PT-1: Policy and Procedures
An OSCAL Control
-
-
personnel or roles
personnel or roles to whom the personally identifiable information processing and transparency procedures are to be disseminated is/are defined;
-
frequency
the frequency at which the current personally identifiable information processing and transparency policy is reviewed and updated is defined;
-
frequency
the frequency at which the current personally identifiable information processing and transparency procedures are reviewed and updated is defined;
-
events
events that would require the personally identifiable information processing and transparency procedures to be reviewed and updated are defined;
-
personnel or roles
personnel or roles to whom the personally identifiable information processing and transparency policy is to be disseminated is/are defined;
-
official
an official to manage the personally identifiable information processing and transparency policy and procedures is defined;
-
events
events that would require the current personally identifiable information processing and transparency policy to be reviewed and updated are defined;