| Trustmark Definition Name | Version |
|---|---|
|
Defines privacy requirements for organizations to identify the conditions that prompt the reevaluation of labels assigned to information.
|
1.0 |
|
Defines privacy requirements for organizations to document their procedures for appeal when requests for disclosure or corrections are denied.
|
1.0 |
|
Defines privacy requirements for organizations to document its process for handling individuals' complaints and objections with regard to terrorism-related protected information received, maintained, disclosed, or disseminated by the organization.
|
1.0 |
|
Defines privacy requirements for organizations to document their methods for determining which complaints involve information that is specifically protected information.
|
1.0 |
|
Defines privacy requirements for organizations to document how they determine which complaints involve information that is specifically protected information shared through the ISE.
|
1.0 |
|
Defines privacy requirements for organizations to keep a record kept of complaints and requests for corrections with regard to information received, maintained, disclosed, or disseminated by them.
|
1.0 |
|
Defines privacy requirements for an organization's ISE Privacy Officer (or designee or other individual) responsible for handling complaints and objections with regard to information received, maintained, disclosed, or disseminated by the organization.
|
1.0 |
|
Defines privacy requirements for organizations to document their processes for handling individuals' complaints and objections with regard to information it has received, maintained, disclosed, or disseminated.
|
1.0 |
|
Defines privacy requirements for organizations to document their procedures for handling individuals' requests for correction involving information the organization has disclosed and can change because it originated the information.
|
1.0 |
|
Defines privacy requirements for organizations to keep records of requests for corrections involving information the organization has disclosed.
|
1.0 |
|
Defines privacy requirements for organizations to document the circumstances for access to and disclosure of a record containing sensitive information to a member of the public in response to an information request described the organization's redress policy.
|
1.0 |
|
Defines privacy requirements for organizations to document the conditions under which they will disclose information to an individual about whom information has been gathered, and whether a record is kept of all requests and of what information is disclosed to an individual.
|
1.0 |
|
Defines privacy requirements for organizations to document that they are subject to a state public (open) records act that provides procedures for disclosure, corrections, appeals, and handling of complaints when information is not subject to disclosure.
|
1.0 |
|
Defines privacy requirements for organizations to keep a record of what information is disclosed when they disclose information to an individual about whom information has been gathered.
|
1.0 |
|
Defines privacy requirements for organizations to keep a record of all requests to disclose information to an individual about whom information has been gathered.
|
1.0 |
|
Defines privacy requirements for organizations to summarize in their privacy policies applicable state public (open) records act procedures for disclosure, corrections, appeals, and handling of complaints when information is not subject to disclosure.
|
1.0 |
|
Defines privacy requirements for organizations to notify third parties that are the source of information requested when information requests are denied and their determination that disclosure by the organization or referral of the requestor to the source party was neither required nor appropriate under applicable law.
|
1.0 |
|
Defines privacy requirements for organizations to refer requestors to the originating party when an information request is denied and the information did not originate within the organization.
|
1.0 |
|
Defines privacy requirements for organizations to document the conditions under which it will NOT disclose information to an individual about whom information has been gathered.
|
1.0 |
|
Defines privacy requirements for organizations to have a point of contact for handling complaints.
|
1.0 |
|
Defines privacy requirements for organizations to have a point of contact for handling inquiries.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization provides a process for individuals to have inaccurate personally identifiable information (PII) maintained by the organization corrected or amended, as appropriate.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a process for disseminating corrections or amendments of the PII to other authorized users of the PII, such as external information-sharing partners.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a process for notifying affected individuals that their information has been corrected or amended.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a process for notifying, where feasible and appropriate, affected individuals that their information has been corrected or amended.
|
1.0 |
