1. Purpose The purpose of this Information Security Policy is to outline the guidelines and procedures for ensuring the security of information within the tak.chat app. This policy aims to protect the confidentiality, integrity, and availability of information and data stored and processed by the app. 2. Scope This policy applies to all employees, contractors, and third-party vendors who have access to the tak.chat app and its data. It also applies to all devices and systems used to access the app. 3. Information Security Responsibilities All employees, contractors, and third-party vendors are responsible for ensuring the security of the information and data stored and processed by the tak.chat app. This includes safeguarding sensitive information, following security procedures, and reporting any security incidents or breaches. 4. Data Classification Data stored and processed by the tak.chat app must be classified based on its sensitivity and importance. This classification will determine the level of security controls and protection measures that need to be implemented. 5. Access ControlAccess to the tak.chat app and its data must be restricted to authorized individuals only. User access must be granted based on the principle of least privilege, ensuring that users have access only to the information necessary to perform their job responsibilities. 6. Data Encryption All sensitive and confidential information transmitted and stored by the tak.chat app must be encrypted using strong encryption algorithms. Encryption keys must be securely managed and stored to prevent unauthorized access. 7. Incident Response In the event of a security incident or breach, all employees, contractors, and third-party vendors must report the incident to the designated security team immediately. A response plan will be activated to contain the incident, investigate the cause, and implement measures to prevent future incidents. 8. Security Awareness TrainingAll employees, contractors, and third-party vendors must undergo regular security awareness training to educate them on security best practices, policies, and procedures. Training will help employees recognize and prevent security threats and incidents. 9. Compliance All employees, contractors, and third-party vendors must comply with this Information Security Policy and any additional security policies, standards, and guidelines established by tak.chat. Non-compliance may result in disciplinary action, including termination of employment or contract. 10. Policy Review This Information Security Policy will be reviewed and updated regularly to ensure that it remains current and effective in addressing new security threats and risks. Employees, contractors, and third-party vendors will be notified of any changes to the policy.