Quobis is a leading company in the development, implementation, and support of unified communication and collaboration solutions, as well as cloud communication services.

Operating since 2006, Quobis guides its Security Policy along two strategic lines: the high quality of the services provided and the security of the information we manage.

It is for this reason that Quobis defines, approves, implements, maintains, and continuously improves an Information Security Management System (ISMS), according to the requirements of the international standard ISO 27001 and Royal Decree 311/2022, of May 3, which regulates the National Security Framework (Esquema Nacional de Seguridad).

The strategic objectives of the Security Policy are as follows:

• Ensure that Quobis personnel know and understand the issues associated with information security and that they assume and are aware of the associated responsibilities.
• Ensure the confidentiality, integrity, availability, traceability, and authenticity of the information that customers and suppliers deposit and store in our information systems.
• Maximize the availability and quality of the services that Quobis provides to its customers.
• Reduce or eliminate the dangers and risks inherent to its activities through continuous improvement of security performance in its processes, products, and services.
• Guarantee that current and future operations and processes comply with legal and other applicable requirements regarding Information Security.

This Policy will serve as a framework for establishing objectives within the Management System. It will be periodically reviewed in order to verify its adequacy to the context of the organization. In order for it to be known by interested parties, the Information Security Policy will be publicly posted on the Quobis website.

QUOBIS NETWORKS, S.L.

May 11, 2026