PRIV-01—Privacy Program
>Control Description
Organization privacy policies for individuals, including relevant updates, are communicated on the public company website or on the internal corporate network.
Theme
Process
Type
Preventive
Policy/Standard
Privacy Policy>Implementation Guidance
1. Ensure the organization has created a privacy policy. 2. Ensure the policy is updated and approved on regular intervals. 3. Ensure the policy is communicated and is available for employees and relevant stakeholders.
>Testing Procedure
1. Inspect privacy policies and confirm that the policy is updated. 2. Confirm that anytime the privacy policy is updated, these updates are present on the intranet or public website.
>Audit Artifacts
E-PRIV-01
Ask AI
Configure your API key to use AI features.