Security - Data Storage, v1.0

Defines privacy requirements for organizations to apply security measures to all potential storage of sensitive information.

Assessment Step

1
Security - Data Storage (Security-DataStorage)
Does the organization apply security measures to all potential storage of sensitive information?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) that support the assessor's response to this assessment step.
Parameter
Information Typesrequired
ENUM_MULTI : Select the type(s) of sensitive information that apply.
  • PII
  • PHI
  • III
  • IIHI
  • Other

Conformance Criteria (1)

C-1
Apply security measures to all potential storage of personal data.
Citation
ACM
Security