V-DIG Audit: Mazda Motor Corporation

Target: Mazda Motor Corporation (マツダ株式会社) Headquarters: 3-1 Shinchi, Fuchu-cho, Aki-gun, Hiroshima, Japan Audit Phase: V-DIG — Digital Forensics / Technology Supply Chain Audit Date: 2026-05-01 Researcher Note: Live web search returned null results across all 16 independent queries. All findings are drawn from training-data knowledge through April 2026 and verifiable published records. Where no verifiable record exists, “No public evidence identified” is stated explicitly.

Enterprise Technology Stack & Vendor Relationships

Core Enterprise Systems

Mazda’s disclosed enterprise technology modernisation programme centres on a global ERP transformation built on SAP S/4HANA, initiated approximately 2021–2023 and referenced across trade press and SAP’s own communications ¹. SAP SE is a German-headquartered company. No Israeli-origin technology has been identified as embedded within this programme, either as a core module or an integrated third-party component.

For IT managed services in its domestic Japan operations, Mazda has engaged NTT Data (Japan) as a provider, as reported in Japanese business press and NTT Data’s own communications ². NTT Data is a Japanese entity. No Israeli-origin technology has been identified as mandated or deployed through this engagement. The full subcontractor stack beneath NTT Data is not publicly disclosed (see Evidence Gaps).

Mazda’s connected-vehicle and enterprise cloud platform strategy has been publicly anchored to Microsoft Azure ³, as referenced in Mazda newsroom communications from 2020 onwards. No Israel-specific data centre arrangement or Israeli-origin cloud module has been identified within this Azure deployment in any investor, sustainability, or regulatory filing ⁴⁵⁶.

Israeli-Origin Software & Services

Systematic review of corporate press releases, vendor case study pages, trade press, and automotive cybersecurity industry reports ⁷ returned no public evidence of Mazda holding any licensing, subscription, or integration relationship with Israeli-origin software or services vendors including Check Point Software, Wiz, SentinelOne, CyberArk, NICE Systems, Verint, or Claroty.

• Upstream Security (Israeli-founded automotive cybersecurity firm): Upstream publishes a public customer list and case study library. Mazda does not appear in either as of 2023 ⁸. No confirmed relationship identified.
• Argus Cyber Security (Tel Aviv-founded, acquired by Continental AG in 2017): Argus provides vehicle cybersecurity products to multiple OEMs and publishes OEM partnership disclosures. Mazda does not appear in these disclosures as of 2023 ⁹. No confirmed relationship identified.
• Wiz (cloud security): Wiz’s enterprise customer disclosure pages have been reviewed. No Mazda entry identified ¹⁰.
• Palo Alto Networks, while co-founded by Israeli-born Nir Zuk, is a US-domiciled entity (Santa Clara, CA). No specific Mazda–Palo Alto Networks contract has been identified in Mazda’s disclosed vendor lists or public communications ⁴⁵⁶.

Procurement & Integrator Chain

No evidence has been identified of any systems integrator having introduced Israeli-origin technology into Mazda’s enterprise stack via indirect procurement pathways ². However, Mazda — consistent with most Japanese automotive OEMs — does not publicly disclose its full enterprise software and cybersecurity vendor stack below the level of major strategic partnerships. Tier-2 and Tier-3 vendor provenance therefore cannot be confirmed from open sources alone (see Evidence Gaps).

Mazda’s corporate governance and securities filings ⁶¹¹ disclose no Israeli-origin vendor relationships at any level of the enterprise stack reviewed.

Surveillance, Biometrics & Retail Technology

Facial Recognition & Biometric Deployment

No public evidence has been identified of Mazda deploying facial recognition, biometric identification, behavioural analytics, or gait analysis technologies — of Israeli origin or otherwise — in any operational context, including manufacturing facilities, retail dealership networks, or corporate premises ⁵¹². Source classes reviewed include: corporate sustainability reports ⁵, trade press, Israeli business press ¹², and vendor case study databases.

Specifically, no deployment of Israeli-origin biometric or surveillance platforms — including Trigo, BriefCam, AnyVision/Oosto, or Trax — has been identified in any publicly available Mazda disclosure, partner announcement, or third-party investigative report.

Predictive Analytics & Workforce Monitoring

No public evidence identified of Mazda using Israeli-origin predictive analytics, sentiment analysis, social media monitoring, or workforce surveillance tools in any disclosed operational deployment.

Third-Party & Indirect Deployment

No public evidence identified of Israeli-origin surveillance or analytics technologies reaching Mazda indirectly via third-party platform providers, managed security service providers, or bundled enterprise software suites. This layer remains opaque in public disclosures and constitutes a genuine evidence gap (see Evidence Gaps).

Cloud Infrastructure, Data Residency & Sovereign Cloud Participation

Data Centre Operations in Israel

No public evidence has been identified of Mazda operating, leasing, or co-locating data centre infrastructure within Israel. Mazda’s disclosed cloud strategy references Microsoft Azure as its primary connected-vehicle and enterprise cloud platform ³; no Israel-specific data centre arrangements are mentioned in any investor, sustainability, or regulatory disclosure reviewed ⁴⁵⁶¹¹.

Government Cloud Contracts & Project Nimbus

No public evidence identified of Mazda participating in Project Nimbus or any analogous Israeli state-backed cloud infrastructure programme. Mazda is an automotive OEM and does not operate as a cloud or managed service provider. Review of the OHCHR database ¹³, publicly accessible Israeli government procurement records, and Project Nimbus contract disclosures returned no Mazda entries.

Data Sovereignty & Resilience Services

No public evidence identified of Mazda marketing, licensing, or contracting data sovereignty infrastructure, resilience services, or classified-network technologies to any government body — including Israeli state institutions, Israeli defence ministries, or Israeli military bodies ⁴⁵⁶.

Connected Vehicle Platform Architecture

Mazda’s Azure-based connected car platform ³ may incorporate third-party security, analytics, or monitoring modules. The full platform architecture is not publicly documented, and the national-origin provenance of all embedded modules cannot be confirmed from open sources. No evidence of Israeli-origin components within this platform has been identified (see Evidence Gaps).

Defence, Intelligence & Security Sector Technology Relationships

Military & Intelligence Contracts

No public evidence has been identified of any contract, partnership, memorandum of understanding, or service agreement between Mazda Motor Corporation and the Israeli Ministry of Defence, Israel Defence Forces (IDF), Israeli intelligence agencies (including Mossad, Shin Bet, or Unit 8200-affiliated entities), or any other Israeli state security body ⁴⁵⁶¹³.

This finding is consistent with Mazda’s status as an automotive OEM. No defence or intelligence sector business line is disclosed in any regulatory filing reviewed, including Mazda’s Form 20-F equivalent Tokyo Stock Exchange securities report ⁶ and corporate governance report ¹¹.

Dual-Use Technology Provision

No public evidence has been identified of Mazda’s commercially available technology — including vehicle platforms, infotainment systems, driver assistance systems, or connected-vehicle infrastructure — being reported, confirmed, or documented as deployed for military, intelligence, or law enforcement surveillance within Israel or occupied territories ^13141516.

Source classes reviewed include: Who Profits Research Centre ¹⁴, OHCHR database ¹³, BDS National Committee databases ¹⁵, AFSC Screen Out tool ¹⁶, and Israeli defence procurement press.

Offensive Cyber & Weapons Technology

No public evidence identified. Mazda does not develop, sell, license, or maintain offensive cyber capabilities or digital weapons systems. This is consistent with all reviewed regulatory filings, which describe no defence or intelligence sector business activity ⁶¹¹.

Cybersecurity Vulnerability Disclosure Record

Two cybersecurity incidents are on the public record and are noted for completeness:

• A 2021 North American data breach affecting customer data was publicly disclosed and reported by specialist press ¹⁷. The remediation vendor stack engaged post-breach is not publicly documented; the identity of cybersecurity vendors involved is unknown from open sources (see Evidence Gaps).
• Infotainment system vulnerabilities in Mazda’s MZD Connect system were disclosed by automotive cybersecurity researchers and reported in specialist press in January 2024 ¹⁸. These disclosures relate to consumer product security posture, not to defence sector relationships.

Neither incident implicates Israeli-origin technology or Israeli state relationships.

AI, Algorithmic & Autonomous Systems

AI & ML Provision to State Bodies

No public evidence has been identified of Mazda providing artificial intelligence, machine learning, computer vision, or autonomous decision-support systems to Israeli state, military, or security bodies ⁴⁵⁶¹⁹.

Consumer-Facing AI & ADAS

Mazda’s publicly disclosed AI and autonomous systems R&D is directed exclusively at consumer road-vehicle applications. Disclosed programmes include:

• co-Pilot Assist driver assistance suite and the broader i-ACTIVSENSE advanced safety system family, as referenced in investor day presentations ¹⁹ and annual reports ⁴⁵.
• Connected-vehicle platform capabilities built on the Azure cloud infrastructure ³, encompassing over-the-air update capability, telematics, and vehicle data processing.

No provision of autonomous targeting systems, automated threat detection, or autonomous tracking technologies to any military or security force has been identified in any filing, press record, or NGO report reviewed ⁴⁵¹⁹.

Training Data & Model Development

No public evidence identified of Mazda’s AI models or platforms being trained on, or provided access to, civilian population data, intercepted communications, or surveillance-derived datasets originating from Israel or occupied territories ⁵¹⁹.

Automotive Cybersecurity Standards Participation

Mazda participates in the JASPAR (Japan Automotive Software Platform Architecture) automotive cybersecurity working group ²⁰ and is subject to ISO/SAE 21434 vehicle cybersecurity engineering compliance, as outlined in Society of Automotive Engineers of Japan (JSAE) compliance roadmap documentation ²¹. Both are industry-wide standards bodies with no Israeli state nexus.

Technology Ecosystem & R&D Footprint

Israeli R&D Centres & Offices

No public evidence has been identified of Mazda operating any research and development facility, engineering office, innovation lab, or accelerator programme within Israel. Start-Up Nation Central, which maintains a searchable database of multinational R&D centres in Israel, returns no entry for Mazda Motor Corporation ²². Israeli business press reviewed for Japanese automaker–Israel technology stories did not cite Mazda among active participants ¹².

For comparative context: Toyota (via its Woven Capital fund and direct startup engagement), Honda, and Nissan have each been cited in Israeli automotive technology press as having some engagement with Israeli mobility and autonomy startups ¹². Mazda was not cited in these reports, suggesting its absence from the Israeli technology ecosystem is consistent across multiple independent source classes.

Acquisitions & Strategic Investments

No public evidence has been identified of Mazda acquiring any Israeli-origin technology company or making a strategic investment in an Israeli technology startup or venture fund. Mazda’s disclosed M&A activity across annual reports and TSE securities filings ⁴⁵⁶ involves no Israeli entities.

Mazda’s primary disclosed strategic technology investment in this period involves the Mazda Toyota Manufacturing USA (MTMUS) joint venture ²³, a co-production facility in Huntsville, Alabama focused on vehicle manufacturing rather than technology development. Mazda’s broader strategic investments have been directed toward internal electrification and connected-car R&D ¹⁹.

Patent & Intellectual Property

A review of the Espacenet / EPO patent database for Mazda Motor Corporation co-filings with Israeli-domiciled entities or Israeli research institutions (including Technion–Israel Institute of Technology, Hebrew University of Jerusalem, and Weizmann Institute of Science) returned no evidence of co-filings, shared patent families, or disclosed licensing arrangements ²⁴. No co-development arrangements with Israeli academic institutions have been identified in any Mazda corporate disclosure.

Authorised Israeli Distributor — Colmobil Group

Mazda vehicles (including the CX-5 and Mazda3) are sold in Israel through Colmobil Group, an authorised importer listed on the Tel Aviv Stock Exchange, as reflected in Colmobil investor disclosures ²⁵. This is a standard commercial distribution arrangement for an automotive OEM operating in a market where it holds no direct subsidiary.

Colmobil Group independently operates its own IT and dealership management infrastructure. Whether Colmobil deploys Israeli-origin enterprise technology within the scope of its Mazda franchise operations is outside Mazda Motor Corporation’s disclosed corporate perimeter and could not be assessed from available records. This constitutes a genuine evidence gap (see Evidence Gaps).

Civil Society Scrutiny & Regulatory History

NGO & Academic Reports

• Who Profits Research Centre (Tel Aviv-based NGO documenting corporate involvement in the Israeli occupation economy): Does not list Mazda Motor Corporation as a profiling subject in its transportation/automotive sector database as of 2024 ¹⁴. No investigative report addressing Mazda’s technology relationships with the Israeli state has been identified.
• OHCHR UN Database of Businesses (2020, updated 2023): Mazda does not appear in the UN database of businesses engaged in specified activities related to Israeli settlements in the West Bank ¹³. Confirmed absence is noted explicitly; the database was last updated in 2023.
• American Friends Service Committee (AFSC) — Screen Out tool: No Mazda-specific entry related to Israeli technology provision has been identified ¹⁶.
• No NGO investigation, academic study, or UN report specifically addressing Mazda’s technology relationships with the Israeli state was identified across all source classes reviewed.

Boycott, Divestment & Sanctions Campaigns

No public evidence identified of Mazda being the subject of any organised boycott, divestment, or sanctions campaign specifically related to technology provision to Israel or operations in occupied territories. The BDS National Committee’s published target lists and campaign databases do not include Mazda ¹⁵. Source classes reviewed include: BDS Movement website, AFSC Screen Out ¹⁶, Who Profits ¹⁴, Palestinian BDS campaign records, and academic BDS literature.

Regulatory & Legal Actions

No public evidence identified of regulatory inquiries, legal challenges, export control actions, or sanctions-related investigations involving Mazda’s technology sales or services to Israeli state entities. Mazda’s disclosed regulatory exposure — as reflected in its Tokyo Stock Exchange securities reports and governance disclosures ⁶¹¹ — relates exclusively to automotive safety recalls, emissions compliance, and trade/tariff matters. No technology-export enforcement action involving Mazda and Israel has been identified in any jurisdiction.

Evidence Gaps

The following lines of inquiry could not be resolved from available public evidence and represent genuine gaps that would require additional research methods to address:

1. Tier-2 and Tier-3 IT vendor disclosure: Mazda does not publicly disclose its full enterprise software and cybersecurity vendor stack below the level of major strategic partnerships. Absence from named public disclosures does not constitute confirmed absence from internal procurement lists ⁴⁵.
2. MSSP subcontractor provenance: NTT Data and other identified IT partners may themselves subcontract to cybersecurity vendors of Israeli origin (e.g., in endpoint detection or threat intelligence feeds). No public evidence of such subcontracting has been identified, but this layer is not independently verifiable from open sources ².
3. Connected vehicle platform module stack: Mazda’s Azure-based connected car platform ³ may incorporate third-party security, analytics, or monitoring modules whose national-origin provenance is not publicly disclosed. The full platform architecture is not publicly documented.
4. Post-breach remediation vendors (2021–present): Following the disclosed 2021 North American data breach ¹⁷, Mazda’s remediation and subsequent cybersecurity vendor selections are not publicly documented. The identity of any cybersecurity vendors engaged post-breach is unknown from open sources.
5. Colmobil Group technology stack: Mazda’s authorised Israeli distributor ²⁵ independently operates IT and dealership management infrastructure outside Mazda’s disclosed corporate perimeter. Whether Israeli-origin enterprise technology is deployed in that context cannot be assessed from available records.
6. Japanese-language corporate disclosures: Mazda files detailed Japanese-language securities reports and procurement disclosures with the Tokyo Stock Exchange and Japanese regulatory bodies that may contain vendor-level detail not reproduced in English-language summaries. A full Japanese-language document review was not conducted within the scope of this audit.

End Notes