PT-03 Personally Identifiable Information Processing Purposes
Personally Identifiable Information Processing and Transparency
Privacy New in Rev 5
Description
Changes from Rev 4
New control family introduced in Rev 5
Compliance Mappings
ISO 27001:2022
A.5.34
ISO 27002:2022
5.34
COBIT 2019
APO14
CIS Controls v8
CIS 3
SOC 2 TSC
P1.1-POF1
CSA CCM v4
DSP-03DSP-08DSP-12DSP-15
CSA AICM v1
DSP-03DSP-08DSP-12DSP-15DSP-20DSP-24MDS-09
ISO 42001:2023
A.5.4A.9.4
BSI IT-Grundschutz
CON.2
ANSSI
Hygiene.8SecNumCloud.19.3
FINMA Circular 2023/1
IV.D(78)IV.D(79)IV.D(80)
OSFI B-13
B-13.1.3
EU GDPR
Art.5(1)(b)Art.6(4)Art.9(1)Art.9(2)
BIO2
5.34
RBI CSF
Annex1.15
MLPS 2.0
8.1.4.11
EU CRA
CRA.I.2g
NCA ECC
2-7
CBB TM
TM-9
CBUAE
CR-5
CBE CSF
CTO-2
SA JS2
JS2-8.2
CBN CSF
Part3.4Part7.1
POPIA
s13s15s26-27
BoM CTRM
3.10
IOSCO Cyber Resilience
PROT-3
BCBS 239
Principle 4
FFIEC IS
II.C.16
NYDFS 500
500.13500.18
ECB CROE
CROE.2.3.3
SEBI CSCRF
PR.DS
BOT Cyber Resilience
Ch2.3Ch9.2
TIBER-EU
TIBER.CONF
Common Criteria
CC Part 2 — FPR
Solvency II
Art.49(3)
Lloyd's Minimum Standards
MS7.1MS8.7
NAIC Insurance Data Security
34-asset8
HITRUST CSF v11
06.a13.a13.c
ISO 27799
18.25.38.2
NHS DSPT
NDG-1.1NDG-5.4
OWASP MASVS v2.1
MASVS-PRIVACY-1MASVS-PRIVACY-3MASVS-PRIVACY-4
MiCA
Art.62(9)Art.98(1)
BSSC Standards
GSP-09