This Physical Security Policy outlines Marfeel’s practices for securing physical assets, including office spaces, server equipment, and other critical infrastructure, in order to prevent unauthorized access and protect against theft or physical damage. These measures support the organization’s broader commitment to information security and data protection.
1. Access to Facilities
Access to Marfeel’s office premises is controlled and limited to authorized personnel only. Entry to the building is regulated by a security guard located at the main entry on the ground floor. Access to Marfeel’s specific office floor requires biometric verification through fingerprint scanning. Visitors are not granted independent access and must be escorted at all times by a staff member.
2. Visitor Management
All visitors to Marfeel’s premises must be signed in and out at the reception. They are required to present valid identification and are accompanied by an authorized employee throughout their visit. Although there are no gates at the building’s main entry, the combination of ground floor security personnel and restricted access via biometric systems ensures that only authenticated individuals can enter secure areas.
3. Physical Security Controls
Marfeel employs biometric systems for secure access to office floors. The organization uses fingerprint readers as a key access control measure for staff. Access credentials are issued only to authorized individuals based on their roles, and any exceptions are managed internally. All access points to secure areas are monitored, and physical presence within secure zones is limited to authorized staff.
4. Equipment and Asset Protection
All critical hardware and computing devices are housed within the company’s secure premises. Marfeel follows standard security practices to ensure these assets are not exposed to physical threats. All data remains within digitally secured environments.
5. Handling of Scoped Data
Marfeel does not transmit or receive scoped data via physical media. All such information is managed via secure digital platforms with strict access controls, reducing the need for physical transport and minimizing associated risks.
6. Review and Maintenance
This policy is maintained by the Director of System Operations and is subject to periodic review to ensure continued effectiveness. Any changes in the physical layout, access control procedures, or visitor handling practices are incorporated into the policy as part of its regular maintenance cycle.