DOC-012 · Board Resolution for Information Security Policy

Purpose, Benefit & Risk Coverage

Purpose

Approve information security, data protection, system access, cyber control and confidential record safety standards.

Benefit

Demonstrates board-level commitment to cyber resilience and DPDP-Act readiness; required for partner-bank API access.

Risk Coverage

Cyber breach, data exfiltration, DPDP-Act violation, customer trust loss and RBI cyber-incident reporting failure.

Responsibility Matrix

Department

Legal, IT Security & Collateral Control

Responsible Roles

Legal Head · IT Head · Information Security Officer · Authorised Signatory

Approval Authority

Board of Directors / IT Strategy Committee

Reviewers

Risk Committee · Internal Auditor

Statutory Basis

RBI Master Direction — IT Framework for NBFC; DPDP Act, 2023.

Required Attachments

Information Security Policy (PDF) · BCP/DR plan

Missing Data Action Register

BBAI suggestions use this document's type, evidence, mapped roles, dates, approvals and compliance linkage.

Field: Policy version

Field: CISO/ISO name

Field: Effective date

Field: Incident reporting channel

Evidence: Information Security Policy (PDF)

Evidence: BCP/DR plan

Missing file

Missing date

Missing board approval reference

Missing signatory

Missing policy version

Missing supporting material

Document-specific Risk Coverage

Information security risk
Data protection risk
System access risk
Cyber control risk
Confidential record safety risk

Generate Draft

12 missing inputs

Company Name *Required for the controlled document output.CIN *Required for the controlled document output.Registered Office *Required for the controlled document output.Authorised Signatory *Required for the controlled document output.Effective Date *Required for the controlled document output.Reference NumberOptional supporting information.Internal RemarksOptional supporting information.Meeting Date *Required for the controlled document output.Meeting Venue *Required for the controlled document output.Resolution Number *Required for the controlled document output.Responsible Officer *Required for the controlled document output.Policy version *Required for the controlled document output.CISO/ISO name *Required for the controlled document output.Incident reporting channel *Required for the controlled document output.

Supporting Uploads

Evidence files are encrypted by your browser and remain on this device; export or retain the originals in your organisation's controlled records before final approval.

No supporting files uploaded yet.

Remarks & Notes

No remarks yet.

Version History

No version history yet.