Professional Documents
Culture Documents
BPC-PS Business Continuity Plan v1.0 - en
BPC-PS Business Continuity Plan v1.0 - en
AUTHOR:
Name Position Date Signature
Andrea Róth-Varga Operations Expert
REVIEWER:
Name Position Date Signature
László Tóth Information Security Manager
APPROVED BY:
Name Position Date Signature
Péter Ilosvai Operation Manager
All rights reserved. Copying the content of the document, in whole or in part, for any purpose
is only permitted with the prior written authorisation of BPC Payments Services Plc.
The data and information contained herein are confidential and have been issued by BPC
Payments Services Plc. to support the work of its own employees and its affiliated consultants
and business partners closely related to the activities of BPC Payments Services Plc. Disclosure
of the contents of the document in whole or in part to any person is only permitted with prior
written authorisation from BPC Payments Services Plc.
Contents
1. DOCUMENT MANAGEMENT .................................................................................................................... 6
1.1. RECIPIENTS (DISTRIBUTION LIST) ............................................................................................................ 6
1.2. DOCUMENT HISTORY .............................................................................................................................. 6
1.3. FORECASTING FUTURE CHANGES ............................................................................................................ 6
1.4. OTHER RELEVANT DOCUMENTS AND REFERENCES ................................................................................. 6
1.5. ABBREVIATIONS ...................................................................................................................................... 6
1.6. SUBMISSION OF MISSING DOCUMENTS .................................................................................................. 6
2. GENERAL PART ........................................................................................................................................ 7
2.1. PURPOSE OF THE PLAN ........................................................................................................................... 7
2.2. SCOPE OF THE PLAN ................................................................................................................................ 7
2.2.1. PERSONAL SCOPE OF THE PLAN .............................................................................................................. 7
2.2.2. MATERIAL SCOPE OF THE PLAN ............................................................................................................... 7
2.3. RELATED POLICIES ................................................................................................................................... 7
3. BUSINESS IMPACT ANALYSIS ................................................................................................................... 9
3.1. SERVICE MODEL ...................................................................................................................................... 9
3.2. BUSINESS STRATEGY ............................................................................................................................... 9
3.3. CRITICAL BUSINESS PROCESS ................................................................................................................ 10
3.4. IT AND OTHER RECOURCES REQUIREMENTS ......................................................................................... 10
3.5. ACCEPTED SERVICE LEVEL ...................................................................................................................... 11
3.6. FLOW CHART OF BCP AND DRP ............................................................................................................. 11
3.7. DISASTER OCCURANCE .......................................................................................................................... 12
4. ALTERNATIVE BUSINESS SITE................................................................................................................. 12
5. CONTINUITY PLAN ................................................................................................................................. 12
5.1. DISASTER OCCURRENCE ........................................................................................................................ 13
5.2. PLAN ACTIVATION ................................................................................................................................. 13
5.3. ALTERNATIVE SITE OPERATION ............................................................................................................. 13
6. RECOVERY TEAMS ................................................................................................................................. 13
6.1. TEAM ROLES ......................................................................................................................................... 14
6.2. TEAM CONTACTS................................................................................................................................... 15
1. APPENDIX ............................................................................................................................................. 15
1.1. CONTACT INFORMATION .................................................................... ERROR! BOOKMARK NOT DEFINED.
1.2. EXTERNAL CONNECTIONS ................................................................... ERROR! BOOKMARK NOT DEFINED.
2. APPENDIX ............................................................................................................................................. 15
1. DOCUMENT MANAGEMENT
1.5. ABBREVIATIONS
Abbreviation Explanation/Description
BCP Business Continuity Plan
DRP Disaster Recovery Plan
ICT Information and Communication Technology
MIPOD Minimum Tolerable Period of Disruption
2. GENERAL PART
The purpose of applying the business continuity procedure is to ensure the operation of
processes related to card services in case of an adverse event (disaster, malfunction).
Alternative processes may need to be put in place from the disruption of operation to the
soonest possible recovery.
Considering that the services of BPC PS are inseparable from IT services, this plan is the part
of the following rules:
● Strategic and operative disaster recovery rules
Service based offerings have been around for many years and as the flexibility and agility of
new technology prove themselves in live environments, choice and complexity
follow. Offering one similar experience across a myriad of channels and devices is something
to do every day. It is something our customers expect to run smoothly and without fail or error.
They may expect the same from us. We untangle the complex, we streamline the payments and
commerce transactions and ring-fence our business and customers. We dedicate a case manager
to our customers, a point of contact for all sales, support and product questions.
Run on technology that ‘fits all’, Radar Payments offers customized services for its customers.
Their required level of service determines the model that works for them. Common practice
where possible, tailor made where needed.
Developing and maintaining a next-gen payments solution offering for PSPs and SME
focused Fintechs
a) Maintaining the leading position in the functionalities and quality of services and be
the one-stop shop for POS, e-commerce, ATM acquiring and card issuing for any size
of institution
b) becoming an end-to-end Greenfield Digital Bank build service provider for incumbent
banks and financial institutions
c) Developing an SME financial inclusion ecosystem offering full-suite of SME
propositions for unbanked / underbanked / small business -e.g., financing / working
capital, vendor management, inventory management etc.
d) Creating a transportation payments platform (end-to-end payments value-chain
solution vertical)
e) Marketplace offering ‘all in one’ payments and value added services solutions for
corporates incl. CRM, data management, tax / accounting services etc.
f) Increasing presence in Europe / LATAM / Africa and APAC by being opened to even
taking equity holding in start-ups in lieu of service fees
Page 10© 2021 BPC Payment Services Plc. Proprietary and Confidential.
Business continuity plan Ref:
CONFIDENTIAL Version: 1.0
Date: 30.05.2021
Page: 11/15
This level of service should be provided until DRP enters into force.
Page 11© 2021 BPC Payment Services Plc. Proprietary and Confidential.
Business continuity plan Ref:
CONFIDENTIAL Version: 1.0
Date: 30.05.2021
Page: 12/15
Annual rate of occurrence (ARO) is expected number of disaster occurrences during a calendar
year. For rare incidents, it is equivalent to a probability of one or more incidents during a year;
for frequent incidents, it is equivalent to the expected number of incidents per year.
An organization uses the alternate business site and relocation strategy in the event of a disaster
or disruption that inhibits the continuation of the business processes at the original business
site. This strategy should include both short-term and long-term relocation sites in the case of
both types of disruptions.
In case of Radar for its all critical IT based services Dacenter and office reallocations are
defined and available for 365 days per year.
According to BPC BPC strategy the alternative office site is the coworkers home office
5. CONTINUITY PLAN
In case of disaster situations, like office fire or flood, earthquakes, disastrous incidents or
pandemic situations the COO of Radar call for the actions that the continuity plan takes
effective.
It should be done by written form informing all employees of BPC Payments Services Plc.
o slack
Page 12© 2021 BPC Payment Services Plc. Proprietary and Confidential.
Business continuity plan Ref:
CONFIDENTIAL Version: 1.0
Date: 30.05.2021
Page: 13/15
o skype
o email and
o mobile telephone channels
Geo-redundant high availability and operation is also supported by activating the headquarters’
IT and human workforce.
It is tested successfully for COVID-19 especially for the period begin from 8th of March, 2021
with the following additions:
6. RECOVERY TEAMS
The company establishes recovery teams and divides the participants into appropriate groups
based on job role and title. The organization designates a team leader for each team. It assigns
a specific role or duty to each remaining member of the team.
Page 13© 2021 BPC Payment Services Plc. Proprietary and Confidential.
Business continuity plan Ref:
CONFIDENTIAL Version: 1.0
Date: 30.05.2021
Page: 14/15
The Disaster Recovery Group staff perform their tasks in a duty-tracking system, the duty
assignment has to be prepared for one month in advance and brought to the attention of those
concerned. See Disaster Assessment Appendix 2.
The detailed regulation of the group’s operation is contained in the ‘BPC PS Service Incident
Management Document’.
Page 14© 2021 BPC Payment Services Plc. Proprietary and Confidential.
Business continuity plan Ref:
CONFIDENTIAL Version: 1.0
Date: 30.05.2021
Page: 15/15
1. APPENDIX
2. APPENDIX
Disaster Assessment
Page 15© 2021 BPC Payment Services Plc. Proprietary and Confidential.