Risk assessment is an integral part of BriteCore’s risk analysis and management planning. It requires constant and thorough investigation of our company’s policies and procedures to ensure technical operations are both safe and durable. This program assists with identifying and evaluating risks, introducing methods and measures for controlling hazards, and building awareness among clients and employees for the benefit of maintaining accuracy, security and reliability across all BriteCore products and services.
Yes. We have a strategic risk assessment plan in place that includes risk identification and the implementation of controls to mitigate or manage those risks. We monitor this program and take pro-active measures to protect against risks.
Yes. It is the policy of Intuitive Web Solutions that information in all its forms (written, spoken, recorded electronically or printed) will be protected from accidental or intentional unauthorized modification, destruction or disclosure throughout its life cycle. This protection includes an appropriate level of security over the equipment and software used to process, store, and transmit that information.
Yes, they have.
Yes. To ensure the implementation of this policy the company has designated a member of management to act as the company’s Security Officer. All inquiries relating to data and/or security should be referred to the Security Officer.
Yes, there is an asset management program in place. This program has been approved by management, communicated to appropriate constituents, and an owner to maintain and review the policy.
Yes, information assets are classified.
Yes, we have insurance coverages for business interruptions or general service interruption.
Yes. We ask all new hires to sign off on appropriate security and procedural documents prior to their inital employment at IWS.
Yes. We provide employees with security awareness documentation and training at the time of employment. During this time individuals are allowed to ask questions or voice concerns prior to working on projects. Current employees have access to security documents and training at any time during their employment and are asked to review them at least annually.
Yes, a member of our management team is currently responsible for privacy compliance.
Yes, we perform quarterly self-assessments.
Yes, we do this upon initial hire and anually thereafter.