Skip to main content

💼 12.1.2 The information security policy is reviewed at least once every 12 months, and updated as needed to reflect changes to business objectives or risks to the environment.

Contextual name: 💼 12.1.2 The information security policy is reviewed at least once every 12 months, and updated as needed to reflect changes to business objectives or risks to the environment.
ID: /frameworks/pci-dss-v4.0/12/01/02
Located in: 💼 12.1 A comprehensive information security policy that governs and provides direction for protection of the entity's information assets is known and current.

Description

Empty...

Similar

Sections
- /frameworks/pci-dss-v3.2.1/12/01/01
- /frameworks/pci-dss-v4.0.1/12/01/02
Internal
- ID: dec-c-a70ba0a2

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v3.2.1 → 💼 12.1.1 Review the security policy at least annually and update the policy when the environment changes.
💼 PCI DSS v4.0.1 → 💼 12.1.2 The information security policy is reviewed at least once every 12 months, and updated as needed to reflect changes to business objectives or risks to the environment.

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v3.2.1 → 💼 12.1.1 Review the security policy at least annually and update the policy when the environment changes.
💼 PCI DSS v4.0.1 → 💼 12.1.2 The information security policy is reviewed at least once every 12 months, and updated as needed to reflect changes to business objectives or risks to the environment.

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Description
Similar
Similar Sections (Take Policies From)
Similar Sections (Give Policies To)
Sub Sections