At Numbia Digital Solutions, we offer digital engineering services to our clients. Our goal is to help companies transform their processes, improve efficiency, and successfully adapt to the challenges of the current digital environment.

Within our business strategy, we undertake a firm commitment to provide the highest quality in our services, while guaranteeing the protection, confidentiality, integrity, and availability of the information we work with.

To this end, we have developed and implemented an Integrated Quality and Information Security Management System, aligned with the requirements of the international standards ISO 9001 and ISO/IEC 27001. This system allows us to ensure the effectiveness of our processes, manage the risks associated with information, and reinforce our clients' trust, all under a continuous improvement approach and regulatory compliance.

In this framework of action, Numbia Digital Solutions commits to:

• Understand our clients' needs and meet them.

  
  

• Comply with and enforce all applicable legislation and regulations in the activities the company

  undertakes, as well as the requirements of the organization and those required by our clients.

  
  

• We aim to protect the company's information resources and the technology used for its processing from threats, whether internal or external, deliberate or accidental, in order to ensure compliance with the confidentiality, integrity, authenticity, traceability, availability, legality, and reliability of the information.

  
  

• Commitment from both Management and personnel to apply the established information security measures and implement the control and monitoring mechanisms of the same. To this end, the company has implemented a set of objectives, measures, controls, procedures, and actions aimed at protecting all assets, including information, processes, systems, and networks that support them.

  
  

• We believe that continuous improvement should be present in all processes, developing necessary corrective and improvement actions to prevent the reoccurrence of internal and external problems.

  
  

• Promote training and awareness actions for workers in order to improve their performance within the organization and ensure their involvement in meeting the defined objectives and goals.

  
  

• Establishment of general company Procedures and Policies, information security standards, which will be disseminated to all company personnel and relevant stakeholders.

  
  

• Establish methods for notifying, managing, and recording incidents related to the Management Systems

  implemented in the Organization.

  
  

• The management of all implemented systems will be developed under the principles of risk management with

  an emphasis on preventive measures and mechanisms, rather than corrective schemes.

  
  

• Consider management aspects as an integral part of all processes within the organization, periodically establishing programs, objectives, and goals to ensure compliance with the

  requirements of the policy and continuously improve the effectiveness of the integrated management system.

  
  

  Management extends this commitment to all employees, as well as to those acting on behalf of Numbia Digital Solutions SL, to ensure compliance with the guidelines of this policy, which will be reviewed periodically to ensure they remain appropriate to the activities of the organization.

  
  

  Valencia, 15th September 2025

  Numbia Digital Solutions SL

Last updated: 12th January 2026