Aspire Biopharma Holdings, Inc. 10-K Cybersecurity GRC - 2025-04-07

Page last updated on April 7, 2025

Aspire Biopharma Holdings, Inc. reported their cybersecurity risk management and governance process in a yearly 10-K filed on 2025-04-07 07:30:25 EDT.

Filings

10-K filed on 2025-04-07

Aspire Biopharma Holdings, Inc. filed a 10-K at 2025-04-07 07:30:25 EDT
Accession Number: 0001641172-25-002917

Note: filing items unformatted. Drop us a note with the above URL to help us prioritize formatting it!

Item 1C. Cybersecurity.

Item 1C. Cybersecurity Aspire is committed to ensuring the highest standards of cybersecurity to protect our systems, networks, and data from cyber threats. We recognize the critical importance of safeguarding sensitive information and maintaining the trust of our customers, partners, and stakeholders. Our cybersecurity strategy is built on a foundation of proactive risk management, continuous monitoring, and adherence to industry best practices. We employ a multi-layered approach which leverages technologies to defend against evolving cyber threats. We have made significant investments in modernizing, streamlining, and simplifying our technology footprint to both enhance customer experience and strengthen our internal security controls. From time-to-time, we may engage third-party consultants, legal advisors, and audit firms to evaluate and test the Company’s risk management systems and assess and remediate certain potential cybersecurity incidents, as appropriate. We prioritize the integrity of our data access controls to prevent unauthorized access, data breaches, and malicious activities. We regularly assess and enhance our cybersecurity posture through comprehensive risk assessments, security audits, and vulnerability assessments. Governance Cybersecurity is a shared responsibility requiring collaboration and cooperation across all levels of our organization. Aspire recognizes that cybersecurity is not solely a technology issue but also a people and process issue. We invest in ongoing employee training and awareness programs to empower our staff to recognize and respond to potential security threats effectively. In the event of a cybersecurity incident, we have established incident response plans and protocols to minimize the impact and facilitate swift recovery. The Company’s Audit Committee oversees cybersecurity risk. The Audit Committee is promptly notified by Information Technology leadership of any potentially serious incidents including details and recommendations on the detection, mitigation, and remediation of the same. During the calendar year 2024, there have been no known reported cybersecurity incidents that have materially affected our operations or financial results. We believe in transparency and open communication, promptly informing affected parties and relevant authorities as required by law. Together, we remain vigilant, adaptive, and resilient in the face of evolving cyber threats, safeguarding the trust and confidence of those we serve.

Company Information