Information
Management Policy

Last Update: May 26, 2023
Random Meeting
Reportabilidad
Reconocimiento
Feedack
Wellness
  • Prueba sin costo
  • Instalación en 1 minuto
  • Soporte 24/7
Introduction

Burnout-Zero recognizes the critical importance of effectively managing information to ensure its confidentiality, integrity, and availability. This policy establishes guidelines for the responsible and secure handling of information within the organization.

Scope

This policy applies to all employees, contractors, and third parties who have access to Burnout-Zero's information assets.It encompasses all forms of information, including but not limited to electronic data, physical documents, and verbal communications.

Information Classification

Information is classified based on its sensitivity and criticality, using a defined classification framework.Classification levels determine appropriate access controls, handling procedures, and protection measures.

Information Handling

Employees shall handle information with care, ensuring its protection from unauthorized access, disclosure, alteration, or destruction.Access to information shall be granted on a need-to-know basis, following the principle of least privilege.

Information Security

Technical and organizational security measures are implemented to safeguard information assets against unauthorized access, cyber threats, and data breaches.Regular vulnerability assessments, security audits, and risk assessments shall be conducted to identify and mitigate potential security risks every 3 months.

Compliance and Legal Requirements

Burnout-Zero is committed to data regulations and industry standards relating to information management, privacy, and data protection. Personal data shall be collected, processed, and stored in accordance with relevant data protection laws and regulations.

Incident Reporting and Response

Mechanisms for reporting security incidents or violations of the information management policy shall be established, ensuring appropriate corrective and preventive measures are taken.

Integration with Slack

Burnout-Zero integrates with Slack to enhance communication and collaboration among employees.The following permissions are required for the integration:

app_mentions:read
channels:history
chat:write
groups:history
im:history
im:read
im:writemp
im:history
users.profile:read
users:write
channels:read
users:read
users:read.email
commands
groups:read
chat:write.customize
mpim:read

Monitoring and Review

Burnout-Zero shall regularly monitor and review the effectiveness of this information management policy to ensure its ongoing suitability and compliance.Any updates or changes to the policy shall be communicated to all relevant stakeholders.

Training and Awareness

Burnout-Zero is committed to providing adequate training and awareness programs to all employees regarding information management best practices, security protocols, and their responsibilities. Administrative users will have training on our onboarding process.      

Policy Violations

Violations of this policy may result in disciplinary action, up to and including termination of employment or contract, in accordance with Burnout-Zero's disciplinary procedures.

Policy Ownership and Contact

The Chief Information Officer (CIO) is responsible for the ownership and oversight of this information management policy.For any questions or clarifications regarding this policy, please contact the CIO or the designated information security representative.By adhering to this Information Management Policy, Burnout-Zero aims to ensure the confidentiality, integrity, and availability of its information assets. This policy serves as a foundation for creating a secure and efficient information management environment within the organization.

Effective Date: 22/04/2023

Review Date: 22/04/2024

Approved by: Pablo Yáñez - CEO Burnout-Zero