Purpose
The purpose of this Security Policy is to ensure the confidentiality, integrity, and availability of the information assets of the National Library of Public Information (hereinafter referred to as "the Library"). This Policy is established to comply with applicable laws and regulations, protect information assets against internal and external threats—whether intentional or accidental—and support the Library's operational requirements.
Policy Statement
Objectives
To safeguard the confidentiality, integrity, and availability of information assets within the scope of certification and to protect users' personal information, the Library is committed to achieving the following objectives through the collective efforts of all personnel:
Responsibilities and Awareness
Review
To ensure the continuing suitability, adequacy, effectiveness, and security of the Information Security Management System (ISMS), this Policy and related information security requirements shall be reviewed at least once each year, or whenever necessary, in response to changes in business operations, technological developments, risk assessment results, government information security requirements, applicable laws and regulations, or other significant operational changes.
Implementation
This Policy shall become effective upon approval by the Information Security Committee of the National Library of Public Information. Any amendments to this Policy shall follow the same approval procedure.