NOCOPI TECHNOLOGIES INC/MD/ - (NNUP)

10-K Filing Date: March 25, 2024
Item 1C. Cybersecurity

We have processes to assess, identify and manage risks from cybersecurity threats as a part of our overall risk assessment process. On a regular basis we implement into our operations these cybersecurity processes, technologies, and controls to assess, identify, and manage material risks. We engage certain external advisors to enhance our cybersecurity oversight.

To manage our material risks from cybersecurity threats and to protect against, detect, and prepare to respond to cybersecurity incidents, we undertake the below listed activities:

Monitor emerging data protection laws in conjunction with our advisors and implement changes to our processes to comply;
Maintain firewall and virus protection software; and
Maintain a cybersecurity insurance policy.

As part of the above processes, we engage with third party providers to review our cybersecurity program and help identify areas for continued focus, improvement, and compliance.

Our processes also include assessing cybersecurity threat risks associated with our use of third-party services providers in normal course of business use. Third-party risks are included within our cybersecurity risk management processes discussed above. In addition, we assess cybersecurity considerations in the selection and oversight of our third-party services providers, including due diligence on the third parties that have access to our systems and facilities that house systems and data.

The Audit Committee of our Board of Directors is responsible for oversight of our risk assessment, risk management and cybersecurity risks, and periodically updates our Board of Directors on such matters. Members of the Audit Committee engage in discussions with management on cybersecurity-related news events and discuss any updates to our cybersecurity risk management and strategy programs.

As of the date of this Annual Report on Form 10-K, we have not encountered risks from cybersecurity threats that have materially affected, or are reasonably likely to materially affect, our business strategy, results of operations or financial position.