Information Security Policy as InfoSec instrument in the Polish local government system
Information Security Policy as InfoSec instrument in the Polish local government system
Author(s): Łukasz WojciechowskiSubject(s): Security and defense
Published by: Instytut Europy Środkowej
Keywords: Information Security Policy (ISP); information security (InfoSec); Polish territorial self-government; data processing; legal frameworks
Summary/Abstract: This article discusses Information Security Policy (ISP) as an instrument of maintaining information security (InfoSec) in Poland at the local government level. In line with the existing legal framework, all local government units must prepare and implement a document titled ‘Information Security Policy’ (ISP). Resulting from a landmark law, i.e. the Act on Personal Data Protection of 29 August 1997, the ISP determines the data sets, the range of their processing as well as basic mechanisms of their protection. Another important source of law in the field of InfoSec in Poland is a 2004 Regulation on Personal Data Processing Documentation (RMIA) that sets out details that apply to individual institutions and define the technical conditions of the equipment and systems used for the processing of personal data.
Journal: Rocznik Instytutu Europy Środkowo-Wschodniej
- Issue Year: 14/2016
- Issue No: 2
- Page Range: 75-94
- Page Count: 20
- Language: English