Laserfiche WebLink
Security Policies and Procedures <br />IX. Rules by Data Classification <br />Public/unclassified data <br />B. Private/internal data <br />C. Confidential or protected data <br />D. Managing data sources <br />E. Retention of media <br />Aizent of Record letters and Letters of Authorization requests are held for no less <br />than ninety_(90) days <br />New Business Group documents are held for no less than ninety (90) days <br />General documents are held for no less than ninety_(90) days <br />Banking statements are held for seven (7) years <br />Workforce member records are held for seven (7) years <br />F. Sanitization of Media <br />G. Information sharing and privacy <br />H. Release of company information <br />X. Risk Analysis and Management <br />Risk reviews <br />B. Risk management <br />Increasing a protection to a level higher than what is listed in this document <br />Improving oversight or monitoring of the risk to limit impact and minimize response <br />time <br />Limiting transactions or other events to minimize the possible impact of the risk <br />event <br />XI. IDs and Accounts <br />User IDs <br />B. ID and account creation <br />Expiration dates for the User ID <br />Renewal process for the User ID <br />Documentation of the role, business process and job function relating to the User ID <br />C. Account management <br />Application Specific IDs <br />XII. Authentication and Passwords <br />Overview <br />Password format <br />Rules <br />XIII. Authorization and Rights Management <br />General Access Roles <br />Super Admin Access: Access to all front and backend products as well as product <br />metrics <br />Admin Access: Access to all front end products as well as product metrics <br />General Access: Access to product metrics <br />Rev.2015.8.6 <br />4 <br />