Publication Summary¶
| Title | Guidelines for Inclusion in Employment Contracts |
|---|---|
| Author(s) | Alessandro Cardinali |
| Issued by | CEO |
Version doc. Review freq. |
0.9 Yearly |
| Date of issue | June 7, 2025 |
| Owner | CEO/Founder |
| Document status | Draft – Final Draft - Final |
| Approval Date | n/a |
| Classification | Internal |
Change Log
| Version | Date | Author | Comments |
|---|---|---|---|
| 0.1 | June 7, 2025 | Olaf Jacobson | First draft document |
Table of Contents
1 Introduction 4
1.1 Purpose of this document 4
1.2 Areas of the standard addressed 4
2 Guidelines 5
2.1 Permanent employees 5
2.2 Contractors 5
Introduction¶
In general, employment contracts will be created and maintained by the Human Resources department and will comply with all applicable laws of the country in which the employment takes place.
As part of the Information Security Management System (ISMS) it is important that information security responsibilities are understood by all employees and contractors providing services to Soon Technologies B.V.. In addition to ongoing awareness programmes, these responsibilities must be clearly stated when the contract of employment is agreed.
[The following sections give a general indication of the areas that need to be included in employment contracts to satisfy the requirements of the ISO/IEC 27001 standard. Given the legal nature of a contract the exact wording will need to be agreed with the legal department of Soon Technologies B.V. before use.]
This control applies to all employees and contractors of the organization, particularly those who will have access to Soon Technologies B.V. IT systems.
The following policies and procedures are relevant to this document:
-
HR Security Policy
-
New Starter Checklist
Purpose of this document¶
This document provides some guidance about the types of information that should be included in employment contracts and agreements with contractors.
Areas of the standard addressed¶
The following areas of the ISO/IEC 27001 standard are addressed by this document:
-
A.6 People controls
-
A.6.2 Terms and conditions of employment
¶
Guidelines¶
Permanent employees¶
For all employees:
As an employee of Soon Technologies B.V. you will be required to comply with all applicable information security policies and procedures in force during the period of your employment and for X months after your employment has ended.
This will include, but is not limited to:
-
Internet Acceptable Use Policy
Failure to comply with the above policies and procedures may result in disciplinary action being taken in accordance with the Soon Technologies B.V. employee disciplinary procedure.
[In addition, for those employees who will be given access to information classified as Confidential (or equivalent high classification):]
As a condition of your employment, you will be required to sign a Non-Disclosure Agreement before being given access to information or information processing facilities which are classified by the organization as Confidential.
Contractors¶
For all contractors:
As a contractor providing services to Soon Technologies B.V. you will be required to comply with all applicable information security policies and procedures in force during the period of your contract and for X months after your contract has ended.
This will include, but is not limited to:
-
Internet Acceptable Use Policy
Failure to comply with the above policies and procedures may result in the termination of your contract and legal action being taken.
[In addition, for those contractors who will be given access to information classified as Confidential (or equivalent high classification):]
As a condition of your contract, you will be required to sign a Non-Disclosure Agreement before being given access to information or information processing facilities which are classified by the organization as Confidential.