Questions
- No
- Yes
- Not Applicable
Resources
Download: IT_Security_Policy_Template.doc
- No
- Yes
- Not Applicable
- No
- Yes
- Not Applicable
Does your organisation have appropriate technical and organisational security measures?
- No
- Yes
- Not Applicable
Does your website have a SSL certificate?
- No
- Yes
- Not Applicable
Has your organisation assessed the risks involved in processing data and how to mitigate those risks?
- No
- Yes
- Not Applicable
What safeguards does the organisation have in place to protect data both electronic and paper data?
- No
- Yes
- Not Applicable
Does the organisation have a plan for dealing with security issues and a gap plan?
- No
- Yes
- Not Applicable
Are industry standard encryption algorithms and technologies employed for transferring, storing, and receiving individuals sensitive personal information?
- No
- Yes
- Not Applicable
Are steps taken to pseudonymise personal data where possible?
- No
- Yes
- Not Applicable
Can the availability and access to personal data be restored in a timely manner in the event of a physical or technical incident?
- No
- Yes
- Not Applicable
Recommended Actions
An organisation should ensure they have the correct Data security policies and procedures in place including being able to deal with Data Security issues.
- Completed
- Not Applicable
- In Progress
An organisation shall conduct a review of their Data Security Policies on a regular basis.
- Completed
- Not Applicable
- In Progress