Crisis Management Policy Template

Crisis Management Policy

Purpose of Crisis Management Policy

This Crisis Management Policy explains how [Company Name] prepares for, responds to, and recovers from events that seriously threaten employee safety, company operations, assets, reputation, or the ability to deliver critical services. The policy provides a clear framework of roles, responsibilities, communication protocols, and recovery actions to ensure a coordinated and timely response during a crisis.

Scope

This policy applies to all employees, contractors, temporary staff, and third parties operating at or on behalf of [Company Name]. It covers crises such as natural disasters, major facility incidents, cyber incidents that affect operations, public health emergencies, significant supply chain disruptions, and other events that could cause substantial business interruption or risk to people or property.

Crisis Response Team and Roles

[Company Name] will maintain a Crisis Response Team responsible for managing crisis events. The team will include representatives from senior management, operations, security, IT, legal, communications, and human resources as appropriate. Specific roles and authorities include:

• Team Leader: Coordinates the overall response and makes strategic decisions.
• Operations Lead: Manages operational response activities and resource allocation.
• Communications Lead: Oversees internal and external communications.
• HR Lead: Manages employee welfare, staffing decisions, and return to work arrangements.
• IT Lead: Manages technical response for cyber or system incidents and supports recovery efforts.

Activation and Initial Response

The Crisis Response Team may be activated when an event is likely to or has already caused significant disruption. Initial response actions include assessing impact, protecting life and safety, securing affected areas, notifying key stakeholders, and implementing temporary controls to stabilize operations. Employees must follow instructions from emergency responders and designated company representatives.

Notification and Communication

Effective communication is essential during a crisis. [Company Name] will maintain up to date emergency contact information for employees and preapproved communication templates for different event types. The Communications Lead will manage messages to employees, customers, vendors, regulators when required, and the media. Communications will prioritize accuracy, timeliness, and the safety of individuals.

Employee Responsibilities

Employees are expected to:

• Follow emergency procedures and directions from crisis or emergency personnel.
• Report incidents, hazards, or near misses to their manager or HR as soon as possible.
• Keep personal contact information current in company records.
• Participate in required training and drills related to crisis response.

Business Continuity and Recovery

[Company Name] will maintain business continuity and recovery plans aligned with this policy to restore critical functions as quickly as reasonably possible. Recovery priorities will be set based on safety, legal and contractual obligations, customer impact, and financial risk. The Crisis Response Team and business leaders will approve recovery timelines and resource allocation.

Training, Exercises, and Readiness

[Company Name] will conduct periodic training, tabletop exercises, and full scale drills to validate crisis response plans and readiness. Training will be provided to crisis team members, managers, and employees as appropriate. Lessons learned from incidents and exercises will be incorporated into plan updates and training programs.

Documentation and Recordkeeping

All crisis events, decisions, communications, and recovery actions must be documented. HR will retain records related to employee notifications, welfare support, staffing changes, and any personnel actions arising from the crisis in accordance with company recordkeeping practices.

Approval Process

Approvals for crisis response actions, deviations from normal policy, or requests for exceptions will follow an expedited approval process managed by the Crisis Response Team. Typical approval steps include:

• Manager or crisis team member identifies required action or exception and documents the rationale, expected duration, and impact.
• HR and the Operations Lead review personnel, safety, and operational implications.
• Senior leadership or the designated approving authority provides final approval for significant or long term deviations.

Managers are responsible for escalating incidents promptly and implementing approved actions within their areas. HR is responsible for advising on employee welfare, temporary staffing, leave arrangements, and return to work considerations. In urgent situations, the Crisis Response Team Leader may authorize immediate actions and obtain formal approval as soon as practicable.

Non-Compliance

Failure to follow this policy or crisis procedures may increase risk to people and operations. Non-compliance will be addressed in a manner consistent with [Company Name] policies and may result in disciplinary action up to and including termination, depending on the severity and consequences of the failure. Non-compliance that compromises safety or violates other company policies will be given priority for investigation and remediation.

Note

This policy may be updated periodically to reflect changes in business operations, lessons learned from incidents, changes in technology, or best practices. Employees should consult their manager or HR for clarification on how this policy applies in specific situations. Questions about crisis response roles, training schedules, or notification procedures may be directed to HR or the Crisis Response Team representative identified by the company.