The purpose of this policy is to establish guidelines for the retention and protection of Jivrus Technologies' data.
This policy applies to all Jivrus Technologies' data, including but not limited to customer data, employee data, financial data, and intellectual property.
a. Retention Period:
i. The retention period for Jivrus Technologies' data will be based on legal, regulatory, and business requirements.
ii. Data that is no longer needed will be disposed of in a secure and timely manner.
iii. Jivrus Technologies will maintain records of data retention schedules and data destruction activities.
b. Storage and Backup:
i. Data is stored with industry-standard security measures to protect user data from unauthorized access, use, disclosure, modification, or destruction.
ii. Data backups will be performed on a regular basis to ensure the availability and integrity of Jivrus Technologies' data.
iii. Backup data will be securely stored and protected from unauthorized access.
iv. Backup data will be retained for a period of time-based on legal, regulatory, and business requirements.
i. Archiving of Jivrus Technologies' data will be done to ensure compliance with legal, regulatory, and business requirements.
ii. Archived data will be securely stored and protected from unauthorized access.
iii. Archived data will be retained for a period of time based on legal, regulatory, and business requirements.
a. Access Control:
i. Access to Jivrus Technologies' data will be limited to authorized personnel and based on a need-to-know basis.
ii. Access to data will be granted and revoked in accordance with Jivrus Technologies' access control policies.
b. Data Security:
i. Jivrus Technologies' data will be protected against unauthorized access, disclosure, and modification.
ii. Technical and administrative controls will be used to protect data, such as encryption, access controls, and monitoring.
iii. Jivrus Technologies will periodically assess the effectiveness of its data protection measures and update them as necessary.
c. Data Disposal:
i. Jivrus Technologies will dispose of data in a secure manner when it is no longer needed.
ii. Disposal methods will ensure that data is irrecoverable and cannot be accessed by unauthorized personnel.
i. Security personnel will be responsible for ensuring that Jivrus Technologies' data is protected from unauthorized access, disclosure, and modification.
ii. Security personnel will be responsible for implementing and maintaining data protection measures.
iii. Security personnel will be responsible for ensuring that data is disposed of in a secure manner when it is no longer needed.
Data Classification: Jivrus Technologies' data will be classified into levels based on its sensitivity and confidentiality, and appropriate access control and protection measures will be implemented accordingly.
Incident Response: Jivrus Technologies will have an incident response plan in place to respond to any data breaches or security incidents promptly and effectively.
Employee Training: Jivrus Technologies will provide regular training and awareness programs to its employees regarding data retention and protection policies, procedures, and best practices.
Third-party Service Providers: Jivrus Technologies will ensure that third-party service providers who have access to its data comply with its data retention and protection policies and procedures.
Personnel found to have violated this policy may be subject to disciplinary action, up to and including termination of employment, and related civil or criminal penalties.
Any vendor, consultant, or contractor found to have violated this policy may be subject to sanctions up to and including removal of access rights, termination of the contract(s), and related civil or criminal penalties.
Changes to this Policy
Jivrus Technologies may update this policy from time to time to reflect changes in our business practices or legal requirements.
Jivrus Technologies takes data security and privacy seriously. We are committed to ensuring the security and confidentiality of your data and complying with data protection regulations.
If you have any questions or concerns about this Security Policy, please contact us.