The following Practice Compliance guidance note provides comprehensive and up to date legal information covering:
This strategy and plan builds on and supplements our other data management and security policies and procedures, namely our:
[[Data protection policy]]
[[Data breach plan]]
[[Information management and security policy]]
[[Bring your own device policy]]
[[Information Communications Technology (ICT) Plan]]
[[Internet and electronic communications policy (including social media)]]
[[Remote working and removable media policy]]
[[Business continuity plan (BCP)]]
Purpose and scope
The purpose of this document is to establish systems and controls to protect the [firm OR company] from cybercriminals and associated cybersecurity risks, as well as set out an action plan should the [firm OR company OR fall victim to cybercrime.
This plan is relevant to all staff[ in every office].
[Insert name] is responsible for this strategy and plan.
They are responsible for:
conducting and maintaining cybercrime/cyber security risk assessments
monitoring compliance with this strategy and related policies and procedures
invoking the relevant incident management plan, as appropriate and in conjunction with the business continuity team
**excludes LexisPSL Practice Compliance, Practice Management and Risk and Compliance. To discuss trialling these LexisPSL services please email customer service via our online form. Free trials are only available to individuals based in the UK. We may terminate this trial at any time or decide not to give a trial, for any reason. Trial includes one question to LexisAsk during the length of the trial.
To view the latest version of this document and thousands of others like it, sign-in to LexisPSL or register for a free trial.
Existing user? Sign-in
Take a free trial
Take a free trial
0330 161 1234