AppTech Payments Corp. 10-K Cybersecurity GRC - 2025-03-31

Page last updated on March 31, 2025

AppTech Payments Corp. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-03-31 16:15:37 EDT.

Filings

10-K filed on 2025-03-31

AppTech Payments Corp. filed a 10-K at 2025-03-31 16:15:37 EDT
Accession Number: 0001683168-25-002130

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C. Cybersecurity Risk Management and Strategy We recognize the importance of cybersecurity in protecting our operations, customer information, and proprietary data. We are committed to implementing robust security measures to mitigate the risk of cyber incidents that could potentially disrupt our business operations or compromise the integrity of our data. Engage Third-parties on Risk Management Due to the difficulties and evolving nature of cybersecurity threats, AppTech engages with external experts, including cybersecurity consultants and auditors to evaluate and test its risk management systems. These relationships allow us to utilize specialized knowledge and insights, ensuring our strategies and processes remain in-line with current best practices. These third-parties provide the Company with regular audits, threat assessments, and consultations on security enhancements. Also, during onboarding and periodically thereafter, we conduct trainings for the Company’s employees, contractors, and temporary workers about cybersecurity risks, including sending test phishing emails for training purposes to all users of the Company’s email system. 8 Our cybersecurity strategy encompasses a comprehensive suite of measures designed to protect our systems and data from unauthorized access, use, alteration, or destruction. These measures include, but are not limited to: - Implementation of advanced cybersecurity technologies, including firewalls, intrusion detection systems, and encryption protocols, to safeguard our network and data. - Regular security assessments and penetration testing conducted by external experts to identify and remediate potential vulnerabilities. - Establishing and maintaining incident response and recovery plans to ensure timely and effective responses to any cybersecurity incidents. Oversee Third-party Risk To manage the risks associated with third-party service providers, AppTech conducts weekly calls with its providers to monitor compliance on an ongoing basis. Issues that arise are addressed immediately with mitigating measures added to avoid future problems. Risks from Cybersecurity Threats Like other companies in our industry, we face several cybersecurity risks in connection with our business. Although such risks have not materially affected us or are reasonably likely to materially affect us, including our business strategy, results of operations, or financial condition, to date, we have, from time to time, experienced threats to and security incidents related to our data and systems, including denial of service and phishing attacks. Risk Management Personnel Primary responsibility for assessing, monitoring and managing our cybersecurity risks rests with our third-party provider, the Company’s Director of Information Technology and Director of Software Engineering (referred to as “IT”). Their knowledge, experience and relationship with our third-party vendor are instrumental in developing and executing our cybersecurity strategies. Risk Management Reporting The IT Team provides updates to upper Management on a routine basis or as potentially critical risks from cybersecurity threats or incidents arise. In addition, the audit committee is notified of any material cybersecurity concerns that may impact internal controls, data storage, or the integrity of our financial reporting. Risk Management Despite our diligent efforts to secure our systems and data, we acknowledge that no cybersecurity measures can completely eliminate the risk of cyber incidents. The evolving nature of cyber threats means that we must continually adapt our cybersecurity strategies to address new and emerging risks. In recognition of these risks, we have implemented a comprehensive risk management framework that includes: - Continuous monitoring of our networks and systems for signs of unauthorized activity. - Regular updates to our cybersecurity measures to address new vulnerabilities and threats. - Collaboration with industry partners and government agencies to share information on threats and best practices for cybersecurity. - Maintaining cyber insurance to mitigate the financial impact of potential cybersecurity incidents. 9 Potential Impact of Cybersecurity Incidents We recognize that a significant cybersecurity incident could have material adverse effects on our business, including operational disruptions, financial losses, legal liabilities, and damage to our reputation. Such incidents could also result in the loss of proprietary information or the exposure of sensitive customer data, leading to further financial and reputational harm. In conclusion, while AppTech Payment Corp is committed to employing comprehensive cybersecurity measures to protect against cyber threats, there are inherent risks associated with cybersecurity that could impact our business. We continue to monitor our cybersecurity landscape actively and adapt our defenses to mitigate these risks as much as possible.

Company Information