 |
The confidentiality and protection of corporate and customer information will be assured; |
 |
Sensitive information ( however stored ) will be protected against unauthorized access; |
 |
The integrity of information and controls will be maintained; |
 |
Information will be made available to authorized business processes and employees only, when required; |
 |
Regulatory and legislative requirements will be met; |
 |
Business continuity plans for mission critical activities will be produced, maintained and tested; |
 |
Information security training will be made available to all staff; |
 |
The Company will comply with Standard 27001 for information security; and |
 |
All breaches of information security, actual or suspected, will be reported to and investigated, and appropriate action taken by Company security personnel. |
| |