT IS PERSONAL DATA?

For the purposes of this Privacy Policy “Personal Data” consists of any information that relates to you and/or information from which you can be identified, directly or indirectly. For example, information which identifies you may consist of your name, job title, company name, address, telephone number, email address, resume/CV (e.g. employment/education history etc.), or an online identifier (e.g. cookie identifiers and your IP address). When we combine other information (i.e. information that does not, on its own, identify you) with Personal Data, we treat the combined information as Personal Data.

INFORMATION WE MAY COLLECT FROM YOU

You are welcome to visit our website while remaining anonymous and without revealing any Personal Data about yourself other than as described in our Cookie Policy. There are times, however, when we may request Personal Data from you, or you may choose to provide it to us.

Personal Data you give us directly
You may give us information about you directly when you correspond with us by phone, email or otherwise. This includes Personal Data you provide when you report a problem with our website, when you submit a request via the ‘contact us’ page on our website or provide feedback through the ‘Feedback’ function on our website, or when you visit certain of our premises. The information you give us may include your name, address and zip code/post code, email address and phone number, company name or other personal details that may be included in any enquiry you make or feedback you provide.

You may also provide us with Personal Data, such as your name, address, or email address to enable us to correspond with you, provide you with information about Cirrus Logic, our products or the services we offer, etc., or to give you access to protected or personalized content.

Various pages on our website, and on other Cirrus Logic systems or applications we may ask you to use, invite you to submit your contact details and other information about you or your organization, or to send us emails (which will of course identify you). In each case the purpose for which you are submitting your details will be made clear, for example to receive information, or support services relating to our products.

We may collect your Personal Data where you submit your resume/CV or other application form to us or via a third-party portal in order to apply for a job at Cirrus Logic (including via the Careers section on our website). Such information may include your name, address, telephone number, email address, resume information (e.g., employment history, education, professional credentials, memberships in professional organizations, skills), citizenship, work status and other information that you choose to provide to us (such as information from your LinkedIn profile). Depending on the role being applied for you may be asked to review and accept a privacy notice prior to submitting information relating to a job application.

Personal Data we collect about you
When you visit our website, we may automatically collect (and/or contract with third parties that provide) the following information which may include Personal Data:

• technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and

• information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); page response times, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page.

When you visit our premises, we may collect information about you including your name, contact details, CCTV footage recorded at our premises, details regarding any health and safety issues, or issues or accidents that may occur while you are on our premises, any special dietary requirements or other special needs you may have, and the date and time of your visit. If you are performing services for us we may also obtain and use other information including information regarding any requirements for special equipment, and through applications designed to ensure worker safety. We may obtain image and movement data through our CCTV systems, to prevent and detect crime, maintain security, and to monitor and encourage compliance with Cirrus Logic company policies.

HOW DO WE USE YOUR PERSONAL DATA?

We use Personal Data we collect for the following purposes:

• Providing our services - to provide our services (such as providing you with products you have ordered, or information you have requested) or any specific feature that you request, including to enable us to fulfill our obligations under any contract (such as our terms and conditions for the sale of our products). This may involve using Personal Data collected from you to process orders and payment;

• Analysis purposes - to assess and analyze our market, customers and services (including asking you for your opinions on services and carrying out customer surveys);

• De-identified data – to create anonymous, aggregated statistics about interest in our products, the use of our services, or other industry and marketing statistics. This anonymized data may be shared with third parties;

• Service improvement – to develop and improve new and existing services, recommendations, advertisements and other communications and learn more about your preferences;

• Customer support services - to provide customer support services, or to deal with any other support queries you may have;

• Recruitment – to manage our recruitment related activities and for organizational planning purposes globally. We may use your Personal Data in relation to the evaluation and selection of applicants including for example setting up and conducting interviews and tests, evaluating and assessing the results thereof, and as is otherwise needed in the recruitment processes including the final recruitment;

• Marketing - to advertise, such as providing customized advertisements and sponsored content, or to provide you with newsletters and other communications (including promotional communications) by post, email, telephone and/or text message (SMS), only if you have provided your consent or we are otherwise permitted to do so under applicable law. For further information on this, see the “Your Choices” section of this Privacy Policy;

• Crime prevention - to prevent or detect fraud or crime;

• Safety and Security - to assist in keeping you and our physical premises and website safe and secure;

• Health and Safety – to assist in ensuring the health and safety of those who visit and work at our physical premises;

• Business purposes - to monitor business and keep internal records. We may use your Personal Data for our business purposes, such as audits, internal communication regarding customers, contractors and job applicants, determining the effectiveness of our promotional activities, administering our services and the performance of services for us, maintaining and securing our infrastructure, and for procurement and financial transactions;

• Legal obligations - to comply with our legal obligations, arising under applicable law;

• Training – to train staff, particularly in relation to quality assurance and customer support; and

• Updates - to communicate with you, including communicating with you about the services we are providing to you and marketing or details of other products or services we think may be of interest to you (where permitted by you and applicable laws).

Applicable data protection law allows us to use the Personal Data as set out above on the basis that we are acting in our “legitimate interests”, including improving our services and identifying products/services we think are of interest to you, ensuring the safety and security of those who visit or use our physical premises and our website, to provide a service or product requested or ordered by you, where you may have consented to particular uses, or to enable us to comply with a legal obligation.

WHY WE USE YOUR PERSONAL DATA?

Under certain applicable data protection laws, we can only use your personal data if we have a proper reason for doing so. This will be for one of the following reasons:

• To comply with our legal and regulatory obligations;

• For our legitimate interests or those of a third party;

• For the performance of a contract with you or to take steps at your request before entering into a contract, for example because processing is necessary for the performance of a sales contract;

• For the establishment, exercise or defence of legal claims or proceedings; or

• Where you have given consent.

A legitimate interest is when we or a third party have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests. These interests cover a number of aspects of our business operations, namely:

• To allow us to provide information where requested by you;

• Protecting our commercially valuable information and our intellectual property;

• Preventing and detecting fraud and/or criminal activity that could be damaging for us and for you;

• For credit control purposes;

• For the purposes of risk management; and

• Ensuring we are able to keep up to date with our customers and contacts and developments in their organisations.

We may also process special category personal data (or sensitive personal data) for the following reasons:

• Where you have given your explicit consent;

• For compliance with a legal obligation;

• For the purposes of establishing, exercising or defending legal claims;

• Where it is in your vital interests; and/or

• Where you have made the personal data public.

There may be additional reasons which will be notified to you where they apply.

TO WHOM DO WE DISCLOSE YOUR PERSONAL DATA?

We do not, and will not, sell your Personal Data to third parties. We may disclose your Personal Data to the following entities:

• Cirrus Logic group companies

We may need to transfer your Personal Data to other Cirrus Logic group companies (such as Cirrus Logic, Inc. in Austin Texas, USA, Cirrus Logic International (UK) Ltd and Cirrus Logic International Semiconductor Ltd in the UK, and others listed here: https://www.cirrus.com/company/contacts/, to provide the services or products you require or any other services/assistance you request. All Cirrus Logic group companies are required to follow the privacy practices set forth in this Privacy Policy, or in such other policies or notices that they may notify to you.

• Third-Party Sales Representatives

We may disclose your Personal Data to our authorized third-party sales representatives, services partners, and our distributors in connection with requests for information regarding our products and/or services.

• Service providers

We use third-party service providers to help us to administer certain activities and services on our behalf, including IT services and hosted software, manufacturing, selling and delivering products, processing payments, sending postal mail and emails, sending text messages (SMS), providing advertisements, analysing usage of our services, tracking effectiveness of our marketing campaigns, allowing users to connect to their social network, providing fraud checking services and customer support services. We may share Personal Data about you with such third-party service providers solely for the purpose of enabling them to perform services on our behalf and they will operate only in accordance with our instructions. Here are examples of third-party service providers we use:

• Email and Cloud Service Providers – cloud service providers, including Amazon Web Services, and Q4, Inc., are used to host our website, store data, and assist us in sending emails to you;
• Analytics Service Providers – analytics providers are used to assist us in understanding the usage of our products/devices and other Services, to enable us to improve our Services. The analytics providers we currently use include Google Analytics and Google Adwords. For further information on this see our Cookie Policy;
• Account Creation – we use third party products including those provided by Okta, Inc. in connection with the creation of your user account, and services from APIhub, Inc (trading as Clearbit) to assist us in verifying identity information you may provide;
• Location Data – we use Google Maps to assist us in establishing your location, which in turn enables us to better tailor our interaction with you;
• Recruitment Service Providers – we use third party service providers to administer job applications made through our website;
• Health and Safety System Providers – we use systems hosted by third parties including Evenly Odd, Inc (d/b/a “Knack”) to assist us to monitor and ensure the health and safety of our employees, contractors, and those who visit our premises;
• Facilities Management Providers – we use systems hosted by third parties including iOffice, Inc. in connection with the management of certain of our physical premises; and
• Software Management Providers – we use systems hosted by third parties including Flexera Software LLC (d/b/a “Revenera”) in connection with the management and distribution of certain of our software assets.

• Third parties when required by law or to protect our services

We will use and disclose your Personal Data to comply with applicable law or respond to queries raised pursuant to valid legal process, including from law enforcement or other government agencies; to protect our customers (e.g. to prevent spam or attempts to defraud users of our services); to operate and maintain the security of our services (e.g. to prevent or stop an attack on our systems or networks); to allow us to fulfil our regulatory obligations and for risk management purposes including our insurers and brokers, lawyers, financial advisers, external auditors, banks and other third parties; or to protect the rights or property of Cirrus Logic, including enforcing any terms or agreements governing the provision of our services.

• Other parties in connection with corporate transactions

We may disclose your Personal Data to a third party as part of a reorganisation, merger, transfer, sale, joint venture, assignment or other disposition of all or any portion of our business, assets or stock, including, without limitation, in connection with any bankruptcy or similar proceeding.

• Third-party referees

Where you apply for a job with us, we may disclose your Personal Data to other organizations or individuals for reference purposes or where we conduct other background checks.

• Other parties with your consent or at your direction

We may share Personal Data about you with third parties when you consent to or request such sharing.

COOKIES, WEB BEACONS AND OTHER TECHNOLOGIES

Our website uses cookies to collect information about how visitors use our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our website. For detailed information on the cookies we use and the purposes for which we use them see our Cookie Policy.

WHERE WE STORE YOUR PERSONAL DATA & WHAT DO WE DO TO KEEP IT SECURE?

We have put in place appropriate physical and technical measures to safeguard the Personal Data we collect in connection with our services or that may be otherwise provided to us. To protect your Personal Data against being lost, used or accessed in an unauthorised way, or being altered or disclosed, we use a variety of commercially available security technologies, including secure servers and firewalls. In addition, we limit access to your Personal Data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your Personal Data on our instructions and they are subject to a duty of confidentiality.

However, please note that although we take appropriate steps to protect your Personal Data, no website, device, online application or transmission of data, computer system or wireless connection is completely secure and therefore we cannot guarantee the security of your Personal Data.

We have put in place procedures to deal with any suspected Personal Data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

International Transfer of Data
The Personal Data that we collect from you may be stored and processed in your region, or transferred to, stored at or otherwise processed outside the country where you reside, including but not limited to the United States of America or in any other country where Cirrus Logic group companies or their service providers maintain facilities.

By using our services and/or providing us with your Personal Data, you acknowledge that we may collect, transfer, store and process your Personal Data outside of the country where you reside. We will take all steps reasonably necessary to ensure that your Personal Data is kept secure and treated in accordance with this Privacy Policy and the requirements of applicable law wherever the data is located. Where we transfer your personal data to or from the UK/EEA, we comply with all applicable data protection laws. Transfers may be subject to special contract terms to ensure the adequate protection of the data being transferred.

For additional information regarding international data transfers please contact data.protection@cirrus.com.

CHILDREN’S PRIVACY

Our website and services are not directed towards or intended for children under the age of 16 or such younger age as may be specified by applicable law. We do not knowingly collect Personal Data from children and we abide by all applicable laws and requirements, such as the United States’ Children’s Online Privacy Protection Act and the United Kingdom Data Protection Act 2018 (as amended or replaced).

DATA RETENTION

We will retain your Personal Data for the period necessary to fulfil the purposes for which it was collected as outlined in this Privacy Policy unless a longer retention period is required by law. To determine the appropriate retention period for personal data, we consider the extent, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

Where you provide us with your Personal Data for the purpose of being considered for a job with us we will retain such data in accordance with the privacy notice displayed at the time you submit your details.

If you would like details of our retention periods for different aspects of your personal data, or do not wish us to hold your Personal Data on our system, please contact us using the details provided in the “Contact” section below.

BUSINESS RELATIONSHIPS AND THIRD-PARTY SITES

Our website may contain links to other websites that are not operated by us. For example, our website includes links to our authorized third-party sales representatives, service providers, and our distributors. We are not responsible for the privacy practices or the content of these other websites. We encourage you to review the privacy policies posted on these third-party websites before you submit any Personal Data via them.

ACCESSING YOUR PERSONAL DATA AND OTHER RIGHTS YOU HAVE

We will collect, store and process your Personal Data in accordance with your rights under any applicable data protection laws. Depending on our use of your Personal Data, or our basis for processing it, you may have specific rights regarding your Personal Data under applicable data protection laws. Where European or United Kingdom data protection laws apply, for further information about your rights under the United Kingdom Data Protection Act 2018 or the General Data Protection Regulation (and other applicable national laws), see below:

I. Subject Access
You have the right to request details of the Personal Data which we hold about you and copies of such Personal Data.

II. Right to Withdraw Consent
Where you have consented to our processing of your Personal Data, you have the right to withdraw such consent at any time. In the event you wish to withdraw your consent to processing, please contact us using the details provided in the “Contact” section below.

III. Data Portability
You may, in certain circumstances, request us to port (i.e. transmit) your Personal Data directly to another organization. In the event you wish us to do so, please contact us using the details provided in the “Contact” section below.

IV. Rectification
We want to ensure that the Personal Data about you that we hold is accurate and up to date. and we will make all reasonable efforts to respond in a timely manner to requests to correct inaccuracies in such information. If you think that any information we have about you is incorrect or incomplete, please let us know. To the extent required by applicable laws, we will rectify or update any incorrect or inaccurate Personal Data about you. If you have received an email with inaccurate Personal Data, please return the message to the sender with details of the requested correction. You may also send an email to the address specified below.

V. Erasure (“right to be forgotten”)
You have the right to have your Personal Data ‘erased’ in certain specified situations. In the event you wish to have your Personal Data erased, please contact us using the details provided in the “Contact” section below.

VI. Restriction of processing
You have the right in certain specified situations to require us to stop processing your Personal Data and to only store such Personal Data. In the event you wish us to do so, please contact us using the details provided in the “Contact” section below.

VII. Object to processing
You have the right to object to specific types of processing of your Personal Data, such as, where we are processing your Personal Data for the purposes of direct marketing. In the event you wish to object, please contact us using the details provided in the “Contact” section below.

VIII. Prevent automated decision-taking
In certain circumstances, you have the right not to be subject to a decision being taken solely on the basis of automated processing

Under the California Consumer Privacy Act and/or the California Privacy Rights Act, residents of California have the following rights with respect to your personal data: (1) the right to delete personal information; (2) the right to know what personal information we have collected about you and how it is used and shared; (3) the right to opt-out of the sale of your personal information; (4) the right to non-discrimination for exercise of your rights under CCPA/CPRA; (5) the right to correct inaccurate personal information the Company holds; and (6) the right to limit the use and disclosure of sensitive personal information collected about you. In the event you wish to exercise these rights, please contact us using the details provided in the “Contact” section below. Cirrus Logic shall not discriminate against any individual because they exercised any of the rights under California law.

Your rights
If you wish to exercise any of your rights under applicable data protection laws, then please contact us using the details provided in the “Contact” section below. We will respond to your request without undue delay and within such timeline as specified by applicable data protection laws. Where permitted by local laws we may charge a reasonable fee for dealing with your request which we will notify to you.

Complaints
If you have any other questions, comments or complains about our collection, use or handling of Personal Data, you may contact us using the details provided in the “Contact” section below. We will take any privacy complaint seriously, and will assess it with the aim of resolving any issue in a timely and efficient manner.

Alternatively, if you are concerned that we have not complied with your legal rights under applicable data protection laws, you may contact your local data protection supervisory authority or regulator. For example, the Information Commissioner’s Office (www.ico.org.uk) is the data protection regulator in the United Kingdom, where certain Cirrus Logic companies are located; California residents may contact their Attorney General (https://oag.ca.gov/privacy/ccpa) or the California Privacy Protection Agency (https://cppa.ca.gov/).

YOUR CHOICES (E.G. MARKETING RELATED EMAILS OR OTHERWISE)

We do not share Personal Data with third parties for the third parties’ marketing purposes.

We may also use your Personal Data to personalize and to target more effectively our marketing communications to ensure, to the extent possible, that any marketing-related correspondence is relevant to you.

To opt out of receiving marketing-related correspondence from us, please contact us (as set out in the Contact section below) or click “Unsubscribe” from any marketing or promotional email or text message (SMS) you receive from us.

CHANGES TO THIS PRIVACY POLICY

It is important that you check back often for updates to this Privacy Policy, as we may change this Privacy Policy from time to time. We reserve the right to do so. The “Date last updated” legend at the bottom of this page states when the policy was last updated and any changes will become effective upon our posting of the revised Privacy Policy.

CONTACT

Questions regarding this Privacy Policy should be directed to the Cirrus Logic website coordinator at data.protection@cirrus.com. If you wish us to delete or rectify any Personal Data you have submitted, or to object to our use, to access that Personal Data, or revoke your consent to any aspect of this Privacy Policy, please contact us at data.protection@cirrus.com or 1-800-888-5016.

For additional information on using Cirrus Logic websites, please see our Terms of Use.

_Date last updated: 28 April, 2023_