Essay on Policay Statement for Tucker Inc.

840 Words 4 Pages
POLICY STATEMENT

1. Information Services (Tucker Inc.) Responsibility—All Tucker Inc. employees who come into contact with sensitive Tucker Inc. internal information are expected to familiarize themselves with this data categorization policy and to consistently use these same ideas in their daily Tucker Inc. business activities. Sensitive information is either Confidential or Restricted information, and both are defined later in this document. Although this policy provides overall guidance, to achieve consistent information protection, all employees are expected to apply and extend these concepts to fit the needs of day-to-day operations. This document provides a conceptual model for Tucker Inc. for classifying information based on its
…show more content…
POLICY STATEMENT

1. Information Services (Tucker Inc.) Responsibility—All Tucker Inc. employees who come into contact with sensitive Tucker Inc. internal information are expected to familiarize themselves with this data categorization policy and to consistently use these same ideas in their daily Tucker Inc. business activities. Sensitive information is either Confidential or Restricted information, and both are defined later in this document. Although this policy provides overall guidance, to achieve consistent information protection, all employees are expected to apply and extend these concepts to fit the needs of day-to-day operations. This document provides a conceptual model for Tucker Inc. for classifying information based on its sensitivity, and an overview of the required approaches to protect information based on these same sensitivity categorizations.

2. Addresses Major Risks - The Tucker Inc. data categorization system, as defined in this document, is based on the concept of need to know. This term means that information is not disclosed to any person who does not have a legitimate and demonstrable business need to receive the information. This concept, when combined with the policies defined in this document, will protect Tucker Inc. information from unauthorized disclosure, use, modification, and deletion.

3. Applicable Information - This data categorization policy is applicable to all electronic information for which Tucker Inc. is the custodian.
Open Document