Professional Documents
Culture Documents
08.7 Information Classification Policy Preview en
08.7 Information Classification Policy Preview en
08.7 Information Classification Policy Preview en
Date of version:
Created by:
Approved by:
Confidentiality level:
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.
[organization name] [confidentiality level]
Change history
Date Version Created by Description of change
Table of contents
1. PURPOSE, SCOPE AND USERS ..............................................................................................................3
4. MANAGING RECORDS KEPT ON THE BASIS OF THIS DOCUMENT .........ERROR! BOOKMARK NOT DEFINED.
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.
[organization name] [confidentiality level]
This document is applied to all types of information, regardless of the form – paper or electronic
documents, applications and databases, people's knowledge, etc.
2. Reference documents
ISO/IEC 27001 standard
IT Security Policy
[Security Procedures for IT Departments]
3. Classified information
3.1. Steps and responsibilities
If classified information is received from outside the organization, [job title] is responsible for its
classification in accordance with the rules prescribed in this Policy, and this person becomes the
owner of such an information asset.
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.
[organization name] [confidentiality level]
sensitivity and criticality of information – based on the highest risk calculated for each
information item during risk assessment
legal and contractual obligations
Confidentiality Labeling Classification criteria Access restriction Commented [EUGDPR4]: Confidentiality levels and labelling
may be adapted to the existing system in the organization, to the
level system which is common in local environment, or to the system
which is prescribed by legislation.
Public (unlabeled) Making the information public Information is available to
cannot harm the organization in the public
any way
©2017 This template may be used by clients of Advisera Expert Solutions Ltd. in accordance with the License Agreement.