Skip Ribbon Commands

Skip to main content


Corporate Information Security Policy Statement

Dubai Statistics Center understands and recognizes the importance of "information" to its business operations and hence is committed to provide its customers, stakeholders, business partners & employees a secure information processing environment. DSC intends to achieve security of its information assets based on the three founding principles of Information Security - Confidentiality, Integrity & Availability. Optimum security will be accorded to information assets by classifying them based on their business value and risk exposure. DSC thus will ensure the privacy of company, customer, stakeholder, business partner & employee information, by protecting it against unauthorized access, disclosure and/or loss. DSC endeavors to continuously and proactively manage risk to its information at an acceptable level through the design, implementation and maintenance of an effective Information Security Management System (ISMS) that adopts industry best practices & standards. The ISMS so developed will comply with the requirements of the Dubai government laws and regulatory requirements. The need for ISMS will be highlighted by encouraging and promoting information security awareness amongst the masses at DSC.

It is the policy of DSC to prohibit unauthorized access, disclosure, duplication, modification, diversion, destruction, loss, misuse, or theft of this information. In addition, it is the policy of DSC to protect information belonging to third parties that has been entrusted to DSC in a manner consistent with its sensitivity as well as in accordance with all applicable agreements.

The principles that shall be followed to secure the information are as follows:

  • Securing of information based on the three founding principles of Information Security - Confidentiality, Integrity & Availability, to facilitate appropriate sharing of information across the organization
  • Ensuring the privacy of Organization, customer, stakeholder, business partner & employee information by suitable protection of the information and its information processing infrastructure against threats, both internal and external
  • Continuously and proactively monitoring and managing the risks based on the DSC's risk appetite
  • Maintaining an effective Information Security Management System (ISMS) which adopts leading industry standards and best practices to ensure the security of information by providing a framework of learning & innovation and by challenging existing practices and introducing new processes and practices
  • Promoting awareness amongst customers, business partners, stakeholders and employees by sharing knowledge and responsibility
  • Ensuring that all the government laws and regulatory requirements of United Arab Emirates are complied with
  • Reviewing and aligning the Information Security Policy with DSC's business objectives and communicate the changes (if any) to all concerned on a regular basis

The Security Policy will be reviewed independently once a year or earlier if circumstances require. It will be published and communicated to all employees and relevant external parties and any non-conformity will be addressed to ensure compliance.