AI Policy

Purpose

This AI Policy establishes Rygen Technologies’ commitment to building innovative AI systems responsibly. As a logistics technology leader, we recognize AI’s transformative potential to revolutionize supply chain efficiency, decision-making, and customer experience. This policy guides our approach to developing, deploying, and governing AI systems while maintaining the highest standards of trust and accountability.

Scope

Any AI system used or developed by Rygen, and all members of the Rygen team that affect AI systems, are subject to this policy, including:

• AI-powered features in our TMS (Corsair) and IPaaS (X1) platforms
• Internal AI tools for operations, development, and analysis
• AI systems built using proprietary models, third-party APIs, or open-source components
• All teams involved in AI development, deployment, governance, and operations

Policy Alignment

This policy operates within Rygen’s broader governance framework and is consistent with existing organizational policies, including those governing information security, data protection, human resources, and compliance. Alignment is maintained through shared executive oversight and the merge request review process, which ensures policy changes are evaluated for consistency across the organization.

Policy Statement

At Rygen Technologies, we believe AI has the power to revolutionize logistics by making supply chains more efficient, decisions faster, and operations more resilient. As a team that lives and breathes logistics technology, we’re committed to harnessing AI’s potential responsibly, always keeping our clients’ operational success and trust at the center of everything we build. In practice, this means a dedication to the following principles.

Trustworthy Delivery

AI systems that we develop must be trustworthy. This requires that we evaluate systems before they are delivered to clients and include components for explainability and human-in-the-loop where the outputs are intended or possibly used for mission critical systems or decisions. The need for human oversight and explainability is evaluated on a per-system basis as part of impact and risk assessment.

Performance Excellence

We aspire to be a leader in AI within the logistics industry. To accomplish that, we must be devoted to excellence in the quality of the services we provide, which requires us to establish performance metrics and measuring capability for each system we develop, which we must monitor and respond to.

Responsible AI

We recognize that AI systems can have far-reaching impacts beyond their immediate technical function. This requires us to conduct thorough risk and impact assessments before deploying any AI system, considering effects on our clients, their operations, and the broader logistics ecosystem. We maintain systematic governance throughout the development lifecycle, ensuring that ethical considerations are embedded from design through operation, not bolted on as an afterthought.

Client Value Through Innovation

Our AI innovations must deliver measurable value to our clients’ logistics operations. This means we commit to deploying at least two new AI-enhanced features annually that demonstrably improve operational efficiency, decision-making speed, or cost reduction. We measure success not just by technical performance, but by client adoption rates, operational improvements, and feedback that confirms real-world value delivery in their supply chain operations.

Operational Resilience

Logistics operations cannot afford AI system failures. We maintain rigorous availability standards with documented fallback mechanisms for all critical AI features, ensuring that when our AI systems are unavailable, client operations continue seamlessly. This includes monitoring system health proactively, maintaining rapid incident response capabilities, and designing systems with graceful degradation rather than hard failures.

Compliance

Trust is the foundation of our client relationships, and compliance is non-negotiable. We maintain full adherence to all applicable legal, regulatory, contractual, and ethical obligations, including our commitment to achieving and maintaining ISO 42001 certification. This means every AI system deployment includes compliance verification, documentation for audit trails, and ongoing monitoring to ensure we meet evolving regulatory requirements in the logistics and technology sectors.

Continual Improvement

We recognize that AI technology evolves rapidly, and so must our capabilities and governance practices. This means actively learning from every AI system we deploy - monitoring performance data, gathering client feedback, and honestly assessing what works and what doesn’t. We commit to regular retrospectives on our AI initiatives, updating our processes based on real-world results, and staying current with industry best practices. When we identify gaps or opportunities, we act on them systematically rather than hoping they resolve themselves.

Governance

Effective AI governance requires clear ownership and accountability, not bureaucratic committees that slow down innovation. The Principal AI Engineer owns this policy and our AI Management System, ensuring they remain current and practical for our team’s daily work. The CTO provides executive sponsorship and strategic alignment, making sure our AI initiatives support Rygen’s broader business objectives. This structure gives us the agility to move quickly while maintaining the oversight necessary to manage risks and maintain client trust.

Benefits of Compliance and Consequences of Non-Compliance

Understanding why this policy matters helps everyone make better decisions in their daily work.

Benefits of Compliance

Adhering to this policy and the broader AI Management System delivers tangible value:

• Client Trust: Demonstrated responsible AI practices strengthen client relationships and differentiate Rygen in the market.
• Risk Reduction: Systematic governance prevents AI-related incidents that could disrupt client operations or damage our reputation.
• Regulatory Readiness: Proactive compliance positions us to meet evolving AI regulations without reactive scrambling.
• Operational Excellence: Structured processes improve the quality and reliability of our AI systems.
• Certification Maintenance: Continued adherence supports our ISO 42001 certification, a competitive differentiator in enterprise logistics.

Consequences of Non-Compliance

Failure to comply with this policy carries serious implications:

• Client Impact: Non-compliant AI systems may produce unreliable outputs, eroding client trust and potentially disrupting their operations.
• Reputational Damage: AI incidents resulting from governance failures can cause lasting harm to Rygen’s market position.
• Regulatory Exposure: Non-compliance may result in legal penalties, contractual breaches, or loss of certification.
• Disciplinary Action: Personnel who knowingly disregard this policy or AIMS requirements may face disciplinary measures up to and including termination.

All Rygen team members share responsibility for upholding these standards. Questions about compliance obligations should be directed to the Principal AI Engineer or your manager.

Review

This policy is reviewed quarterly and communicated to all employees through onboarding and training.

Revision History