What this Standard Covers

Data breaches are a serious risk for all organizations. Whether the result of inadvertent mishandling, recklessness, or cyberattack, the exposure of confidential information can have damaging and long-lasting impacts on organizations and the people whose data is leaked.

This standard sets out the fundamental characteristics and attributes required of data protection systems. It includes measures to protect data while it is being held on a server and while it is being transferred between IT systems and/or organizations.

About this Standard

Edition

FIRST

Year Published

2020

Intended for Conformity Assessment?

Yes

Comment on the Latest Draft

Draft available for periodic maintenance review appear below

Draft number: Periodic Maintenance
Date posted: 2023-02-28
Comments due by: 2023-04-14

Download This Standard

Our standards are always free for non-commercial use.

Note that all standards published before January 30, 2023 remain valid and designated CIOSC under the authority of the CIO Strategy Council. These standards when updated as new editions will be published by the Digital Governance Standards Institute.

Standard Usage*
- Commercial Use
- Non-Commercial use

Contact Information
Thank you for your interest. Please fill out the information below so you can download this standard.
Consent*
CAREFULLY READ THIS LICENSE AGREEMENT BEFORE CONTINUING. IT CONTAINS IMPORTANT INFORMATION ABOUT YOUR RIGHTS AND OBLIGATIONS, AS WELL AS LIMITATIONS AND EXCLUSIONS THAT MAY APPLY TO YOU. THIS AGREEMENT CONTAINS A DISPUTE RESOLUTION CLAUSE. WHEN YOU ORDER OR ACCESS CIOSC STANDARDS BY CLICKING THE “I ACCEPT” BUTTON OR OTHERWISE ACCEPTING THIS AGREEMENT BY ACCESSING OR DOWNLOADING CIOSC STANDARDS, YOU AGREE TO BE BOUND BY AND BECOME A PARTY TO THIS AGREEMENT. IF YOU ARE ENTERING INTO THIS AGREEMENT ON BEHALF OF A COMPANY OR OTHER LEGAL ENTITY, YOU REPRESENT THAT YOU HAVE THE AUTHORITY TO BIND SUCH ENTITY TO THE TERMS AND CONDITIONS OF THIS AGREEMENT. IF YOU DO NOT HAVE SUCH AUTHORITY, OR IF YOU DO NOT AGREE TO THE TERMS AND CONDITIONS, YOU MUST CLICK THE “I DECLINE” BUTTON AND DO NOT ACCESS OR USE THE STANDARDS. View Full Licence Agreement

Please contact us at info@ciostrategycouncil.com for any queries.
I agree to the above
Nom*
First Last
Organization
Email*
Purpose*
Let us know how you intend to use this standard.
Name
This field is for validation purposes and should be left unchanged.

An interpretation has been added to this standard to clarify the meaning of a term used

Download

Current Status

Standard Proposed

In Development

Published

Annual Maintenance

This standard is subject to technical committee review beginning no later than one year from the date of publication. The completion of the review may result in a new edition, revision, reaffirmation or withdrawal of the standard.

Looking for a different standard?

See all standards currently in development or undergoing maintenance in our full Work Program

Work Program

Data Centric Security