Monday, October 28, 2019

Data Security


Requirements for Back-up, Record Keeping /Archiving

  • Inability to readily undertake an audit due to the loss of information or bad archiving.
  • Lack of back-up routines
  • Lack of satisfactory procedures for the archiving of the applicant’s records and information.
  • Deliberate destruction or loss of relevant information

Back-up, Record Keeping /Archiving - Solution

 IT security - ISO 27001 certification

Procedures for back-up, recovery and data protection against loss;

  • Backups should be done daily, on either incremental or full basis.
  • Full backups should be done at least once a week.
  • Min. of three latest backups should be available at all times.
  • Backups are preferably done remotely through an electronically secure method on a storage facility located at least 300 meters away. 
  • Encryption key should also be backed up and stored away from the storage facility.


Contingency plans to cover systems disruption/failure

Provision of Data Classification scheme

at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Featured Post

PLASTIC - EPR (Extended Producer Responsibility)

  Plastic is a miracle material. Thanks to plastics, countless lives have been saved in the health sector, and safe food storage has been re...

  • List of AEO documents required for AEO Application
    During the preliminary scrutiny of AEO application , the following necessary supporting document / Standard Operating Procedure (SOPs) are...
  • AEO Benefit
    The scope of the benefits to the AEOs based on their categories would be as mentioned below: AEO Benefit -  for AEO-T1,  AEO-T2,  A...