Accountability - Maintenance, v1.0

Defines privacy requirements for organizations to promote accountability for how sensitive information is maintained.

Assessment Step

1
Accountability - Maintenance (Accountability-Maintenance)
Does the organization promote accountability for how sensitive information is maintained?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) that support the assessor's response to this assessment step.
Parameter
Information Typesrequired
ENUM_MULTI : Select the type(s) of sensitive information that apply.
  • PII
  • PHI
  • III
  • IIHI
  • Other

Conformance Criteria (1)

C-1
Promote accountability for how personal information is maintained.
Citation
ACM
Accountability