SOFTMINT DIGITAL SERVICES PVT LTD
Business Continuity Policy
1. Business Continuity Plans (BCP) /Disaster Recovery plans (DRP) shall be initiated based on a
Business Impact analysis (BIA).
2. BIA shall be conducted/reviewed at least once annually.
3. Recovery time objectives (RTO) and Recovery Point Objectives (RPO) will be identified and
considered when establishing the business continuity plans and disaster recovery plans.
4. BCP/DR plans shall be tested at least annually for business-critical applications and results of
tests shall be retained in documented format
5. BCP/DR plans shall be updated/revised based on the outcomes of the tests where required.
6. BCP/DR plans shall be updated/revised based on the outcomes of the tests where required.
7. BCP/DR plans shall be reviewed annually and updated when significant changes are made to
the business processes or the underlying IT infrastructure and application ecosystem.
8. BCP/DR shall be considered in all new projects/new initiatives.
9. Relevant personnel shall be trained on business continuity and disaster recovery plans and
informed about their roles and responsibilities
10. Documentation of the BCP/DR plans shall be maintained (including off site as necessary) to
ensure it is accessible when the business continuity plan or the disaster recovery plan has to
be invoked.
11. BCP/DR plans shall also consider vendors/suppliers/third parties as part of establishing,
documenting, evaluation/testing and maintaining the BCP/DR plans.