Information Classification and Handling Policy Template Contents
There is a lot to cover but it is very straight forward, if comprehensive, with the document being 16 pages long. It comes with a handy and easy to follow guide on how to implement and deploy policies and it includes:
- Document Version Control
- Document Contents Page
- Purpose
- Scope
- Information Classification and Handling Policy
- Principle
- Information Storage
- Confidential Information Storage
- Control of Devices and Media Containing Information
- Information Back Up
- Information Destruction
- Destruction of Hard copy paper records
- Destruction of Electronic Information
- Destruction of Electronic media / devices
- Information Classification
- Confidential Information Guidance
- Confidential Information and GDPR
- Confidential Information Examples,
- Confidential Information Document Marking
- Confidential Information Controls
- Confidential Information Destruction
- Internal Information Guidance
- Internal Information and GDPR
- Internal Information Examples
- Internal Information Document Marking
- Internal Information Controls
- Internal Information Destruction
- Public Information Guidance
- Public Information and GDPR
- Public Information Examples
- Public Information Document Marking
- Public Information Controls
- Public Information DestructionDestruction
- Policy Compliance
- Compliance Measurement
- Exceptions
- Non-Compliance
- Continual Improvement
The policy is part of the ISO 27001 Policy templates bundle and has appropriate ISO 27001 required document mark up for classification, version control, document owner and last reviewed.



Information Classification and Handling Policy Template Ready To Go
The information classification and handling policy template is designed for GDPR, Data Protection, ISO 27001, SOC 2, PCI DSS and more. It is easy to understand, fast to deploy and is a simple yet effective Microsoft Word Template
The Information Classification and Handling Policy Template is designed to allow you to understand how to classify data, how GDPR and data protection impacts it, with guidance and examples across the lifecycle of information. Information should be classified in terms of legal requirements, value, criticality and sensitivity to unauthorised disclosure or modification.
The purpose of this policy is ensuring the correct classification and handling of information based on its classification.
Meet the team behind the templates
Practitioners for over 20 years in Governance, Risk and Compliance. These are the ISO 27001 templates and the ISO 27001 toolkit that we use day in day out
Reviews
There are no reviews yet.