The Equifax Business Ethics
and Compliance Program
"LEADING WITH INTEGRITY"
| |
|
|
|
|||
|---|---|---|---|---|---|---|
| INTRODUCTION | ||||||
I. |
ABOUT THE EQUIFAX BUSINESS ETHICS AND COMPLIANCE PROGRAM |
|||||
II. |
PROGRAM ADMINISTRATION AND SANCTIONS |
|||||
III. |
EMPLOYEE REPORTING PROCEDURES AND INVESTIGATING MISCONDUCT |
|||||
• |
What to Report. |
|||||
| • | How to Report Misconduct. | |||||
| • | How to Contact the Compliance Officer. | |||||
| • | How to Report Suspected Accounting or Auditing Misconduct. | |||||
| • | You May Remain Anonymous or Request Confidentiality. | |||||
| • | Investigations are Confidential. | |||||
| • | You May Not Be Treated Unfairly Because You Have Reported a Suspected Violation. | |||||
| • | Improper Uses of Reporting. | |||||
CORE VALUES AND THE EQUIFAX WAY |
||||||
I. |
CORE VALUES |
|||||
| II. | THE EQUIFAX WAY | |||||
CODE OF CONDUCT |
||||||
• |
Introduction. |
|||||
I. |
HUMAN RESOURCES |
|||||
• |
Policy Against Harassment |
|||||
II. |
SUBSTANCE ABUSE |
|||||
III. |
POLITICAL PARTICIPATION |
|||||
IV. |
ENVIRONMENT, HEALTH AND SAFETY |
|||||
V. |
ACCOUNTING INTEGRITY AND INTERNAL CONTROLS |
|||||
• |
Senior Financial Officers |
|||||
| • | Internal Controls and Control Activities | |||||
| • | Accounting Standards | |||||
| • | Cash Disbursements | |||||
| • | Cash and Check Acceptance | |||||
| • | Full Disclosure Requirements | |||||
| • | Reporting of Irregularities | |||||
VI. |
FRAUD & EMBEZZLEMENT |
|||||
VII. |
REGULATORY REQUIREMENTS IN OUR CORE BUSINESSES |
|||||
• |
Fair Credit Reporting Act |
|||||
| • | Gramm-Leach-Bliley Act | |||||
VIII. |
THE FOREIGN CORRUPT PRACTICES ACT |
|||||
IX. |
CONFLICTS OF INTEREST |
|||||
X. |
RELATIONSHIPS WITH SUPPLIERS / CONTRACTORS / CUSTOMERS |
|||||
• |
Special Requirements for Government Contracts |
|||||
XI. |
RECORDS RETENTION / DESTRUCTION |
|||||
• |
Litigation Exception. |
|||||
XII. |
ANTITRUST AND TRADE REGULATION |
|||||
XIII. |
INSIDER INFORMATION AND SECURITIES TRADING |
|||||
• |
Material Information That is not Public Must be Kept Confidential and not Used. |
|||||
| • | Material Nonpublic Information Defined. | |||||
| • | Insider Trading Defined. | |||||
| • | Persons Who are not Related to the Company but who are Tipped Material Nonpublic Information and Trade May Also be Committing a Crime. | |||||
| • | Insider Trading is a Serious Crime. | |||||
| • | Guidelines for Compliance. | |||||
XIV. |
MEDIA RELATIONS |
|||||
XV. |
ADVERTISING AND STATEMENTS TO CUSTOMERS |
|||||
XVI. |
CONFIDENTIAL INFORMATION AND INTELLECTUAL PROPERTY |
|||||
• |
Confidential Information |
|||||
| • | Intellectual Property | |||||
| • | Rights of Others | |||||
Equifax
is a registered trademark of Equifax Inc.
COPYRIGHT © 2000, 2003, Equifax Inc., Atlanta, Georgia.
All rights reserved.
I. ABOUT THE EQUIFAX BUSINESS ETHICS AND COMPLIANCE PROGRAM
Our collective objective as Equifax officers and employees is to maximize the value of our shareholders' investment in the Company, while conducting our business in a manner that is socially responsible, values-based, and in compliance with the letter and spirit of the law. Therefore, we have developed this booklet, "Leading with Integrity," as part of our Business Ethics and Compliance Program.
The Program includes two main components: (1) this Business Ethics and Compliance Manual, which includes a statement of our Core Values and Code of Conduct (collectively, the "Code"); and (2) procedures for Program administration. All officers and employees, as a condition of employment or continued employment, will acknowledge in writing that they have received copies of this Manual, read it, and understand that the Code contains the Company's expectations regarding employee conduct.
You should know that the Program is designed to satisfy the standards contained in the Federal Sentencing Guidelines published by the U.S. Department of Justice. U.S. federal courts are bound to apply those Guidelines when sentencing companies convicted of federal offenses arising from the illegal acts of one or more employees. Those Guidelines provide for substantial leniency in sentencing of the company from otherwise severe mandatory penalties, where the company had in effect an adequate compliance program at the time of the illegal activity.
In general, the Company intends to cooperate in connection with any government investigation of alleged criminal conduct, and will coordinate all activity in connection with those investigations through the Company's General Counsel.
Equifax anticipates that any waivers of provisions of the Code will be infrequent and granted only when justified by unusual circumstances not contemplated by the Program. Any waiver of any part of the Code for executive officers may be made only by the Board of Directors or an authorized Board committee. Waivers for the benefit of an executive officer shall be publicly disclosed to the extent required by applicable laws or stock exchange listing standards.
II. PROGRAM ADMINISTRATION AND SANCTIONS
The Company's General Counsel has responsibility for the Program. The Company has appointed a Compliance Officer who will perform various ongoing administrative functions in connection with the Program, including issuing Code updates and maintaining an anonymous reporting hotline (the Equifax Reporting Line) for receipt of questions and reports of potential employee violations of the Code. As provided in the Program administrative guidelines, the Compliance Officer or another appropriate individual appointed by the General Counsel will investigate all reported violations of the Code so the Company can take appropriate steps to remedy any violation in a prompt manner.
An employee who has violated the Code or otherwise committed misconduct is accountable for his or her violation. Violators may be subject to a full range of penalties of varying levels of severity. These penalties may include, without limitation, oral or written censure, training or re-training, demotion or re-assignment, suspension with or without pay or benefits or termination of employment. In determining the appropriate penalty for a violation, Equifax may take into account all relevant information, including the nature and severity of the violation, whether the violation involved fraud or falsehood, whether the violation was intentional or inadvertent, whether the violator cooperated with the investigation of the violation and whether the violator has committed other violations in the past.
1
III. EMPLOYEE REPORTING PROCEDURES AND INVESTIGATING MISCONDUCT
• What to Report.
Our Code is designed to encourage participation by our employees and to provide a method to report conduct that they suspect is in violation of the Code, including applicable laws and regulations.
All employees should be alert and sensitive to situations that could result in misconduct. If an employee believes that actions have taken place, may be taking place, or may be about to take place that violate or would violate the Code, including applicable laws or regulations, they are obligated to bring the matter to the attention of the Company.
• How to Report Misconduct.
If you think that certain activity is in violation of the Code, you should generally first bring the matter to the attention of your supervisor. However, if the conduct in question involves your supervisor, if you have reported it to your supervisor and do not believe he/she has dealt with it properly, or if you otherwise do not feel that you can discuss the matter with your supervisor, you may either raise the matter with the next level of management, the Human Resources Department, or report it to the Compliance Officer.
In reviewing a complaint received from an employee, a supervisor or manager should consider whether the report involves a potential violation of the Code and if so, they must report it immediately to an appropriate person. If it involves accounting, internal accounting controls, or auditing irregularities the supervisor must immediately forward the complaint to the General Counsel..
In the event that you have a complaint involving accounting, internal accounting controls, or auditing irregularities, you may alternatively report the matter directly to the General Counsel, as explained below.
The person receiving your complaint or report will respond to it appropriately, and in accordance with any applicable procedures for Program administration or Company policies.
• How to Contact the Compliance Officer.
Any employee may communicate with the Compliance Officer, either anonymously or by name, by any of the following methods:
Employees may also contact the Compliance Officer by any of these methods with any questions about the Program or the Code.
• How to Report Suspected Accounting or Auditing Misconduct.
If any employee has a complaint or report involving accounting, internal accounting controls or auditing matters, the employee may report the matter, either by name or on an anonymous basis, to the General Counsel instead of using the complaint procedures outlined above.
If you wish to report questionable accounting or auditing matters to the General Counsel on an anonymous basis, send a writing addressed to the General Counsel via internal mail to Mail Drop H-63
2
or by U.S. mail to the address listed in the previous section, or phone the Equifax Reporting Line at (877) 482-5252. Do not e-mail the General Counsel if you wish to report on an anonymous basis.
A questionable accounting or auditing matter could include any of the following:
• You May Remain Anonymous or Request Confidentiality.
When reporting conduct suspected of violating the Code, including applicable laws and regulations, to the Compliance Officer or reporting questionable accounting, internal control or auditing matters to the General Counsel, you may either remain anonymous or identify yourself. If you wish to remain anonymous, we ask that you provide enough detailed information so that we may thoroughly investigate your complaint and take appropriate action to remedy any Code violations. Do not e-mail the Compliance Officer or General Counsel if you wish to remain anonymous.
If you identify yourself, you may still request that your name be kept confidential. Equifax will use reasonable efforts to keep your identity confidential, to the extent you request. You should be aware, however, that Equifax's obligation to investigate the reported matter and take any remedial action may require that your identity be revealed, or the nature of the investigation may be such as to cause your identity to become known.
• Investigations Are Confidential.
The Company will also use reasonable efforts to protect the identity of employees about or against whom an allegation is brought unless and until it is determined that a violation has occurred. Any employee involved in any capacity in an investigation of a possible violation of the Code must not discuss or disclose any information to anyone outside of the investigation unless required by law or when seeking his or her own legal advice if necessary.
• You May Not Be Treated Unfairly Because You Have Reported A Suspected Violation.
Equifax expressly forbids any retaliation against any employee for making a good faith report of suspected misconduct. Any person who participates in any retaliation is subject to disciplinary action, including termination.
Moreover, federal law specifically provides that a company may not discharge, demote, suspend, threaten, harass or otherwise discriminate against any employee who has reported or provided information pertaining to fraud committed by the Company, its officers, employees or agents.
• Improper Uses of Reporting.
Employees must not use the Program in bad faith or in a false or frivolous manner. Further, you should not use the Equifax Reporting Line to report personal grievances not involving the Code. You should follow the Company's "Open Door" policy to address those matters.
3
CORE VALUES AND THE EQUIFAX WAY
Our collective mission is to maximize the value of our shareholders' investment in the Company while maintaining our core values, which are embodied under the following principles:
The Equifax Way is a concise statement of how we carry on our business, how we achieve our objectives, and how we maintain a high degree of integrity while succeeding:
The Equifax Way—Our Business Philosophy:
We
do what we say.
We do it with respect.
We do it fairly.
We do it with integrity.
We execute with speed.
We take prudent risks.
We work as a team.
We are accountable for our actions.
We make tough decisions.
We are performance driven.
• Introduction.
This Code of Conduct includes a series of numbered Policy Statements. Some of them are summaries of more complete Company policies. Ultimately, we intend to make available copies of those more complete policies and other supporting information, such as copies of certain pertinent laws and regulations, in an Equifax Compliance Library maintained by the Compliance Officer on a Company intranet system. Until then, you may obtain complete policies and other available supporting information relating to the Code of Conduct and Compliance Program in the Equifax Compliance Library by contacting the Compliance Officer. From time to time, we may publish revisions or supplements to the Policy Statements as appropriate based on changes in the regulatory environment, changes in the businesses we conduct, or other factors.
4
The following are the Policy Statements contained in our Code of Conduct. Employees who violate the Code or its underlying policies are subject to disciplinary action, up to and including termination of employment. Specific examples of legal fines or penalties are included with some of the Policy Statements for illustration purposes only. Those examples are not exclusive, and are not intended to be a full description of all possible legal fines or penalties.
All legal obligations constitute an integral and key part of our Code. You are required at all times to comply not only with the specific Policy Statements in this Code, including all laws and regulations discussed below, but also with all other applicable laws and regulations in connection with your employment or service with Equifax. If an express provision of the Code conflicts with a legal obligation, you must follow the law. Contact your supervisor or the Compliance Officer in the event you suspect such a conflict.
As reflected by our operating principles, the Company recognizes that its greatest strength lies in the talent and the ability of its employees. The Company's on-going policy is to protect and nurture this asset.
Equifax is committed to providing equal opportunity in all of our employment practices including selection, hiring, promotion, transfer, and compensation to all qualified applicants and employees without regard to race, color, sex or gender, religion, age, national origin, handicap, disability, citizenship status, veteran status, or any other status protected by law. Equifax also practices Affirmative Action. Affirmative Action means the initiation of special good-faith efforts to attract, employ, and advance women and minorities, Vietnam-era veterans and persons with disabilities so that a mix of qualified candidates is available when we make employment and promotion decisions. We must comply with these policies in every respect, both in letter and in spirit.
• Policy Against Harassment.
Equifax does not tolerate harassment of any of our employees, applicants, vendors or customers, and our policy is to maintain a working environment free from harassment. Any form of harassment related to an individual's race, color, sex/gender (including same sex), religion, age, national origin, handicap, disability, citizenship status, veteran status or any other protected category is a violation of this policy and will be treated as a disciplinary matter. For these purposes, the term "harassment" includes:
5
Please understand that harassing conduct is illegal whenever:
Harassment by non-employees of our employees in connection with their work, or harassment by our employees of applicants for employment, or employees of our vendors or customers, is also a violation of this policy.
If you believe that you are being harassed by another employee or by anyone else, or if you believe that someone else is, you should, without fear of reprisal, promptly report it to your supervisor. If the problem involves your supervisor, or if you do not want to discuss the problem with your supervisor, or if you previously have discussed the problem with your supervisor and believe further action is necessary to resolve the problem, then promptly report it to the Human Resources Department, or to the Compliance Officer. Managers must immediately report any incidents of harassment to Human Resources or to the Compliance Officer. Human Resources, or their designated representative, will carefully investigate each harassment complaint received by them or the Compliance Officer and take corrective action when appropriate. The Company will keep your complaint as confidential as reasonably possible and will not penalize you in any way for reporting conduct that you believe in good faith may be a violation of this policy.
Violations of this policy will subject an employee to disciplinary action, up to and including immediate termination. Therefore, if you have any questions about what constitutes harassing behavior or what conduct is prohibited by this policy, please discuss them with your supervisor, the Human Resources Department or the Compliance Officer.
Equifax cannot resolve a harassment problem unless we know about it. Therefore, it is your responsibility to bring any such problems to our attention so that we can take whatever steps are appropriate to correct the problem.
Equifax does not tolerate being under the influence of or using alcohol in the workplace, the illegal use of drugs, or the abuse of other legally controlled substances. Unlawful actions that discredit the Company involving illegal drugs, controlled substances or alcohol during either working or non-working hours are grounds for disciplinary action, including termination. In order to better ensure a drug-free work environment for the safety and well being of all our employees, Equifax has adopted a Drug and Alcohol Policy, including certain drug screening procedures, a copy of which is in the Company's employee handbook and the Compliance Library.
U. S. federal and state laws limit the nature and extent of individual and corporate political participation. For example, federal law and that of many states prohibit corporate contributions to political candidates or officeholders.
Federal law and Company policy also state that the Company will not reimburse anyone for personal political contributions. The Company will not alter personal compensation in any way under any circumstances to reflect personal political contributions.
6
IV. ENVIRONMENT, HEALTH AND SAFETY
The Company is committed to protecting and maintaining the quality of the environment and to promoting the health and safety of employees, customers and the communities where it operates. To meet that commitment employees must:
You should direct reports of any actual or potential environmental, health or safety problems, or any questions about employees' responsibilities or Company policies in these areas to your supervisor or the Compliance Officer.
V. ACCOUNTING INTEGRITY AND INTERNAL CONTROLS
• Senior Financial Officers.
The Chief Executive Officer, the Chief Financial Officer and the Principal Accounting Officer or Controller or persons performing similar functions (referred to collectively as the Senior Financial Officers) are responsible, within the scope of their duties, for promoting full, fair, accurate, timely and understandable disclosure in Equifax's periodic SEC reports and other public disclosures, consistent with applicable laws, rules and regulations. The Code—including the provisions related to honest and ethical conduct, conflicts of interest, compliance with law and the obligation to report misconduct or Code violations—is applicable to the Senior Financial Officers to the same extent it is applicable to all other officers and employees. Conduct by any Senior Financial Officer that you suspect violates the Code must be reported to the General Counsel or Compliance Officer in the manner described earlier in this Code. Only the Board of Directors or an authorized Board Committee may waive application of any part of the Code to any Senior Financial Officer.
• Internal Controls and Control Activities.
The Company has established internal controls to provide reasonable assurance of achieving the following objectives:
Equifax employees and officers are responsible for complying with internal controls applicable to their areas of responsibility. Also, employees need to be alert to situations, whether in their direct area of responsibility or otherwise, where internal controls could be improved. You may provide any suggestions you have for improving the Company's controls to your supervisor or to the Corporate Controller. No officer, employee or other person acting on behalf of the Company will engage in any activity that circumvents or compromises the Company's systems of internal controls.
7
A primary purpose of internal controls, including the control activities and cash disbursement and cash and check acceptance policies described below, is to help ensure the protection and efficient use of Equifax's assets. All Company assets should be used only for legitimate business purposes.
To achieve its internal control objectives, the Company has implemented certain control activities relating to both manual and automated systems. Examples of control activities include: approvals and authorizations of transactions, segregation of duties, verification of supporting documents, reconciliation of accounts, reviews of key financial reports and operating statistics, physical and logical security of Company assets, and validity checks and balancing procedures for data processing.
• Accounting Standards.
All accounting records and financial statements should be recorded in accordance with U.S. generally accepted accounting principles (GAAP), or that of another jurisdiction where appropriate. In order to provide guidance on GAAP, Equifax Corporate Accounting has established the Equifax Accounting Standards, which is available from Corporate Accounting or the Equifax Compliance Library maintained by the Compliance Officer. You should direct questions on the treatment of a particular accounting issue to your supervisor or to the Corporate Controller.
• Cash Disbursements.
Company policy prohibits cash disbursements except for nominal disbursements drawn from established and properly recorded petty cash accounts. All checks will be drawn only to the ultimate payee. No checks will be drawn to cash or bearer. You can obtain specific guidance on disbursement procedures from your supervisor or from the Equifax Compliance Library.
• Cash and Check Acceptance.
No employee other than those specifically authorized may accept cash or checks or similar negotiable instruments from a customer or vendor unless a manager is present. You must always provide a written receipt to the person providing the payment. The Company may hold any employee who fails to follow this procedure liable for any monetary loss.
• Full Disclosure Requirements.
Federal law requires publicly traded companies to provide full, fair, accurate, timely and understandable disclosure in all reports and other documents submitted to the Securities and Exchange Commission (SEC) or in any public communication. Equifax's SEC reports and other public disclosures must be free of material misstatements and misleading omissions. Equifax's public financial information should fairly present in all material respects the Company's financial condition, results of operations and cash flows.
Equifax ensures that such public disclosures are accurate, timely and understandable by maintaining internal accounting controls and internal disclosure controls and procedures (to ensure that information required to be disclosed is accumulated and made known to the appropriate persons in a timely fashion), coordinating all disclosure, and limiting its authorized spokespersons.
• Reporting of Irregularities.
If you suspect that any Equifax SEC report, press release or other public disclosure (including on Equifax's website) contains a material inaccuracy or omits a material fact that renders the disclosure misleading, you should immediately contact your supervisor, the Corporate Controller or Compliance Officer, or if it involves a questionable accounting or auditing matter, the General Counsel. You may contact the General Counsel or Compliance Officer anonymously, as explained above.
8
According to the American Institute of Certified Public Accountants, fraud and embezzlement includes the following:
If you suspect that fraud or embezzlement has occurred, you must immediately notify the Compliance Officer so that he or she may take appropriate action. Any type of fraud or embezzlement will result in serious consequences and disciplinary action, up to and including immediate discharge..
VII. REGULATORY REQUIREMENTS OF OUR CORE BUSINESSES
Although we cannot list all the regulatory requirements that apply to Equifax's operating units around the world, it is appropriate to highlight the following major U.S. laws. Additional information and guidelines pertaining to other applicable laws and regulations in your geographic territory are available in the Equifax Compliance Library.
• Fair Credit Reporting Act.
The federal Fair Credit Reporting Act (FCRA) became effective in 1971 and was materially amended in 1996. Its purpose is to ensure that consumer reporting agencies adopt reasonable procedures for meeting the needs of commerce for consumer credit, personnel, insurance, and other information in a manner that is fair and equitable to the consumer with regard to the confidentiality, accuracy, relevance and proper use of that information. The FCRA also regulates the activities of users of consumer reports and furnishers of information to consumer reporting agencies. The FCRA also seeks to prevent an undue invasion of the right to privacy in the collection and dissemination of consumer reports by limiting the purposes for which reports may be used. The FCRA places disclosure obligations on consumer reporting agencies, as well as on users of consumer reports who reject or otherwise take adverse action on a consumer's application for credit, insurance, employment or other benefits based on the information contained in a consumer report.
In addition to civil liability, the law provides for the imposition of criminal penalties against:
The penalty may include a fine or imprisonment for not more than two years, or both.
We are a party to a Consent Order with the Federal Trade Commission requiring our U.S. credit reporting business to maintain certain procedures to facilitate FCRA compliance. Also, various states have laws imposing obligations similar or in addition to the FCRA. The full text of the FCRA as well as similar state regulations and the FTC Consent Order are available in the Equifax Compliance Library.
The Company provides FCRA training courses for employees engaged within this business. You may contact your manager regarding FCRA training opportunities.
9
• Gramm-Leach-Bliley Act
The Gramm-Leach-Bliley Act (GLB), also known as the Financial Modernization Act of 1999, sets forth the requirements of financial institutions regarding the privacy and safeguarding of consumers and customers' non-public personal information. Financial institutions must provide consumers and customers notices regarding the institution's information collection and sharing practices. Along with this notice, consumers and customers must also be given the right to "opt-out" to prevent the financial institution from sharing their information with third parties. Additionally, financial institutions must develop and maintain an information security program to protect the security, confidentiality and integrity of the information. Criminal and civil penalties may be imposed for violations of the Act.
The Gramm-Leach-Bliley Act governs the manner in which various Equifax entities collect, use, and disclose consumer and customer information received from financial institutions. Additionally, Equifax entities that receive and collect consumer and customer information have developed and maintain appropriate information security programs.
Equifax provides GLB training courses for those employees employed within these businesses. You may contact your manager regarding GLB training opportunities.
VIII. THE FOREIGN CORRUPT PRACTICES ACT
The U.S. Foreign Corrupt Practices Act, as amended by the International Anti-Bribery and Fair Competition Act of 1998 (FCPA), makes it a crime to bribe officials of another country. The law applies to U.S. companies and their domestic and foreign subsidiaries, and their employees or agents (whether or not U.S. nationals), as well as other foreign persons who violate the law in the U.S. The FCPA has two basic parts: (1) anti-bribery provisions, and (2) accounting and record-keeping requirements.
The anti-bribery provisions make it illegal to bribe a foreign public official, political party, party official or candidate for political office, or an official of a public international organization. The FCPA defines a "bribe" as any payment, directly or indirectly, or any offer or promise to pay, anything of value (whether cash or otherwise) to the recipient for the purpose of influencing or rewarding an act or decision to obtain, retain or direct business, or for the purpose of obtaining any "improper advantage" (e.g., tax breaks, immunities, permits or priorities not otherwise earned). The FCPA's accounting and record-keeping provisions require companies to keep detailed corporate books, records and accounts, and prohibit the falsification of those materials. The accounting and record-keeping provisions apply to domestic as well as foreign operations of publicly traded U.S. companies. These requirements complement the anti-bribery provisions by preventing the creation of unreported slush funds for illegal payments. It is important to understand that the law requires strict accuracy in documentation and reporting. These provisions can be interpreted to include relatively small sums from petty cash funds.
Consistent with the FCPA, Equifax corporate policy requires that:
10
Anyone who is convicted of violating the FCPA is subject to substantial fines or imprisonment.
We expect Equifax officers and employees to avoid any activity, investment, interest or association that interferes or appears to interfere with their independent exercise of judgment in carrying out an assigned job responsibility, or with the interests of Equifax and its shareholders as a whole. Conflicts of interest may arise in many situations. They occur most often where an employee or his/her family members obtain some personal benefit at the expense of the Company.
If there are any questions whether or not a specific act or situation represents, or appears to represent, a conflict of interest, or if you suspect a conflict of interest exists, you should consult your supervisor or the Compliance Officer before undertaking the action or creating the potential conflict situation.
Some of the most common conflict situations are:
11
X. RELATIONSHIP WITH SUPPLIERS / CONTRACTORS / CUSTOMERS
Dealing with suppliers, contractors and customers may be sensitive, involving issues of law and ethics. . In general, Equifax expects that all its employees shall conduct business honestly and ethically. The following guidelines supplement but do not replace specific criteria in the Company's purchasing or sales policies:
• Special Requirements for Government Contracts.
The Company provides products and services under several contracts with federal and state government agencies. Employees who are involved with those contracts must be careful to follow additional rules that apply to government contracts. Some of those rules are as follows:
XI. RECORDS RETENTION/DESTRUCTION
The Company's corporate records are important assets. Corporate records include essentially all records you produce as an employee, whether hard copy or electronic. A record may be as obvious as a memorandum, an e-mail, a contract or a case study, or something not as obvious, such as a computerized desk calendar, an appointment book, or an expense record.
12
The law requires us to maintain certain types of corporate records, usually for a specified period of time. Failure to retain those records for those minimum periods could subject the Company to penalties and fines, cause the loss of rights, obstruct justice, place the Company in contempt of court, or seriously disadvantage the Company in litigation.
From time to time the Company establishes retention or destruction policies or schedules for specific categories of records in order to ensure legal compliance, and also to accomplish other objectives, such as preserving intellectual property and cost management. We expect all employees to fully comply with any published records retention or destruction policies and schedules.
• Litigation Exception.
If you believe, or the Company informs you, that Company records in any form are relevant to litigation, or potential litigation (i.e., a dispute that could result in litigation), then you must preserve those records until the Legal Department or Compliance Officer determines the records are no longer needed. This exception supersedes any previously or subsequently established destruction schedule for those records. If you believe that this exception may apply, or have any question regarding the possible applicability of that exception, please contact your supervisor, the Legal Department or the Compliance Officer.
XII. ANTITRUST AND TRADE REGULATION
Equifax complies fully with the letter and the spirit of all applicable laws governing antitrust and trade regulation. Those laws are designed to ensure free and open competition in the marketplace by prohibiting any activities that unfairly or unreasonably restrict normal competition. The antitrust laws of the U.S. and other countries prohibit, under various circumstances, activities such as price fixing, territorial divisions, unfair price discrimination, monopolizing trade, unreasonably refusing to deal with a particular customer or vendor, and "tying" arrangements where a customer is required to buy one product or service in order to obtain another product or service.
Antitrust violations can subject both the employee and the Company to substantial penalties, including civil, criminal, and disciplinary action or discharge from the Company. Although it is impossible to list all possible examples of antitrust violations, the following rules demonstrate the types of activities that you should avoid:
13
In addition to complying with U.S. and foreign antitrust laws, Equifax employees must comply with a number of laws governing trade regulation in general. Those laws require that all employees refrain from any unfair or deceptive methods of competition, including false or misleading advertising, making false statements concerning competitors or their products, and inducing our competitors' customers or employees to breach their contracts with our competitors. Contact the Legal Department or the Compliance Officer if you have any questions about what type of activities would be considered to violate antitrust or trade regulation laws.
XIII. INSIDER INFORMATION AND SECURITIES TRADING
•Material nonpublic information must be kept confidential and not used.
As a publicly traded company, Equifax is required to provide full and fair public disclosure on a timely basis of various "material nonpublic" information, as defined below. In the course of business, some employees may have access to such material information before it becomes public knowledge. Until it is released to the public, material information must be kept confidential. Use of material information that is not publicly known for personal gain, or the release of that information to others who may use it for personal gain, ("insider trading", as defined below) is considered to be a fraud against the Company and against other members of the investing public who are disadvantaged because they do not have access to the information. An employee who does so is in violation of U.S. law and Company policy.
• Material nonpublic information defined.
Information is generally considered to be "material" if a reasonable investor would likely consider it to be important in making his or her investment decision, or if the release of the information is reasonably certain to have an effect on the price of the Company's stock. Information you should consider material includes, but is not limited to: a pending stock split, dividend changes, earnings estimates, changes in previously released earnings estimates, significant merger or acquisition proposals or developments, major litigation, the acquisition or loss of a major contract, and extraordinary management developments.
Information is "nonpublic" until it has been communicated to the stock market and the public, and they have had time to "absorb" the information. For example, information found in a report filed with the Securities and Exchange Commission, or appearing in The Wall Street Journal or other publications of general circulation, would be considered public. As a rule of thumb, the market has had time to absorb information that has been public for two full business days.
• Insider trading defined.
"Insider trading" refers to the improper use of material nonpublic information, including:
14
| • | Persons who are not related to the Company but who are tipped material nonpublic information and trade may also be committing a crime. |
The concept of "insider" is broad. It includes Company officers, directors and employees, and "temporary insiders" who enter into a special confidential relationship in the conduct of the Company's affairs and are given access to material nonpublic information. A temporary insider can include Equifax's attorneys, accountants, consultants, bank lending officers, and the employees of those parties.
• Insider trading is a serious crime.
Penalties for trading on or communicating material nonpublic information are severe, both for individuals involved in the unlawful conduct and their employers. Where a violation occurs, a person can be subject to substantial penalties, including civil liability, criminal liability, and disciplinary action or termination of employment, even if they do not personally benefit from the violation.
• Guidelines for compliance.
The following guidelines should help you comply with the rules regarding insider trading:
Contact either the Compliance Officer or the General Counsel if you have any questions about what type of information is considered material nonpublic information.
In all our dealings with the press and other media, the Company must speak with a unified voice. Accordingly, except as otherwise designated by the Company's Chief Executive Officer, Corporate Public/Media Relations is the sole contact for media seeking information about Equifax. Any requests from the media must be referred to Public/Media Relations. They will deal directly with the media and make appropriate arrangements. Public/Media Relations must approve any articles, press releases, or other public communication involving the Company prior to publication.
XV. ADVERTISING AND STATEMENTS TO CUSTOMERS
All our advertising, representations and claims about products or services must be truthful and not deceptive. False, misleading or unfair comparisons with, or claims concerning, the products or services of others may be considered deceptive, and you must avoid them.
XVI. CONFIDENTIAL INFORMATION AND INTELLECTUAL PROPERTY
• Confidential Information.
One of the Company's most valuable assets is its body of business information, which includes information that is confidential to Equifax. Confidential information is information that is not generally
15
known to the public or our competitors, and which would harm the Company if it were disclosed inappropriately. Failure to adequately protect this confidential information could place Equifax at a disadvantage in the marketplace.
As an Equifax employee, you are responsible and accountable for the integrity and protection of the Company's confidential information, and you must take all reasonable precautions to protect this information from improper disclosure. You must not disclose confidential information except when it is necessary and appropriate in connection with your responsibilities. You should handle carefully any documents containing confidential information during working hours, and properly secure them at the end of the business day. You should pay particular attention to the security of data stored on our computer systems. You must maintain the secrecy of all computer passwords, log off from all computer systems, and secure any equipment when not in use.
• Intellectual Property.
The Company's intellectual property includes inventions, improvements, ideas, information, software, models and programs, together with the related materials, documentation, patents, trademarks, copyrights, and other rights that go along with them. Equifax will normally be the exclusive owner of all rights in intellectual property that is related to our businesses or is developed by our employees and contractors in the course of their employment or service with Equifax. This is true whether or not the employees or contractors make the developments during working hours, on Company premises, or using Company material or resources.
Equifax's intellectual property rights are extremely valuable to the Company. They are also extremely "fragile," because they can be compromised or even forfeited if we do not vigilantly protect them. In order to protect the Company's intellectual property, all Equifax employees and contractors should use their best efforts to:
• Rights of Others.
Equifax employees and contractors also must ensure that they do not misuse the intellectual property or confidential information of any other parties. There are several U.S. federal and state laws that prohibit the theft or unauthorized use of the intellectual property or confidential information of others. Violations of those laws can result in substantial fines or imprisonment. When new employees are hired, it is especially important to ensure that they do not improperly disclose any confidential information of others to the Company or use others' intellectual property for the Company's advantage.
16
If you have questions about the Code, consult with your supervisor, the Human Resource Department, or the Company's Compliance Officer.
You are responsible for reporting any events, practices or circumstances that you suspect may violate the Code, including applicable laws and regulations. You may report such activity to any of the following persons:
You may also be permitted to report to other appropriate persons if so specified in this Manual or in other applicable written policies of the Company.
You may report anonymously to the Compliance Officer or General Counsel. Do not e-mail them if you wish to remain anonymous; contact them by mail or through the Equifax Reporting Line.
Updated: 12/2003
17