An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
114/172
)
CCIs
Number
Definition
Status
Related
CCI-003421
The organization's privacy risk management process assesses the privacy risk to individuals resulting from the storing of personally identifiable information (PII).
Draft
AR-2
CCI-003422
The organization's privacy risk management process assesses the privacy risk to individuals resulting from the transmitting of personally identifiable information (PII).
Draft
AR-2
CCI-003423
The organization's privacy risk management process assesses the privacy risk to individuals resulting from the use of personally identifiable information (PII).
Draft
AR-2
CCI-003424
The organization's privacy risk management process assesses the privacy risk to individuals resulting from the disposal of personally identifiable information (PII).
Draft
AR-2
CCI-003425
The organization conducts Privacy Impact Assessments (PIAs) for information systems, programs, or other activities that pose a privacy risk in accordance with applicable law, OMB policy, or any existing organizational policies and procedures.
Draft
AR-2
CCI-003426
The organization establishes privacy roles for contractors.
Draft
AR-3
CCI-003427
The organization establishes privacy responsibilities for contractors.
Draft
AR-3
CCI-003428
The organization establishes access requirements for contractors.
Draft
AR-3
CCI-003429
The organization establishes privacy roles for service providers.
Draft
AR-3
CCI-003430
The organization establishes privacy responsibilities for service providers.
Draft
AR-3
CCI-003431
The organization establishes access requirements for service providers.
Draft
AR-3
CCI-003432
The organization includes privacy requirements in contracts.
Draft
AR-3
CCI-003433
The organization includes privacy requirements in other acquisition-related documents.
Draft
AR-3
CCI-003434
The organization defines the frequency for monitoring privacy controls and internal privacy policy to ensure effective implementation.
Deprecated
AR-4
CCI-003435
The organization defines the frequency for auditing privacy controls and internal privacy policy to ensure effective implementation.
Draft
AR-4
CCI-003436
The organization monitors privacy controls, per organization-defined frequency, to ensure effective implementation.
Draft
AR-4
CCI-003437
The organization monitors internal privacy policy to ensure effective implementation.
Draft
AR-4
CCI-003438
The organization audits privacy controls, per organization-defined frequency, to ensure effective implementation.
Draft
AR-4
CCI-003439
The organization audits internal privacy policy, per organization-defined frequency, to ensure effective implementation.
Draft
AR-4
CCI-003440
The organization develops a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.
Draft
AR-5
CCI-003441
The organization implements a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.
Draft
AR-5
CCI-003442
The organization updates a comprehensive training and awareness strategy aimed at ensuring that personnel understand privacy responsibilities and procedures.
Draft
AR-5
CCI-003443
The organization defines the frequency, minimally annually, for administering its basic privacy training.
Draft
AR-5
CCI-003444
The organization defines the frequency, minimally annually, for administering the targeted, role-based privacy training for personnel having responsibility for personally identifiable information (PII) or for activities that involve PII.
Draft
AR-5
CCI-003445
The organization administers basic privacy training per the organization-defined frequency.
Draft
AR-5
CCI-003446
The organization administers, per organization-defined frequency, targeted, role-based privacy training for personnel having responsibility for personally identifiable information (PII) or for activities that involve PII.
Draft
AR-5
CCI-003447
The organization defines the frequency, minimally annually, on which personnel certify acceptance of responsibilities for privacy requirements.
Draft
AR-5
CCI-003448
The organization ensures personnel certify (manually or electronically) acceptance of responsibilities for privacy requirements per organization-defined frequency.
Draft
AR-5
CCI-003449
The organization develops reports for the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.
Draft
AR-6
CCI-003450
The organization disseminates reports to the Office of Management and Budget (OMB), Congress, and other oversight bodies, as appropriate, to demonstrate accountability with specific statutory and regulatory privacy program mandates.
Draft
AR-6
Prev
1...
110
111
112
113
114
115
116
117
118
...172
Next