To get their work done, Solutions2Share employees collaborate with others both inside and outside the organization. That means content travels everywhere, and when it does, we want it to do so in a safe, secure way that meets our company’s business and compliance policies.
Here is the list of classification labels we’re using, from the least to the most sensitive:
| Level | Label | Description & Examples |
|---|---|---|
| 5 | PUBLIC | accessible for all |
| 4 | EXTERNAL | not in-house but collaborating |
| 3 | INTERNAL | in-house |
| 2 | CLIENT CONFIDENTIAL | not disclose confidential information about a client to a third party. |
| 1 | COMPANY CONFIDENTIAL | not disclose confidential information about a company to a third party. |
Public
- Information that is not confidential and can be disclosed without material consequences.
- Loss of availability due to system failures is an acceptable risk.
- Integrity is important but not vital.
- Material that can be publicly accessed by any anonymous user (without authentication).
External
- Information that is not confidential and can be shared externally without any material implications.
- Loss of availability due to system downtime is an acceptable risk.
- Integrity is important but not vital.
- Material that can be accessed by external non-employee users, such as partners or subcontractors (with authentication), to the exclusion of customers.
Internal
- Information is restricted to approved internal access and protected from external access.
- Unauthorized access could influence our operational effectiveness, cause a significant financial loss, provide a significant advantage to a competitor or cause a significant reduction in customer confidence.
- Information integrity is vital.
- Material that can be accessed by any employee (authenticated).
Client Confidential
- Information received from clients in any form for holding or processing by ourselves.
- The original copy of such information must not be changed in any way without written permission from the client.
- The highest possible levels of integrity, confidentiality and availability are vital.
- Material accessible only to specific employees (authenticated).
Company Confidential
- Information we collect and use in the course of our business to hire employees, enter and fulfill customer orders, and manage all aspects of corporate finance.
- Access to this information is highly restricted within our organization.
- The highest possible level of integrity, confidentiality and availability is essential.
- Material accessible only to specific employees (authenticated).