Starting points. In determining the Information Security Policy, the starting point is to limit the risks which NautaDutilh runs in its information provision by: • Creating awareness in the organisation on the use of information, ICT resources and ICT information systems; • Taking proper measures of an organisational, logical and physical nature; • Discovering and reporting Information Security incidents in good time; • Limiting the damage caused; • Restoring to the original condition; • Making the data owner primarily responsible for its data; • Classifying data; • Restricting a person’s access to information to data that is absolutely necessary for the performance of that person’s job; • Ensuring all employees comply with the Information Security Policy.
Appears in 2 contracts
Sources: Deposit Agreement, Deposit Agreement