Corporate Information Security Policy Statement
Dubai Statistics Center understands and recognizes the importance of "information" to its business operations and hence is committed to provide its customers, stakeholders, business partners & employees a secure information processing environment. DSC intends to achieve security of its information assets based on the three founding principles of Information Security - Confidentiality, Integrity & Availability. Optimum security will be accorded to information assets by classifying them based on their business value and risk exposure. DSC thus will ensure the privacy of company, customer, stakeholder, business partner & employee information, by protecting it against unauthorized access, disclosure and/or loss. DSC endeavors to continuously and proactively manage risk to its information at an acceptable level through the design, implementation and maintenance of an effective Information Security Management System (ISMS) that adopts industry best practices & standards. The ISMS so developed will comply with the requirements of the Dubai government laws and regulatory requirements. The need for ISMS will be highlighted by encouraging and promoting information security awareness amongst the masses at DSC.
It is the policy of DSC to prohibit unauthorized access, disclosure, duplication, modification, diversion, destruction, loss, misuse, or theft of this information. In addition, it is the policy of DSC to protect information belonging to third parties that has been entrusted to DSC in a manner consistent with its sensitivity as well as in accordance with all applicable agreements.
The principles that shall be followed to secure the information are as follows:
The Security Policy will be reviewed independently once a year or earlier if circumstances require. It will be published and communicated to all employees and relevant external parties and any non-conformity will be addressed to ensure compliance.