Search

This part of ISO 9564 specifies the basic principles and techniques which provide the minimum security measures required for effective international PIN management. These measures are applicable to those institutions responsible for implementing techniques for the management and protection of PINs. This part of ISO 9564 also specifies PIN protection techniques applicable to financial transaction…

Introduction - The Purpose of This Workbook The Publication CAN/CSA-Q830, A Model Code for the Protection of Personal Information, referred to as the CSA Code, (a) provides the principles for the management of personal information; (b) specifies the minimum requirements for the adequate protection of personal information held by participating organizations; (c) makes the Canadian…

1. Scope 1.1 This model code describes the minimum requirements for the protection of personal information. Any applicable legislation must be considered in implementing these requirements. 1.2 This Standard may be applied to all personal information. Provided the minimum requirements are met, organizations may tailor this Standard to meet their specific circumstances. For example,…

Introduction The Model Code for the Protection of Personal Information being developed under the auspices of the Canadian Standards Association (CSA) has the potential to advance the cause of personal-data protection in Canada. No other country has attempted to negotiate and establish on a voluntary basis a general minimum standard for privacy protection in its private sector. As an…

This proposed standard is for anybody who creates or help create legal and related documents. It builds, and relies, on the foundation for plain language in WD 24495-1, Plain Language — Part 1: Governing Principles and Guidelines. This standard, Plain Language — Part 2 Legal Writing and Drafting, will add guidance and techniques to help authors make sure that people affected by legal and related…

This document: •       provides guidelines for the implementation of systems for the management of identity information, and •       specifies requirements for the implementation and operation of a framework for identity management. This document is applicable to any information system where information relating to identity is processed or stored." to “This document: ·       provides…

This document defines a Universal Cybersecurity Labelling Framework for the development and implementation of cybersecurity labelling programmes for consumer IoT products and includes guidance on the following topics: • Risks and threats associated with consumer IoT products; • Stakeholders, roles and responsibilities; • Relevant standards and guidance documents; • Conformity assessment options…

ISO/IEC 29151:2017 establishes control objectives, controls and guidelines for implementing controls, to meet the requirements identified by a risk and impact assessment related to the protection of personally identifiable information (PII). In particular, this Recommendation | International Standard specifies guidelines based on ISO/IEC 27002, taking into consideration the requirements for…

This document provides an approach that support stakeholders in a supply chain to accomplish a chain of trust regarding properties of identifiable material goods along a supply chain. This document gives guidance on the identification of trust domains and their corresponding trustworthiness attributes, and the measures to achieve the targeted trustworthiness attributes. As a supply chain…

The Open-edi Reference Model (ISO/IEC 14662:2010, Clause 4) states: "The intention is that the sending, by an Open-edi Party, of information from a scenario, conforming to Open-edi standards, shall allow the acceptance and processing of that information in the context of that scenario by one or more Open-edi Parties by reference to the scenario and without the need for agreement. However,…