Cybersecurity Risk Management, Strategy and Governance |
3 Months Ended |
|---|---|
Dec. 31, 2025 | |
| Cybersecurity Risk Management, Strategy, and Governance [Abstract] | |
| Cybersecurity Risk Management Processes for Assessing, Identifying, and Managing Threats [Text Block] | ITEM 1C. CYBERSECURITY. Cyber threats are considered one of the most significant risks facing financial institutions. Because the Trust has no directors, principal officers or employees, the Sponsor is responsible for managing cybersecurity risks to the Trust. To mitigate risk from cyber threats, Invesco Ltd. (“Invesco”), the Sponsor’s parent company, has a designated Global Chief Security Officer (“GCSO”) who leads the global security department that is responsible for identifying, assessing, and managing cybersecurity threats across the Invesco organization. The GCSO has over 29 years of experience in the public and private sectors, specializing in security, investigations, and incident response. The global security department oversees, among others, the following groups across Invesco: Information Security, Global Privacy, Business Continuity & Crisis Management, Resilience, and Corporate Security. This converged security structure supports a more comprehensive, holistic approach to keeping our and Invesco clients, employees, and critical assets safe, upholding privacy rights, while enabling a secure and resilient business. Invesco’s information security program is led by its Chief Information Security Officer who reports directly to the GCSO and has over 25 years of experience, specializing in information security and risk management. Invesco’s information security program is designed to oversee all aspects of information security risk and seeks to ensure the confidentiality, integrity, and availability of information assets, including the implementation of controls aligned with industry guidelines and applicable statutes and regulations to identify threats, detect attacks and protect its and our information assets. The cybersecurity program includes the following:
• Proactive assessments of technical infrastructure and security resilience are performed on a regular basis which include penetration testing, offensive testing and maturity assessments. • Conducting due diligence on third-party service providers regarding cybersecurity risks prior to on-boarding, periodic assessment of cybersecurity risks for third-party service providers and continuous monitoring for new third-party cybersecurity incidents. • An incident response program that includes periodic testing and is designed to restore business operations as quickly and as orderly as possible in the event of a cybersecurity incident at Invesco or third-party. • Mandatory annual employee security awareness training, which focuses on cyber threats and security in general. • Regular cyber phishing tests throughout the year to measure and raise employee awareness against cyber phishing threats. Important to these programs is Invesco’s investment in threat-intelligence, its active engagement in industry and government security-related forums, and its utilization of external experts to challenge its program maturity, assess its controls and routinely test its capabilities. Invesco’s Board of Directors oversees cybersecurity risk and receives updates at a minimum, of twice a year regarding cybersecurity, including risks and protections. The Global Operational Risk Management Committee, one of Invesco’s risk management committees, provides executive-level oversight and monitoring of the end-to-end programs dedicated to managing information security and cyber related risk. The members of this Committee include Invesco Ltd.’s Chief Administrative Officer, Chief Risk & Audit Officer, General Counsel, Chief Financial Officer, Chief Human Resources Officer, Global Head of Compliance, and Global Operational Risk Owners which includes the GCSO. The committee reports to Invesco’s Enterprise Risk Management Committee which provides updates to the Invesco Board of Directors to facilitate their oversight. Although risks from cyber threats have not materially affected the Trust’s business strategy, results of operations or financial condition, Invesco continues to closely monitor cyber risk. The Sponsor oversees cybersecurity risks for the Trust by applying Invesco's enterprise policies and control framework to the Trust's operations and service providers and by escalating any Trust relevant findings through the Sponsor's management reporting and certification processes. The Trust did not experience any material cybersecurity incidents during the year ended December 31, 2025, and cybersecurity risks did not materially affect the Trust's business strategy, results of operations, or financial condition in the period. In addition, security controls, no matter how well designed or implemented, may only mitigate and not fully eliminate risks. For more information regarding the risks the Trust faces from cybersecurity threats, please see Item 1A. Risk Factors. |
| Cybersecurity Risk Management Third Party Engaged [Flag] | true |
| Cybersecurity Risk Third Party Oversight and Identification Processes [Flag] | true |
| Cybersecurity Risk Materially Affected or Reasonably Likely to Materially Affect Registrant [Flag] | false |
| Cybersecurity Risk Board of Directors Oversight [Text Block] | Invesco’s Board of Directors oversees cybersecurity risk and receives updates at a minimum, of twice a year regarding cybersecurity, including risks and protections. The Global Operational Risk Management Committee, one of Invesco’s risk management committees, provides executive-level oversight and monitoring of the end-to-end programs dedicated to managing information security and cyber related risk. The members of this Committee include Invesco Ltd.’s Chief Administrative Officer, Chief Risk & Audit Officer, General Counsel, Chief Financial Officer, Chief Human Resources Officer, Global Head of Compliance, and Global Operational Risk Owners which includes the GCSO. The committee reports to Invesco’s Enterprise Risk Management Committee which provides updates to the Invesco Board of Directors to facilitate their oversight. |
| Cybersecurity Risk Board Committee or Subcommittee Responsible for Oversight [Text Block] | The Global Operational Risk Management Committee, one of Invesco’s risk management committees, provides executive-level oversight and monitoring of the end-to-end programs dedicated to managing information security and cyber related risk. The members of this Committee include Invesco Ltd.’s Chief Administrative Officer, Chief Risk & Audit Officer, General Counsel, Chief Financial Officer, Chief Human Resources Officer, Global Head of Compliance, and Global Operational Risk Owners which includes the GCSO. |
| Cybersecurity Risk Process for Informing Board Committee or Subcommittee Responsible for Oversight [Text Block] | The committee reports to Invesco’s Enterprise Risk Management Committee which provides updates to the Invesco Board of Directors to facilitate their oversight. |
| Cybersecurity Risk Role of Management [Text Block] | Cyber threats are considered one of the most significant risks facing financial institutions. Because the Trust has no directors, principal officers or employees, the Sponsor is responsible for managing cybersecurity risks to the Trust. To mitigate risk from cyber threats, Invesco Ltd. (“Invesco”), the Sponsor’s parent company, has a designated Global Chief Security Officer (“GCSO”) who leads the global security department that is responsible for identifying, assessing, and managing cybersecurity threats across the Invesco organization. The GCSO has over 29 years of experience in the public and private sectors, specializing in security, investigations, and incident response. The global security department oversees, among others, the following groups across Invesco: Information Security, Global Privacy, Business Continuity & Crisis Management, Resilience, and Corporate Security. This converged security structure supports a more comprehensive, holistic approach to keeping our and Invesco clients, employees, and critical assets safe, upholding privacy rights, while enabling a secure and resilient business. Invesco’s information security program is led by its Chief Information Security Officer who reports directly to the GCSO and has over 25 years of experience, specializing in information security and risk management. Invesco’s information security program is designed to oversee all aspects of information security risk and seeks to ensure the confidentiality, integrity, and availability of information assets, including the implementation of controls aligned with industry guidelines and applicable statutes and regulations to identify threats, detect attacks and protect its and our information assets. The cybersecurity program includes the following:
• Proactive assessments of technical infrastructure and security resilience are performed on a regular basis which include penetration testing, offensive testing and maturity assessments. • Conducting due diligence on third-party service providers regarding cybersecurity risks prior to on-boarding, periodic assessment of cybersecurity risks for third-party service providers and continuous monitoring for new third-party cybersecurity incidents. • An incident response program that includes periodic testing and is designed to restore business operations as quickly and as orderly as possible in the event of a cybersecurity incident at Invesco or third-party. • Regular cyber phishing tests throughout the year to measure and raise employee awareness against cyber phishing threats.
Mandatory annual employee security awareness training, which focuses on cyber threats and security in general. |
| Cybersecurity Risk Management Positions or Committees Responsible [Flag] | true |
| Cybersecurity Risk Management Positions or Committees Responsible [Text Block] | Invesco’s information security program is led by its Chief Information Security Officer who reports directly to the GCSO and has over 25 years of experience, specializing in information security and risk management. |
| Cybersecurity Risk Management Expertise of Management Responsible [Text Block] | Chief Information Security Officer who reports directly to the GCSO and has over 25 years of experience, specializing in information security and risk management. |
| Cybersecurity Risk Process for Informing Management or Committees Responsible [Text Block] | Invesco’s information security program is designed to oversee all aspects of information security risk and seeks to ensure the confidentiality, integrity, and availability of information assets, including the implementation of controls aligned with industry guidelines and applicable statutes and regulations to identify threats, detect attacks and protect its and our information assets. |
| Cybersecurity Risk Management Positions or Committees Responsible Report to Board [Flag] | true |