๐ผ P6.4 The entity obtains privacy commitments from vendors and other third parties who have access to personal information to meet the entity's objectives related to privacy.
-
Contextual name: ๐ผ P6.4 The entity obtains privacy commitments from vendors and other third parties who have access to personal information to meet the entity's objectives related to privacy.
-
ID:
/frameworks/soc-2/p6/04 -
Located in: ๐ผ P6.0 Privacy Criteria Related to Disclosure and Notification
Descriptionโ
The entity assesses those parties' compliance on a periodic and as-needed basis and takes corrective action, if necessary.
Similarโ
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ P6.4-1 Evaluates Third-Party Compliance With Privacy Commitments | ||||
| ๐ผ P6.4-2 Remediates Misuse of Personal Information by a Third Party | ||||
| ๐ผ P6.4-3 Obtains Commitments to Report Unauthorized Disclosures |