The data access policy allows for companies to provide data to employees who have legitimate need for it while maintaining their responsibility to preserve and protect such information. Companies are the owners of all corporate data and individual units and departments may have stewardship responsibilities for portions of that data. The value of this data is diminished through misuse, misinterpretation, unnecessary restrictions to its access, or failure to maintain quality. The data access policy provides a measure to outline the expectations while accessing corporate data and protecting said data against misuse and unauthorized access.
Risks Addressed by Policy:
- Breaches of unpublished corporate data.
- Theft of confidential and private data of individuals.
- Public misrepresentation of corporate data.