⭐ Repository → 💼 SOC 2 → 💼 CC7 System Operations → 💼 CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.
💼 CC7.3-6 Assesses the Impact on Personal Information
- ID:
/frameworks/soc-2/cc7/03/06
Description
Detected security events are evaluated to determine whether they could or did result in the unauthorized disclosure or use of personal information and whether there has been a failure to comply with applicable laws or regulations.
Similar
- Internal
- ID:
dec-c-196f3b1c
- ID:
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|