| Trustmark Definition Name | Version |
|---|---|
|
Defines conformance and assessment criteria for verifying that an organization documents processes to ensure the integrity of personally identifiable information (PII) through existing security controls.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a Data Integrity Board when appropriate to ensure Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the accuracy of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization collects PII directly from the individual to the greatest extent practicable.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the completeness of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization corrects as necessary, any inaccurate or outdated PII used by its programs or systems.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization checks for any inaccurate or outdated PII used by its programs or systems at an organization-defined frequency.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the integrity of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the objectivity of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing quality of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the utility of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the relevance of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the timeliness of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines privacy requirements for organizations to apply labels to collected information regarding its level of quality.
|
1.0 |
|
Defines privacy requirements for organizations to research alleged or suspected errors and deficiencies in information acquired or accessed by the organization.
|
1.0 |
|
Defines privacy requirements for organizations to refer alleged or suspected errors and deficiencies information acquired or accessed by the organization to the originating party.
|
1.0 |
|
Defines privacy requirements for organizations to document their procedures and processes ensure the quality of the information they collect and maintain.
|
1.0 |
|
Defines privacy requirements for organizations to review the quality of the information it originates and have documented procedures for any needed corrections.
|
1.0 |
|
Defines privacy requirements for organizations to review the quality of the information it originates and have documented procedures for its destruction.
|
1.0 |
|
Defines privacy requirements for organizations to review the quality of information they have provided to a third party and identify data that may be inaccurate or incomplete and notify the third party.
|
1.0 |
|
Defines privacy requirements for organizations to document the methods used to notify an external party when the organization reviews the quality of the information it has provided and identifies issues.
|
1.0 |
|
Defines privacy requirements organizations to reevaluate the labeling of information when new information is gathered.
|
1.0 |
|
Defines privacy requirements organizations to ensure that originating parties reevaluate the labeling of information when new information is gathered that has an impact on the confidence in the information previously obtained.
|
1.0 |
|
Defines privacy requirements organizations to document how they respond to confirmed errors or deficiencies.
|
1.0 |
|
Defines privacy requirements for organizations to review the quality of the information it has received from an originating party, identify any issues, and notify the originating party or the originating party's Privacy Officer.
|
1.0 |
