An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2024
Xylok, LLC
Version: pp-server-fixes-6359-660a
Xylok
Home Menu
info@xylok.io
© 2024
Xylok, LLC
Version: pp-server-fixes-6359-660a
Open sidebar
Navigate
Top
Search
CCIs (
3551
)
Pages (
113/119
)
CCIs
Number
Definition
Status
Related
CCI-003408
The organization disseminates operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
CCI-003409
The organization implements operational privacy policies which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
CCI-003410
The organization develops operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
CCI-003411
The organization disseminates operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
CCI-003412
The organization implements operational privacy procedures which govern the appropriate privacy and security controls for programs, information systems, or technologies involving personally identifiable information (PII).
Draft
AR-1
CCI-003413
The organization defines the frequency, minimally biennially, on which the privacy plan, policies, and procedures are to be updated.
Draft
AR-1
CCI-003414
The organization updates the privacy plan per organization-defined frequency.
Draft
AR-1
CCI-003415
The organization updates the privacy policies per organization-defined frequency.
Draft
AR-1
CCI-003416
The organization updates the privacy procedures per organization-defined frequency.
Draft
AR-1
CCI-003417
The organization documents a privacy risk management process which assesses the privacy risk to individuals.
Draft
AR-2
CCI-003418
The organization implements a privacy risk management process which assesses the privacy risk to individuals.
Draft
AR-2
CCI-003419
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the collection of personally identifiable information (PII).
Draft
AR-2
CCI-003420
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the sharing of personally identifiable information (PII).
Draft
AR-2
CCI-003421
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the storing of personally identifiable information (PII).
Draft
AR-2
CCI-003422
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the transmitting of personally identifiable information (PII).
Draft
AR-2
CCI-003423
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the use of personally identifiable information (PII).
Draft
AR-2
CCI-003424
The organization^s privacy risk management process assesses the privacy risk to individuals resulting from the disposal of personally identifiable information (PII).
Draft
AR-2
CCI-003425
The organization conducts Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.
Draft
AR-2
CCI-003426
The organization establishes privacy roles for contractors.
Draft
AR-3
CCI-003427
The organization establishes privacy responsibilities for contractors.
Draft
AR-3
CCI-003428
The organization establishes access requirements for contractors.
Draft
AR-3
CCI-003429
The organization establishes privacy roles for service providers.
Draft
AR-3
CCI-003430
The organization establishes privacy responsibilities for service providers.
Draft
AR-3
CCI-003431
The organization establishes access requirements for service providers.
Draft
AR-3
CCI-003432
The organization includes privacy requirements in contracts.
Draft
AR-3
CCI-003433
The organization includes privacy requirements in other acquisition-related documents.
Draft
AR-3
CCI-003434
The organization defines the frequency for monitoring privacy controls and internal privacy policy to ensure effective implementation.
Deprecated
AR-4
CCI-003435
The organization defines the frequency for auditing privacy controls and internal privacy policy to ensure effective implementation.
Draft
AR-4
CCI-003436
The organization monitors privacy controls, per organization-defined frequency, to ensure effective implementation.
Draft
AR-4
CCI-003437
The organization monitors internal privacy policy to ensure effective implementation.
Draft
AR-4
Prev
1...
109
110
111
112
113
114
115
116
117
...119
Next