×
Menu

Information security

 

Introduction

The PCI-PAL (UK) Limited (“The Organisation”) Information Security Policy applies to all business functions within the scope of the Information Security Management System and covers the information, information systems, networks, physical environment and people supporting these business functions.  This document states the Information Security objectives and summarises the main points of the Information Security Policy.
 

Objective

The objective of Information Security is to ensure business continuity and minimise business damage by preventing and minimising the impact of security incidents.  In particular, information assets must be protected in order to ensure;
 
1.     Confidentiality i.e. protection against unauthorised disclosure
2.     Integrity i.e. protection against unauthorised or accidental modification
3.     Availability as and when required in pursuance of the Organisation’s business objectives.
 

Responsibilities

 
This Information Security Policy is regularly reviewed and may be amended by the Directors in order to ensure its continuing viability, applicability and legal compliance, and with a view to achieving continual improvement in the Information Security Systems.
The online help was made with Dr.Explain