Information Security Policy
The information security policy outlines Vaxa’s overarching approach to information security management and signposts to specific sub-policies within our framework.
Policies
Under constructionThis page is still under construction. Please check back later as we continue to work on it.
Backup Policy
The Backup Policy outlines the procedures and guidelines for data backup to ensure data availability and integrity.
Data Classification Policy
We classify data to ensure it is protected according to its sensitivity and criticality.
Data Retention Policy
The Data Retention Policy outlines how we retain and dispose of data in a secure and compliant manner, to ensure that data is available when needed and that we comply with legal and regulatory requirements while minimising risks.
Identity & Access Management (IAM) Policy
Identity and Access Management are cornerstones of our security strategy. This policy outlines how we manage identities and access to systems, applications, and data.
Personnel Screening Policy
Our team is the backbone of Vaxa, and we need to make sure we do our due diligence when it comes to hiring new team members. This policy outlines the guidelines and procedures for employment screening at Vaxa.
Privacy Policy
Vaxa necessarily handles sensitive & personal information about clients, partners, and employees. This policy outlines how we collect, use, disclose, and manage this information in a compliant way.
Privileged Access Policy
This policy ensures that privileged access to systems, applications, and data is securely managed, controlled, and monitored.
Responsible Disclosure Policy
A policy to facilitate the secure reporting of vulnerabilities and policy violations.
Supplier Security Policy
This policy outlines the security requirements that suppliers must adhere to when working with Vaxa.