Report a Claim

Security Policy

  1. Introduction

At Johnson & Johnson Claims Management, we prioritize the security and privacy of our online presence. This Website Security Policy outlines the measures we take to protect our website and the information it contains.

  1. Scope

This policy applies to all employees, contractors, and third-party vendors involved in the management, development, or maintenance of our website.

  1. Security Measures

3.1 Access Control:

Access to the website’s backend and sensitive information is restricted to authorized personnel only.

User access levels and permissions are regularly reviewed and updated as necessary.

3.2 Data Encryption:

All sensitive data transmitted between the website and users is encrypted using industry-standard encryption protocols (e.g., HTTPS).

Passwords and other sensitive information are stored using secure hashing algorithms.

3.3 Regular Security Audits:

Regular security audits and vulnerability assessments are conducted to identify and address potential security risks.

Any identified vulnerabilities are promptly mitigated to maintain the integrity of the website.

3.4 Software Updates and Patches:

All software and plugins used on the website are kept up to date with the latest security patches and updates.

Regular monitoring ensures timely installation of patches to address known vulnerabilities.

3.5 Firewall and Intrusion Detection:

A firewall is implemented to monitor and filter incoming and outgoing traffic to and from the website.

Intrusion detection systems are in place to detect and respond to unauthorized access attempts or suspicious activity.

  1. User Responsibilities

4.1 Password Security:

Users are required to create strong, unique passwords and refrain from sharing them with others.

Passwords must be changed regularly, and multi-factor authentication may be enforced for added security.

4.2 Reporting Security Incidents:

Users are responsible for promptly reporting any security incidents or suspicious activity related to the website to the designated IT security team.

  1. Compliance and Enforcement

5.1 Compliance:

Compliance with this Website Security Policy is mandatory for all personnel involved in website management and operations.

5.2 Enforcement:

Violations of this policy may result in disciplinary action, up to and including termination of employment or contract.

  1. Policy Review

This Website Security Policy will be reviewed and updated regularly to ensure it remains effective and aligned with evolving security best practices and regulatory requirements.

  1. Contact Information

For questions or concerns regarding this policy, please contact the IT Security Department at cybersecurity@jjins.com