Confidentiality: We will protect the confidentiality of all information assets by ensuring that only authorised individuals have access to them.

Integrity: We will maintain the integrity of all information assets by ensuring that they are accurate, complete, and secure.

Availability: We will ensure the availability of all information assets by ensuring that they are accessible to authorised individuals when needed.

Compliance: We will comply with all relevant laws, regulations, and industry standards related to information security.

Access Controls: We will implement access controls to ensure that only authorized individuals have access to our information assets.

Encryption: We will use encryption to protect the confidentiality and integrity of our sensitive information assets.

Incident Management: We will have an incident management process in place to respond to any security incidents in a timely and effective manner.

Backup and Recovery: We will regularly back up and securely store our information assets to ensure their availability in the event of a disaster or data loss.

Security Awareness: We will provide regular security awareness training to all employees, contractors, and stakeholders to ensure they are aware of their roles and responsibilities in maintaining information security.

Management: Our management team will be responsible for ensuring that the ISMS policy is implemented and enforced.

Employees and Contractors: All employees and contractors are responsible for complying with the ISMS policy and reporting any security incidents or concerns.

Stakeholders: Our stakeholders are responsible for protecting the confidentiality, integrity, and availability of our information assets.