Information Security Management System (ISMS) Policy

Ati Motors Pvt. Ltd. is committed to protecting the confidentiality, integrity, and availability of its information assets, safeguarding them by adopting cybersecurity and privacy protection including proprietary software, firmware, designs, customer data, and operational systems. As a pioneer in autonomous mobile robotics technology, this ISMS Policy establishes our strategic intent to secure information critical to our mission of delivering innovative robotics-based solutions for material movement operations in industry.

Ati Motors is committed to:

• Protecting Information Assets: Ensuring the security of firmware and code repositories, design tools, customer data, and operational systems against unauthorized access, disclosure, alteration, or destruction.

• Aligning with Organizational Purpose: Supporting our goal to innovate in autonomous mobile robots technology by safeguarding intellectual property and operational continuity critical to research, development, and customer delivery.

• Setting Information Security Objectives: Establishing measurable goals, such as reducing security incidents annually, achieving compliance with applicable regulations, and ensuring system availability for production environments.

• Meeting Applicable Requirements: Complying with legal obligations (e.g., India’s IT Act 2000, Digital Personal Data Protection Act 2023), contractual commitments (e.g., customer SLAs), and international standards (e.g., ISO 27001).

• Continual Improvement: Regularly reviewing and enhancing the ISMS to address emerging threats, technological advancements, and organizational changes, ensuring resilience in Bengaluru’s dynamic operational context.

• Promoting a Security-Conscious Culture: Encouraging awareness across all departments and adherence to all applicable interested party, statutory, and regulatory requirements.

• Integration with Business Processes: Ensuring the ISMS integrates with business processes, such as development in secure repositories and production in cloud-based secured environments.

We will review this policy annually or upon significant changes (e.g., new regulatory mandates, facility expansion) to maintain its relevance and effectiveness.