Statement of Intent Information Security Policy
The Information Security Policy for LA NET Limited is reviewed and updated on a continuing basis to exercise due care and due diligence to protect the Information Systems from unauthorised access, use, disclosure, destruction, modification, disruption or distribution. This will ensure that our reputation with our partners, clients, and all related interested parties is maintained through confidentiality, integrity and availability.
Senior Management will ensure commitment to business, legal, regulatory, applicable requirements and contractual security obligations are taken into account. Risk Assessments against agreed criteria is continually undertaken.
The Directors bear the responsibility for establishing and maintaining the system and undertakes to ensure its integrity is maintained through instruction, policies and training of its employee and that each employee has an understanding of what is required of them.
Equally every employee has a personal responsibility to maintain this integrity.
Furthermore, the Management will ensure any contractor employed for a particular function will meet the requirements specified and accept responsibility for their actions.
LA NET Limited has a Policy of Continual Improvement and Objective setting in line with the ISO 27001:2022 Standard requirements.
Objectives and Targets are set to meet the requirements of this policy and are reviewed regularly at management reviews to enable continual improvement. The policy will be made available to interested parties as appropriate.
The Information Security Management System will be monitored regularly under the Management Team’s ultimate responsibility with regular reporting of the status and effectiveness at all levels.
Review Date: 11th November 2023