Gateway Exim Ltd is committed to maintaining the confidentiality, integrity, and availability of all information systems and data. This policy outlines our approach to information security.
Access to systems and data is granted based on the principle of least privilege. All staff members have access limited to information necessary for their role. Multi-factor authentication is required for sensitive systems.
Sensitive data is encrypted both in transit and at rest. We use industry-standard encryption protocols and regularly update our security measures to protect against emerging threats.
Our network infrastructure includes firewalls, intrusion detection systems, and regular security monitoring. We maintain secure connections and isolate sensitive networks from general internet access.
We have documented incident response procedures to address security breaches quickly. In case of a security incident, affected parties will be notified as required by law.
All staff members receive regular information security training. We emphasize the importance of password security, phishing awareness, and data protection protocols.
Third-party vendors and service providers are required to meet our security standards. We conduct security assessments and maintain security agreements with all vendors.
Last updated: December 2024