This policy addresses how <COMPANY NAME> manages information assets that employees utilize in the office and at remote locations.
Purpose
This policy aims to define individual responsibilities for information asset safeguarding and provide a standard classification system that is followed by all staff and users, ensuring that information assets are protected and sensitive information assets are classified in accordance with <Company Name> requirements.
Format: MS WORD
Description:
- This Procedure applies to all documents in the Information Security Management System (ISMS) and IT service management system that is created, distributed, and retained for information and action (ITSM).
- This policy applies to all employees and users of Company Name>.
GDPR Template Includes the Following :
1. IntroductionÂ
2. PurposeÂ
3. Objectives of This PolicyÂ
4. ScopeÂ
5. Classification of Information AssetsÂ
6. Roles and ResponsibilitiesÂ
6.1 Data ownerÂ
6.2 Data custodiansÂ
6.3 Data userÂ
7. Information LabellingÂ
8. Classification Sensitivity Criteria – Information AssetÂ
9. Electronic Protected Health Information (ePHI)Â
10. Payment Card Information (PCI)Â
11. Classification GuidelinesÂ
12. Information Handling GuidelinesÂ
13. Record ManagementÂ
Â
Use collapsible tabs for more detailed information that will help customers make a purchasing decision.
Ex: Shipping and return policies, size guides, and other common questions.