Information release and sharing policies.

Click on the buttons to add to your download cart.

It is our policy to release information only with your permission. When you are looking for someone or when someone is looking for you, we will inform the person who is being sought of the inquiry. It is up to the person who is being `looked for’ to make the initial contact with the person who is doing the looking. We will not give your address or phone number to any classmate, old friend or old flame without your permission. Sound a little confusing? It really isn’t, and this approach helps protect your privacy.

The DAPR Information Sharing Checklist and Information Sharing Decision Tree documents specify the process by which DAPR discloses information.

Managing risk should be part of every organization’s strategy and tactics when working within an environment that has become more complex and more dangerous.

From Wikipedia: Risk management is the identification, assessment, and prioritization of risks (defined in ISO 31000 as the effect of uncertainty on objectives) followed by coordinated and economical application of resources to minimize, monitor, and control the probability and/or impact of unfortunate events[1] or to maximize the realization of opportunities.”

The discussion of risk can be very deep but we’ll just skim the surface in four broad areas. The following white paper download includes strategies for looking at your overall attack surface, risk of your financial statements, cost per dollar raised and discusses risk in relation to sustainability. There are two sample policies for mobile devices and saving and storing data off-site to help you think about some of the data risks you might face.

Contributed by Brian Dowling.