Our Business Continuity Plan (BCP)
Version: 1.0
Effective Date: July 23, 2025
Owner: Risk, Compliance & Operations Unit
Approved by: Management Board
1.0 Purpose
The purpose of this Business Continuity Plan is to ensure that GIDSA SE LTD can continue critical business functions during and after disruptive events. It outlines the strategies, resources, and procedures needed to minimize service interruption, protect people and assets, and maintain client trust.
2.0 Scope
This BCP applies to all departments, employees, systems, critical assets, and third-party providers across GIDSA SE LTD. It covers business units involved in:
• Enterprise IT & Digital Systems
• Cybersecurity & Surveillance Infrastructure
• Enterprise Consulting & Managed Services
• Secure Platform Hosting (e.g., Secure BetaPro)
• Administrative and Operational Support Services
3.0 Objectives
• Protect life, safety, and wellbeing of staff and clients
• Minimize disruption to core services and operations
• Resume essential business functions within Recovery Time Objectives (RTO)
• Protect brand, data, intellectual property, and reputation
• Ensure compliance with applicable laws, contracts, and SLAs
4.0 Risk Assessment & Business Impact Analysis (BIA)
We have identified potential threats and their impact, including:
| Risk/Event |
Impact |
Mitigation Strategy |
| Cyberattack or ransomware |
High - Data loss/downtime |
Multi-layered cybersecurity & offsite backups |
| Power or utility outage |
Moderate to High |
Solar/battery backups & generator systems |
| Pandemic or health crisis |
High - Staffing impact |
Remote work infrastructure & wellness policy |
| Physical security breach |
High |
Access control, CCTV, security personnel |
| Natural disaster (flood/fire) |
High |
Insurance, evacuation, DR site |
5.0 Business Continuity Strategies
5.1 IT Continuity
Daily offsite and cloud-based backups
Geo-redundant servers and hybrid storage
24/7 network and security monitoring
Disaster recovery (DR) playbook tested quarterly
5.2 Operational Continuity
Role-based cross-training and succession planning
Key operations personnel designated as 'Essential Staff'
Remote work policy with secure VPN access
5.3 Facilities & Asset Continuity
Primary and alternate operations sites
Physical security upgrades: surveillance, biometric access
Inventory and asset management systems in place
5.4 Client Services Continuity
Emergency contact directory for priority clients
Pre-written communications templates for client updates
Escalation protocols for high-priority incidents
6.0 Communication Plan
| Audience |
Mode of Communication |
Frequency |
| Staff |
Email, WhatsApp, SMS |
Immediate/Weekly |
| Clients |
Email, Calls, Website Notice |
Within 1 hour |
| Vendors |
Direct Line, Email |
Within 3 hours |
| Regulators |
Formal written report |
Within 24 hours |
Emergency communications will be coordinated by the designated Continuity Communications Officer.
7.0 Roles & Responsibilities
| Role |
Responsibility |
| Continuity Lead |
Overall execution of BCP, coordination of team response |
| IT Systems Manager |
Recovery of systems, backups, data, and platforms |
| Operations Team Lead |
Maintain core services and client delivery |
| Security Coordinator |
Physical and cyber protection measures |
| Communications Officer |
Internal and external communications |
| HR/Admin Support |
Staff welfare, tracking, and logistics |
8.0 Recovery Time Objectives (RTO) & Recovery Point Objectives (RPO)
| Function/Asset |
RTO |
RPO |
| Secure BetaPro Platform |
2 hours |
15 mins |
| Company Website & CRM |
4 hours |
1 hour |
| Core Operations (Client Jobs) |
12 hours |
6 hours |
| Communications Channels |
1 hour |
30 mins |
| HR & Payroll Systems |
24 hours |
12 hours |
9.0 Plan Testing & Review
Quarterly Tabletop Simulations: All departments participate in scenario testing.
Annual Full BCP Drill: Organization-wide stress test.
Post-Incident Review: After every real disruption, lessons learned will be documented and BCP updated.
10.0 Training & Awareness
All employees are inducted into BCP protocols during onboarding.
Designated teams undergo periodic refresher training.
BCP Handbook is available on the Intranet and internal platforms.
11.0 Continuous Improvement
We commit to reviewing and enhancing this plan annually or after any major incident. Inputs are welcome from all staff, clients, and partners for improving organizational resilience.
For any emergencies, BCP activation, or suggestions:
Email: bcp@gidsase.com
