Please describe the means by which your organization accomplishes that.
Please upload evidence from a protection consultant or company of their existence.
Is your organization prepared for damage to computers and IT equipment caused by flooding, fire, power loss, etc.?
Please describe the preparations that have been made to prevent and recovery from damages.
Does your organization have a process to handle customer data after it is no longer needed for business purposes?
Please describe how you handle customer data once it is no longer relevant.
Which type of shredder and/or shredding company is used for shredding paper and/or destroying media?
Please upload the relevant policy.
Does your organization have a formal process for limiting physical access to areas such as: communications rooms, server rooms, and industrial areas?
Please enter the name and model of the surveillance system.