The data protection policy will outline the standards for protecting corporate data from any risk that it may be exposed to. Data protection mechanisms allow information to be provided a greater level of security than can be achieved with system-based protection mechanisms alone. Without data protection mechanisms, the potential exists that information assets could be exposed to an unnecessarily high level of risk, particularly in circumstances where data is taken out of the corporate information system. The data protection policy will provide the standards for ensuring that all corporate data is properly protected at all times.
Risks Addressed by Policy:
- Breach of confidential corporate data.
- Unauthorized or unintended data transfer.
- Inaccurate or incomplete data.