by layertec | Dec 9, 2024 | Compliance
ISO 37301 uses the broad headings of the now familiar Annex SL framework. This specification is designed to be used in accordance with other management standards such as ISO9001: 2015 etc. The subtle difference is that ISO37301 provides a framework for an organisation...
by layertec | Dec 9, 2024 | Compliance
ISO37301 under the section of compliance obligations requires that an organisation focuses upon compliance requirements as a key feature of the compliance model. This should include reference to the applicable laws and regulations that are in force, in relation to the...
by layertec | Jul 3, 2023 | Compliance
The new ISO 22458 Standard defines responsibilities in section 4.3.2. The Standard requires that clear responsibilities are defined to ensure the effective oversight and direction of the consumer vulnerability programme. Clear policies to identify and handle consumer...
by layertec | Jul 3, 2023 | Compliance
Control area: Principles The Standard requires that senior management within the organisation shall demonstrate their commitment to the key concepts and principles listed: Accountability: a culture that underpins good consumer outcomes and identifies vulnerable...
by layertec | Jul 3, 2023 | Compliance
The new ISO 22458 Standard defines consumer vulnerability as: State in which an individual can be placed at risk of harm during their interactions with a service provider due to the presence of personal, situational and market environment factors. Many organisations...
by layertec | Mar 31, 2022 | Compliance
The new ISO27002 was published earlier in 2022. This new guidance formally entitled: Information security, cybersecurity and privacy protection – information security controls provide structured support to the selection of security controls under four...
