- Manx Telecom
- About
- Certifications
Occupational Health and Safety Standard
(ISO 45001:2018) (December 2021)
Occupational Health & Safety Policy
The Occupational Health & Safety Policy has been established by the Manx Telecom Group’s management to support the strategic objectives of the business and a commitment to continual improvement of the Occupational Health & Safety Management System.
Quality Standard (ISO 9001:2015) (December 2021)
Information Security Standard (ISO 27001:2013) (December 2021)
The Information Security Policy has been established by Manx Telecom Group management to support the strategic objectives of the business and is committed to continual improvement of the Information Security Management System (ISMS).
The primary goal is to protect Manx Telecom Group information and minimise the exposure to risks related to all interested parties.
The Information Security Policy ensures:
- Sensitive information will be protected against unauthorised access
- Confidentiality of corporate and customer information will be assured
- Integrity and availability of information will be maintained
- Information Security objectives will be implemented
- Legislative and regulatory requirements will be met
- Business Continuity plans will be developed, maintained and tested
- Information Security training will be available for all employees
- All actual or suspected information security events or incidents will be reported, thoroughly investigated and opportunities for improvement identified and acted upon
- The Governance, Risk and Compliance Committee will meet regularly to review and approve the Information Security Management System
- Compliance with the requirements of ISO 27001:2013
- Availability of this policy statement to all interested parties; internally and externally
Responsibilities
- Compliance with the Information Security Policy is mandatory for all Manx Telecom employees and third-party contractors
- The Information Security Manager is responsible for maintaining the policy with support from the Governance, Risk and Compliance Committee
- The CEO is responsible for approving the policy
- The Policy must be reviewed annually or sooner if there are any significant changes to ensure it remains suitable, adequate and effective