⭐ Repository → 💼 SOC 2 → 💼 CC7 System Operations → 💼 CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.
💼 CC7.3-5 Determines Confidential Information Used or Disclosed
- ID:
/frameworks/soc-2/cc7/03/05
Description
When an unauthorized use or disclosure of confidential information has occurred, the affected information is identified and actions are taken to help prevent future recurrence and address control failures to support the achievement of entity objectives.
Similar
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (2)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ Google Cloud Audit Logging is not configured properly🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GCE Network DNS Policy Logging is not enabled🟢 | 1 | 🟢 x6 | no data |