Skip to main content
All CollectionsSecurity & Privacy
Asset Management Policy
Asset Management Policy
Tyler Bryden avatar
Written by Tyler Bryden
Updated over 7 months ago

1. Purpose and Scope

The purpose of this Asset Management Policy is to establish guidelines for the effective management and security of Speak Ai Inc.'s ("Speak Ai") physical and digital assets. This policy applies to all employees, contractors, and third parties who manage or use Speak Ai's assets.

2. Policy Statement

Speak Ai is committed to the proper management and security of its assets to ensure their optimal use and protection. This policy outlines the procedures for acquiring, managing, and disposing of assets, and establishes controls to safeguard these assets against loss, theft, and misuse.

3. Asset Inventory

  • Asset Register: Speak Ai will maintain an up-to-date inventory of all physical and digital assets, including laptops, phones, software licenses, and cloud services. The asset register should include details such as asset type, serial number, assigned user, location, and status.

  • Asset Identification: All assets will be tagged with unique identifiers to facilitate tracking and management.

4. Asset Acquisition

  • Approval Process: The acquisition of new assets must be approved by the relevant department head or manager. This process will include an assessment of business needs, budget considerations, and security requirements.

  • Vendor Selection: Assets must be procured from reputable vendors who meet Speak Ai’s quality and security standards.

5. Asset Assignment and Usage

  • Assignment: Assets will be assigned to employees based on their roles and responsibilities. The assignment will be documented in the asset register.

  • Usage: Employees are responsible for the proper use and care of Speak Ai assets. Assets must be used in accordance with Speak Ai’s policies and procedures and should not be used for personal purposes.

6. Asset Security

  • Physical Security: Employees must take necessary precautions to protect physical assets, such as laptops and phones, from theft, damage, or unauthorized access. This includes securing devices when not in use and using privacy screens to prevent unauthorized viewing.

  • Data Security: Employees must ensure that all data stored on Speak Ai assets is encrypted and backed up regularly. Sensitive data should be transmitted using secure channels, such as VPNs and encrypted communication tools.

  • Access Control: Access to digital assets, including software and cloud services, must be restricted to authorized personnel only. Multi-factor authentication (MFA) should be used to enhance security.

7. Asset Maintenance

  • Regular Maintenance: Speak Ai will ensure that all assets are maintained regularly to keep them in good working condition. This includes applying software updates, patches, and hardware servicing as needed.

  • Support: Employees should report any issues with their assigned assets to the IT support team for prompt resolution.

8. Asset Disposal

  • Disposal Procedures: When assets are no longer needed, they must be disposed of securely and in an environmentally responsible manner. This includes data wiping, physical destruction, or recycling as appropriate.

  • Documentation: The disposal of assets must be documented in the asset register, including details of the disposal method and the personnel involved.

9. Incident Reporting

  • Lost or Stolen Assets: Employees must report any lost or stolen assets immediately to the IT Security Team at [specified email address]. An incident report should include details of the asset, the circumstances of the loss or theft, and any actions taken.

  • Incident Response: The IT Security Team will investigate reported incidents and take appropriate measures to mitigate any risks associated with the loss or theft of assets.

10. Training and Awareness

  • Employee Training: All employees will receive training on asset management policies and procedures, including the proper use, security, and disposal of assets.

  • Ongoing Awareness: Continuous awareness programs will be conducted to keep employees informed about the importance of asset management and security best practices.

11. Compliance and Auditing

  • Policy Compliance: Compliance with this policy is mandatory for all employees, contractors, and third parties involved in asset management. Non-compliance may result in disciplinary actions.

  • Regular Audits: Regular audits will be conducted to ensure adherence to this asset management policy and identify areas for improvement.

12. Policy Review

This policy will be reviewed annually or as needed to ensure its effectiveness and alignment with industry best practices and emerging security threats. Changes to the policy will be communicated to all employees.

13. Contact Information

For any inquiries or issues related to this Asset Management Policy, please contact the IT Asset Management Team at [email protected].

Did this answer your question?