STA-01: Data Quality and Integrity

CSF v1.1 References:

PF v1.0 References:

Threats Addressed:

Warning icon.

Control is withdrawn in the next version of this control set and incorporated into: STA-12: Supply Chain Service Agreement Compliance.

Control Statement

Providers shall inspect, account for, and work with their cloud supply-chain partners to correct data quality errors and associated risks. Providers shall design and implement controls to mitigate and contain data security risks through proper separation of duties, role-based access, and least-privilege access for all personnel within their supply chain.

[ Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.