Back

ICT SECURITY POLICY

Purpose

This policy sets out the overarching policy framework for The Haven’s use of ICT. As technology is an intrinsic part of our culture and has changed the way we collect, store and retain information. This policy sets out the working practice of our staff and volunteers when using ICT and the security measures in place to protect sensitive data.

  • The Haven has 1 laptop, if the laptop for any reason needs to go off site the laptops are encrypted although this should be avoided as much as possible.
  • Any who have access to the laptop and will have their own log-in details which are password protected, and they are not to share their password with anyone else. These passwords are changed on a regular basis.
  • Documents containing sensitive data are only held by the Project Manager and only shared on a need to know basis with other members of the team.
  • All data is backed up weekly by the Project Manager onto an encrypted memory stick which is stored in a locked filing cabinet offsite.
  • If there is a breach of security, due to a break in or otherwise the Chair of Trustees and project manager will be informed immediately and will take appropriate steps to resolve the situation quickly.