Security Policy

1. Introduction

This policy outlines our commitment to ensuring the security of information, systems, and networks that we use to provide services to our customers. We adhere to the UK’s Network and Information Systems (NIS) Regulations and the Data Protection Act 2018 to improve our cyber security and protect personal data.

2. Scope

This policy applies to all employees, contractors, and third parties who interact with our information systems and networks.

3. Information Security Objectives

Our objectives are to protect the confidentiality, integrity, and availability of our information assets, and to comply with applicable laws and regulations, including the UK Data Protection Act and the General Data Protection Regulation (GDPR).

4. Roles and Responsibilities

All employees, contractors, and third parties are responsible for understanding and adhering to this policy. Specific roles and responsibilities related to information security are defined and assigned.

5. Risk Management

We will regularly assess and manage risks to our information assets to ensure they are protected against threats.

6. Access Control

Access to our information systems and networks will be controlled based on the principle of least privilege. Users will only be granted access to the information they need to perform their job functions.

7. Incident Management

We will have procedures in place to respond to and recover from information security incidents.

8. Training and Awareness

All employees will receive regular training and awareness activities to understand the importance of information security and their role in protecting our information assets.

9. Compliance

We will regularly review and audit our compliance with this policy and applicable laws and regulations. We adhere to the UK’s updated cyber laws to boost our resilience against online attacks

10. Policy Review

This policy will be reviewed at least annually or whenever significant changes occur to ensure it remains effective and relevant.

Legal Credits

This product has been conceptualised and brought to life using free open-source software. It is the result of the dedicated efforts of the team at Freelance Information Company.

Freelance Information Company is the sole proprietor of all branding elements associated with this product. All intellectual property rights, including but not limited to, the design, functionality, and user interface, are the exclusive property of Freelance Information Company.

Any reproduction, distribution, or unauthorized use of these elements is prohibited without the express written consent of Freelance Information Company.