Responsible AI Policy

1.1. This Responsible AI Policy (the “Policy”) outlines BeyondTrust’s commitment to the ethical, secure and transparent use of artificial intelligence (AI) technologies, including machine learning (“AI Features”). It complements BeyondTrust's Software License and Subscription Agreement and applies to all AI Features embedded within our customer-facing products and services, as well as internal AI-powered tools used to support development and productivity.

2.1. AI Features within our products and services are designed to enhance security, streamline operations, and improve user experience. Depending on the product and its intended use, AI Features may be included by default or offered as optional features. Where optional AI Features are available, BeyondTrust provides clear disclosures and accessible configuration options, allowing customers to activate or deactivate these features in line with their preferences and compliance needs.

3.1. BeyondTrust uses AI-powered internal tools to support its development, testing and operational workflows. These tools are configured to ensure that they do not process customer data. We apply strict access controls and privacy safeguards to maintain a clear separation between customer data and internal productivity tools.

4.1. BeyondTrust does not use customer data for AI model training. To improve and refine our models, we may use aggregated and anonymised data. Our practices are designed to comply with all applicable laws and regulations, reflecting our commitment to privacy and responsible data stewardship.

5.1. Transparency and customer control are central to our AI strategy. Customers retain full control over the activation and use of any optional AI Features. BeyondTrust is committed to providing clear information about how our AI Features function and what data they process. Please note that AI-generated outputs may not always be entirely accurate. We recommend that customers exercise discretion when making decisions based on these outputs.

7.1. BeyondTrust conducts regular AI impact assessments to ensure our AI Features comply with applicable laws and regulations. These assessments help ensure that our systems operate with fairness, transparency, and privacy by design. We monitor our AI models for bias, discrimination and unintended consequences. Governance and strategic oversight are provided by our internal AI Steering Committee.

8.1. When integrating third-party AI services, such as cloud-based machine learning platforms, BeyondTrust ensures that customer data is not used for training by these providers. All third-party services must meet our stringent security and privacy standards and customers are notified of relevant integrations where applicable.

8.2. Our AI models are hosted on Amazon Bedrock, benefiting from its robust security infrastructure. BeyondTrust follows best practices outlined in the Bedrock Security guidelines.

9.1. By adhering to the principles outlined in this Policy, BeyondTrust aims to foster trust, accountability and innovation in all applications of artificial intelligence across our solutions and operations.

9.2. For further information or specific enquiries, please contact: [email protected]