Security Policy Statement

Integrity Domiciliary Care Services (IDCS) Limited
Effective Date: August 2025

1. Introduction

At Integrity Domiciliary Care Services (IDCS) Limited, we are committed to protecting the confidentiality, integrity, and availability of all information and assets in our care. This Security Policy Statement sets out our approach to safeguarding data, systems, and services against unauthorised access, disclosure, alteration, or destruction.

2. Scope

This policy applies to all IDCS staff, contractors, volunteers, and any third parties who have access to IDCS information, systems, or physical premises.

3. Policy Objectives

• To protect client, staff, and operational data from misuse or unauthorised access.

• To ensure secure handling, storage, and transmission of confidential and sensitive information.

• To maintain compliance with applicable UK data protection and security laws, including the Data Protection Act 2018 and UK GDPR.

• To ensure business continuity and reduce the risk of disruption to services.

4. Key Commitments

a. Data Security

• All personal and sensitive data will be protected using strong encryption methods and secure access controls.

• Only authorised personnel may access client and staff records, with access limited strictly to what is necessary.

b. Physical Security

• IDCS premises (including Ability House) will have appropriate physical access controls, such as locks, surveillance systems, and secure areas for data storage.

• Devices must be locked when unattended and securely stored when not in use.

c. IT Security

• All systems will be password protected, regularly updated, and monitored for threats.

• Anti-virus, firewalls, and security patches will be routinely applied.

• Remote working systems must meet the same security standards as on-site systems.

d. Staff Training and Awareness

• All staff will receive regular training on information security, data protection, and safe working practices.

• Security responsibilities are embedded into staff roles and monitored by managers.

e. Incident Response

• Security breaches or suspected incidents must be reported immediately to the designated data protection officer or line manager.

• An investigation will be conducted, and corrective action will be taken as needed.

5. Responsibilities

• Directors and Management are responsible for ensuring this policy is implemented and reviewed annually.

• Staff and Contractors are responsible for adhering to this policy and reporting concerns or breaches.

• IT Providers and Consultants must maintain system security by IDCS standards and UK law.

6. Review and Updates

This policy will be reviewed annually or sooner if there are significant changes in the law, regulation, or company operations.

7. Contact Information

For security concerns or questions about this policy, please contact:

Integrity Domiciliary Care Services (IDCS) Limited
Address: Ability House, 121 Brooker Road, Waltham Abbey, EN9 1JH, United Kingdom
Email: info@integritycareservice.com
Telephone: +44 208 145 3355

Approval and Review
This statement was approved by the Directors of IDCS and will be reviewed annually.

Approved by: Sarah Santeng
Position: Chief Executive Director
Date: August 2025