Introduction
It is the policy of Unwin House to maintain an information security management system (ISMS) designed to meet the requirements of ISO 27001 in pursuit of its primary objectives, the purpose and the context of the organisation.
It is the policy of Unwin House to:
- Make the details of our policy known to all other interested parties, including external where appropriate, and to determine the need for communication and by what methods relevant to the information security management system.
- Comply with all legal requirements, codes of practice and all other requirements applicable to our activities; therefore, as a company, we are committed to satisfy applicable requirements related to information security and the continual improvement of the ISMS.
- Provide all the resources of equipment, trained and competent staff and any other requirements to enable these objectives to be met.
- Ensure that all employees are made aware of their individual obligations in respect of this information security management system.
- Maintain a management system that will achieve these objectives and seek continual improvement in the effectiveness and performance of our management system based on “risk”.
This Information Security Management System provides a framework for setting, monitoring, reviewing, and achieving our objectives, programmes, and targets.
To ensure the company maintains its awareness for continuous improvement, the business management system is regularly reviewed by “Top Management” to ensure it remains appropriate and suitable to our business. The Information Security Management System is subject to both internal audits and external annual audits.
Scope of the Policy
The scope of this policy relates to the provision of information security management for the maintenance of a supported living service for placing young people aged 16-25, and for the maintenance of data relating to the supported living service.
Mark Sead
CEO
28/12/2021
Unwin House 