The Generic Policies include a combination of the following forms/policies:

  • Breach Notification Procedure /Security Incident Management Procedure
  • Data and Record Retention and Disposal Policy
  • Data Encryption Management Policy
  • Data Subject Access Request Policy
  • Data Subject Discloser Form
  • Data Subject Consent Withdrawal Form
  • Data Subject Consent Form
  • Information Incident Management Policy
  • Information Security Policy
  • Information, Data Management and Control Policy
  • IT Mobile and Personal Device Management Security Policy
  • Password Management Policy
  • Physical Access and Security Policy
  • Privacy Statement & Privacy Policy
  • Information Asset Classification and Handling Management Policy
  • Removable and Mobile Storage Device Handling Policy