Security policies

Dovetail maintains a comprehensive set of organizational security policies that must be agreed to by all employees annually.

All policies are reviewed and approved by management annually. Employees who violate any policies may face disciplinary consequences in proportion to their violation.

Policies are maintained on the following topics:

• Acceptable Use Policy

• Asset Management Policy

• Backup Policy

• Business Continuity Plan

• Change Management Policy

• Code of Conduct

• Cryptography Policy

• Data Classification Policy

• Data Deletion Policy

• Data Protection Policy

• Disaster Recovery Plan

• Incident Response Plan

• Information Security Policy

• Password Policy

• Physical Security Policy

• Responsible Disclosure Policy

• Risk Assessment Program

• System Access Control Policy

• Vendor Management Policy

• Vulnerability Management Policy

A copy of these policies can be made available to Dovetail Enterprise customers on request.