Professional Documents
Culture Documents
08.9 Policy On The Use of Encryption Preview en
08.9 Policy On The Use of Encryption Preview en
Date of version:
Created by:
Approved by:
Confidentiality level:
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.
[organization name] [confidentiality level]
Change history
Date Version Created by Description of change
Table of contents
1. PURPOSE, SCOPE AND USERS ..............................................................................................................3
4. MANAGING RECORDS KEPT ON THE BASIS OF THIS DOCUMENT .........ERROR! BOOKMARK NOT DEFINED.
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.
[organization name] [confidentiality level]
2. Reference documents
EU GDPR article 32 Commented [EU GDPR4]: Click here to read the full text of
GDPR Article 32:
ISO/IEC 27001 standard, clauses A.10.1.1, A.10.1.2, A.18.1.5 https://advisera.com/eugdpracademy/gdpr/security-of-processing/
IT Security Policy
Information Classification Policy
3. Use of encryption
3.1. Encryption controls
According to the Information Classification Policy, as well as legal and contractual obligations, the
organization must protect individual systems or information by means of the following encryption
controls:
Name of system / type Encryption tool Encryption Key size Commented [EUGDPR5]: This also includes communication
channels, individual computers (especially laptops), etc.
of information algorithm
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.