Security - Safeguards Proportional to Likelihood of Harm, v1.0

This Trustmark Definition addresses privacy requirements for sensitive information controllers to protect sensitive information that they hold with appropriate safeguards proportional to the likelihood of harm threatened.

Assessment Step

1
Security - Safeguards Proportional To Likelihood Of Harm (Security-SafeguardsProportionalToLikelihoodOfHarm)
Does the organization require that sensitive information controllers protect sensitive information that they hold with appropriate safeguards proportional to the likelihood of harm threatened?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) that support the assessor's response to this assessment step.
Parameter
SensitivePersonalInformationrequired
ENUM_MULTI : Select the type(s) of sensitive information that apply.
  • PII
  • PHI
  • III
  • IIHI
  • Other

Conformance Criteria (1)

C-1
Personal information controllers should protect personal information that they hold with appropriate safeguards proportional to the likelihood of harm threatened.
Citation
APEC
Section 22, Security Safeguards