| Trustmark Definition Name | Version |
|---|---|
|
Defines conformance and assessment criteria for verifying that an organization obtains consent from individuals prior to any new uses of previously collected PII.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization obtains consent, where feasible and appropriate, from individuals prior to any new uses of previously collected PII.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization implements controls to protect PII used for research.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization implements controls to protect PII used for testing.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization implements controls to protect PII used for training.
|
1.0 |
|
Credential Service Providers must properly limit the use of subscriber information to protect the subscribers privacy.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a Data Integrity Board when appropriate to oversee organizational Computer Matching Agreements.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization documents processes to ensure the integrity of personally identifiable information (PII) through existing security controls.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization establishes a Data Integrity Board when appropriate to ensure Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the accuracy of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization collects PII directly from the individual to the greatest extent practicable.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the completeness of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization corrects as necessary, any inaccurate or outdated PII used by its programs or systems.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization checks for any inaccurate or outdated PII used by its programs or systems at an organization-defined frequency.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the integrity of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the objectivity of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing quality of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization issues guidelines ensuring and maximizing the utility of disseminated information.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the relevance of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization confirms to the greatest extent practicable the timeliness of created or collected personally identifiable information (PII).
|
1.0 |
|
Defines privacy requirements for organizations to apply labels to collected information regarding its level of quality.
|
1.0 |
|
Defines privacy requirements for organizations to research alleged or suspected errors and deficiencies in information acquired or accessed by the organization.
|
1.0 |
|
Defines privacy requirements for organizations to refer alleged or suspected errors and deficiencies information acquired or accessed by the organization to the originating party.
|
1.0 |
|
Defines privacy requirements for organizations to document their procedures and processes ensure the quality of the information they collect and maintain.
|
1.0 |
|
Defines privacy requirements for organizations to review the quality of the information it originates and have documented procedures for any needed corrections.
|
1.0 |
