💼 52 Typically, the strength of data leakage controls would be commensurate with the sensitivity of the data.

Contextual name: 💼 52 Typically, the strength of data leakage controls would be commensurate with the sensitivity of the data.
ID: /frameworks/apra-cpg-234/20/52
Located in: 💼 20 Implementation of controls - Data leakage

Description

Empty...

Section	Internal Rules	Policies
💼 52a authorisation, registration and regular review of users and associated transfer mechanisms and devices, including printers, telephony and video conferencing equipment. Users with a greater level of access to sensitive data would be subject to increased scrutiny;
💼 52b appropriate blocking, filtering and monitoring of electronic transfer mechanisms, websites and printing;
💼 52c appropriate encryption, cleansing and auditing of devices;	9	9
💼 52d appropriate segmentation of data, based on sensitivity and access needs;	10	10
💼 52e monitoring for unauthorised software and hardware (e.g. key loggers, password cracking software, wireless access points, business implemented technology solutions);	10	10
💼 52f appropriate removal of sensitive data after recovery tests are concluded.