![](data:image/svg+xml,<svg display="block" role="presentation" viewBox="0 0 267 50" xmlns="http://www.w3.org/2000/svg"><g d="M 0 0 L 266.896 0 L 266.896 49.949 L 0 49.949 Z M 6.448 32.764 L 6.448 31.068 C 6.448 30.469 6.776 29.916 7.308 29.617 L 18.911 23.077 C 19.178 22.927 19.342 22.65 19.342 22.35 L 19.342 17.022 C 19.34 16.724 19.176 16.449 18.911 16.301 C 18.647 16.152 18.321 16.152 18.056 16.3 L 2.58 25.013 C 0.984 25.912 0.001 27.574 0 29.372 L 0 34.458 C 0 36.257 0.984 37.918 2.58 38.817 C 9.098 42.488 15.617 46.159 22.136 49.83 C 22.403 49.98 22.73 49.98 22.996 49.83 L 27.736 47.167 C 28.001 47.017 28.164 46.74 28.164 46.441 C 28.164 46.141 28.001 45.864 27.736 45.714 L 7.308 34.216 C 6.776 33.917 6.448 33.364 6.448 32.764 Z M 38.685 9.756 L 38.685 32.764 C 38.685 33.364 38.357 33.917 37.825 34.216 L 36.319 35.064 C 35.788 35.363 35.133 35.363 34.602 35.064 L 22.996 28.526 C 22.73 28.377 22.402 28.377 22.136 28.526 L 17.397 31.189 C 17.13 31.339 16.966 31.616 16.967 31.916 C 16.966 32.216 17.13 32.493 17.397 32.643 L 32.868 41.361 C 34.464 42.262 36.432 42.262 38.028 41.361 L 42.542 38.817 C 44.145 37.923 45.136 36.26 45.139 34.458 L 45.139 12.432 C 45.141 12.132 44.977 11.854 44.711 11.705 L 39.973 9.031 C 39.708 8.882 39.381 8.882 39.115 9.031 C 38.849 9.18 38.685 9.456 38.685 9.756 Z M 23.425 6.971 L 24.931 7.819 C 25.462 8.119 25.79 8.672 25.79 9.271 L 25.79 22.35 C 25.79 22.65 25.953 22.927 26.219 23.077 L 30.959 25.74 C 31.224 25.891 31.552 25.891 31.818 25.742 C 32.084 25.592 32.248 25.315 32.248 25.015 L 32.248 7.577 C 32.246 5.776 31.258 4.113 29.657 3.218 L 25.143 0.674 C 23.547 -0.225 21.581 -0.225 19.986 0.674 L 0.429 11.694 C 0.164 11.845 0.001 12.121 0 12.421 L 0 17.749 C 0 18.048 0.164 18.325 0.43 18.475 C 0.695 18.625 1.023 18.625 1.289 18.476 L 21.705 6.971 C 22.238 6.672 22.893 6.672 23.425 6.971 Z M 64.683 15.434 L 66.75 15.434 L 66.75 34.515 L 64.683 34.515 Z M 90.557 15.434 L 90.557 34.515 L 88.853 34.515 L 76.286 19.033 L 76.286 34.515 L 74.221 34.515 L 74.221 15.434 L 75.925 15.434 L 88.521 30.916 L 88.521 15.434 Z M 98.025 15.434 L 105.985 15.434 C 107.884 15.397 109.764 15.813 111.461 16.648 C 112.992 17.411 114.27 18.582 115.146 20.026 C 116.038 21.529 116.492 23.24 116.46 24.976 C 116.491 26.711 116.037 28.421 115.146 29.923 C 114.271 31.368 112.993 32.539 111.461 33.302 C 109.764 34.136 107.884 34.553 105.985 34.515 L 98.025 34.515 Z M 105.875 32.771 C 107.433 32.805 108.976 32.463 110.366 31.775 C 111.608 31.151 112.644 30.197 113.354 29.022 C 114.078 27.792 114.445 26.394 114.415 24.976 C 114.446 23.557 114.081 22.157 113.359 20.925 C 112.647 19.751 111.61 18.797 110.366 18.174 C 108.975 17.488 107.433 17.146 105.875 17.181 L 100.092 17.181 L 100.092 32.773 Z M 123.928 15.434 L 125.996 15.434 L 125.996 34.515 L 123.928 34.515 Z M 148.96 24.976 L 150.942 24.976 L 150.942 32.244 C 149.994 33.046 148.894 33.658 147.703 34.044 C 146.437 34.466 145.107 34.681 143.769 34.678 C 141.929 34.705 140.112 34.274 138.49 33.425 C 136.958 32.621 135.682 31.421 134.802 29.956 C 133.901 28.448 133.438 26.728 133.462 24.982 C 133.437 23.236 133.901 21.516 134.802 20.007 C 135.68 18.536 136.956 17.33 138.49 16.52 C 140.121 15.669 141.947 15.237 143.796 15.267 C 145.197 15.251 146.589 15.487 147.902 15.963 C 149.106 16.396 150.189 17.101 151.062 18.02 L 149.777 19.3 C 148.231 17.813 146.265 17.07 143.88 17.07 C 142.384 17.048 140.908 17.4 139.592 18.093 C 138.343 18.749 137.304 19.729 136.59 20.925 C 135.859 22.154 135.483 23.553 135.502 24.974 C 135.482 26.389 135.858 27.784 136.59 29.007 C 137.306 30.198 138.339 31.177 139.58 31.841 C 140.888 32.543 142.361 32.899 143.853 32.877 C 145.863 32.877 147.567 32.386 148.965 31.405 Z M 163.54 33.412 C 162.008 32.606 160.733 31.403 159.855 29.936 C 158.961 28.43 158.502 26.716 158.528 24.976 C 158.502 23.235 158.961 21.52 159.855 20.013 C 160.733 18.546 162.008 17.344 163.54 16.537 C 166.826 14.852 170.75 14.845 174.042 16.52 C 175.569 17.331 176.84 18.534 177.716 20 C 178.618 21.509 179.081 23.229 179.057 24.976 C 179.083 26.724 178.619 28.446 177.716 29.956 C 176.841 31.421 175.57 32.623 174.042 33.432 C 170.751 35.108 166.827 35.103 163.54 33.419 Z M 172.995 31.857 C 174.223 31.195 175.239 30.214 175.929 29.022 C 177.343 26.5 177.343 23.449 175.929 20.927 C 175.239 19.736 174.223 18.754 172.995 18.093 C 170.371 16.73 167.225 16.73 164.601 18.093 C 163.366 18.753 162.342 19.733 161.642 20.925 C 160.207 23.442 160.207 26.503 161.642 29.02 C 162.342 30.213 163.366 31.194 164.601 31.855 C 167.225 33.217 170.371 33.217 172.995 31.855 Z M 214.947 15.434 L 214.947 34.515 L 212.916 34.515 L 212.916 25.705 L 200.683 25.705 L 200.683 34.515 L 198.614 34.515 L 198.614 15.434 L 200.681 15.434 L 200.681 23.938 L 212.914 23.938 L 212.914 15.434 Z M 222.416 15.434 L 224.481 15.434 L 224.481 34.515 L 222.416 34.515 Z M 248.454 15.434 L 239.794 34.515 L 237.763 34.515 L 229.105 15.434 L 231.34 15.434 L 238.824 32.007 L 246.367 15.434 Z M 266.896 32.771 L 266.896 34.515 L 253.07 34.515 L 253.07 15.434 L 266.476 15.434 L 266.476 17.181 L 255.135 17.181 L 255.135 23.969 L 265.246 23.969 L 265.246 25.685 L 255.135 25.685 L 255.135 32.773 Z" fill="transparent" height="49.94933920704845px" id="xi7naNxkR" width="266.8961792054099px"><path d="M 0 0 L 266.896 0 L 266.896 49.949 L 0 49.949 Z" fill="transparent" height="49.94933920704845px" id="ILaYDX6HH" width="266.8961792054099px"/><path d="M 6.448 16.575 L 6.448 14.879 C 6.448 14.28 6.776 13.727 7.308 13.428 L 18.911 6.888 C 19.178 6.738 19.342 6.461 19.342 6.161 L 19.342 0.833 C 19.34 0.535 19.176 0.26 18.911 0.112 C 18.647 -0.037 18.321 -0.037 18.056 0.111 L 2.58 8.824 C 0.984 9.723 0.001 11.385 0 13.183 L 0 18.269 C 0 20.068 0.984 21.729 2.58 22.628 C 9.098 26.299 15.617 29.97 22.136 33.641 C 22.403 33.791 22.73 33.791 22.996 33.641 L 27.736 30.978 C 28.001 30.828 28.164 30.551 28.164 30.252 C 28.164 29.952 28.001 29.675 27.736 29.525 L 7.308 18.027 C 6.776 17.728 6.448 17.175 6.448 16.575 Z" fill="rgb(255, 255, 255)" height="33.75368122863575px" id="LR404tIgd" transform="translate(0 16.189)" width="28.16405915340745px"/><path d="M 21.718 0.837 L 21.718 23.845 C 21.718 24.445 21.39 24.998 20.858 25.297 L 19.353 26.145 C 18.821 26.444 18.167 26.444 17.635 26.145 L 6.03 19.608 C 5.764 19.458 5.436 19.458 5.17 19.608 L 0.43 22.271 C 0.164 22.42 0 22.697 0 22.997 C 0 23.297 0.164 23.575 0.43 23.724 L 15.902 32.442 C 17.498 33.343 19.465 33.343 21.061 32.442 L 25.575 29.898 C 27.178 29.004 28.169 27.341 28.173 25.539 L 28.173 3.513 C 28.174 3.213 28.01 2.936 27.744 2.786 L 23.007 0.112 C 22.741 -0.037 22.414 -0.037 22.148 0.112 C 21.883 0.261 21.719 0.537 21.718 0.837 Z" fill="rgb(255, 255, 255)" height="33.11783850765066px" id="nVVfy980v" transform="translate(16.967 8.919)" width="28.172907174621162px"/><path d="M 23.425 6.971 L 24.931 7.819 C 25.462 8.119 25.79 8.672 25.79 9.271 L 25.79 22.35 C 25.79 22.65 25.953 22.927 26.219 23.077 L 30.959 25.74 C 31.224 25.891 31.552 25.891 31.818 25.742 C 32.084 25.592 32.248 25.315 32.248 25.015 L 32.248 7.577 C 32.246 5.776 31.258 4.113 29.657 3.218 L 25.143 0.674 C 23.547 -0.225 21.581 -0.225 19.986 0.674 L 0.429 11.694 C 0.164 11.845 0.001 12.121 0 12.421 L 0 17.749 C 0 18.048 0.164 18.325 0.43 18.475 C 0.695 18.625 1.023 18.625 1.289 18.476 L 21.705 6.971 C 22.238 6.672 22.893 6.672 23.425 6.971 Z M 64.683 15.434 L 66.75 15.434 L 66.75 34.515 L 64.683 34.515 Z M 90.557 15.434 L 90.557 34.515 L 88.853 34.515 L 76.286 19.033 L 76.286 34.515 L 74.221 34.515 L 74.221 15.434 L 75.925 15.434 L 88.521 30.916 L 88.521 15.434 Z M 98.025 15.434 L 105.985 15.434 C 107.884 15.396 109.764 15.813 111.461 16.648 C 112.992 17.411 114.27 18.582 115.146 20.026 C 116.038 21.529 116.492 23.24 116.46 24.976 C 116.491 26.711 116.037 28.421 115.146 29.923 C 114.271 31.367 112.993 32.539 111.461 33.302 C 109.764 34.136 107.884 34.553 105.985 34.515 L 98.025 34.515 Z M 105.875 32.771 C 107.433 32.805 108.976 32.463 110.366 31.775 C 111.608 31.151 112.644 30.197 113.354 29.022 C 114.078 27.792 114.445 26.393 114.415 24.976 C 114.446 23.557 114.081 22.157 113.359 20.925 C 112.647 19.751 111.61 18.797 110.366 18.174 C 108.975 17.488 107.433 17.146 105.875 17.181 L 100.092 17.181 L 100.092 32.773 Z M 123.928 15.434 L 125.996 15.434 L 125.996 34.515 L 123.928 34.515 Z M 148.96 24.976 L 150.942 24.976 L 150.942 32.244 C 149.994 33.046 148.894 33.658 147.703 34.044 C 146.437 34.466 145.107 34.681 143.769 34.678 C 141.929 34.705 140.112 34.274 138.49 33.425 C 136.958 32.621 135.682 31.421 134.802 29.956 C 133.901 28.448 133.438 26.728 133.462 24.982 C 133.437 23.236 133.901 21.516 134.802 20.007 C 135.68 18.536 136.956 17.33 138.49 16.52 C 140.121 15.669 141.947 15.237 143.796 15.266 C 145.197 15.251 146.589 15.487 147.902 15.963 C 149.106 16.396 150.189 17.101 151.062 18.02 L 149.777 19.3 C 148.231 17.813 146.265 17.07 143.88 17.07 C 142.384 17.048 140.908 17.4 139.592 18.092 C 138.343 18.749 137.304 19.729 136.59 20.925 C 135.859 22.154 135.483 23.553 135.502 24.974 C 135.482 26.389 135.858 27.784 136.59 29.007 C 137.306 30.198 138.339 31.177 139.58 31.841 C 140.888 32.543 142.361 32.899 143.853 32.877 C 145.863 32.877 147.567 32.386 148.965 31.405 Z M 163.54 33.412 C 162.008 32.606 160.733 31.403 159.855 29.936 C 158.961 28.43 158.502 26.716 158.528 24.976 C 158.502 23.235 158.961 21.52 159.855 20.013 C 160.733 18.546 162.008 17.344 163.54 16.537 C 166.826 14.852 170.75 14.845 174.042 16.52 C 175.569 17.331 176.84 18.534 177.716 20 C 178.618 21.509 179.081 23.229 179.057 24.976 C 179.083 26.724 178.619 28.446 177.716 29.956 C 176.841 31.421 175.57 32.623 174.042 33.432 C 170.751 35.108 166.827 35.103 163.54 33.418 Z M 172.995 31.857 C 174.223 31.195 175.239 30.214 175.929 29.022 C 177.343 26.5 177.343 23.449 175.929 20.927 C 175.239 19.735 174.223 18.754 172.995 18.092 C 170.371 16.73 167.225 16.73 164.601 18.092 C 163.366 18.753 162.342 19.733 161.642 20.925 C 160.207 23.441 160.207 26.503 161.642 29.02 C 162.342 30.213 163.366 31.194 164.601 31.855 C 167.225 33.217 170.371 33.217 172.995 31.855 Z M 214.947 15.434 L 214.947 34.515 L 212.916 34.515 L 212.916 25.705 L 200.683 25.705 L 200.683 34.515 L 198.614 34.515 L 198.614 15.434 L 200.681 15.434 L 200.681 23.938 L 212.914 23.938 L 212.914 15.434 Z M 222.416 15.434 L 224.481 15.434 L 224.481 34.515 L 222.416 34.515 Z M 248.454 15.434 L 239.794 34.515 L 237.763 34.515 L 229.105 15.434 L 231.34 15.434 L 238.824 32.007 L 246.367 15.434 Z M 266.896 32.771 L 266.896 34.515 L 253.07 34.515 L 253.07 15.434 L 266.476 15.434 L 266.476 17.181 L 255.135 17.181 L 255.135 23.969 L 265.246 23.969 L 265.246 25.685 L 255.135 25.685 L 255.135 32.773 Z" fill="rgb(255, 255, 255)" height="34.685180297748005px" id="Zga5sZr9W" transform="translate(0 0)" width="266.89615250111035px"/></g></svg>)
Integrated Management System Policy
Introduction
Indigo Hive is a Brazilian company specialized in developing artificial intelligence-based solutions designed to increase efficiency and autonomy in large organizations. Through its proprietary platform – Cogfy – the company integrates data, automates processes, and delivers value via intelligent agents, copilots, and conversational interfaces.
Committed to innovation, security, and the reliability of its solutions, Indigo Hive is implementing an Integrated Management System (IMS) focused on information security, data privacy, and cloud service security. The IMS is being developed in compliance with ISO/IEC 27001, ISO/IEC 27701, and ISO/IEC 27017 standards, as well as applicable national legislation, including Brazil’s General Data Protection Law (LGPD – Law No. 13.709/2018).
The IMS supports the continuous improvement of internal processes, focusing on data protection, information integrity, and risk mitigation. It also contributes to the company’s alignment with best practices in governance, sustainability, and social responsibility, including ESG (Environmental, Social, and Governance) principles and cloud security.
Objective
To establish the guidelines of the Integrated Management System (IMS) at Indigo Hive, with a focus on the implementation and continuous improvement of practices related to information security, data privacy, and cloud computing security.
The IMS aims to support compliance with applicable legal, regulatory, and contractual requirements, strengthen internal controls, mitigate risks, and foster trust in the solutions developed by the company. This policy also ensures coherence between organizational processes and the principles of transparency, innovation, accountability, and integrity that guide Indigo Hive’s operations.
Scope
This policy applies to all operations, processes, functional areas, and resources involved in Indigo Hive’s activities. It covers employees, partners, suppliers, and service providers who, directly or indirectly, participate in the development, maintenance, support, or delivery of the company’s solutions.
The scope of the Integrated Management System (IMS) includes aspects related to information security, personal data privacy, and cloud security, as defined by ISO/IEC 27001, ISO/IEC 27701, and ISO/IEC 27017 standards.
Terms and Definitions
AI (Artificial Intelligence): A field of technology that develops systems capable of performing tasks that typically require human intelligence, such as language interpretation, pattern recognition, and autonomous decision-making.
Cloud Environments: IT infrastructures and services provided remotely via the internet, used by Indigo Hive to operate and deliver AI-based solutions.
DPO (Data Protection Officer): The individual responsible for acting as a communication channel between the company, data subjects, and Brazil’s National Data Protection Authority (ANPD), ensuring LGPD compliance.
ESG (Environmental, Social, and Governance): A set of practices focused on environmental responsibility, social commitment, and ethical governance, which guide strategic actions at Indigo Hive.
ISO (International Organization for Standardization): An international body that develops technical standards, including those that govern Indigo Hive’s IMS (ISO/IEC 27001, ISO/IEC 27701, ISO/IEC 27017).
LGPD (General Data Protection Law): Law No. 13.709/2018, which regulates the processing of personal data in Brazil, establishing rights for data subjects and obligations for organizations.
Pentest (Penetration Test): Technical tests conducted to identify vulnerabilities in the company’s systems by simulating attacks to evaluate their security.
Cogfy Platform: Indigo Hive’s proprietary platform, composed of agents, copilots, and intelligent interfaces that integrate corporate data and optimize processes through AI.
IMS (Integrated Management System): A structured system for managing requirements related to information security (ISMS), data privacy (PIMS), and cloud security, based on ISO/IEC 27001, ISO/IEC 27701, and ISO/IEC 27017.
PIMS (Privacy Information Management System): A structure focused on personal data protection, in compliance with the LGPD and other applicable standards, ensuring the secure and ethical processing of information.
ISMS (Information Security Management System): A set of policies, processes, and controls implemented to ensure the confidentiality, integrity, and availability of the organization’s information.
Confidentiality and Data Protection Agreements: Documents that define the obligations and responsibilities of employees, partners, and service providers regarding the protection of information and data processed by Indigo Hive.
Roles and Responsibilities
The responsibilities related to Indigo Hive’s Integrated Management System (IMS) are described in complementary documents such as the Code of Conduct, Confidentiality Agreements, and other internal policies and standards. In general, responsibilities are distributed as follows:
Top Management:
Defines the strategic vision for the IMS, ensures the allocation of necessary resources, and demonstrates commitment to information security, privacy, compliance, and organizational responsibility.IMS Committee:
A multidisciplinary body responsible for monitoring IMS implementation and performance, promoting periodic reviews, identifying improvement opportunities, and ensuring alignment with ISO/IEC standards and applicable legislation.Employees:
Must understand and comply with IMS guidelines, participate in mandatory training, perform their activities diligently, and report any risks, non-conformities, or security incidents.Partners, Contractors, and Suppliers:
Must deliver services in accordance with IMS requirements, adhering to the same standards of security, confidentiality, and compliance required internally, and maintain effective communication.Other Stakeholders:
Contribute to the continuous improvement of the IMS through interactions, feedback, and partnerships, and are expected to act ethically and in line with Indigo Hive’s values.
Guidelines
The following guidelines reflect Indigo Hive’s commitment to information security, data privacy, cloud protection, and compliance with applicable laws and standards. They guide all organizational activities and promote a culture of responsibility, innovation, and continuous improvement:
Place the client and other stakeholders at the center of decision-making, continuously improving services and solutions to ensure security, efficiency, and reliability;
Promote continuous improvement of the Integrated Management System (IMS) by adopting best practices in information security, data privacy, and cloud security, in alignment with ISO/IEC 27001, ISO/IEC 27701, and ISO/IEC 27017;
Ensure compliance with legal, regulatory, and contractual obligations, especially regarding the LGPD and other data protection legislation;
Implement and maintain effective controls to ensure the confidentiality, integrity, availability, and resilience of the information handled by the organization;
Protect the privacy of client, employee, and partner data, respecting ethical principles and the rights of data subjects, and adopting technical and administrative measures compatible with identified risks;
Select, qualify, and monitor suppliers and service providers based on security, privacy, and compliance criteria, ensuring operational continuity and integrity;
Foster a culture of information security and data protection through training, ongoing awareness, and employee engagement;
Allocate adequate human, technological, and financial resources to maintain and evolve the IMS, ensuring its alignment with the organization’s strategic needs.
Violations and Sanctions
The principles and guidelines set out in this policy have the full support of Indigo Hive’s Top Management and apply to all components of the Integrated Management System (IMS), including information security, data privacy, and cloud security.
All employees, service providers, partners, and suppliers must strictly adhere to the guidelines described here and in complementary IMS documents in the course of their duties and activities.
Lack of knowledge of these guidelines or internal policies will not be accepted as a justification for non-compliance. A formal procedure must exist to handle infractions, violations, or incidents related to the IMS, including investigation, documentation, and appropriate treatment based on the severity of the situation.
Sanctions for non-compliance with IMS guidelines include, but are not limited to:
Verbal or written warning – for minor or easily corrected issues;
Mandatory additional training – when the infraction results from lack of awareness or misunderstanding of internal policies;
Temporary suspension of access or activities – in cases of recurrence or breaches that compromise information security or compliance;
Dismissal or contract termination – for severe violations such as misuse of data, negligence with information assets, data leaks, or intentional disregard of standards;
Legal action and/or notification to authorities – when there is evidence of unlawful conduct, fraud, breach of confidentiality, or any civil or criminal offense.
For third parties or service providers, non-compliance with the established guidelines may lead to immediate contract termination and potential civil, administrative, or criminal liability, as applicable under the law.
It is the responsibility of all individuals to promptly and securely report any conduct that violates the IMS policies or may compromise the company’s information security and privacy. Failing to report a known violation may be considered complicity and subject to the same penalties as the offender.
Sanctions will always be applied proportionally, fairly, and transparently, with the goal of preserving IMS integrity and promoting a culture of compliance and organizational responsibility.
Validity and Review
This policy takes effect on the date of its publication and will remain in force until reviewed or replaced. The policy will be reviewed periodically or whenever significant changes occur in activities, processes, legislation, or applicable IMS standards.
Responsibility for reviewing and updating the policy lies with the IMS Committee, which will ensure continuous alignment with best practices and legal and normative requirements. Any changes will be duly communicated to all relevant stakeholders.
