CT.PO-P: Data Processing Policies, Processes, And Procedures

Description

Policies, processes, and procedures are maintained and used to manage data processing (e.g., purpose, scope, roles and responsibilities in the data processing ecosystem, and management commitment) consistent with the organization’s risk strategy to protect individuals’ privacy.

Framework Subcategories