Procedures

Controlled Document

Data Classification and Handling

Document No.
IT-SEC-003
Version
1.1
Effective Date
2025-12-01
Scope
All Divisions

1. Purpose

Nass data is classified as Public, Internal, Confidential, or Restricted. Confidential and Restricted data must not be stored on personal devices or shared with third parties without written authorisation from the Data Owner.

2. Scope & Applicability

This procedure applies to all Nass Corporation personnel, contractors, and visitors engaged in activities covered by IT-SEC-003. It is mandatory and forms part of the Nass Corporation Integrated Management System.

3. Responsibilities

  • Division Director. Ensures the procedure is implemented, resourced, and reviewed annually.
  • Line Manager / Supervisor. Briefs the team on requirements, monitors compliance daily, and escalates deviations.
  • HSE / HR / Function Owner. Maintains the procedure, delivers training, and audits compliance quarterly.
  • All Employees. Follow this procedure in full, raise questions to their supervisor, and report any deviations.

4. Procedure Steps

  1. 1Confirm this is the current controlled version by checking the Effective Date and Version header before starting work.
  2. 2Review the task-specific Risk Assessment / Method Statement together with this procedure.
  3. 3Prepare all required PPE, equipment, permits, and documentation before commencing.
  4. 4Execute the task in accordance with the requirements set out in the Purpose section above.
  5. 5Record any deviations, incidents, or near-misses in the site logbook and notify the responsible manager immediately.
  6. 6On completion, sign-off the work record and file supporting documentation as required.

5. References

  • Nass Corporation Integrated Management System Manual (IMS-MAN-001)
  • Bahrain Labour Law and applicable regulatory requirements
  • Site-specific Risk Assessment linked to IT-SEC-003

6. Revision History

VersionDateNote
1.12025-12-01Current controlled version.
1.02024-12-01Editorial updates and clarification of responsibilities.
1.02023-06-01Initial issue.
Controlled by the Nass Corporation Document Control Office. Uncontrolled when printed. Refer to the intranet for the current controlled version.
← Back to IT Security