Privacy and Cookie Notice

This website is provided and controlled by Noble Corporation plc (company no. 12958050) and its subsidiaries and affiliates (“Noble”). Our website is intended for a general audience, and Noble does not intend to collect personal data about any person under the age of 18 years.

We recognize and respect the privacy as well as being committed to conducting business with honesty and integrity, which includes protecting the personal data that we may process about people who work for us or interact with us. With offices and operations throughout the world, personal data will be transferred or be accessible internationally throughout Noble’s global business. Any such transfers throughout Noble’s global business takes place in accordance with the applicable data privacy laws.

This Privacy Statement provides an explanation of the kind of personal data we may request from you, how and why we handle your personal data, and of our use of cookies on our different platforms, i.e. website, apps etc.

Reason for Collecting Information: The personal data that we collect about you is limited to that which is relevant and for legitimate business purposes as laid out below.

Noble customers and suppliers:

If you are a customer or a supplier to Noble, we process personal data about you in order to fulfil the agreement between the parties, e.g. the administration of the agreement, payment, delivery of goods and services etc., where we process:

1. Contact information (e.g. name, address, e-mail and phone number)
2. Job title
3. Banking Information
4. Information on purchases

Noble is also legally required to document the personal data in financial transactions when fulfilling our agreement, e.g. when paying or receiving payment for delivery of goods and services.

Using the OneNoble App:

If you download the OneNoble App we do not process any personal data before you register/log-in, where after we process personal data about you in order to fulfil the agreement about your use of the OneNoble App in accordance with applicable terms, where we process:

1. Contact information (e.g. name, address, e-mail and phone number)
2. IP addresses
3. User created content, e.g. profile pictures, PDF documents, and photos
4. Communication with you (push notifications) and other users
5. Authentication data

Noble will only process the user created content if shared actively with Noble by you as well as only activating push messages when you have selected this feature on your device. We will process the user content based on our legitimate interest or otherwise fulfilment of a contract where the user content forms a part of a contractual relation.

Guests at our facilities

If you visit our facilities, we process personal data about you based on legitimate interests in order to identify you and to inform you about applicable visitor rules, where we process:

1. Contact information (e.g. name, address, e-mail and phone number)
2. Other visitor information

Business administration:

If you contact us we process personal data about you in order to document quality and compliance (for instance in relation to statutes of limitations, security, litigation, or regulatory investigations) based on our legitimate interest, where we process:

1. Contact information (e.g. name, address, e-mail and phone number)
2. Other applicable information

When you are marketed to:

If you sign up for one of our newsletters or otherwise marketed to, we will process personal data based on our legitimate interest, where we process:

1. Contact information (e.g. name, address, e-mail and phone number)
2. Content and your choices in relation to newsletters – contact forms and content etc.

The marketing in newsletters, apps and on our websites, including social media, is adapted to your personal preferences based on our knowledge of you through profiling, where we process:

1. Content of newsletters signed up to
2. Stated areas of interest
3. Cookies
4. Information from your social media profiles
5. Information from our customer databases

Understanding our customers, consumers and suppliers:

We also make analyses in order to optimize our products, marketing, apps, websites, sales and to know more about our customers’ and user´s preferences in relation to Noble’s products and maintaining a CRM database based on our legitimate interest, where we process:

1. Information from our databases
2. Other information made publicly available

Compliance and security operations for all data subjects

We monitor user behavior and have implemented security solutions on our website as well as in our solutions, apps, products and on our premises, where our processing of personal data is based on our

legitimate interest in complying with applicable regulation within anti-corruption, anti-fraud, anti-bribery, technical and physical security etc., where we process:

1. Information from our databases
2. Other information made publicly available
3. User behavior and logs
4. Images captured by video surveillance

Use of Protected Information: As a global organization with offices and operations throughout the world, we will transfer personal data collected on an aggregated or individual level to various divisions, subsidiaries, joint ventures and affiliated companies of Noble around the world, as well as to sub-contractors to Noble (data processors) for storage and service purposes. Your personal data will not be disclosed to anyone outside Noble unless permitted or required under applicable law.

Any transfers of personal data from within the European Economic Area (EEA) to third parties outside the EEA will be based on a transfer mechanism in accordance with the European General Data Protection Regulation Chapter V. Any other, non-EEA originating, international transfers of personal data, will take place in accordance with legally applicable international data transfer mechanisms and safeguards.

For EEA transfers you can always request a copy of the transfer agreements, which includes the transfer of personal data, by sending an e-mail to privacy@noble.com.

Security for Protected personal data: The personal data you share will be stored under restricted access in systems that have been approved for storage usage according to our information security policy and requirements. Access and processing of this information will be limited to those with a business need from either Noble or third parties working for Noble.

Retention of Protected personal data: We will only retain your personal data for as long as is necessary to fulfil the purposes outlined on this statement or as otherwise required by law, more specifically:

• We retain your personal data as long as we have an ongoing relationship with you.
• We retain your personal data for as long as needed in order to comply with our global regulatory and contractual obligations.

We will also retain your personal data where this is advisable to safeguard or improve our legal position (for instance in relation to statutes of limitations, security, litigation, or regulatory investigations).

Cookies: Our website uses small data packets sent by the web server to your browser, which are returned by the browser each time you subsequently access our site using that browser, commonly referred to as Cookies. These data packets or Cookies allow you to be recognized by our server, along with registration data and your preferences, and track where you go on our website. Cookies may also transmit information via your browser with a purpose of authenticating or identifying the computer (via the IP address for example) or you as the user but will not collect other information from your computer and will not contain any programming viruses or other damaging files. Some Cookies from our web

server are necessary to allow you to access our website in a secure manner, which are referred to as “strictly necessary cookies” and may be transmitted without consent.

Use of other categories of Cookies (functional, statistical and marketing) will require your consent, which unless provided, will not be used. More information about these other categories of Cookies can be found in the Cookie Declaration, accessible by clicking on the cookie icon at the bottom left corner of any page of the Noble website.

You may delete cookies if you no longer wish to store them on your computer. You can do this using your browser options. However, please note that the high quality of our website may be reduced as a consequence thereof. For guidance in deleting cookies, please refer to the operating instructions for your computer and browser.

Duration of Cookies on Your Computer: Each Cookie from our web server has a defined expiry period. More information on retention of each individual Cookie is available in our Cookie Declaration.

Consent: To the extent that Noble processes your personal information on the basis of your consent, you have the right to revoke that consent to future processing of your personal information at any time, but this will not affect the legality of any processing that took place prior to the revocation.

Your rights: You have certain rights with regards to the personal data. You have the right to:

• Access our records of your personal data;
• Require us to erase your personal data or correct errors in our records of your personal data;
• Object to or request that we restrict our processing or use of your personal data;
• Transfer your personal data to another company (also known as the right of data portability); and
• Lodge a complaint with the appropriate data protection authority if you believe we have acted in violation of applicable law in handling your personal data.

If you are interested in exercising your rights, please send a request to privacy@noblecorp.com. We recommend that you use the form provided here: Noble Personal Data Request Form.

Contact: If you have questions or concerns about the above Privacy Statement, please contact privacy@noblecorp.com.

Brazil Data Protection Officer

Noble’s Data Protection Officer in Brazil is Brett Blackman. In the absence of the Data Protection Officer, the Substitute Data Protection Officer is Fabiano Guimaraes.

To contact our Data Protection Officer or the Substitute Data Protection Officer in respect of the processing of your personal data by Noble in Brazil under the General Personal Data Protection Law (LGPD) 13.709/2018, please email encarregado@noblecorp.com.