You are on page 1of 3

CLASSIFICATION LEVELS

Definitions
Four-Level Classification
Secret
(Highly Restricted)
The most sensitive information, intended strictly for internal
use, is assigned this classification. The unauthorized
disclosure of information of this type could seriously and
unfavourably impact the organization, its shareholders,
partners or clients.
Confidential This classification is assigned to information less sensitive,
yet destined for internal use only. The unauthorized
disclosure of this type of information could unfavourably
affect the organization, its shareholders, partners or clients.
Private This classification is reserved for information used within the
organization, and whose unauthorized disclosure could
seriously and unfavourably affect the organization and its
employees.
Unclassified This classification covers information not clearly fitting into
any other classification. Although unauthorized disclosure of
this type of information is against policy, it should not
seriously or unfavourably affect the organization, its
shareholders, partners or clients.
Three-Level Classification
Confidential Less sensitive information, nonetheless intended for internal
use, is so classified. Its unauthorized disclosure could have
repercussions unfavourable to the organization, its
shareholders, partners or clients
nternal Use !nly Information in this category should only be disclosed to third
parties having signed a confidentiality agreement. Its
disclosure should not cause serious harm to the
organization. The information is available to all employees
via the organization’s Intranet. This classification is applied to
all unclassified information by default, and includes
telephone directories, training documents, templates and
schedules.
Pu"lic Information the Sales or ublic !elations "epartments have
e#plicitly approved for public distribution, such as sales
brochures and press releases.
#T$R#%L US$ !#L& $ of %
&reated' yyyy(mm(dd
rovided by http'))www.callio.com)bs**++
CLASSIFICATION LEVELS
Re'uired Processing
Four-level
Classification
Three-level
Classification
Processing Security (easures Se
cr
et
C
on
fid
en
tia
l
Pr
iv
at
e
Un
cl
as
sif
ie
d
C
on
fid
en
tia
l
nt
er
na
l
Us
e
Pu
"li
c
,edia Storage -ncryption or tangible
access controls
. . . . .
-ncryption /optional0 .
-ncryption not
recommended
.
&opying 1btaining the owner2s
consent is recommended
. . . .
3o restriction . . .
4a#ing assword(protected
reception devices or
addressee present for
reception
. . . .
3o restrictions . . .
Transmission over
public networ5s
-ncryption . . . .
-ncryption /optional0 . .
-ncryption not
recommended
.
"estruction Shredding or disposal in a
place secured for this
purpose
. . . .
6astebas5et . . .
"isclosure to third
parties
1wner2s consent and
nondisclosure agreement
. . . .
3ondisclosure agreement . .
3o restrictions .
Labelling electronic
media when necessary
Internal and e#ternal
labelling
. . . .
"isclosure date and
classification
.
3o labelling re7uired . .
#T$R#%L US$ !#L& 8 of %
&reated' yyyy(mm(dd
rovided by http'))www.callio.com)bs**++
CLASSIFICATION LEVELS
"ocument labelling
when re7uired
1n each page /if not bound0
and on the front and bac5
covers and title pages of
bound documents.
. . . .
"isclosure date and
classification
.
3o labelling re7uired . .
ac5ing internal and
e#ternal mail
Addressed to a specific
recipient and placed inside
two envelopes, with the
classification label on the
inner envelope only.
. . . .
A single envelope without
any specific type of labelling
. . .
9ranting access rights Asset owner only . . . .
Local manager . .
3o restrictions .
Audit trail Addressee, number of
copies made, location,
address, destruction,
witnesses.
.
1nly re7uired if private . . .
3ot recommended . . .
#T$R#%L US$ !#L& % of %
&reated' yyyy(mm(dd
rovided by http'))www.callio.com)bs**++