Privacy and cybersecurity Cybersecurity Responsible AI Technology and device security Sale and misuse of IT products In 2022, we increased our focus on two key Trimble is also committed to being a Enhancing cybersecurity and data protection, and services areas: resiliency and cyber connectivity. responsible user of arti昀椀cial intelligence (AI). maintaining system integrity and ensuring Trimble is committed to complying with Our technical teams ensured continuous We know AI can be a powerful tool, allowing availability are key to our overall security at all applicable boycotts, trade sanctions, protection in the event of a catastrophic teams to focus on the most important Trimble. Our products connect the physical customs requirements and export and attack and invested signi昀椀cant resources in aspects of their roles. We maintain strong and digital worlds. To assure safety and import laws, rules and regulations. This cyber risk business alignment. Each Trimble attention to ensure AI is designed, developed security in these digital spaces, we employ includes US export laws, including the sector has identi昀椀ed a dedicated expert to and deployed responsibly, ensuring the important security protections including Export Administration Act, the Arms Export assess vulnerabilities, calculate risks and technology makes a positive impact on multi-factor authentication (MFA), automated Control Act, the Foreign Assets Control determine where risk mitigation e昀昀orts are users and stakeholders. We evaluate all cloud security measures and best-of-breed Regulations and International Tra昀케c in Arms needed. These team members, and our entire opportunities to use AI holistically, penetration prevention tools. We extend Regulations, as well as the export control cybersecurity team, assess threats and only implementing solutions that security to our customers through Trimble laws of other countries where Trimble does address risks on a continuous basis in every can deliver both results and Identity (TID), providing our users with safety business, regardless of the location of a region globally. Each year, this team builds protection for our company and security. In an instance where we recognize particular business or the place of origin of a strategic vision and shared outcomes to and our customers. threatening activity, we have a well-tested products. Trimble has established a Trade ensure cyber-risk is factored into every major incident response plan and deep relationships Compliance Program which manages Trade initiative Trimble completes. with our legal and engineering teams. policies, procedures and controls. The Trade Compliance group also conducts educational events and audits and is a resource for questions and compliance issues. INTRODUCTION BUILDING RESILIENCE EMPOWERING PEOPLE LEADING WITH INTEGRITY APPENDIX Trimble Sustainability Report 2022 Page 45 ©2023, Trimble Inc. All rights reserved.