The Board of Directors and management of Jones and Palmer Limited located at 87 Carver Street, Birmingham B1 3AL, which is a supplier of corporate communications products to UK listed public companies, are committed to preserving the confidentiality, integrity and availability of all the physical and electronic information assets throughout the company in order to preserve our own and client’s brand image, cash-flow, profitability, legal, regulatory and contractual compliance. Information and information security requirements will continue to be aligned with Jones and Palmer’s goals and the ISMS is intended to be an enabling mechanism for information sharing, for electronic operations, and for reducing information-related risks to acceptable levels.
Jones and Palmer’s current strategic business plan and risk management framework provide the context for identifying, assessing, evaluating and controlling information-related risks through the establishment and maintenance of an ISMS. Mike Hill is responsible for the management and maintenance of the planning and development of systems towards our ultimate goals. Additional risk assessments may, where necessary, be carried out to determine appropriate controls for specific risks.
In particular, business continuity and contingency plans, data backup procedures, avoidance of viruses and hackers, access control to systems and information security incident reporting are fundamental to this policy.
All colleagues with Jones and Palmer are expected to comply with this policy and with the ISMS that implements this policy. All colleagues, and certain external parties, will receive appropriate training. The consequences of breaching the information security policy are set out in the company handbook, disciplinary policy and in contracts and agreements with third parties.
The ISMS is subject to continuous, systematic review and improvement.
Jones and Palmer has established a senior management group chaired by the Managing Director and including other Board Directors with specialist skills to support the ISMS framework and to periodically review the security policy.
Jones and Palmer is pursuing certification of its ISMS to ISO27001.
This policy will be reviewed to respond to any changes in the risk at least annually.