Skip to main content

Sensitive Data Privileges Policy

Introduction

At WeSalute, we are committed to maintaining the highest standards of data security and privacy. We understand that certain employees may need access to sensitive data to carry out their job responsibilities. This “Sensitive Data Privileges Agreement” is designed to ensure the responsible and ethical handling of sensitive data by our employees.

Responsibility

As a Team Member of WeSalute, you acknowledge and accept the responsibility of safeguarding sensitive data, including, but not limited to, employee data and company financials. You understand that the unauthorized access, disclosure, or misuse of this information may have legal and financial consequences, as well as damage the trust and reputation of WeSalute.

  • Examples of sensitive employee data include, but are not limited to:
  • Social Security numbers (“SSN”)
  • Employee Addresses
  • Date of Birth
  • Personal Contact information
  • Personal information related to Protected Class

Sensitive company financial data includes, but is not limited to:

  • Total Compensation figures
  • Debts and Liabilities
  • Bank Statements
  • Accounts Payable Information
  • Financial Performance Metrics
  • Company Financial Statements

Agreement Terms

Access Limitations

You will only access sensitive data when necessary to perform your job duties. Any access beyond what is required for your role is strictly prohibited.

Confidentiality

You will maintain the confidentiality of all sensitive data and not share it with unauthorized individuals, either within or outside the organization.

Data Protection

You will take appropriate measures to protect sensitive data from unauthorized access, including safeguarding physical documents and using strong passwords and encryption for electronic data.

Training

Employees with access to sensitive data must undergo regular training on data security best practices to stay informed about emerging threats and compliance requirements.

Termination of Access

Access to sensitive data will be revoked promptly upon termination of employment or when it is no longer required for job responsibilities.

Reporting

If you suspect any unauthorized access, disclosure, or misuse of sensitive data, you are obligated to report it immediately to your supervisor and WeSalute Security at security@wesalute.com.

Compliance

You will comply with all applicable data protection laws and regulations, including, but not limited to GDPR, CCPA and company policies regarding data privacy.

Policy Review, Disciplinary, & Responsibility

Policy Review

This policy will be reviewed annually to ensure it remains effective and aligned with the needs of WeSalute and the evolving nature of sensitive data.

Disciplinary Action

Employees who violate this policy may face disciplinary consequences in proportion to their violation. WeSalute management will determine how serious an employee’s offense is and take the appropriate action.

Responsibility

It is the Team Lead, People Operations, and CEO’s responsibility to ensure this policy is followed.