1. Data Management
INTOB GLOBAL ensures secure management of all business and operational data. The company follows a structured approach to data storage, access control, and backup procedures.
Data Storage:
INTOB GLOBAL uses a third-party cloud service provider to store and manage all data securely.
The service provider’s server room is used for hosting, not an in-house data center.
Data is encrypted and protected with multi-layer security.
2. Service Provider Access & Security Controls
When third-party service providers perform maintenance services, their access is strictly controlled:
Access Authority:
Maintenance providers do not have unrestricted access to company data.
Only authorized personnel can grant temporary access.
Security Measures:
Access is monitored and logged to prevent unauthorized access.
Virus and malware detection tools are enabled to mitigate risks.
Maintenance Duration:
Service providers are given a predefined time window to perform maintenance.
Any suspicious activity is flagged and reported.
3. Data Retention & Backup Policy
Old Data Storage:
Archived data is securely stored in a separate cloud repository with restricted access.
Data older than 5 years is deleted unless required for legal or business purposes.
Backup Policy:
Backups are performed daily and stored in an offsite location.
Backup retention period: 3 years.
Only authorized IT personnel can access backup files.
4. Service Provider Contracts
Contractual Agreements:
All third-party service providers sign a Data Protection Agreement (DPA).
Scope of work includes network security, server maintenance, and data protection.
Any breach of contract results in immediate termination and legal action.
5. Information Security & Risk Management
Security Framework:
INTOB GLOBAL follows ISO 27001 security guidelines.
Risk assessments are conducted quarterly.
Access Control:
Employees are assigned role-based access.
Resigned employees’ accounts are immediately deactivated.
6. Anti-Virus Policy & Server Configuration
Anti-Virus Measures:
Company systems are protected with real-time scanning.
Updates for virus definitions occur every 24 hours.
Anti-virus client checks run weekly.
Server Security:
Servers are configured with firewall protection and intrusion detection.
Only authorized administrators have access to server settings.
7. Compliance & Review
This IT Policy is reviewed annually and updated to align with industry standards.
Employees are required to adhere strictly to these policies.
