18.08.2014

New ArchiDoc Security Policy

New ArchiDoc Security Policy specifies in detail the purpose, scope and principles of personal data processing, as well as clearly defines the obligations and qualifications of particular employees involved in this process. This document also regulates issues related to the management of data sets and their processing in IT systems.

New ArchiDoc Security Policy specifies in detail the purpose, scope and principles of personal data processing, as well as clearly defines the obligations and qualifications of particular employees involved in this process. This document also regulates issues related to the management of data sets and their processing in IT systems.

The Function of Information Security Administrator has been assumed by Bartosz Terlecki, who is responsible for the implementation and functioning of the adopted security policy observance in all ArchiDoc’s organizational units as well as for monitoring whether it is observed. One of the main tasks of the Administrator is also to monitor and assess changing threats resulting from the processing of personal data in IT systems. The Administrator’s another duty is to improve the technical and organizational means aimed at personal data protection taking account of new developments in science and technology. For the execution of tasks assigned to him, the Administrator reports directly to the Management Board.

Bartosz Terlecki has been working in ArchiDoc since 2004. When he was still the Director of the Organizational and Legal Department, he was in charge of standardizing the Personal Data Security Policy, developing crisis management plans and performing physical and IT security audits of personal data processed in ArchiDoc. Bartosz Terlecki is a qualified lawyer and he also participated in a specialized training on personal data protection.

“Security of personal data processing is one of the most crucial tasks connected with the company’s activities”, says Piotr Cholewa, President of ArchiDoc’s Management Board. “Ensuring consistency between the services offered and personal data protection regulations, as well as customers’ ever growing demands in this area has raised the need to develop and adopt a standardized security policy and carefully choose the person responsible for its implementation.”
 

Share