The Generic Policies include a combination of the following forms/policies:
- Breach Notification Procedure /Security Incident Management Procedure
- Data and Record Retention and Disposal Policy
- Data Encryption Management Policy
- Data Subject Access Request Policy
- Data Subject Discloser Form
- Data Subject Consent Withdrawal Form
- Data Subject Consent Form
- Information Incident Management Policy
- Information Security Policy
- Information, Data Management and Control Policy
- IT Mobile and Personal Device Management Security Policy
- Password Management Policy
- Physical Access and Security Policy
- Privacy Statement & Privacy Policy
- Information Asset Classification and Handling Management Policy
- Removable and Mobile Storage Device Handling Policy
