PRIV-03—Privacy Readiness Review
>Control Description
Organization performs privacy readiness reviews to identify high-risk processing activities that impact personal data; identified non-compliance with Organization privacy practices is tracked through remediation.
Theme
Process
Type
Corrective
Policy/Standard
Privacy Policy>Implementation Guidance
1. Ensure that a process has been established for privacy readiness reviews. 2. Ensure privacy readiness reviews are conducted for high-risk processing activities. 3. Ensure necessary actions are taken for the remediation of findings from privacy readiness reviews.
>Testing Procedure
1. Inspect privacy readiness reviews and ensure that remediation activities were launched for any non-compliant actions. 2. Validate that remediation activates were resolved and remediated.
>Audit Artifacts
E-PRIV-03
Ask AI
Configure your API key to use AI features.