Information Ownership, Classification and Handling Policy

Information Ownership, Classification and Handling Policy

The Information Ownership, Classification and Handling Policy sets out the control objectives and minimum standards for the ownership, classification and handling of all forms of information. These are necessary to ensure that the right level of information security protection is applied to the information managed by the Company.

The requirements for the protection of Company’s information, as laid down in the applicable Company policies and information security standards, must also be stipulated by contract and fulfilled where external partners and third parties, including any consultants, contingent workers, contractors or service providers, provide services for, or on behalf of, Company.

CONTENT

1. OVERVIEW
1.1 PROCEDURE OWNER
1.2 CLASSIFICATION
1.3 APPLICABLE REGULATIONS
1.4 RELATED [COMPANY] NORMS AND PROCEDURES
1.5 OBJECTIVES
1.6 AUDIENCE AND SCOPE
1.7 DOCUMENT SUPPORT
2. DEFINITIONS & ABBREVIATIONS
3. OWNERSHIP AND RESPONSIBILITIES
3.1 OWNERSHIP
3.2 INFORMATION OWNER RESPONSIBILITIES
4. CLASSIFICATION
4.1 KEY PRINCIPLES
4.2 CLASSIFICATION LEVELS
4.3 INFORMATION TYPES (INFORMATION CLASSIFICATION)
5. LABELING
6. INFORMATION HANDLING AND PROTECTION
6.1 INFORMATION HANDLING
6.2 SELECTION OF PROTECTION MEASURES
6.3 INFORMATION PROTECTION CONTROLS ON SYSTEMS
6.4 EXCHANGES OF INFORMATION WITH THIRD PARTIES
6.5 INFORMATION CUSTODIANSHIP BY IT
7. COMPLIANCE WITH THIS POLICY
8. EXCEPTIONS
9. FINAL CONSIDERATIONS
9.1 DISCIPLINARY ACTIONS AGAINST PROCEDURE VIOLATION
9.2 DOCUMENT REVISION
10. APPENDIX 1: CLASSIFICATION GUIDANCE

Pages: 22

Review Information Ownership, Classification and Handling Policy.

Your email address will not be published. Required fields are marked *

Related Products:

€1,719.99

Purchase

This bundle contains all the products listed in the Data Governance section. Take advantage of the 25% OFF when buying the bundle!

€49.99

Purchase

The Information Security Strategy and General Principles outlines the information security strategy and the principles defined by Senior Management that are used to establish the Company Information Security Framework.

€49.99

Purchase

This objective of this standard is to document the security requirements for Windows SQL Server Configuration.

Get  Your Free Sample

Please use the form below to subscribe to our list and receive a free procedure template!
GET YOUR FREE TEMPLATE
>
close-link