Information Security Policy
principles
The information security policy is based on the following principles:
- TRA Dačice accepts the global TRA Information Security.
- TRA Dačice assumes and tolerates risks provided that risks are monitored and managed when necessary.
- TRA Dačice will provide funding for information security
- TRA Dačice will take measures that eliminate risks, or reduce them to an acceptable level.
- All TRA Dačice employees are aware of and are responsible for the security of information related to their job title.
- In the overall management of IT/ICT, the possibilities of the risk of fraud or illegal actions connected with the misuse of IT/ICT are taken into account and are strictly prevented.
- Any measures that would violate the provisions of the laws are not tolerated.
RESPONSIBILITIES
The Information Security Policy defines the following responsibilities:
- The TRA Dačice senior management team is responsible for ensuring that information security is given adequate attention throughout TRA Dačice.
- Each senior manager is responsible for ensuring that the people working under him protect information in accordance with TRA Dačice standards.
- The manager responsible for security communicates with the senior management of TRA Dačice, cooperates with the IT department, possibly with external experts and informs about the state of security information if the situation requires it.
- Every employee has a responsibility for information security as part of the work they do.