Consortium Code of Conduct

1. Purpose

Consortium Networks, LLC (“Consortium,” “we,” “us,” or “our”) is committed to conducting business with integrity, professionalism, transparency, and accountability. This Code of Conduct (“Code”) defines the ethical standards and behavioral expectations for individuals performing work for or on behalf of Consortium.

This Code supports our responsibility to clients, partners, vendors, and each other, and reflects our commitment to responsible governance and trust.

2. Scope and Applicability

This Code applies to all individuals acting on behalf of Consortium, including:

• Employees

• Contractors and subcontractors

• Consultants and temporary workers

• Managed services personnel

• Third parties with access to Consortium systems or client environments

Compliance with this Code is a condition of employment, engagement, or continued association with Consortium.

3. Compliance With Laws and Regulations

Personnel must comply with all applicable federal, state, local, and international laws, regulations, and contractual obligations relevant to their role.

This includes, but is not limited to:

• Data protection and privacy laws

• Information security requirements

• Anti-corruption and anti-bribery laws

• Export control and trade compliance laws

• Industry and client-specific regulatory obligations

Personnel must not knowingly participate in unlawful, unethical, or deceptive practices.

4. Ethical and Professional Conduct

All Personnel are expected to act honestly, responsibly, and in good faith at all times.

This includes:

• Performing duties competently and professionally

• Providing accurate, truthful, and complete information

• Avoiding misrepresentation of services, pricing, certifications, or capabilities

• Acting in the best interests of Consortium and its clients

• Avoiding conduct that could damage Consortium’s reputation or client trust

5. Client, Partner, and Vendor Relationships

Consortium operates as a value-added reseller, advisory firm, and managed services provider. Personnel must:

• Maintain professional, respectful relationships with clients and partners

• Comply with contractual terms and scope of engagement

• Avoid conflicts between vendor incentives and client interests

• Disclose any relationships that may influence objectivity

• Refrain from unauthorized commitments on behalf of Consortium

Client trust and advisory integrity are core to Consortium’s business model.

6. Conflicts of Interest

Personnel must avoid situations in which personal, financial, or outside business interests conflict — or appear to conflict — with Consortium’s interests.

Examples include:

• Undisclosed financial interests in vendors or competitors

• Outside employment that interferes with Consortium responsibilities

• Influencing purchasing decisions for personal benefit

Any actual or potential conflict of interest must be disclosed promptly to management.

7. Gifts, Entertainment, and Improper Payments

Personnel may not offer, solicit, or accept gifts, entertainment, or other benefits that could improperly influence business decisions.

Consortium strictly prohibits:

• Bribes or kickbacks

• Improper referral payments

• Violations of anti-corruption laws

Reasonable, customary business courtesies may be permitted when lawful and appropriate, but must never create an appearance of impropriety.

8. Confidentiality and Proprietary Information

Personnel must protect all confidential and proprietary information belonging to:

• Consortium

• Clients

• Partners

• Vendors

Confidential information includes, but is not limited to:

• Client data and security findings

• Network diagrams and architectures

• Credentials and access information

• Business, financial, and pricing data

• Intellectual property and methodologies

Confidential information must only be accessed and used for authorized business purposes.

9. Information Security and Technology Use

Given Consortium’s role in cybersecurity advisory, resale, and managed services, Personnel are expected to adhere to heightened security standards.

Personnel must:

• Use only approved systems, tools, and access methods

• Protect authentication credentials and privileged access

• Follow least-privilege and role-based access principles

• Immediately report suspected security incidents or data exposure

• Comply with client security requirements when accessing client systems

Unauthorized access, misuse of systems, or circumvention of security controls is prohibited.

10. Managed Services Responsibilities

Personnel supporting managed services or ongoing operational activities must:

• Follow documented procedures and runbooks

• Maintain appropriate change control practices

• Act within authorized scope and approvals

• Avoid unauthorized configuration changes

• Escalate incidents, risks, or service concerns promptly

Operational discipline is critical to protecting client environments.

11. Respectful and Professional Workplace

Consortium is committed to maintaining a respectful, inclusive, and professional work environment.

Harassment, discrimination, retaliation, intimidation, or abusive conduct of any kind will not be tolerated.

This applies to:

• In-person interactions

• Virtual meetings

• Written communications

• Client and partner environments

12. Use of Consortium Assets and Resources

Consortium systems, devices, data, and intellectual property must be used responsibly and solely for authorized business purposes.

Personnel must not:

• Misuse company systems or data

• Introduce malicious software

• Access information without authorization

• Use company resources for unlawful or inappropriate activities

13. Reporting Concerns and Non-Retaliation

Personnel are encouraged to report suspected violations of this Code, company policies, contractual obligations, or applicable laws.

Reports may be made to:

• Consortium management

• Designated legal or compliance contacts

Consortium strictly prohibits retaliation against individuals who report concerns in good faith.

14. Enforcement and Disciplinary Action

Violations of this Code may result in disciplinary action, up to and including:

• Termination of employment or contract

• Removal from client engagements

• Legal action when appropriate

Compliance with this Code is mandatory.

15. Amendments and Interpretation

Consortium reserves the right to interpret, modify, or update this Code at any time to reflect changes in business operations, legal requirements, or industry standards.

The most current version will be made available on consortium.net.

16. Questions and Contact Information

Questions regarding this Code of Conduct may be directed to: contracts@consortium.net.