...
If third-parties are storing or processing confidential data, their physical and environmental security controls should meet the requirements of the CloudCard Physical Security Policyshall be sufficient to prevent unauthorized physical access to systems processing or storing CloudCard data.
Human Resources
Third-parties maintain human resource policies and processes which include criminal background checks for any employees or contractors who access CloudCard confidential information.
...
Any known violations of this policy should be reported to the Managing Director. Violations of this policy can result in immediate withdrawal or suspension of system and network privileges and/or disciplinary action in accordance with company procedures up to and including termination of employment.
Version | Date | Description | Author | Approved by |
1.0 | 2023-03-26 | First Version | Ryan Heathcote | Luke Rettstatt |
2.0 | 2024-08-02 | Annual Review | Ryan Heathcote | Luke Rettstatt |