Q4 Inc. - Q4 Cookie Policy

Q4’s Promise to Data Privacy and Security with Website Cookies

Q4’s mission is to ensure that important principles such as security, compliance and privacy are at the forefront of every product and service we provide. We believe in ensuring that data remains secure, and that both our client’s and their constituent’s data is protected in accordance with leading international data protection and privacy standards. This commitment is one of our most important responsibilities.

Q4 is committed to maintaining transparency about our data privacy practices and the use of cookies across our Platform products so that clients understand our methodology, approach and the importance of such cookies for the use of their Q4 offerings.

Q4 has adopted the following definition of cookies as: “A packet of data sent by an internet server to a browser, which is returned by the browser each time it subsequently accesses the same server, used to identify the user or track their access to the server.”

In accordance with data privacy guidelines and best practice, Q4 approaches the use of cookies in terms of the functional business benefits they provide to our clients and their broader constituents. As such, Q4 deploys cookies based on whether they are deemed essential and non-essential for the optimal operation of the Q4 Platform and delivery of services to clients.

What are Essential and Non-Essential Cookies?

Essential cookies are cookies that are crucial for the basic functioning of Q4’s platform. They may include cookies that manage user sessions, store user preferences, enable basic functionality, or collect data to help improve the Q4 product experience.

Non-essential cookies are cookies that are typically not strictly necessary for the basic functioning of a Q4 product. These may include cookies used for advertising, or other non-critical purposes.

All cookies provided by Q4 are considered to be Essential or Functional cookies. These cookies are primarily used to provide website functionality, website protection (DDOS prevention), access to investor engagement insight through Q4’s connected investor intelligence solution, Engagement Analytics, Q4 Accounts, Q4 Websites and Q4 Events offerings.

What Specific Cookies Does Q4 Use?

To ensure transparency and visibility into the essential cookies that are deployed across Q4’s website products, and their applicable use, we have provided an overview below.

Cookies added by default

Name	Value	Type	Managed	Session	Expiry	Security	Purpose
cf_clearance	(encrypted token)	Essential	First Party	Persistent	1 Year	HTTP & Secure	Cloudflare cookie that store proof of challenge passed. Used to no longer issue a challenge if present.
__uxq412__id.{random 4 alphanumeric characters}	{unique_identifier}. {createdTime}. {visitCount}. {nowTime}. {lastVisitTime} .{sessionId}	Essential	First Party	Persistent	1 Years	Secure	Used to track user activity across on the website. Cookie stores a unique identifier for each user, a unique identifier for the user’s current session, the number of visits a user has made to the site, the timestamp of the users first visit, the timestamp of their previous visit and the timestamp of their current visit.
__uxq412__ses.{random 4 alphanumeric characters}	*	Essential	First Party	Persistent	30 Minutes	Secure	Used to track a user's session.
sp	GUID (ex. ea0163fc-5a48-48cc-b866-84af5536608f)	Essential	First Party	Persistent	1 Year	HTTP & Secure	Stores a server-side collector generated unique identifier for a user that is sent with all subsequent tracking event events.
adtsgidr5	(encrypted token)	Essential	First Party	Session	4 Hours	HTTP & Secure	Used for Anti-CSRF protection, related to email alerts signup.
q4l_session	(jwt id token)	Essential	First Party	Persistent	30 Days	Secure	id token for the user, email address from this cookie is used for snow plow tracking.

Captcha Cookies Added Based on Functionality Enabled ( One will be implemented)

Name	Value	Type	Managed	Session	Expiry	Security	Purpose
_GRECAPTCHA	(encrypted token)	Essential	Third Party	Persistent	179 Days	HTTP & Secure	Google reCAPTCHA to protect against spam enquiries on contact forms.
bpazaws52gukakzc__*	(encrypted token)	Essential	First Party	Session	6 Hours	HTTP & Secure	Captcha feature for forms.

Cookie Banner Cookies Added Based on Functionality Enabled (One will be implemented)

Name	Value	Type	Managed	Session	Expiry	Security	Purpose
cookiemonster-gdpr	(timestamp - cookies expiry date in ms)	Essential	First Party	Persistent	30 Days	Neither	Remembers user cookie preferences (preferences stored in Local Storage).
q4cc	(timestamp - cookies expiry date in ms)	Essential	First Party	Persistent	30 Days	Secure	Remembers user cookie preferences (preferences stored in Local Storage).
q4-tracker-opt-out		Essential	First Party	Persistent	30 Days	Secure	Used to remember opt-out.

Password Protected Page Cookies Added Based on Functionality Enabled

Name	Value	Type	Managed	Session	Expiry	Security	Purpose
ngpskuephr	(encrypted token)	Essential	First Party	Session	Browser Close	HTTP	Used for protected pages that require login access.
Q4_ASPX_PUBLIC_{user}	{username}	Essential	First Party	Persistent	N/A	Secure	"Remember Me" feature on public protected login page.

Other Cookies Added Based on Functionality Enabled

Name	Value	Type	Managed	Session	Expiry	Security	Purpose
_cfuvid	GUID (ex. ea0163fc-5a48-48cc-b866-84af5536608f)	Essential	First Party	Session	N/A	Secure	Highcharts CDN protection.
c	(encrypted token)	Essential	First Party	Persistent	6 Months	Neither	Profiling cookie used by certain news providers (PR Newswire, Globe Newswire, Cision).
contrast	(boolean)	Essential	First Party	Session	1 Year	N/A	Q4 cookie to remember user contrast settings.

Additional Unique Client Cookies

In addition to the previously referenced essential Q4 cookies, websites can also have embedded code snippets that forward data to third party providers.

These additional code snippets are considered non-essential and are added to our client’s website by explicit request. Any additional privacy and security measures are to be maintained by the client.

Does Q4 Share the Data Collected from Cookies with Third Parties?

As part of the functional operating value of Q4 Platform, Q4 does on occasion share certain data with third parties. For more information on the categories of data that Q4 collects, please reference our Privacy Policy.

Can I Request that Certain Cookies Be Removed from My Q4 Offerings?

Q4 maintains strict and ongoing review of global privacy and data sharing standards including but not limited to GDPR. If however, in certain circumstances, a client wishes to remove specific cookies based on individual preference, they are welcome to make this request and initiate a discussion with their Q4 representative to understand the implications of doing so. If such a request is made and cookies are ultimately removed, such removal of cookies may result in a significant loss of value derived from Q4’s differentiated platform offering.

Please connect with your Q4 representative for further information.

For additional information on Q4’s privacy and security standards or practices, please reference our detailed public policy and security policies or connect with your Q4 representative.