1. What is information security?

Information security is safeguarding information including information systems from unauthorized access, alteration, leakage and damage. These covers the security of all PNP IT resources, the information it produces and the IT equipment or devices that access, process, store, or transmit it.

2. What is meant by PNP information in relation to computer security?

This is a set of information that the PNP maintains, keeps or for which the PNP is responsible for its custody. This includes all data that is relevant to or that supports the administration and operations of the PNP.

3. What is considered an IT device?

This is considered any device that is used to access, process, store, or transmit PNP information and that utilizes PNP's IT infrastructure, including but not limited to desktop computers, laptop, smartphones, tablets, network devices, and printers.

4. What are IT resources?

IT resources are the full set of PNP-owned or -controlled IT equipment or devices. This include data involved in the accessing, processing, storage, and transmission of information. IT resources therefore, include both PNP information and IT devices.

5. What is confidentiality?

Confidentiality is the authorized security restrictions placed on PNP information access and disclosure including security measures for safeguarding proprietary and personal data privacy. Confidentiality refers to privacy of information the “need to know basis” concept the permissions to view, share, and use information. Low level confidentiality may be considered for public view and use.  It is considered not threatening in case of public disclosure. On the other hand, information with a high level of confidentiality is considered secret in order to prevent compromise of PNP information and systems which may lead to severe consequences such as legal liabilities and institutional damage.