SPRING DISCOUNT
Get 30% off on toolkits, course exams, and books.
Limited-time offer – ends May 26, 2022
Use promo code:
SPRING30

Expert Advice Community

Guest

Document Toolkit

  Quote
Guest
Guest user Created:   Mar 28, 2022 Last commented:   Mar 28, 2022

Document Toolkit

I was hoping you might be able to give me some advice about the confidentiality statement. We cover confidentiality in the employment contract so my question is it is Mandatory in ISO27K that there is a separate Confidentiality agreement signed by staff or is it OK if it’s covered in the employment contract.  Does there have to be a confidentiality agreement or just a signed document that shows agreement to keep information confidential?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Mar 28, 2022

ISO 27001 does not prescribe how to implement a confidentiality agreement, so organizations can implement it as it best fits their needs.

Considering that, you can keep the confidentiality agreement in the employment contract.

Regarding the document content, please note that a confidentiality agreement is more than simply saying that the parts need to keep the information confidential. It also helps explain other things, like what is confidential information, what to do in case of information compromise, penalties in case of a breach, etc.  

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Mar 28, 2022

Mar 28, 2022

Suggested Topics

Guest user Created:   Mar 26, 2021 ISO 27001 & 22301
Replies: 1
0 0

27001 questions

Guest user Created:   May 25, 2020 ISO 27001 & 22301
Replies: 1
0 0

Risk assessments