Information Security Policy

This information security policy establishes an integrated set of measures that must be uniformly applied across Confidence Bank to ensure a secured operating environment for its business operations. Customer Information, organizational information, supporting IT systems, processes and people that are generating, storing, and retrieving information are important assets of Confidence Bank. The availability, integrity and confidentiality of information are essential in building and maintaining our competitive edge, cash flow, profitability, legal compliance, and respected company image.

This Information Security Policy applies to all Confidence Bank staff, contractors, consultants and any third party with access to Confidence Bank information assets.

The organization has agreed on the following objectives in the area of information security:

• Safeguard the confidentiality, integrity, and availability of Confidence Bank customer, employee, and business data.
• Ensure the 99.99% availability and resilience of all Confidence Bank critical services.
• Development and maintenance of secure Confidence Bank applications.
• Promote a security-aware culture through ongoing training and risk management.

This information security policy serves to provide Confidence Bank with an approach to managing information risks and directives for the security of information assets and contracted services.

Confidence Bank is committed to managing information risks and the protection of all organizational assets and shall implement measures through an information security program to protect against breaches of confidentiality, failures of integrity or interruptions to the availability of its information assets.

Confidence Bank is committed to the continual improvement of its information security program and shall comply with all applicable legal, regulatory, and contractual requirements related to information security in her services and operations.

Users of Confidence Bank information and information assets shall comply with this policy and exercise a duty of care in relation to the operation and use of Confidence Bank information and information systems.