An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
116/172
)
CCIs
Number
Definition
Status
Related
CCI-003481
The organization documents processes to ensure the integrity of personally identifiable information (PII) through existing security controls.
Draft
DI-2
CCI-003482
The organization, when appropriate, establishes a Data Integrity Board.
Draft
DI-2
CCI-003483
The organization's Data Integrity Board oversees the organizational Computer Matching Agreements.
Draft
DI-2
CCI-003484
The organization's Data Integrity Board ensures the Computer Matching Agreements comply with the computer matching provisions of the Privacy Act.
Draft
DI-2
CCI-003485
The organization publishes Computer Matching Agreements on its public website.
Draft
DI-2(1)
CCI-003486
The organization identifies the minimum personally identifiable information (PII) elements that are relevant and necessary to accomplish the legally authorized purpose of collection.
Draft
DM-1
CCI-003487
The organization limits the collection and retention of personally identifiable information (PII) to the minimum elements identified for the purposes described in the published privacy notice.
Draft
DM-1
CCI-003488
The organization limits the collection and retention of personally identifiable information (PII) to the minimum elements identified for the purposes which the individual has provided consent.
Draft
DM-1
CCI-003489
The organization defines the frequency, minimally annually, for conducting reviews of its personally identifiable information (PII) holdings.
Draft
DM-1
CCI-003490
The organization conducts an initial evaluation of personally identifiable information (PII) holdings.
Draft
DM-1
CCI-003491
The organization establishes a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure that only PII identified in the notice is collected and retained.
Draft
DM-1
CCI-003492
The organization follows a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure that only PII identified in the notice is collected and retained.
Draft
DM-1
CCI-003493
The organization establishes a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure the PII continues to be necessary to accomplish the legally authorized purpose.
Draft
DM-1
CCI-003494
The organization follows a schedule for regularly reviewing the personally identifiable information (PII) holdings on an organization-defined frequency to ensure the PII continues to be necessary to accomplish the legally authorized purpose.
Draft
DM-1
CCI-003495
The organization, where feasible and within the limits of technology, locates and removes/redacts specified personally identifiable information (PII).
Draft
DM-1(1)
CCI-003496
The organization, where feasible and within the limits of technology, uses anonymization and de-identification techniques to permit use of the retained Privacy Act information while reducing its sensitivity and reducing the risk resulting from disclosure.
Draft
DM-1(1)
CCI-003497
The organization defines the time period for retaining each collection of personally identifiable information (PII) that is required to fulfill the purpose(s) identified in the published privacy notice or required by law.
Draft
DM-2
CCI-003498
The organization retains each collection of personally identifiable information (PII) for the organization-defined time period to fulfill the purpose(s) identified in the published privacy notice or as required by law.
Draft
DM-2
CCI-003499
The organization disposes of, destroys, erases, and/or anonymizes the personally identifiable information (PII), regardless of the method of storage, in accordance with a NARA-approved record retention schedule.
Draft
DM-2
CCI-003500
The organization disposes of, destroys, erases, and/or anonymizes the personally identifiable information (PII), regardless of the method of storage, in a manner that prevents loss, theft, misuse, or unauthorized access.
Draft
DM-2
CCI-003501
The organization defines the techniques or methods to be employed to ensure the secure deletion or destruction of personally identifiable information (PII) (including originals, copies, and archived records).
Draft
DM-2
CCI-003502
The organization uses organization-defined techniques or methods to ensure secure deletion or destruction of personally identifiable information (PII) (including originals, copies, and archived records).
Draft
DM-2
CCI-003503
The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is collected, created, or updated.
Draft
DM-2(1)
CCI-003504
The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is created.
Deprecated
DM-2(1)
CCI-003505
The organization, where feasible, configures its information systems to record the date personally identifiable information (PII) is updated.
Deprecated
DM-2(1)
CCI-003506
The organization, where feasible, configures its information systems to record when personally identifiable information (PII) is to be deleted or archived under an approved record retention schedule.
Draft
DM-2(1)
CCI-003507
The organization develops policies that minimize the use of personally identifiable information (PII) for testing.
Draft
DM-3
CCI-003508
The organization develops policies that minimize the use of personally identifiable information (PII) for training.
Draft
DM-3
CCI-003509
The organization develops policies that minimize the use of personally identifiable information (PII) for research.
Draft
DM-3
CCI-003510
The organization develops procedures that minimize the use of personally identifiable information (PII) for testing.
Draft
DM-3
Prev
1...
112
113
114
115
116
117
118
119
120
...172
Next