Vynt Inc.

Security Policy

Effective Date: February 18, 2026

Version 1.0

This Security Policy describes the technical and organizational measures Vynt Inc. implements to protect Client Data and personal data from unauthorized access, disclosure, alteration, or destruction. This document is provided to clients and prospective clients for due diligence purposes.

Table of Contents

Table of Contents 2

1. Scope and Purpose 4

2. Infrastructure and Architecture 4

2.1 Cloud Infrastructure 4

2.2 Architecture Principles 4

3. Access Control 4

3.1 Authentication 4

3.2 Authorization and Least Privilege 5

3.3 Account Lifecycle 5

4. Encryption 5

4.1 Data in Transit 5

4.2 Data at Rest 5

4.3 Key Management 6