Purpose

This  information   security  policy  defines  the framework   within  which  information   security  will be  managed   across  SwitchLink    Africa  Limited   and  demonstrates    management   commitment and support  for information   security  throughout   SwitchLink   Africa  Limited.  This  policy  is the primary  policy  from which  all information   security  related  policies  emanate.

Scope

This  policy  is applicable   to all SwitchLink   Africa  Limited  personnel,   contractors,  vendors,  and all other  parties  entrusted   to access  any  information   associated   with  SwitchLink   Africa,  and covers   all   information    entrusted    to  or  owned    by  SwitchLink    and   stored,   processed,    or transmitted   on the organizations    information   systems  and operated   by the organization.

Policy statement

SwitchLink   Africa   Limited   is committed   to  the  security   of  its  information   assets  and  shall implement   measures   through   the  establishment,   implementation,   maintenance,   and  continual improvement   of an information   security  program  to protect  against  breaches  of confidentiality, failures  of integrity  or interruptions   to the availability   of its information   assets  and remediation of security  breaches  shou Id they  occur.

Users of SwitchLink   Africa  Limited  information   and  information   assets  shall comply  with this policy  and  exercise   a duty  of  care  in relation  to the  operation   and  use of SwitchLink   Africa Limited  information   and  information   systems.

SwitchLink   Africa  Limited shall comply with all applicable legal,   regulatory,   and contractual requirements related to information security in her services and operations, and this information security policy states management’s commitment and establishes the framework for the actualization of SwitchLink   Africa  Limited security objectives and is the primary policy from which all SwitchLink information security-related policies emanate.