Is this done at least annually?
A set of information security policies are in place, covering the areas of Network Security, Change & Incident Management, Passwords, Access and Acceptable Use.
Yes. QR Planet's incident management program has been approved by management and was communicated to all appropriate constituents. An owner has been assigned.
The protection of all information collected, transmitted, processed, disclosed, or maintained by QR Planet on behalf of clients is ensured.
Yes. The policy-mandated interval between an anti-malware signature update and its deplyment may not exceed 24 hours within QR Planet's environment and network.