Information security is of critical importance to us.
It is IWF policy to make every effort to protect our information assets from threats – whether they be internal or external, deliberate or accidental. Key to this being:
- Confidentiality - The prevention of unauthorised disclosure of information;
- Integrity - The prevention of unauthorised change to information;
- Availability - The appropriate setting of accesses and security levels to prevent unauthorised access and maintain those that are legitimate.
Our commitment to information security is demonstrated through our commitment to the principles of our Cyber Essentials Plus accreditation and our successful regular audits. Our dedicated team have responsibility for reviewing and establishing relevant information security policies and procedures to keep pace with the changing technological world in which our charity operates.
New members of staff receive information security training during their induction period, and all staff are required to undertake regular update sessions to ensure their knowledge and understanding remains current.
We have a separate Privacy Notice explaining the specific arrangements in place regarding the processing of personal data. This can be found on our website.
Compliance with our information security policies and procedures is a collective responsibility, and one that we all take seriously.
Susie Hargreaves OBE
IWF CEO