What type of policy includes a clean desk requirement and data sanitization?

The information security policy includes provisions such as a clean desk requirement and data sanitization. This type of policy is designed to protect an organization's sensitive information and ensure that all data handling practices align with security protocols.

A clean desk requirement reduces the risk of unauthorized access to sensitive information by ensuring that employees do not leave confidential documents exposed on their desks when they are not present. Similarly, data sanitization is crucial for securely disposing of data stored on physical media or digital devices, thereby preventing any potential data breaches from improperly discarded materials.

Both these elements contribute to creating a secure organizational environment where data integrity, confidentiality, and availability are maintained, which are the core principles of an effective information security strategy.