Page 43 - Ipsos
P. 43

Information Classification: Internal Use
                                                                      Ipsos Book of Policies & Procedures


                   1.0  Summary

                   Information is the most valuable asset in Ipsos. This policy sets the governance framework for
                   information usage, retention and destruction.

                   Ipsos has published the following policy as part of its overall objective to operate a high quality
                   market  research  business  and  to  provide  accurate  and  reliable  information  to  its  clients.  This
                   policy is aligned with its 4Ss (Security, Simplicity, Speed and Substance) operating goals and in
                   particular Security. Ipsos encourages responsible use of information technology resources; and
                   full compliance with relevant laws and best practices.

                   This  IT  policy  and  procedure  is  reviewed  annually  and  is  part  of  the  Ipsos  Book  of  Policies  &
                   Procedures and can be found on the Ipsos Global Intranet site. It is to be read in conjunction with:

                          Ipsos  Green  Book,  the  Ipsos  Professional  Code  of  Conduct  which  is  distributed  to  all
                          Ipsos employees;

                          The other IT Policies & Procedures, in particular; IT.2 - Information Security & Acceptable
                          Use.


                   2.0  Purpose and scope

                         2.1    Objectives

                   This policy has the following objectives:
                     to  harmonize  Ipsos’  needs  and  objectives  within  an  appropriate  information  management
                      framework;
                     to classify the Information that Ipsos employees may have access to;

                     to ensure confidentiality, integrity and availability of data and information in IPSOS;
                     to  set  the  basis  for  disciplinary  action  in  case  of  infringement  of  the  regulatory  framework
                      established and/or inappropriate use of information;
                     To set clear expectations to Ipsos and its staff on how information is:

                              o  Classified
                              o  Labeled
                              o  Handled

                              o  Retained
                              o  Destroyed

                     Govern the retention of e-mail data so as to provide a cost effective e-mail solution for Ipsos;
                     Govern  the  retention  of  e-mail  accounts  so  as  to  provide  business  continuity  and  when
                      required,
                     To maintain the Company’s legal and financial status and to fulfill obligations to shareholders,
                      employees, customers, regulators, or other outside interests.


                                                   Page 3 of 22
   38   39   40   41   42   43   44   45   46   47   48