Incident Response Policy

International Syndication Company LLC Last Updated: 1st September 2023 Effective Date: 1st September 2023 Review Cycle: Annually or after any incident Responsibility for Policy: Data Protection Office

Purpose

The Incident Response Policy ("Policy") is designed to provide a standardized approach for identifying, rating, and responding to incidents that compromise the confidentiality, integrity, or availability of company and customer data.

Scope

This Policy applies to incidents involving any digital assets and data controlled by International Syndication Company LLC, including but not limited to:

  • b2bmedium.com

  • iSyndicate.io

  • iSyndicatenews.com

  • fintechhub.today

  • healthcarehub.today

  • hrhub.today

  • manufacturinghub.today

  • aihub.today

  • realestatehub.today

  • realestatehub.today

  • data.isyndicate.io

  • salescloud.isyndicate.io

  • mailbooster.icrmsoftware.com

Incident Identification and Classification

  1. High Severity: Incidents that expose sensitive customer data, impair critical business functions or have legal implications.

  2. Medium Severity: Incidents that could lead to the above scenarios if not promptly addressed.

  3. Low Severity: Incidents that have a minimal impact and can be resolved without a coordinated response.

Incident Response Steps

  1. Identification: Any employee who suspects an incident must report it to the Data Protection Officer.

  2. Assessment and Classification: The incident will be assessed and classified according to its severity.

  3. Containment: Immediate steps will be taken to contain the incident.

  4. Eradication and Recovery: The root cause will be identified, and systems will be monitored to prevent recurrence.

  5. Lessons Learned: After the incident, a retrospective of the incident will be conducted to identify and implement improvements.

Reporting and Communication

  1. Internal Reporting: All incidents, regardless of their severity, must be reported internally as per the guidelines.

  2. External Reporting: High-severity incidents may require reporting to regulatory bodies, affected customers, or the public, in compliance with applicable laws.

Review and Updates

This Policy will be reviewed annually and may be updated more frequently if an incident occurs or in light of regulatory changes.

PreviousData Retention PolicyNextData Compliance

Last updated