It is the policy of Toolbox Group to maintain an information management system designed to meet the requirements of ISO 27001in pursuit of its primary objectives, the purpose and the context of the organisation.
It is the policy of Toolbox Group to:
This information security policy provides a framework for setting, monitoring, reviewing and achieving our objectives, programmes and targets.
To ensure the company maintains its awareness for continuous improvement, the business management system is regularly reviewed by Senior Management Team to ensure it remains appropriate and suitable to our business. The Business Management System is subject to both internal and external annual audits.
Scope of the Policy
The scope of this policy relates to use of the database and computer systems operated by the company in pursuit of the company’s business of providing marketing services to the retail sector. It also relates where appropriate to external risk sources including functions which are outsourced.
Group Head of Product Development
Original signed and dated version displayed in the office.