SpotMe has developed and implemented an incident handling policy and procedure which provides a framework for reporting and managing security incidents that affect the security, availability, confidentiality, or privacy of SpotMe’s environment.
The Chief Information Security Officer is accountable to senior management for the continued development and operation of the incident management policy.
Here at SpotMe, we have defined:
- Clear roles and responsibilities.
- Reporting mechanisms and communication plans, including communication with third parties.
- Investigation purposes.
- Specific data breach activities.
Visit our SpotMe status page for real-time information about the status of our services.
Business continuity and disaster recovery
SpotMe has set up a Business Continuity Disaster Recovery (BCDR) plan to be used in the event of a disaster.
The purpose of this plan is to define the recovery process developed to restore SpotMe’s critical business functions.
The plan includes procedures for responding to any emergency situation that would affect SpotMe’s ability to deliver core services (including the SpotMe Enterprise Engagement Platform) to its customers, or its ability to meet investor, legal or regulatory requirements.
We have defined clear roles and responsibilities in the event of a disaster, and have a Business Contingency Planning Team. We follow best practices in terms of implementing infrastructure redundancy. Our RTO and RPO times are defined and tested, and last bot not least, the SpotMe Enterprise Engagement Platform recoverability is tested monthly.