Access Control Policy
Policy Statement: This Access Control Policy outlines the guidelines and procedures for granting and managing user access to Spread X Securities Private Limited systems, networks, and data. The policy aims to ensure that only authorized individuals have access to company resources and that access privileges are aligned with their job responsibilities. It is the responsibility of all employees, contractors, and authorized users to comply with this policy.
Scope: This policy applies to all individuals who have access to Spread X Securities Private Limited systems, networks, and data, regardless of whether they are employees, contractors, or third-party partners. It covers both physical and logical access controls.
Access Control Measures:
- Physical Access Control: All physical access control measures, such as card readers, biometric systems, and surveillance cameras, will be implemented and maintained according to industry best practices and applicable regulations.
- Access to company facilities: Access to company facilities will only be granted to authorized personnel with a legitimate business need. Visitors and contractors will be required to sign in and be escorted while in company facilities.
- Logical Access Control: User accounts will be created for all authorized individuals according to their job roles and responsibilities. User access rights will be granted based on the principle of least privilege, where employees are given the minimum level of access required to perform their duties. Access requests and changes to user access rights must be authorized by the appropriate data or system owners and recorded in an access control log. User access rights will be reviewed periodically, and any unnecessary or outdated privileges will be promptly revoked. Strong authentication measures, such as unique usernames and passwords, multi-factor authentication, and password expiration policies, will be in place to protect user accounts.
- Compliance: All users must comply with this Access Control Policy and any supporting procedures and guidelines. Violations of this policy may result in disciplinary action, up to and including termination, as well as legal consequences, if applicable.
- Policy Review: This Access Control Policy will be reviewed annually or as necessary to ensure its ongoing effectiveness. Any updates or changes will be communicated to all employees and users.
By adhering to this policy, Spread X Securities Private Limited endeavours to maintain the integrity and confidentiality of its systems, networks, and data, protecting them from unauthorized access and ensuring the availability of resources to authorized users.
The Policy Approved by Board of Directors of Spread X Securities Private Limited in Board meeting held dated on 02/08/2023.
Enjoy 100%
Paperless journey
Paperless journey