This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
wiki:policies:infosec [2023/08/30 15:12] katcow |
wiki:policies:infosec [2023/12/13 21:15] (current) kholub |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Information Security | + | ====== Information Security |
===== Information Security Organization ===== | ===== Information Security Organization ===== | ||
Line 43: | Line 43: | ||
==== Data Protection Officer (DPO) ==== | ==== Data Protection Officer (DPO) ==== | ||
- | The DPO, responsible for approving data processing projects, is Karl Holub. | + | The DPO, responsible for reviewing and approving data processing projects, is Karl Holub. |
+ | |||
+ | In brief, the DPO: | ||
+ | |||
+ | * Is made available for all product & support teams, for reporting & planning any changes to data processing | ||
+ | * Monitors for changes that are of consequence to our data processing policies, including: | ||
+ | * Code changes and releases | ||
+ | * Third party vendors & subprocessor additions | ||
+ | * Internal tooling & workflow changes | ||
+ | * Monitors subprocessor communications for terms and conditions and subprocessor updates | ||
+ | * Maintains records of compliance, associated directly with the issue tracker, processor record | ||
+ | * Reports to the CEO on activities and compliance on a regular basis | ||
**DPO Email: | **DPO Email: | ||
Line 86: | Line 97: | ||
Employee training requirements are based on the [[https:// | Employee training requirements are based on the [[https:// | ||
+ | |||
+ | ==== Communicating Updates ==== | ||
+ | |||
+ | As [[: | ||
====== Backup Plan ====== | ====== Backup Plan ====== | ||
Line 135: | Line 150: | ||
^Author^Date of Revision/ | ^Author^Date of Revision/ | ||
|K. Cowie|11/ | |K. Cowie|11/ | ||
- | |K. Holub|05/26/2023|Off provider database back ups| | + | |K. Holub|12/13/2023|Better defining DPO role| |
|K. Kallmes|11/ | |K. Kallmes|11/ | ||
|P. Olaniran|11/ | |P. Olaniran|11/ |