Skip to main content

Craftsmen Ltd - Information Security Policy

IMS-PL-01

Document No. IMS-PL-01 Version 1.0
Standard / Clause ISO/IEC 27001:2022 & ISO/IEC 27701:2019 — A.5.1, Cl.5.2 Effective Date 23 May 2026
Owner CEO Classification Internal
Approved By Mahmudul Haque Azad (CEO) Review Annual / on change

1. Purpose

To state Craftsmen Ltd's commitment to protecting the confidentiality, integrity and availability of information within its operational boundary, and to satisfying applicable security and privacy requirements.

2. Scope

Applies to all information and personal data handled by Craftsmen, all personnel, and all systems and devices under Craftsmen's control, including remote working.

3. Policy Statements

  1. Craftsmen protects the confidentiality, integrity and availability of information it owns or is entrusted with.
  2. Information security and privacy risks are assessed and treated proportionately to the organisation's scale and operating model.
  3. Personnel comply with the information security and privacy policies, the acceptable use undertaking and confidentiality obligations.
  4. Access to information is granted on a least-privilege, need-to-know basis with strong authentication.
  5. Security and privacy incidents are reported, managed and learned from.
  6. Craftsmen complies with applicable legal, regulatory and contractual obligations, including GDPR where applicable.
  7. The integrated ISMS/PIMS is continually improved through audit, review and corrective action.

4. Roles and Responsibilities

Role Responsibility
CEO Accountable for information security and privacy; approves policies and the SoA.
Management Representative Coordinates the ISMS/PIMS, risk, audit and review.
General & Admin (G&A) Operates access, asset, personnel and physical-security controls.
All Personnel Comply with policies and report incidents.

5. Related Documents

  • Integrated ISMS/PIMS Manual (CML-IMS-MAN-01)
  • Statement of Applicability (CML-IMS-SOA-01)
  • All IMS procedures

6. Compliance and Review

Compliance with this policy is mandatory for all personnel within scope. Non-compliance may be addressed through the disciplinary process. This policy is reviewed at least annually and whenever significant changes occur, and is approved by top management.

7. Revision History

Version Date Description Approved By
1.0 23 May 2026 Initial issue. Mahmudul Haque Azad

Need more information?

If you need further information about our security, privacy, or quality practices, we're here to help.

Headquarter

Craftsmen UK
EC2A 4NA, 66 Paul Street,
London, United Kingdom

Operational Hub

Craftsmen Bangladesh
Plot # 316, Lane # 4, DOHS Baridhara,
Dhaka - 1206, Bangladesh

Sales & Partnership Offices

Craftsmen Norway
Kong Oscars gate 66, 68, 5017 Bergen, Norway

Craftsmen France
6 Avenue Pierre Grenier, 92100 Boulogne-Billancourt, Paris, France

A Team You Can Trust

 

 © 2026 Craftsmen. All rights reserved.