Toe Version: Date af version Created by ‘Approved by “Confidentiaity evel: — | [oeganiation logo] ‘Commented [EU GDPR lan scare ‘ronare betes || ein. {Organization name] (CHANGE MANAGEMENT POLICY ‘emmenedEUGOPR) isn na nas ow ta mnap urge a 5 acorn to 0 770141232 Madu comltovademsee leno Sn mn tewgmanetscinngoeenterssane ‘ez17 temple me beady cect vous ow itor tw sercamin rset te ese econ.[oxgonzation name} (confidentiity eel) Change history Date Version | Created by | Description of change: dimmayyy [Od | EUGDPRAcademy | Basic document outline ‘Table of contents 1 PURPOSE, SCOPE AND USERS. (CHANGE MANAGEMENT... [MANAGING RECORDS KEPT ON THE BASIS OF THis DOCUMENT. VALIDITY AND DOCUMENT MANAGEMENT. Gro Nanogen ‘er Teeson om ae ‘017 stem ma besed by cent bers tow Soir. wm. comin rece wth te Lee econ[oxgonzation name} (confident evel 1. Purpose, scope and users ‘The purpose ofthis document sto define how changes to information systems are controled ‘This document is applied tothe entire lnformation Security Management System ('SMS) scope, and ‘0 personal data processing actives. Users of this document are employees of organizational units for information and communication technology) Reference documents ‘+ ISO/IEC 27001 standard, clauses A212, A142-4 © EUGDPRArtcle 32 ‘+ Information Security Policy 3. Change management toch a SDR hu be made NST ae Sepa fama aerenata cae 1. hange may be propse by fp burton) Eee 2 ” See ace wo ona ie 3. - procedure need not define the responsble person in each step. ‘ . 5 ‘ = charge ead changes}. 4, Managing records kept on the basis of this document Record name ‘Sorage location | Person ‘anil for record Retention responsblefor | protection time storage Name of change | rtvanet folder | (ob tie] ‘Once crested, the record 3 years record] in ame] cannot subsequently be electronic form changed Grong Naronenent Py ‘er een om ate) Pager ‘017 stem ma besed by cent bers tow Soir. wm. comin rece wth te Lee econ