Policy
defines how to treat Credit Card, Social Security, Employee, and
Customer Data. The policy is 15 pages in length. This policy
complies with Sarbanes Oxley Section 404.
This
policy applies to the entire enterprise, its vendors,
its suppliers (including outsourcers) and co-location providers and
facilities regardless of the methods used to store and retrieve
sensitive information (e.g. online processing, outsourced to a third
party, Internet, Intranet or swipe terminals).
Individual
Policies
All of the policies that are provided
here are contained within one or more of the templates that are on
this site. These policies have been added as individual documents in
WORD format for those clients who just need this particular policy.
All policies are Sarbanes-Oxley compliant
Internet, E Mail and Electronic
Communication Policy
- This policy is six page in length and
covers:
Appropriate use of equipment
Internet access
Electronic Mail
Retention of e-mail on personal
systems
E-mail and business records
retention
Copyrighted materials
Ownership of information
Security
Travel and Off-Site Meeting Policy
-
Protection of data and software is often is complicated by the fact
that it can be accessed from remote locations. As individuals travel
and attend off-site meetings with other employees,
contractors, suppliers and customers data and software can be
compromised. This policy is four page in length and covers:
Data and application security
Minimize attention
Shared public resources
Off-site meeting special
considerations
Outsourcing Policy
- This
policy is seven page in length and covers:
