The standard is also applicable to organisations that manage high volumes of veri or information on behalf of other organisations such kak?m veri centres and IT outsourcing companies.If a company deals with financial transactions or a financial institution. The ISMS policy should outline how the organization will protect customer data and prevent p