~/Cedric

Penalty or sanction clause out of proportion or not suited to the context Vulnerabilities

No contractual clause covering the activity (in the event of shutting down the activity, supplier bankruptcy, etc.) Vulnerabilities

No clause covering response time for repair and replacement in the event of equipment failure Vulnerabilities

No security instructions given to external personnel working on the premises Vulnerabilities

No equipment verification procedure before purchase or after maintenance work. Vulnerabilities

Change of the organisation's policy or strategy Vulnerabilities

No reporting on malfunctions Vulnerabilities

No personnel protection team Vulnerabilities

No instructions concerning the use of IT equipment Vulnerabilities

No procedures for checking external floppy disks Vulnerabilities