Security and Privacy

istock_Data-Privacy-and-Security_960x500.jpg
 
 

Information Security and Privacy Policy

Enterprise Outcomes, Inc. prides itself as being a leader in the Project Management services industry. We recognize that we have a responsibility to protect any data we hold or process, whether it belongs to Enterprise Outcomes, our employees, partners, customers, or suppliers. By protecting this data, we can ensure that we maintain our reputation as a trusted partner, enabling us to grow as a business and deliver exceptional service to our customers.

It is the responsibility of all our staff to become familiar with our security management processes and to comply with all information security and privacy policies and the procedures that underpin them.

The management team supports the information security policy and requires all our staff, whether permanent or temporary, partner organizations, suppliers and contractors to do the same.

Wayne Biernacki
President Enterprise Outcomes, Inc.

Purpose and Scope

The purpose of the Information Security and Privacy Policy Statement is to demonstrate Enterprise Outcomes’ commitment to protect Enterprise Outcomes, our employees and our customer’s information from security threats, whether internal or external, deliberate or accidental. The Information Security and Privacy Policy Statement applies to all those who have access to Enterprise Outcomes information, regardless of geographical location or the types of data that they have access to; this includes employees both permanent and temporary, contractors, suppliers and agents working on behalf of Enterprise Outcomes, Inc.

Responsibilities

All members of Enterprise Outcomes, Inc. are responsible for the delivery of information security;

  • The President will ensure adequate and appropriate resources are in place to fulfil this policy statement and adherence to policies and standards.

  • The administrative staff is responsible for day to day management and implementation of security policies.

  • All employees, suppliers and our partners are responsible for understanding and adhering to the principles of this policy.

Information Security Principles

Enterprise Outcomes, Inc. is committed to the following security principles regardless of role or location:

  • Protect systems, buildings and information against unauthorized access.

  • Protect the confidentiality, integrity and availability of the information it collects, stores, transfers and processes.

  • Ensure policy requirements are understood by providing awareness to all employees.

  • Ensure all actual or suspected breaches of information security are reported, assessed and investigated where necessary.

  • Ensure security risks are identified and managed through the appropriate channels.

  • Assessing and measuring the maturity of information security controls and delivering on continuous improvement measures.

Information Privacy Principles

Enterprise Outcomes, Inc. is committed to protecting personally identifiable Information;

  • Collect only the personal information it needs and explaining why it needs it.

  • Sharing personal information within the organization only where there is a lawful reason for doing so and where the person concerned has given their consent.

  • Ensuring that actual or suspected breaches of these principles are reported and investigated appropriately.

  • Reviewing this policy annually.

Maintaining the Confidentiality, Availability and Integrity of both our own and our customers information is a requirement on all employees of Enterprise Outcomes, Inc.

We will treat the information entrusted to us by our customers respectfully and professionally taking account of Confidentiality, Integrity and Availability of the information as if it were our own.  We will ensure that any information we process is done so legally and for legitimate business reasons.