Privacy issues and the SAS70 audit
Privacy as part of your Security Program Management program means adherence to trust and obligation within your company policy, standards, and procedures. SAS 70 auditors may assist you in implementing this risk management into your company standards by:
1. identifying the data or information that is personable,
2. examining the private information collected, disclosed and that should be destroyed
3. ensuring the accountability of the private data
4. assisting in developing policy and procedure for the risks associated with private data
Based on this standard, you should be able to comply with legal and compliance regulations. This would ensure that privacy standards are considered in all IT projects. SAS70ExPERT@gmail.com
 Comment on this Post