PT-01 Policy and Procedures
Personally Identifiable Information Processing and Transparency
Privacy New in Rev 5
Description
Changes from Rev 4
New control family introduced in Rev 5
Compliance Mappings
ISO 27001:2022
A.5.1A.5.34
ISO 27002:2022
5.15.34
COBIT 2019
APO14
CIS Controls v8
CIS 3
SOC 2 TSC
CC1.2-POF1CC1.4-POF1CC2.2CC2.2-POF1CC2.2-POF7CC3.2CC5.1CC5.2CC5.3CC5.3-POF1CC5.3-POF6CC6.1-POF2CC7.2-POF1P1.0P1.1-POF5
CSA CCM v4
DSP-01DSP-06DSP-07DSP-08DSP-09DSP-13DSP-14DSP-16DSP-18DSP-19HRS-12
CSA AICM v1
DSP-01DSP-06DSP-07DSP-08DSP-09DSP-13DSP-14DSP-16DSP-18DSP-19DSP-20DSP-21DSP-22DSP-23HRS-12MDS-09
ISO 42001:2023
A.5.4
BSI IT-Grundschutz
CON.2
ANSSI
Hygiene.2SecNumCloud.19.3SecNumCloud.6.1
FINMA Circular 2023/1
IV.D(78)IV.D(79)
OSFI B-13
B-13.1.3B-13.3.2
EU GDPR
Art.12(1)Art.13(1)Art.14(1)Art.5(1)(a)Art.5(1)(b)Art.5(2)Art.6(1)Art.9(1)
EU DORA
Art.6(8)
BIO2
5.15.34
RBI CSF
Annex1.15ITGRCA.24
SAMA CSF
1.2
NCA ECC
1-3
UAE IA
T3
CBUAE
CR-5
CBE CSF
CTO-2
SA JS2
JS2-8.2
CBN CSF
Part3.4Part5.1Part7.1
POPIA
s13s26-27s5s8s9
BoM CTRM
3.10
FFIEC IS
II.C.1II.C.16
NYDFS 500
500.18
HIPAA Security Rule
§164.308(b)(1)§164.316(a)
ECB CROE
CROE.2.3.3
EBA ICT Guidelines
3.4.1
BOT Cyber Resilience
Ch9.2
CBEST
CBEST.9
TIBER-EU
TIBER.CONF
Common Criteria
CC Part 2 — FPR
Solvency II
Art.49(3)EIOPA-Cloud-GL9
Lloyd's Minimum Standards
MS7.1MS8.2
NAIC Insurance Data Security
8
HITRUST CSF v11
04.a06.a06.b13.a13.e
ISO 27799
18.15.1
NHS DSPT
NDG-1.1NDG-1.3NDG-10.2NDG-5.2NDG-5.4NDG-6.2
MiCA
Art.62(9)Art.97(1)Art.98(1)
BSSC Standards
GSP-09
SEC Custody (Digital Assets)
SEC-CD-20