Ethical Channel.

Ethical Channel and Complaints Select from the list the subject you consider your report to be related to, according to the description provided below:

Regulatory violations: If your report refers to any law, decree, ordinance, circular, or in general any rule that Sophos is required to comply with: Manipulation, falsification or improper theft of data: Unauthorized modifications to any report, in general, any document containing information relevant to the company, in order to cover up errors, to have an unfair advantage or engaging in fraud. release of confidential or sensitive information to people who should not know it (information leakage), corporate espionage situations, improper access to information, and other situations where Company information is involved.

Improper labor practice: Discrimination, harassment, favors.

Unlawful Actions against equity: Theft, fraud, abuse of trust, bribery, and other unlawful acts by any means against our major interest groups: Officials, customers, shareholders, business partners, suppliers, and attempts to cover it up.

Unethical conduct and conflict of interest: Dishonest, unethical conduct that contradicts the organization's code of ethics; interference between areas of interest that may result in omissions of control, poor diligence in the company's processes for personal benefit or a third party.

Fraud/Corruption: Commission of irregularities or prohibited practices (fraud, corruption, collusion, coercement, obstruction) in operations financed with resources of Sophos and its subsidiaries, or in the participation of client or supplier projects.

Conducts that may cause reputational detriment of the company: unauthorized communications, negative advertising in relation to SOPHOS business practices, whether true or not, and that may affect its customer database, litigation costs or revenue, restrictive competition practices and unfair competition promoted by competition or Sophos partners.

Security breaches or incidents involving personal data processed by Sophos.

Other: All situations detected not included in any of the above paragraphs and which do not comply with the Code of Ethics and Code of good Governance.

It is important to emphasize that retaliation against anyone who submits a report is prohibited. The person who reports can do so with the assurance that they will not be subject to any retaliation by the organization, unless he confesses to his authorship or participation, in this case, the penalty measures might be taken, according to company policies or national regulations.

In the following box, describe the facts you want to report in detail: Include dates, names, job positions, and any data you deem relevant and help us understand the situation:

To attach evidence files that support your report click here.

If you want to leave your information, please fill out the following:

Name

Phone Number

I have read and agree to the Personal Data Policy.