Do you have a written Information Security Policy? Jonathan van Driessen February 03, 2021 11:14 Updated Yes, you can find it here. It is compliant with ISO-27001. Our Information Security Policy is reviewed yearly or ad-hoc if it's impacted by a significant change in the organisation or the service. Related articles Does DESelect process protected health information (PHI) or any data covered by the Health Insurance Portability and Accountability Act? Do you have a physical security policy in place ? Do you know how personal data is stored, processed, shared and used within your organization? Have you appointed a Data Protection Officer? Do you have an impact assessment process in place (one that will be applied and documented for each process that presents a risk)? Comments 0 comments Please sign in to leave a comment.