Privacy - Data Quality and Integrity - Procedures For Data Destruction, v1.0

Defines privacy requirements for organizations to review the quality of the information it originates and have documented procedures for its destruction.

Assessment Step

1
Privacy - Data Quality And Integrity - Procedures For Data Destruction (Privacy-DataQualityAndIntegrity-ProceduresForDataDestruction)
Does the organization require review the quality of the information it originates and identify data that may be inaccurate or incomplete, includes incorrectly merged information, is out of date, cannot be verified, has a questionable source, or lacks adequate context such that the rights of the individual may be affected, and have a documented procedure for destruction?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) that support the assessor's response to this assessment step.
Parameter
Satisfied By Privacy Policyrequired
BOOLEAN : Is the organization's privacy policy the source for all supporting information for satisfying the issuance criteria of this Trustmark Definition? (TRUE=yes)

Conformance Criteria (1)

C-1
When the center reviews the quality of the information it originates and identifies data that may be inaccurate or incomplete, includes incorrectly merged information, is out of date, cannot be verified, has a questionable source, or lacks adequate context such that the rights of the individual may be affected, what is the center's procedure for destruction?
Citation
FCPP
Section G.5, Information Quality Assurance