>myctrl.tools
Preferences
Under active development Content is continuously updated and improved · Last updated Feb 18, 2026, 2:55 AM UTC
Compare

IAC-20.1Access To Sensitive / Regulated Data

Weight: 10

>Control Description

Mechanisms exist to limit access to sensitive/regulated data to only those individuals whose job requires such access.

>Cross-Framework Mappings

PCI DSS v4.0.1

7.2.1
Compare
7.2.2
Compare
7.2.5
Compare
7.2.6
Compare

SOC 2 TSC

CC6.1
Compare

Canada ITSP 10.171

03.01.01.C.03
Compare
03.01.01.D.01
Compare
03.01.01.D.02
Compare
03.01.02
Compare
03.01.03
Compare
03.01.04.B
Compare
03.01.05.A
Compare
03.06.05.D
Compare
03.10.01.A
Compare

SOC 2 TSC (Detailed)

CC6.1-POF12
Compare
CC6.1-POF13
Compare

ISO 27002:2022

5.18
Compare

NIST SP 800-171 Rev 3

03.01.01.c.03
Compare
03.01.01.d.01
Compare
03.01.01.d.02
Compare
03.01.02
Compare
03.01.03
Compare
03.01.04.b
Compare
03.01.05.a
Compare
03.06.05.d
Compare
03.10.01.a
Compare

NIST SP 800-171A Rev 3

A.03.01.05.b[01]
Compare
A.03.01.05.b[02]
Compare
A.03.06.05.d
Compare

NIST SP 800-207 Zero Trust

NIST Tenet 3
Compare

Ask AI

Configure your API key to use AI features.