ISMS Policy
Information Security Management System
Last Updated: March 17, 2026
Protecting Information Assets with ISO/IEC 27001 Standards
Purpose & Commitment
Kinetic LiDAR Labs ("KLL") is committed to ensuring the Security, Availability, Confidentiality, Integrity, and Privacy of all information assets across our operations.
This includes infrastructure, software, personnel, processes, and all client datasets such as LiDAR scans, 3D point clouds, and sensor data.
Why Information Security Matters
Information security is essential to our mission of delivering world-class LiDAR annotation and perception-data services. To support this mission, KLL has established a comprehensive Information Security Management System (ISMS) to protect against internal and external threats.
Our Security Promise: We protect your data with enterprise-grade encryption, continuous monitoring, and strict access controls.
1. ISMS Framework & Standards
The KLL ISMS is aligned with international best practices and regulatory requirements:
- ISO/IEC 27001:2013 Standards
- ISO/IEC 27002 Security Controls
- Trust Services Criteria (Security, Availability, Confidentiality, Processing Integrity, Privacy)
- Kenya Data Protection Act (DPA)
- GDPR principles where applicable
Standards Compliance
By adhering to these frameworks, we ensure that our security practices meet or exceed industry expectations and regulatory requirements.
✓ Certified Standards: Our ISMS framework ensures continuous alignment with evolving international security standards.
2. Policy Objectives
Our ISMS policy is designed to achieve the following key objectives:
- Protect all information assets from unauthorized access, loss, misuse, or modification
- Ensure business continuity and operational resilience
- Maintain the integrity and confidentiality of client datasets
- Meet all legal, regulatory, and contractual obligations
- Promote a culture of security awareness across the organization
Security-First Culture
Every team member at KLL shares responsibility for maintaining security. Training, awareness, and accountability are cornerstones of our approach.
3. Management Responsibilities
Leadership and management play a critical role in ISMS success:
- Provide strategic direction and oversight for the ISMS
- Ensure compliance with ISO/IEC 27001 and related standards
- Allocate adequate resources to maintain the ISMS
- Support continuous improvement of security controls
- Ensure all personnel understand their security responsibilities
Executive Commitment
Our leadership team is fully invested in information security and regularly reviews ISMS performance through executive governance.
Accountability: Management is accountable for security performance, resource allocation, and policy enforcement.
4. Risk Management
KLL uses a structured risk management framework to identify and mitigate threats:
- Identify information security risks
- Assess likelihood and impact of each risk
- Implement controls to reduce risks to acceptable levels
- Monitor and review risks continuously
- Update risk assessments based on changing conditions
Continuous Risk Assessment
Security risks are dynamic. We maintain an ongoing risk assessment process to identify emerging threats and adapt our defenses accordingly.
⚠️⚠️⚠️ Proactive Approach: We identify risks before they become incidents through regular assessments and monitoring.
5. Access Control & Authorization
We implement strict access control measures to protect sensitive data:
- Role-based access control (RBAC) for all systems
- Least-privilege principle (minimal necessary permissions)
- Multi-factor authentication (MFA) for critical systems
- Segregation of duties to prevent conflicts of interest
- Comprehensive logging and monitoring of access events
Data Protection Layers
Multiple security layers ensure that even if one control is bypassed, others prevent unauthorized access to sensitive information.
6. Continual Improvement
KLL is committed to continuous improvement of the ISMS through:
- Regular security audits and assessments
- Annual management reviews of ISMS effectiveness
- Updates to policies and controls based on industry trends
- Implementation of lessons learned from incidents
- Employee training and security awareness programs
Our Commitment to Excellence
Security is not a destination but a journey. We continuously evolve our practices to maintain the highest standards of information protection.
Always Improving: We invest in the latest security technologies and practices to stay ahead of emerging threats.
Questions or Concerns?
For information security inquiries, concerns, or to report a potential security incident:
Security Contact:
Email: security@kineticlidarlabs.com
General Contact:
Email: info@kineticlidarlabs.com
This ISMS Policy was last updated on March 17, 2026. We reserve the right to update this policy at any time to reflect changes in our security practices or regulatory requirements.