1. Policy Statement

Marc & Zed is committed to maintaining the highest standards of information security to protect the confidentiality, integrity, and availability of our information assets. This policy establishes the framework for the Information Security Program within the organization.

2. Scope

This policy applies to all employees, contractors, third-party vendors, and any individuals with access to Marc & Zed's information assets.

3. Information Classification

All information assets must be classified based on sensitivity and criticality. Classifications include:

4. Access Control

5. Data Protection

6. Security Awareness and Training

7. Incident Response

8. Physical Security

9. Network Security

10. Remote Access

11. Vendor Management

12. Compliance

13. Monitoring and Auditing

14. Review and Update

15. Enforcement