It is the policy of Lucid Systems Ltd to maintain an information management system designed to meet the requirements of ISO 27001:2013 in pursuit of its primary objectives, the purpose and the context of the organisation.
It is the policy of Lucid Systems Ltd to:
This information security policy provides a framework for setting, monitoring, reviewing and achieving our objectives, programmes and targets.
To ensure the company maintains its awareness for continuous improvement, the business management system is regularly reviewed by “Top Management” to ensure it remains appropriate and suitable to our business. The Business Management System is subject to both internal and external annual audits.
Scope of the Policy
The scope of this policy relates to use of the database and computer systems operated by the company in pursuit of the company’s business of providing IT services. It also relates where appropriate to external risk sources including functions which are outsourced.