{"id":353677,"date":"2024-10-20T00:59:19","date_gmt":"2024-10-20T00:59:19","guid":{"rendered":"https:\/\/pdfstandards.shop\/product\/uncategorized\/bs-iso-iec-15944-122020\/"},"modified":"2024-10-26T01:08:44","modified_gmt":"2024-10-26T01:08:44","slug":"bs-iso-iec-15944-122020","status":"publish","type":"product","link":"https:\/\/pdfstandards.shop\/product\/publishers\/bsi\/bs-iso-iec-15944-122020\/","title":{"rendered":"BS ISO\/IEC 15944-12:2020"},"content":{"rendered":"

This document:<\/p>\n

    \n
  1. \n

    provides method(s) for identifying, in Open-edi modelling technologies and development of scenarios, the additional requirements in business operational view (BOV) specifications for identifying the additional external constraints to be applied to recorded information in business transactions relating to personal information of an individual, as required by legal and regulatory requirements of applicable jurisdictional domains;<\/p>\n<\/li>\n

  2. \n

    integrates existing normative elements in support of privacy and data protection requirements as are already identified in ISO\/IEC 14662<\/span><\/span> and ISO\/IEC 15944-1<\/span><\/span> , ISO\/IEC 15944-2<\/span><\/span> , ISO\/IEC 15944-4<\/span><\/span> , ISO\/IEC 15944-5<\/span><\/span> , ISO\/IEC 15944-8<\/span><\/span> , ISO\/IEC 15944-9<\/span><\/span> , and ISO\/IEC 15944-10<\/span><\/span> ;<\/p>\n<\/li>\n

  3. \n

    provides overarching, operational \u2018best practice\u2019 statements for associated (and not necessarily automated) processes, procedures, practices and governance requirements that act in support of implementing and enforcing technical mechanisms which support the privacy\/data protection requirements necessary for implementation in Open-edi transaction environments;<\/p>\n<\/li>\n

  4. \n

    focuses on the life cycle management of personal information i.e., the contents of SPIs (and their SRIs) related to the business transaction interchanged via EDI as information bundles and their associated semantic components among the parties to a business transaction.<\/p>\n<\/li>\n<\/ol>\n

    \n
    \n NOTE\n <\/div>\n

    Privacy protection requirements (PPR) on information life cycle management (ILCM) and EDI of personal information as stated in this document serve as a minimum set of ILCM policy and operational requirements for all recorded information pertaining to a business transaction in particular, as well as ILCM implementation in any organization in general.<\/p>\n<\/div>\n

    This document does not specify the technical mechanisms, i.e., functional support services (FSV) which are required to support BOV-identified requirements. Detailed exclusions to the scope of this document are provided in Annex H<\/span>.<\/p>\n

    PDF Catalog<\/h4>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
    PDF Pages<\/th>\nPDF Title<\/th>\n<\/tr>\n
    2<\/td>\nundefined <\/td>\n<\/tr>\n
    7<\/td>\nForeword <\/td>\n<\/tr>\n
    8<\/td>\nIntroduction <\/td>\n<\/tr>\n
    17<\/td>\n1 Scope
    2 Normative references <\/td>\n<\/tr>\n
    18<\/td>\n3 Terms and definitions <\/td>\n<\/tr>\n
    46<\/td>\n4 Abbreviated terms <\/td>\n<\/tr>\n
    47<\/td>\n5 Fundamental privacy protection principles
    5.1 Overview
    5.2 Primary sources of privacy protection principles <\/td>\n<\/tr>\n
    48<\/td>\n5.3 Key eleven (11) privacy protection principles <\/td>\n<\/tr>\n
    49<\/td>\n5.4 Link to \u201cconsumer protection\u201d and \u201cindividual accessibility\u201d requirements (see ISO\/IEC 15944-8:2012, 6.3) <\/td>\n<\/tr>\n
    50<\/td>\n5.5 Privacy protection principles in the context of ILCM requirements
    5.6 Requirement for tagging (or labelling) sets of personal information (SPIs) in support of privacy protection requirements (PPR) in accordance with ISO\/IEC 15944-8:2012, 5.4
    5.7 Requirements for making all personal information (PI) available to the buyer where the buyer is an individual <\/td>\n<\/tr>\n
    51<\/td>\n5.8 Rules governing ILCM aspects of personal information profiles (PIPs) <\/td>\n<\/tr>\n
    52<\/td>\n6 Integrated set of information life cycle management (ILCM) principles in support of information law and privacy protection requirements (PPR)
    6.1 Primary purpose of Clause 6 <\/td>\n<\/tr>\n
    54<\/td>\n6.2 Information life cycle management (ILCM) principles that support privacy protection requirements (PPR)
    6.2.1 Compliance with privacy protection requirements (PPR) and associated information law requirements
    6.2.2 Direct relevance, informed consent and openness <\/td>\n<\/tr>\n
    56<\/td>\n6.2.3 Ensuring that personal information is \u201cunder the control of\u201d the organization throughout its ILCM <\/td>\n<\/tr>\n
    57<\/td>\n6.2.4 Limiting use, disclosure and retention <\/td>\n<\/tr>\n
    59<\/td>\n6.2.5 Timely, accurate, relevant <\/td>\n<\/tr>\n
    61<\/td>\n6.2.6 Data integrity and quality
    6.2.7 Safeguards for non-authorized disclosure requirements <\/td>\n<\/tr>\n
    62<\/td>\n6.2.8 Back-up, retention and archiving <\/td>\n<\/tr>\n
    63<\/td>\n6.2.9 Disposition and expungement
    6.2.10 Organizational archiving
    6.2.11 Historical, statistical and\/or research value <\/td>\n<\/tr>\n
    65<\/td>\n6.3 Requirement for tagging (or labelling) data elements in support of privacy protection requirements (PPR)
    7 Rules governing ensuring accountability for and control of personal information (PI)
    7.1 Purpose
    7.2 Key aspects of Open-edi requirements <\/td>\n<\/tr>\n
    66<\/td>\n7.3 Key aspects of \u201cunder the control of\u201d
    7.4 \u201cunder the control of\u201d in support of PPR and in an ILCM context <\/td>\n<\/tr>\n
    67<\/td>\n7.5 Implementing \u201cunder the control of\u201d and accountability <\/td>\n<\/tr>\n
    72<\/td>\n8 Rules governing the specification of ILCM aspects of personal information
    8.1 Overview <\/td>\n<\/tr>\n
    73<\/td>\n8.2 Rules governing establishing ILCM responsibilities for personal information (PI) <\/td>\n<\/tr>\n
    75<\/td>\n8.3 Rules governing establishing specifications for retention of personal information (PI) \u2014 applicable \u201cSRI retention triggers\u201d <\/td>\n<\/tr>\n
    78<\/td>\n8.4 Rules governing identification and specification of state changes of personal information (PI)
    8.4.1 General requirements <\/td>\n<\/tr>\n
    79<\/td>\n8.4.2 Specification of state changes allowed to personal information (PI) <\/td>\n<\/tr>\n
    81<\/td>\n8.4.3 Specification of store change type <\/td>\n<\/tr>\n
    83<\/td>\n8.4.4 Rules governing specification of source of state changes <\/td>\n<\/tr>\n
    84<\/td>\n8.5 Rules governing disposition of personal information (PI) <\/td>\n<\/tr>\n
    87<\/td>\n8.6 Rules governing the establishment and maintenance of record retention and disposal schedules (RRDS) for sets of personal information (SPIs) <\/td>\n<\/tr>\n
    89<\/td>\n9 Data conversion, data migration and data synchronization
    9.1 Purpose <\/td>\n<\/tr>\n
    90<\/td>\n9.2 Rules governing data conversion of set(s) of personal information (SPI)
    9.3 Rules governing requirements for data synchronization of sets of personal information (SPI) <\/td>\n<\/tr>\n
    92<\/td>\n10 Rules governing EDI of personal information (PI) between primary ILCM Person, i.e., the seller, and its \u201cagent\u201d, \u201cthird party\u201d and\/or \u201cregulator\u201d
    10.1 General requirements <\/td>\n<\/tr>\n
    93<\/td>\n10.2 ILCM rules pertaining to use of an \u201cagent\u201d <\/td>\n<\/tr>\n
    94<\/td>\n10.3 ILCM rules pertaining to use of a \u201cthird party\u201d
    10.4 ILCM rules pertaining to involvement of a \u201cregulator\u201d <\/td>\n<\/tr>\n
    95<\/td>\n11 Conformance statement
    11.1 Overview
    11.2 Conformance to the ISO\/IEC 14662 Open-edi reference model and the ISO\/IEC 15944 series <\/td>\n<\/tr>\n
    96<\/td>\n11.3 Conformance to ISO\/IEC 15944-12
    11.4 Conformance by agents and third parties to ISO\/IEC 15944-12 <\/td>\n<\/tr>\n
    97<\/td>\nAnnex A (normative) Consolidated list of terms and definitions with cultural adaptability: ISO English and ISO French language equivalency <\/td>\n<\/tr>\n
    112<\/td>\nAnnex B (normative) Consolidated set of rules in the ISO\/IEC 15944 series of particular relevance to privacy protection requirements (PPR) as external constraints on business transactions which apply to personal information (PI) in an ILCM requirements c <\/td>\n<\/tr>\n
    128<\/td>\nAnnex C (informative) Business transaction model (BTM): Classes of constraints <\/td>\n<\/tr>\n
    132<\/td>\nAnnex D (informative) Linking ILCM to process phases of a business transaction <\/td>\n<\/tr>\n
    134<\/td>\nAnnex E (informative) Generic approach to ILCM decisions in a PPR context \u2014 ILCM compliance decision tree <\/td>\n<\/tr>\n
    137<\/td>\nAnnex F (informative) Generic approach to identification of properties and behaviours of personal information (PI) as transitory records and their disposition\/expungement <\/td>\n<\/tr>\n
    139<\/td>\nAnnex G (informative) Notes on referential integrity and privacy protection transactional integrity (PPTI) in Open-edi among IT systems <\/td>\n<\/tr>\n
    141<\/td>\nAnnex H (informative) Exclusions to the scope of ISO\/IEC 15944-12 <\/td>\n<\/tr>\n
    143<\/td>\nAnnex I (informative) Aspects not currently addressed in this document <\/td>\n<\/tr>\n
    146<\/td>\nAnnex J (informative) List of parts of the ISO\/IEC 15944 series <\/td>\n<\/tr>\n
    147<\/td>\nAnnex K (informative) Abstract of ISO\/IEC 15944-12: ISO English, ISO French and ISO Chinese <\/td>\n<\/tr>\n
    150<\/td>\nBibliography <\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":"

    Information technology. Business operational view – Privacy protection requirements (PPR) on information life cycle management (ILCM) and EDI of personal information (PI)<\/b><\/p>\n\n\n\n\n
    Published By<\/td>\nPublication Date<\/td>\nNumber of Pages<\/td>\n<\/tr>\n
    BSI<\/b><\/a><\/td>\n2020<\/td>\n154<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"featured_media":353688,"template":"","meta":{"rank_math_lock_modified_date":false,"ep_exclude_from_search":false},"product_cat":[699,2641],"product_tag":[],"class_list":{"0":"post-353677","1":"product","2":"type-product","3":"status-publish","4":"has-post-thumbnail","6":"product_cat-35-240-63","7":"product_cat-bsi","9":"first","10":"instock","11":"sold-individually","12":"shipping-taxable","13":"purchasable","14":"product-type-simple"},"_links":{"self":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product\/353677","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/types\/product"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media\/353688"}],"wp:attachment":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media?parent=353677"}],"wp:term":[{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_cat?post=353677"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_tag?post=353677"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}