Information Security Policy

Logicc Systems Ltd – Information Security Policy

Effective Date: 1st January 2025

1. Purpose
This policy outlines the commitment of Logicc Systems Ltd to protect the confidentiality, integrity, and availability of information assets related to our website and services.

2. Scope
This policy applies to all employees, contractors, and third-party vendors involved with the development, maintenance, and support of the Logicc Systems Ltd website and related systems.

3. Information Security Principles

  • Protect sensitive and proprietary information against unauthorized access, disclosure, alteration, or destruction.
  • Ensure the security of data transmitted and stored on our systems.
  • Maintain the availability of our website and services for users.
  • Comply with applicable legal, contractual, and regulatory requirements.

4. Roles and Responsibilities

  • Management: Ensure the implementation and continuous improvement of security measures.
  • Employees and Contractors: Follow security procedures and report any security incidents or vulnerabilities.
  • Information Security Contact[email protected], responsible for handling security-related queries and incidents.

5. Security Measures

  • Use strong, unique passwords and enable multi-factor authentication where possible.
  • Keep all software and systems up to date with the latest security patches.
  • Regularly back up critical data and verify backup integrity.
  • Restrict access to sensitive information based on role and necessity.
  • Implement secure development practices, including code reviews and security testing.

6. Incident Management
Any security incident, vulnerability, or suspicious activity must be reported immediately to the security contact at [email protected]. An incident response plan will be enacted to address and mitigate the issue.

7. Training and Awareness
All staff will receive regular training on information security best practices and the importance of maintaining a secure environment.

8. Review and Maintenance
This policy will be reviewed annually or following significant security events or organizational changes to ensure continued effectiveness.

Contact
For questions or to report security concerns, contact: [email protected]