According to the contract between IBA and their sub-contractors, sub-contractors must adhere to IBA’s internal security and compliance policies while delivering the Services.

The relevant policies in their current version can be found here:

Top Level Asset Control Policy: IBA – Top Level Asset Control Policy

Top Level Data Classification Policy 2.0: IBA – Top Level Data Classification Policy 2.0

Top Level Information Security Policy: IBA – Top Level Information Security Policy

Top Level Password Policy: IBA – Top Level Password Policy

Top Level Remote Access Policy: IBA – Top Level Remote Access Policy

Top Level Access Control Policy: IBA – Top Level Access Control Policy

Besides IBA’s internal security and compliance policies, a sub-contractor can be required to adhere to the internal security and compliance policies of the relevant IBA Customer.

These policies will be in the relevant SOW.